$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149911.roa File: AS149911.roa (raw, json) Hash identifier: TTh+bstIjEesvSKs5hxDNlD8crxpFdzkyF1ESMPs68M= Subject key identifier: 60:B4:2F:CE:6F:55:5D:D1:63:A1:92:A9:05:F0:36:37:34:46:E2:FE Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 189A61D47F56F02E72E109B3C397372EEF949075 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149911.roa Signing time: Tue 26 Dec 2023 04:00:00 +0000 ROA not before: Tue 26 Dec 2023 03:55:00 +0000 ROA not after: Tue 24 Dec 2024 04:00:00 +0000 asID: 149911 IP address blocks: 103.190.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:9a:61:d4:7f:56:f0:2e:72:e1:09:b3:c3:97:37:2e:ef:94:90:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 26 03:55:00 2023 GMT Not After : Dec 24 04:00:00 2024 GMT Subject: CN=60B42FCE6F555DD163A192A905F036373446E2FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:ec:5c:8a:48:40:cb:62:32:bf:85:6f:f7:09: ac:10:b6:70:f2:35:76:e2:c5:96:3e:86:b1:0f:61: f3:5e:9a:2b:9c:b0:0b:c8:5b:8f:ac:55:61:c4:5c: 68:dc:9c:69:50:f0:ff:a0:d9:94:94:3a:ab:ba:ea: 09:a0:86:84:1c:00:32:29:af:d3:14:55:8e:8b:7b: 68:d5:0a:c9:61:7d:33:78:3a:14:38:d1:a1:99:2a: 11:97:3f:ec:ec:64:86:49:ae:98:c0:f1:ed:98:78: d9:26:05:af:93:1d:e4:28:7b:46:be:3c:5a:a4:7c: ba:1e:ac:8f:4e:d4:22:54:64:0f:c8:c0:2c:8d:00: ea:3c:d0:7b:bc:74:48:1f:00:23:a0:35:3f:5b:1f: ea:be:d0:0f:62:ea:4d:91:8a:ad:17:79:f9:ff:a3: fc:83:2c:d1:3c:e0:d1:ab:7a:28:3c:c0:a7:1b:9b: 63:22:ac:95:59:d0:a9:bf:17:3f:73:12:68:11:18: fa:09:33:d8:99:05:25:c2:a5:32:b5:4d:aa:d7:53: 60:56:89:17:48:5f:6c:94:d8:76:c2:1f:c4:9e:4f: 32:b3:2c:63:f9:cd:b3:0e:9f:df:ea:7c:0d:a7:0e: e9:80:26:03:bf:28:53:44:37:43:4c:3d:7b:13:09: 73:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:B4:2F:CE:6F:55:5D:D1:63:A1:92:A9:05:F0:36:37:34:46:E2:FE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149911.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.78.0/23 Signature Algorithm: sha256WithRSAEncryption 13:e5:fc:a7:1a:fd:63:dc:d6:d5:9c:e4:7b:da:4a:94:18:80: 0b:d6:16:73:46:2b:2f:b8:d9:ec:96:71:32:0d:a1:4a:8a:72: 4b:d1:6a:78:2f:6d:cc:ee:d0:aa:2e:02:da:0d:cc:8e:4c:e6: 1c:1d:02:98:dc:73:86:94:ff:43:3d:6a:81:e6:ed:8d:90:63: d3:ea:92:64:c9:ed:ae:0e:48:e8:cc:84:68:d3:86:cd:78:bc: 60:bb:4c:de:f1:16:db:bd:70:a4:67:c9:f5:e0:e7:86:25:c9: d7:e3:c8:e3:a9:90:90:2f:2b:33:64:9c:49:0b:3d:fc:7d:a3: a0:e1:88:ed:7a:e8:99:c5:9f:88:f2:dd:34:db:ef:0d:12:0b: f4:1f:84:b2:99:84:16:98:4b:7e:5a:11:f2:a8:44:e2:3b:68: 4c:a6:e8:05:7f:9f:17:cd:bd:1b:4b:e7:49:5c:b2:95:00:b8: 3f:30:1e:ee:db:00:95:bb:7e:11:37:13:8c:ef:00:4c:04:da: 63:82:54:e7:f6:cc:fb:9c:df:31:d0:67:9f:1c:23:7e:37:b3: 0e:a4:70:8b:c0:23:0e:9a:a3:78:a3:34:bf:1d:de:cb:b8:5d: 59:78:1e:7b:0b:11:5b:0c:a2:e0:87:3e:0d:24:2c:7b:39:86: 7c:f4:95:e1 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUGJph1H9W8C5y4Qmzw5c3Lu+UkHUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIyNjAzNTUwMFoX DTI0MTIyNDA0MDAwMFowMzExMC8GA1UEAxMoNjBCNDJGQ0U2RjU1NUREMTYzQTE5 MkE5MDVGMDM2MzczNDQ2RTJGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPfsXIpIQMtiMr+Fb/cJrBC2cPI1duLFlj6GsQ9h816aK5ywC8hbj6xVYcRc aNycaVDw/6DZlJQ6q7rqCaCGhBwAMimv0xRVjot7aNUKyWF9M3g6FDjRoZkqEZc/ 7OxkhkmumMDx7Zh42SYFr5Md5Ch7Rr48WqR8uh6sj07UIlRkD8jALI0A6jzQe7x0 SB8AI6A1P1sf6r7QD2LqTZGKrRd5+f+j/IMs0Tzg0at6KDzApxubYyKslVnQqb8X P3MSaBEY+gkz2JkFJcKlMrVNqtdTYFaJF0hfbJTYdsIfxJ5PMrMsY/nNsw6f3+p8 DacO6YAmA78oU0Q3Q0w9exMJc6kCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRgtC/O b1Vd0WOhkqkF8DY3NEbi/jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTkxMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe+TjANBgkqhkiG9w0BAQsFAAOCAQEAE+X8pxr9Y9zW1Zzke9pK lBiAC9YWc0YrL7jZ7JZxMg2hSopyS9FqeC9tzO7Qqi4C2g3MjkzmHB0CmNxzhpT/ Qz1qgebtjZBj0+qSZMntrg5I6MyEaNOGzXi8YLtM3vEW271wpGfJ9eDnhiXJ1+PI 46mQkC8rM2ScSQs9/H2joOGI7XromcWfiPLdNNvvDRIL9B+EspmEFphLfloR8qhE 4jtoTKboBX+fF829G0vnSVyylQC4PzAe7tsAlbt+ETcTjO8ATATaY4JU5/bM+5zf MdBnnxwjfjezDqRwi8AjDpqjeKM0vx3ey7hdWXgeewsRWwyi4Ic+DSQsezmGfPSV 4Q== -----END CERTIFICATE-----Generated at Wed May 8 15:17:44 2024 by rpki-client on console-fra.rpki-client.org