$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149903.roa File: AS149903.roa (raw, json) Hash identifier: irsaY7fabgANQFTJLOtpJWbQXyiK8Gyls2Lclm9Q2hs= Subject key identifier: 21:71:EE:23:98:90:D5:B3:27:45:3D:86:7C:94:F1:FE:B1:D3:31:7D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0C0B9AD630C9CD2792680912CE77C5EA79561271 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149903.roa Signing time: Tue 26 Nov 2024 07:00:00 +0000 ROA not before: Tue 26 Nov 2024 06:55:00 +0000 ROA not after: Tue 25 Nov 2025 07:00:00 +0000 asID: 149903 IP address blocks: 103.190.108.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:0b:9a:d6:30:c9:cd:27:92:68:09:12:ce:77:c5:ea:79:56:12:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Nov 26 06:55:00 2024 GMT Not After : Nov 25 07:00:00 2025 GMT Subject: CN=2171EE239890D5B327453D867C94F1FEB1D3317D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:29:dd:f1:c2:dc:71:e3:23:98:15:2b:6e:d7: 6f:1f:01:90:0b:94:3d:d8:48:2f:c2:a6:03:3f:4a: ac:65:0e:03:fa:c5:0d:e9:19:4b:1a:e4:cf:f0:8f: ca:74:cf:59:b3:b3:fd:f6:6b:a5:5e:ab:fe:a5:cd: 9a:24:fd:cb:5e:b8:73:35:5e:1f:4e:66:a9:c3:d2: 54:5a:1c:64:34:38:1b:d9:de:b0:40:ed:e6:47:35: a1:2c:f4:94:03:65:0d:d5:cb:55:09:08:e5:53:07: 37:bb:1e:8c:ed:11:17:10:c3:8b:5e:68:08:77:34: cc:5f:e3:85:37:e2:1e:7e:a1:97:6e:b0:e6:17:e8: 32:fb:0d:78:96:c2:fa:ea:5f:43:03:08:de:aa:61: b2:8b:a3:28:9d:a4:42:73:69:4f:1b:06:11:23:46: ec:ab:91:8e:0e:31:b2:58:1b:45:18:16:63:ce:57: 4b:f0:5d:c6:05:e9:e5:d3:59:e0:1e:01:5e:b5:67: 02:24:b1:b6:6f:87:bf:4c:2a:ee:e2:13:55:5a:31: 00:31:cf:5c:e3:59:db:42:8c:db:30:b4:be:ec:d1: 20:a1:74:1b:69:3c:fa:86:4e:61:f6:69:4a:1b:f3: cb:00:62:d8:ff:aa:ce:b8:3b:d8:dc:ac:56:16:39: a7:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:71:EE:23:98:90:D5:B3:27:45:3D:86:7C:94:F1:FE:B1:D3:31:7D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149903.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.108.0/23 Signature Algorithm: sha256WithRSAEncryption 30:be:2d:df:94:2d:05:b7:9a:2a:0c:86:98:66:3b:c7:82:8e: 53:b1:dd:7c:9e:94:68:bd:f5:8c:a7:9a:f5:bf:3a:ba:42:6c: b0:23:0e:25:e6:74:55:e4:77:30:23:44:5e:48:3a:e2:4a:23: 34:be:91:1a:58:81:63:82:8f:e3:2a:33:f4:65:8d:1b:6c:7a: a5:33:15:bc:9f:e3:0c:a5:93:cb:92:25:5b:e5:42:d9:15:d9: 40:77:cf:5d:be:e3:ac:ed:e3:fd:3d:d2:5a:58:1d:8c:98:28: e3:ff:f4:35:c6:d2:ea:1b:8d:27:fa:a7:32:8b:f4:03:d4:24: 73:94:5b:f0:77:ba:68:7d:23:70:fc:1c:64:ef:84:37:e6:4e: e2:86:6b:13:58:60:4c:5a:a0:b5:3d:4b:43:a6:fd:c3:c0:18: d7:7c:c6:c7:0d:70:14:7c:a6:20:ff:8e:3e:9d:5b:00:84:28: de:43:e1:15:df:14:b4:30:d1:c6:0d:47:34:ed:f4:5f:66:a0: cc:56:47:79:79:b9:52:af:90:aa:c7:e1:c4:0e:35:d2:24:00: f0:47:70:d9:9e:75:a6:5b:51:7d:47:09:e2:ce:ae:b0:07:3c: 92:ab:00:3b:3c:cc:80:e5:1a:fa:e7:9c:10:71:75:c5:de:84: 62:ea:74:42 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUDAua1jDJzSeSaAkSznfF6nlWEnEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEyNjA2NTUwMFoX DTI1MTEyNTA3MDAwMFowMzExMC8GA1UEAxMoMjE3MUVFMjM5ODkwRDVCMzI3NDUz RDg2N0M5NEYxRkVCMUQzMzE3RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOEp3fHC3HHjI5gVK27Xbx8BkAuUPdhIL8KmAz9KrGUOA/rFDekZSxrkz/CP ynTPWbOz/fZrpV6r/qXNmiT9y164czVeH05mqcPSVFocZDQ4G9nesEDt5kc1oSz0 lANlDdXLVQkI5VMHN7sejO0RFxDDi15oCHc0zF/jhTfiHn6hl26w5hfoMvsNeJbC +upfQwMI3qphsoujKJ2kQnNpTxsGESNG7KuRjg4xslgbRRgWY85XS/BdxgXp5dNZ 4B4BXrVnAiSxtm+Hv0wq7uITVVoxADHPXONZ20KM2zC0vuzRIKF0G2k8+oZOYfZp ShvzywBi2P+qzrg72NysVhY5p90CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQhce4j mJDVsydFPYZ8lPH+sdMxfTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTkwMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe+bDANBgkqhkiG9w0BAQsFAAOCAQEAML4t35QtBbeaKgyGmGY7 x4KOU7HdfJ6UaL31jKea9b86ukJssCMOJeZ0VeR3MCNEXkg64kojNL6RGliBY4KP 4yoz9GWNG2x6pTMVvJ/jDKWTy5IlW+VC2RXZQHfPXb7jrO3j/T3SWlgdjJgo4//0 NcbS6huNJ/qnMov0A9Qkc5Rb8He6aH0jcPwcZO+EN+ZO4oZrE1hgTFqgtT1LQ6b9 w8AY13zGxw1wFHymIP+OPp1bAIQo3kPhFd8UtDDRxg1HNO30X2agzFZHeXm5Uq+Q qsfhxA410iQA8Edw2Z51pltRfUcJ4s6usAc8kqsAOzzMgOUa+uecEHF1xd6EYup0 Qg== -----END CERTIFICATE-----Generated at Sat Apr 5 06:19:58 2025 by rpki-client