$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149911.roa File: AS149911.roa (raw, json) Hash identifier: 4eraTYbx87NSWkc83Bnt0MUYYgfaY8M9hwuD9GoVDBs= Subject key identifier: D5:F0:C9:C0:9F:D1:5D:06:6B:AE:DC:F9:D3:48:C9:42:84:7D:99:4C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4869B62D69C2E355A5FF9B73445AE7799BACB29A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149911.roa Signing time: Tue 26 Nov 2024 04:00:00 +0000 ROA not before: Tue 26 Nov 2024 03:55:00 +0000 ROA not after: Tue 25 Nov 2025 04:00:00 +0000 asID: 149911 IP address blocks: 103.190.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:69:b6:2d:69:c2:e3:55:a5:ff:9b:73:44:5a:e7:79:9b:ac:b2:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Nov 26 03:55:00 2024 GMT Not After : Nov 25 04:00:00 2025 GMT Subject: CN=D5F0C9C09FD15D066BAEDCF9D348C942847D994C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:04:f5:35:6a:f5:d9:97:4d:d8:50:b6:59:63: 93:bc:b3:31:70:c7:68:4d:1b:48:ad:22:19:f7:7f: 94:27:fc:c5:9b:6a:b8:d4:19:a3:99:76:84:03:f2: b8:25:ca:59:a3:12:e9:d1:08:0d:60:2f:99:13:33: 3e:04:18:a7:ac:59:69:b9:2b:ec:41:c2:56:7e:f1: 56:a7:21:26:61:1b:65:69:18:e7:fe:7f:50:71:fd: e7:12:51:96:46:ef:e4:e2:68:26:e3:74:fb:7d:18: 45:40:e0:fe:9c:b6:36:72:18:a2:6d:0b:2a:d0:99: 5e:cd:e7:b3:51:00:e8:ef:53:a3:34:82:89:8b:d3: 7f:a3:f1:b2:d4:8c:02:77:0c:79:25:54:21:2b:15: c1:29:31:2f:95:cd:b7:a7:c6:8a:6b:a8:7b:cf:12: 35:df:c1:86:c5:8a:f8:28:f8:ef:ff:6c:79:88:e8: 77:76:69:f1:60:28:6f:d6:fe:59:15:92:0a:16:f7: 98:65:48:62:d2:6f:61:d9:0c:8d:65:be:0b:d3:f4: 7e:f0:c5:04:6d:02:f0:32:b3:dd:ab:0e:3d:96:aa: b5:c8:f8:c1:10:28:3e:d5:53:29:ab:36:cc:d6:b9: 21:88:c7:fe:24:00:b9:b5:e0:e3:91:69:cb:a4:c3: 90:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:F0:C9:C0:9F:D1:5D:06:6B:AE:DC:F9:D3:48:C9:42:84:7D:99:4C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149911.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.78.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:b3:7e:4d:ac:07:ca:48:dc:74:36:49:d3:16:2f:bc:c8:b6: 66:f7:68:8a:fc:1c:91:49:ff:52:ae:4f:46:d0:22:e5:14:75: 5d:8c:f6:e0:7b:69:ad:9e:2a:9a:fc:1b:a8:33:4b:2e:c6:ee: d4:a5:69:b3:3d:d6:61:e8:a8:b1:ae:33:f4:8f:b0:30:25:39: 82:e8:45:c6:35:91:07:2d:82:ac:dd:10:5d:a7:21:8b:ea:d8: 02:9f:1f:6c:79:e9:0b:ec:a8:7d:21:8f:93:6a:c1:f6:a4:bb: 69:93:cd:64:6e:69:da:56:0d:9e:e8:91:25:02:79:17:e6:ba: a9:0a:85:21:b6:e0:e8:da:4e:93:4e:06:15:44:2b:10:6a:d8: 7d:3d:e7:15:79:31:64:2c:73:67:66:b4:69:3e:94:9c:af:b9: c9:b2:87:76:0f:57:75:fd:49:c2:5a:2e:d6:7c:e9:eb:5c:b8: 09:77:96:8c:56:c7:0a:0e:eb:fb:d2:19:eb:63:9f:54:a1:df: 29:48:16:8a:c6:25:a4:2a:b4:c9:ca:a6:65:a2:a5:66:37:5a: 30:0b:42:b6:bc:11:8a:a5:c1:a6:3b:0d:3d:3c:ce:34:53:47: c2:8e:76:25:70:9d:38:6e:56:64:bf:e2:5f:3a:0e:e5:79:fa: 2b:e1:3c:e7 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUSGm2LWnC41Wl/5tzRFrneZusspowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEyNjAzNTUwMFoX DTI1MTEyNTA0MDAwMFowMzExMC8GA1UEAxMoRDVGMEM5QzA5RkQxNUQwNjZCQUVE Q0Y5RDM0OEM5NDI4NDdEOTk0QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANIE9TVq9dmXTdhQtlljk7yzMXDHaE0bSK0iGfd/lCf8xZtquNQZo5l2hAPy uCXKWaMS6dEIDWAvmRMzPgQYp6xZabkr7EHCVn7xVqchJmEbZWkY5/5/UHH95xJR lkbv5OJoJuN0+30YRUDg/py2NnIYom0LKtCZXs3ns1EA6O9TozSCiYvTf6PxstSM AncMeSVUISsVwSkxL5XNt6fGimuoe88SNd/BhsWK+Cj47/9seYjod3Zp8WAob9b+ WRWSChb3mGVIYtJvYdkMjWW+C9P0fvDFBG0C8DKz3asOPZaqtcj4wRAoPtVTKas2 zNa5IYjH/iQAubXg45Fpy6TDkA8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTV8MnA n9FdBmuu3PnTSMlChH2ZTDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTkxMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe+TjANBgkqhkiG9w0BAQsFAAOCAQEAfLN+TawHykjcdDZJ0xYv vMi2ZvdoivwckUn/Uq5PRtAi5RR1XYz24HtprZ4qmvwbqDNLLsbu1KVpsz3WYeio sa4z9I+wMCU5guhFxjWRBy2CrN0QXachi+rYAp8fbHnpC+yofSGPk2rB9qS7aZPN ZG5p2lYNnuiRJQJ5F+a6qQqFIbbg6NpOk04GFUQrEGrYfT3nFXkxZCxzZ2a0aT6U nK+5ybKHdg9Xdf1Jwlou1nzp61y4CXeWjFbHCg7r+9IZ62OfVKHfKUgWisYlpCq0 ycqmZaKlZjdaMAtCtrwRiqXBpjsNPTzONFNHwo52JXCdOG5WZL/iXzoO5Xn6K+E8 5w== -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:33 2025 by rpki-client