$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149915.roa File: AS149915.roa (raw, json) Hash identifier: qjxNNj8XMtozVfr0b6uihpQUxSE4OBMc0O7RIzEtcmc= Subject key identifier: 1A:87:B4:D3:DD:A7:F8:53:74:14:AB:01:16:18:C7:EF:D2:97:C9:B2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0AAE74E0A46B1872326750D97B2238D480F70203 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149915.roa Signing time: Tue 02 Jul 2024 06:00:57 +0000 ROA not before: Tue 02 Jul 2024 05:55:57 +0000 ROA not after: Tue 01 Jul 2025 06:00:57 +0000 asID: 149915 IP address blocks: 2001:df3:fac0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:ae:74:e0:a4:6b:18:72:32:67:50:d9:7b:22:38:d4:80:f7:02:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 2 05:55:57 2024 GMT Not After : Jul 1 06:00:57 2025 GMT Subject: CN=1A87B4D3DDA7F8537414AB011618C7EFD297C9B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:b5:bb:b0:06:41:3a:c3:e4:cc:83:7c:cd:ec: d6:58:f7:66:5c:34:d3:cf:ec:d5:63:d4:82:26:45: 86:52:16:a2:3e:45:de:3a:da:b8:87:0b:ce:5b:82: f3:45:d0:4f:b7:94:88:8d:fc:9e:43:5f:08:6e:c1: c6:87:cb:cd:5c:26:59:9b:ea:f2:87:08:ef:ea:82: 53:ae:4f:8c:21:13:09:84:89:b7:80:f4:79:33:72: 6a:43:cb:78:d1:93:60:37:67:22:23:2b:60:51:15: cc:ba:d7:f6:b5:c0:25:0c:5e:3a:b0:d6:ee:c4:da: c5:df:20:8f:9e:ba:74:c4:53:14:a8:57:51:e1:86: b9:ba:68:a0:1b:53:a5:32:a3:c9:fe:59:56:d6:f1: a5:30:60:a2:17:c6:7f:83:88:c4:40:d3:70:2f:3c: 5b:a2:26:d5:f3:53:93:db:41:5b:00:a5:b9:14:6c: ba:68:2f:32:3b:dd:f8:c7:ae:60:6d:58:57:6f:b1: 48:bc:e7:f4:c0:5e:1a:9a:08:f2:19:bc:d8:ec:10: 5a:52:2a:c6:0a:f0:f5:fc:c8:90:58:7a:2d:f2:4a: 41:7a:d5:5b:bd:b9:a8:39:83:03:a7:37:65:a2:b9: f8:a3:80:50:e6:a4:a1:25:90:34:72:e1:03:93:12: 95:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:87:B4:D3:DD:A7:F8:53:74:14:AB:01:16:18:C7:EF:D2:97:C9:B2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149915.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:fac0::/48 Signature Algorithm: sha256WithRSAEncryption 69:5e:d7:3b:e7:b7:27:13:cc:44:43:b5:64:7c:96:24:fc:31: d0:e8:d7:20:b1:f9:82:11:e4:bf:44:81:cf:43:c2:3c:17:5f: 02:70:6f:fa:96:65:d0:ad:dd:a1:5b:14:c9:a6:e3:ed:45:38: de:5d:4f:37:1f:53:d4:02:07:05:38:23:e2:8c:3b:66:e5:93: 9c:17:11:e4:44:c6:1f:40:85:92:24:81:4e:98:0d:8d:08:83: 92:7c:e1:c4:13:a6:bf:04:d0:8a:06:b0:49:dd:24:51:82:7c: 1b:a8:a1:28:8c:17:08:c4:5b:df:21:9b:df:e1:26:4e:04:d9: cd:6b:6d:5b:e4:99:e5:31:b0:4d:d3:79:cf:0f:84:63:0d:a8: ac:a4:6d:ff:f9:d6:68:31:d1:6d:b6:05:86:77:74:c2:d1:45: 23:d0:cf:51:96:09:4e:65:d9:b7:38:ab:2f:15:d7:06:20:a4: a3:45:45:9a:33:bf:7e:6f:36:6a:9b:6a:05:78:a1:a7:ac:1d: 03:4a:2a:db:d8:1b:f6:d2:c5:a8:3f:c8:d8:ac:c8:00:28:cf: 2a:78:43:c1:03:98:34:4d:09:92:a1:5f:78:2c:8c:2b:0e:8d: 5c:7a:24:94:06:1e:4e:63:9d:90:23:71:ad:bc:38:73:b6:e0: b9:e2:ac:ff -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUCq504KRrGHIyZ1DZeyI41ID3AgMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMjA1NTU1N1oX DTI1MDcwMTA2MDA1N1owMzExMC8GA1UEAxMoMUE4N0I0RDNEREE3Rjg1Mzc0MTRB QjAxMTYxOEM3RUZEMjk3QzlCMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOe1u7AGQTrD5MyDfM3s1lj3Zlw008/s1WPUgiZFhlIWoj5F3jrauIcLzluC 80XQT7eUiI38nkNfCG7BxofLzVwmWZvq8ocI7+qCU65PjCETCYSJt4D0eTNyakPL eNGTYDdnIiMrYFEVzLrX9rXAJQxeOrDW7sTaxd8gj566dMRTFKhXUeGGubpooBtT pTKjyf5ZVtbxpTBgohfGf4OIxEDTcC88W6Im1fNTk9tBWwCluRRsumgvMjvd+Meu YG1YV2+xSLzn9MBeGpoI8hm82OwQWlIqxgrw9fzIkFh6LfJKQXrVW725qDmDA6c3 ZaK5+KOAUOakoSWQNHLhA5MSlUUCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQah7TT 3af4U3QUqwEWGMfv0pfJsjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTkxNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfP6wDANBgkqhkiG9w0BAQsFAAOCAQEAaV7XO+e3JxPMREO1 ZHyWJPwx0OjXILH5ghHkv0SBz0PCPBdfAnBv+pZl0K3doVsUyabj7UU43l1PNx9T 1AIHBTgj4ow7ZuWTnBcR5ETGH0CFkiSBTpgNjQiDknzhxBOmvwTQigawSd0kUYJ8 G6ihKIwXCMRb3yGb3+EmTgTZzWttW+SZ5TGwTdN5zw+EYw2orKRt//nWaDHRbbYF hnd0wtFFI9DPUZYJTmXZtzirLxXXBiCko0VFmjO/fm82aptqBXihp6wdA0oq29gb 9tLFqD/I2KzIACjPKnhDwQOYNE0JkqFfeCyMKw6NXHoklAYeTmOdkCNxrbw4c7bg ueKs/w== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:26 2024 by rpki-client on console-fra.rpki-client.org