$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149920.roa File: AS149920.roa (raw, json) Hash identifier: wCBbXPG4lda579BfznyKUmVveb7qEaWvWtzgNZYw56g= Subject key identifier: 9A:13:21:0B:0D:65:A2:F7:3E:80:42:A9:57:37:47:6C:4F:53:B9:01 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 53370DFCDBA3CD71887BC70FA4463878131BA72A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149920.roa Signing time: Fri 21 Jul 2023 06:43:29 +0000 ROA not before: Fri 21 Jul 2023 06:38:29 +0000 ROA not after: Fri 19 Jul 2024 06:43:29 +0000 asID: 149920 IP address blocks: 103.161.1.0/24 maxlen: 24 2001:df1:3940::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:34:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:37:0d:fc:db:a3:cd:71:88:7b:c7:0f:a4:46:38:78:13:1b:a7:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 21 06:38:29 2023 GMT Not After : Jul 19 06:43:29 2024 GMT Subject: CN=9A13210B0D65A2F73E8042A95737476C4F53B901 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:06:44:22:43:d1:f9:4b:c4:59:98:b6:e6:e5: a4:38:f7:3e:13:ad:33:fb:8a:5e:8e:07:4c:d7:fb: ea:ce:b0:1f:39:de:0b:50:1d:b5:99:2e:23:68:4e: cb:d1:4c:98:08:74:50:30:57:27:18:f0:56:bc:00: a7:5b:a3:f9:90:a9:ad:d8:55:d8:a2:49:d0:e2:83: 3a:ea:b5:53:0a:43:cc:bf:3d:fe:c7:c4:6c:73:30: d7:df:5e:04:ef:14:98:ed:b7:aa:20:9a:27:fd:28: f5:a5:58:9f:07:3a:7d:55:76:06:a9:0e:40:e2:d1: c6:cb:f3:72:6a:f2:e2:a8:ef:76:02:73:98:83:52: b1:a0:dc:1a:58:0f:f3:e6:4e:27:0d:95:48:50:8b: 86:6b:00:fd:44:63:8e:d2:9f:01:dc:ab:81:6e:72: 42:2c:df:2d:8a:be:af:1e:ee:ea:be:1e:77:63:be: 00:89:64:2f:84:9f:94:70:87:c4:22:71:7d:3d:1c: 36:8e:27:54:d6:39:84:7e:c5:8c:4c:3d:00:aa:24: 1f:f8:f4:ed:0a:63:47:b2:8c:18:0a:62:c8:05:a1: 2e:f4:96:10:ea:86:1d:b0:00:3a:5b:46:e9:13:72: eb:ca:40:79:01:0f:7b:77:f0:3c:04:29:8e:a4:0b: 44:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:13:21:0B:0D:65:A2:F7:3E:80:42:A9:57:37:47:6C:4F:53:B9:01 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149920.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.1.0/24 IPv6: 2001:df1:3940::/48 Signature Algorithm: sha256WithRSAEncryption 0d:22:ed:20:95:9e:80:1e:65:4e:66:5b:d6:d6:42:b2:45:01: 2b:0f:51:ec:23:cc:7d:fa:5e:16:ff:66:74:73:6a:19:98:b8: b5:6c:53:fc:69:76:f6:4a:23:7c:fb:63:b8:08:f4:eb:fb:d6: 7d:ea:a4:b1:45:e8:31:43:87:5f:82:cc:ea:16:59:d9:7a:72: 28:bf:2b:d2:5a:ec:a8:e3:25:aa:9e:12:c8:fa:2b:80:52:df: 5f:4a:0b:68:5d:bf:a2:11:a9:39:02:1a:2e:f0:e7:ee:bf:25: 68:b7:b1:c7:e5:dc:63:32:9f:a1:5f:0c:e3:2a:da:6b:8d:42: f5:4a:ae:fa:0d:4d:01:bc:91:5e:e0:46:cd:b0:c3:ff:b1:a9: 56:39:86:94:e2:ea:2a:df:cf:fa:f9:bc:7f:9d:11:44:34:7e: 9a:1f:7a:47:20:9c:85:b9:77:02:fa:9e:fa:0e:69:c6:f6:0b: ee:a4:91:c3:a4:79:49:92:25:22:63:d3:e6:bd:62:92:26:3f: 53:2a:25:f6:ba:65:c7:17:54:ca:7b:15:18:c1:c5:22:6f:9a: 49:ad:79:38:aa:c4:61:41:40:a4:08:53:a8:f7:dd:00:e5:12: 9c:cd:e6:3f:43:04:4b:7c:ae:1d:00:a5:b5:73:26:e5:83:a5: a8:e2:c1:34 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUUzcN/NujzXGIe8cPpEY4eBMbpyowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcyMTA2MzgyOVoX DTI0MDcxOTA2NDMyOVowMzExMC8GA1UEAxMoOUExMzIxMEIwRDY1QTJGNzNFODA0 MkE5NTczNzQ3NkM0RjUzQjkwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANMGRCJD0flLxFmYtublpDj3PhOtM/uKXo4HTNf76s6wHzneC1AdtZkuI2hO y9FMmAh0UDBXJxjwVrwAp1uj+ZCprdhV2KJJ0OKDOuq1UwpDzL89/sfEbHMw199e BO8UmO23qiCaJ/0o9aVYnwc6fVV2BqkOQOLRxsvzcmry4qjvdgJzmINSsaDcGlgP 8+ZOJw2VSFCLhmsA/URjjtKfAdyrgW5yQizfLYq+rx7u6r4ed2O+AIlkL4SflHCH xCJxfT0cNo4nVNY5hH7FjEw9AKokH/j07QpjR7KMGApiyAWhLvSWEOqGHbAAOltG 6RNy68pAeQEPe3fwPAQpjqQLRAsCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBSaEyEL DWWi9z6AQqlXN0dsT1O5ATAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTkyMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGehATAPBAIAAjAJAwcAIAEN8TlAMA0GCSqGSIb3DQEBCwUAA4IB AQANIu0glZ6AHmVOZlvW1kKyRQErD1HsI8x9+l4W/2Z0c2oZmLi1bFP8aXb2SiN8 +2O4CPTr+9Z96qSxRegxQ4dfgszqFlnZenIovyvSWuyo4yWqnhLI+iuAUt9fSgto Xb+iEak5Ahou8OfuvyVot7HH5dxjMp+hXwzjKtprjUL1Sq76DU0BvJFe4EbNsMP/ salWOYaU4uoq38/6+bx/nRFENH6aH3pHIJyFuXcC+p76DmnG9gvupJHDpHlJkiUi Y9PmvWKSJj9TKiX2umXHF1TKexUYwcUib5pJrXk4qsRhQUCkCFOo990A5RKczeY/ QwRLfK4dAKW1cyblg6Wo4sE0 -----END CERTIFICATE-----Generated at Wed May 8 07:45:28 2024 by rpki-client on console-ams.rpki-client.org