$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149925.roa File: AS149925.roa (raw, json) Hash identifier: dzxwWVpWxdmTB4lFfOKNjvL8fCEU8cYCI6ssZWylkZg= Subject key identifier: EA:AC:65:04:D5:6F:FB:7A:45:15:20:84:7D:9B:7B:57:AA:3A:D2:69 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 474543263E705DC0F616C158DDF9B7D851A5612B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149925.roa Signing time: Wed 24 Apr 2024 07:00:00 +0000 ROA not before: Wed 24 Apr 2024 06:55:00 +0000 ROA not after: Wed 23 Apr 2025 07:00:00 +0000 asID: 149925 IP address blocks: 103.115.20.0/24 maxlen: 24 2001:df2:7a40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:45:43:26:3e:70:5d:c0:f6:16:c1:58:dd:f9:b7:d8:51:a5:61:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 24 06:55:00 2024 GMT Not After : Apr 23 07:00:00 2025 GMT Subject: CN=EAAC6504D56FFB7A451520847D9B7B57AA3AD269 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e6:d6:0b:0b:bb:8a:22:35:cd:09:d9:ef:35: 10:f0:7c:3d:84:fb:2b:50:2d:5f:a3:5a:1e:c5:d9: 01:fd:6c:ea:0f:a2:1e:f3:40:94:a1:e1:35:1a:e1: 7d:51:3e:d3:f0:15:fb:77:9b:af:3f:90:47:5b:86: 7c:8d:b6:9a:8d:47:f6:03:73:02:68:0f:66:2d:11: 31:23:ca:4f:20:97:8e:00:f7:8e:1a:0d:9f:62:9f: bb:46:fb:d3:42:63:5d:a0:bd:fc:17:9a:19:fe:14: 64:c4:2f:50:a6:2a:b9:c1:92:09:fe:86:23:da:cc: 73:1f:99:15:50:e6:d9:8b:27:43:36:af:b5:da:44: 4c:dc:b1:7f:b8:92:98:0e:01:af:77:46:ed:65:df: 2e:60:18:ae:27:5f:44:2b:ec:43:0e:0a:90:df:10: eb:ab:98:c9:cb:c2:94:44:af:2f:23:14:7d:dc:df: 72:07:89:ee:59:94:38:a4:32:64:8d:3c:cd:5d:82: 65:9c:7f:05:8d:d2:62:99:26:63:2d:05:8f:45:0e: f4:7a:e7:4a:f8:3a:01:a6:42:51:f3:16:1b:f4:68: d4:71:73:12:5f:91:43:b0:50:da:bb:57:1b:5f:26: 54:55:37:70:5a:3b:c4:68:ba:a4:be:bd:8f:5e:c7: 7f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:AC:65:04:D5:6F:FB:7A:45:15:20:84:7D:9B:7B:57:AA:3A:D2:69 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149925.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.115.20.0/24 IPv6: 2001:df2:7a40::/48 Signature Algorithm: sha256WithRSAEncryption 91:37:7d:70:c0:ce:9e:03:2f:70:12:d9:62:85:1b:dd:e3:a3: 5e:4d:2a:73:19:1a:be:f5:86:97:af:ca:09:8a:a2:8d:28:10: 0d:47:5e:c7:25:4b:c8:d7:3d:fb:88:a6:77:7f:79:a9:c2:d7: d0:ca:36:fb:58:29:e7:92:bb:15:2e:e3:bc:b0:37:02:dd:90: 3c:84:d6:04:57:8b:05:bf:1c:14:7b:3a:c7:9e:69:dd:1b:56: 3f:ed:a7:76:ea:50:82:d4:f1:1d:f2:be:02:a5:b3:9c:ca:dd: 1c:49:b9:ae:66:02:cb:7f:49:c9:19:3f:e3:b9:e6:7c:45:3c: d2:3e:aa:c8:84:ec:3b:3b:9a:64:4e:0c:59:87:c3:40:e9:56: c8:4b:15:42:ce:72:b4:c6:5d:b2:22:45:79:3a:6e:7a:86:dd: 55:96:06:88:d8:c4:88:39:d9:7c:8e:92:cd:e3:69:ad:e9:86: 13:ae:4b:18:15:e9:b6:a3:1b:ff:3e:33:df:91:18:b3:c7:2d: 17:32:14:67:ae:c8:31:90:dd:0d:5a:4a:a6:a5:31:d8:4d:d2: 64:c4:a5:90:1c:46:ed:86:ab:9e:12:cf:b9:2b:85:fa:e8:88: 69:6a:ef:c3:d4:37:a4:22:70:00:3b:35:79:2a:c5:ac:13:8f: 3d:46:71:be -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUR0VDJj5wXcD2FsFY3fm32FGlYSswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQyNDA2NTUwMFoX DTI1MDQyMzA3MDAwMFowMzExMC8GA1UEAxMoRUFBQzY1MDRENTZGRkI3QTQ1MTUy MDg0N0Q5QjdCNTdBQTNBRDI2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALvm1gsLu4oiNc0J2e81EPB8PYT7K1AtX6NaHsXZAf1s6g+iHvNAlKHhNRrh fVE+0/AV+3ebrz+QR1uGfI22mo1H9gNzAmgPZi0RMSPKTyCXjgD3jhoNn2Kfu0b7 00JjXaC9/BeaGf4UZMQvUKYqucGSCf6GI9rMcx+ZFVDm2YsnQzavtdpETNyxf7iS mA4Br3dG7WXfLmAYridfRCvsQw4KkN8Q66uYycvClESvLyMUfdzfcgeJ7lmUOKQy ZI08zV2CZZx/BY3SYpkmYy0Fj0UO9HrnSvg6AaZCUfMWG/Ro1HFzEl+RQ7BQ2rtX G18mVFU3cFo7xGi6pL69j17Hf4cCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBTqrGUE 1W/7ekUVIIR9m3tXqjrSaTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTkyNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGdzFDAPBAIAAjAJAwcAIAEN8npAMA0GCSqGSIb3DQEBCwUAA4IB AQCRN31wwM6eAy9wEtlihRvd46NeTSpzGRq+9YaXr8oJiqKNKBANR17HJUvI1z37 iKZ3f3mpwtfQyjb7WCnnkrsVLuO8sDcC3ZA8hNYEV4sFvxwUezrHnmndG1Y/7ad2 6lCC1PEd8r4CpbOcyt0cSbmuZgLLf0nJGT/jueZ8RTzSPqrIhOw7O5pkTgxZh8NA 6VbISxVCznK0xl2yIkV5Om56ht1VlgaI2MSIOdl8jpLN42mt6YYTrksYFem2oxv/ PjPfkRizxy0XMhRnrsgxkN0NWkqmpTHYTdJkxKWQHEbthqueEs+5K4X66Ihpau/D 1DekInAAOzV5KsWsE489RnG+ -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:26 2024 by rpki-client on console-fra.rpki-client.org