$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149915.roa File: AS149915.roa (raw, json) Hash identifier: OBcAVqJv4VmIgXCEii+3GPVAws3KmVtZimiFLl1FmG0= Subject key identifier: 92:99:A7:CE:DD:26:AC:98:73:F0:60:90:BB:A3:38:EE:B8:1C:44:FD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 77837FCFF7443967B1397E82B3ABB000DB51D91D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149915.roa Signing time: Tue 03 Jun 2025 07:00:06 +0000 ROA not before: Tue 03 Jun 2025 06:55:06 +0000 ROA not after: Tue 02 Jun 2026 07:00:06 +0000 asID: 149915 IP address blocks: 2001:df3:fac0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:83:7f:cf:f7:44:39:67:b1:39:7e:82:b3:ab:b0:00:db:51:d9:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 3 06:55:06 2025 GMT Not After : Jun 2 07:00:06 2026 GMT Subject: CN=9299A7CEDD26AC9873F06090BBA338EEB81C44FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:cb:8f:67:21:d8:33:2a:ee:ca:2b:ea:d7:c0: 6b:00:3d:f4:2c:c4:40:bb:c8:4c:31:fd:14:12:6c: 55:f2:ec:b0:b9:74:50:27:f2:d4:76:6c:aa:58:61: 91:c5:8d:77:4d:86:8b:9f:b5:6f:aa:3f:f8:4c:4f: db:56:aa:ae:8b:85:60:0c:e3:02:95:4e:48:bb:63: d0:72:a6:63:ff:ae:46:72:35:a8:16:f8:30:de:bd: de:49:93:8e:dc:c1:fb:40:c9:62:7b:bc:70:a3:3a: 71:f6:c0:1f:db:b6:1f:da:d9:02:59:bf:57:1e:63: b7:53:a9:34:f2:38:35:5d:78:13:93:43:29:c0:f8: 32:a2:ba:5e:c7:d8:6a:25:84:c3:b4:48:92:c0:af: b6:99:fe:fd:53:37:14:9e:09:43:70:c8:8e:49:4a: c4:c8:b7:4f:fd:59:89:2f:3a:2b:a4:61:eb:20:db: 40:08:9c:80:d2:54:d9:50:16:88:7e:fd:a8:a4:4c: 33:eb:b6:51:7a:06:4a:82:08:51:d6:ab:52:75:75: 33:83:78:76:30:ad:78:45:3c:c4:05:80:d3:24:16: c6:c1:01:14:07:43:f7:19:88:1b:9a:7f:40:6c:cd: 32:ec:dd:46:77:3e:ff:9b:86:d0:52:c6:57:eb:4b: 2a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:99:A7:CE:DD:26:AC:98:73:F0:60:90:BB:A3:38:EE:B8:1C:44:FD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149915.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:fac0::/48 Signature Algorithm: sha256WithRSAEncryption 53:54:ba:67:25:27:bb:3c:58:bd:ca:27:8a:a5:56:17:d3:4d: a9:14:ce:29:8a:5e:0c:3a:98:97:e7:b8:9a:ed:e0:b2:22:5e: c6:91:62:c7:e8:fa:97:87:dd:7e:f4:c3:3f:8b:9d:e7:de:ee: 31:1a:b3:03:b8:2f:dc:62:7d:09:81:88:57:5a:72:5e:ba:b6: 47:ce:51:33:cf:56:5a:19:13:d3:d7:0b:22:6c:22:d8:74:c6: 8a:83:92:b5:64:17:2a:90:e8:27:f3:a2:8e:e3:f1:ef:11:80: 97:d2:fd:8f:6e:e5:74:c1:1d:13:2c:da:7e:9c:0a:fc:87:d1: cd:3e:4c:82:97:8c:9d:4f:86:24:fe:b8:7b:38:f0:c9:77:14: 8b:b0:b4:81:42:27:8a:fb:2f:2e:93:b3:e5:8e:ee:f8:a1:ab: 96:57:5f:50:2b:68:1d:85:96:3e:08:a9:92:4e:b8:f8:df:8d: 17:e5:69:4c:62:ba:15:54:cd:c9:34:f2:1d:82:fc:60:8b:c0: 4d:06:31:9a:6d:79:13:d0:5f:1f:14:db:40:71:20:e4:da:77: d0:43:54:9c:c2:e5:9a:d3:a1:5c:53:d7:bb:97:ff:2b:33:1a: 19:a0:76:86:47:e8:b0:8e:6d:5a:d0:6f:60:e7:99:ca:5f:a1: 2a:45:3f:46 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUd4N/z/dEOWexOX6Cs6uwANtR2R0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwMzA2NTUwNloX DTI2MDYwMjA3MDAwNlowMzExMC8GA1UEAxMoOTI5OUE3Q0VERDI2QUM5ODczRjA2 MDkwQkJBMzM4RUVCODFDNDRGRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANLLj2ch2DMq7sor6tfAawA99CzEQLvITDH9FBJsVfLssLl0UCfy1HZsqlhh kcWNd02Gi5+1b6o/+ExP21aqrouFYAzjApVOSLtj0HKmY/+uRnI1qBb4MN693kmT jtzB+0DJYnu8cKM6cfbAH9u2H9rZAlm/Vx5jt1OpNPI4NV14E5NDKcD4MqK6XsfY aiWEw7RIksCvtpn+/VM3FJ4JQ3DIjklKxMi3T/1ZiS86K6Rh6yDbQAicgNJU2VAW iH79qKRMM+u2UXoGSoIIUdarUnV1M4N4djCteEU8xAWA0yQWxsEBFAdD9xmIG5p/ QGzNMuzdRnc+/5uG0FLGV+tLKnECAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSSmafO 3SasmHPwYJC7ozjuuBxE/TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTkxNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfP6wDANBgkqhkiG9w0BAQsFAAOCAQEAU1S6ZyUnuzxYvcon iqVWF9NNqRTOKYpeDDqYl+e4mu3gsiJexpFix+j6l4fdfvTDP4ud597uMRqzA7gv 3GJ9CYGIV1pyXrq2R85RM89WWhkT09cLImwi2HTGioOStWQXKpDoJ/OijuPx7xGA l9L9j27ldMEdEyzafpwK/IfRzT5MgpeMnU+GJP64ezjwyXcUi7C0gUInivsvLpOz 5Y7u+KGrlldfUCtoHYWWPgipkk64+N+NF+VpTGK6FVTNyTTyHYL8YIvATQYxmm15 E9BfHxTbQHEg5Np30ENUnMLlmtOhXFPXu5f/KzMaGaB2hkfosI5tWtBvYOeZyl+h KkU/Rg== -----END CERTIFICATE-----Generated at Tue Jun 3 23:11:11 2025 by rpki-client