$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149930.roa File: AS149930.roa (raw, json) Hash identifier: CH2iWWaEw1YDnmkApXH1Sz76BvDxNrZHi1fkN0XvcCY= Subject key identifier: CE:E9:1D:C6:57:07:11:B6:D1:C0:4A:D3:15:E1:A2:43:FC:39:3B:3B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1C25305E49B557EF6BF2D07BBD672177A6D43846 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149930.roa Signing time: Mon 10 Jul 2023 06:09:13 +0000 ROA not before: Mon 10 Jul 2023 06:04:13 +0000 ROA not after: Mon 08 Jul 2024 06:09:13 +0000 asID: 149930 IP address blocks: 2001:df2:a940::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:25:30:5e:49:b5:57:ef:6b:f2:d0:7b:bd:67:21:77:a6:d4:38:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 10 06:04:13 2023 GMT Not After : Jul 8 06:09:13 2024 GMT Subject: CN=CEE91DC6570711B6D1C04AD315E1A243FC393B3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ae:18:1f:d0:e6:ed:6b:8b:e8:59:b8:f0:d3: fe:44:5d:5a:12:b5:21:ad:cb:11:d4:7f:8d:c7:d2: fd:12:e5:da:fa:90:ad:1c:cd:7a:52:80:b8:4d:92: 6a:2e:0b:4f:39:3f:9f:0d:3d:4f:9f:5e:7d:16:56: 1c:d9:40:67:40:4d:ad:02:9e:cb:a4:98:86:1a:c2: 0d:0b:94:bf:57:94:f7:1b:4e:c0:4e:ad:12:73:12: b5:b9:90:51:2b:24:05:0d:32:c0:97:3b:86:5a:6c: fc:7d:51:32:e9:bb:58:82:f3:2c:ef:83:40:7d:58: b4:89:bb:5e:2f:84:fb:41:85:70:8e:be:47:f8:51: b8:16:55:fb:9b:c2:08:0b:0d:8b:37:57:b9:58:c4: 73:94:8f:44:6a:d4:c3:88:e2:26:17:d1:40:95:15: b4:3c:9e:d0:01:f2:4e:9b:47:1b:7d:65:5d:82:70: 85:09:fd:94:c7:8c:35:65:e8:7b:f4:42:0c:34:a2: 1a:0f:ac:71:b3:73:29:ac:91:2a:e5:15:15:b0:56: 1d:e2:56:f4:7e:85:2f:3c:d9:36:21:59:2f:65:c3: 4b:42:3d:3d:81:43:a2:2f:d9:b6:b5:15:62:0a:ee: 78:21:39:22:95:8e:ea:da:c3:54:1e:14:1a:8d:b4: ad:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E9:1D:C6:57:07:11:B6:D1:C0:4A:D3:15:E1:A2:43:FC:39:3B:3B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:a940::/48 Signature Algorithm: sha256WithRSAEncryption 4c:2b:ea:28:85:15:ec:28:84:fd:8e:c7:ca:6e:31:89:04:5e: 40:62:9f:15:a9:8d:3e:eb:2c:8e:2c:49:63:92:d4:5a:ce:b4: 64:63:f7:f2:d1:b7:aa:d8:24:b6:c2:ed:2a:29:a3:62:84:51: a8:35:3d:9c:c7:24:53:bf:da:c0:1a:13:27:72:54:ec:d2:82: f2:18:d9:38:d7:84:d9:2d:6d:3f:41:77:ce:8a:0e:a9:76:e4: 52:fd:19:ed:80:36:53:e4:9e:0d:a4:10:5d:83:a5:58:2f:7b: 83:59:ae:46:61:4b:e5:17:da:d9:5f:a0:8d:31:91:13:f4:c8: 3c:e9:df:17:81:20:0b:1a:87:f4:3d:62:10:df:0b:ea:21:a1: d4:79:34:56:c3:e1:4d:45:36:24:cc:ff:57:40:21:17:43:9f: ef:2a:ac:07:d4:bb:4a:44:1f:c2:78:81:7a:50:22:aa:b3:d5: 6f:66:be:01:30:89:03:1e:d1:a3:12:9b:5f:52:2c:64:49:74: 7a:37:4d:9c:c2:3b:88:ee:b1:7c:22:7f:e2:6e:52:38:88:7e: 59:c2:e1:52:b4:2f:29:9c:2e:9b:f0:9b:47:ec:10:32:e3:7c: db:fe:d5:d4:e8:ad:de:80:c7:72:36:b8:bd:b1:90:95:7c:7a: 13:b4:d2:73 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUHCUwXkm1V+9r8tB7vWchd6bUOEYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcxMDA2MDQxM1oX DTI0MDcwODA2MDkxM1owMzExMC8GA1UEAxMoQ0VFOTFEQzY1NzA3MTFCNkQxQzA0 QUQzMTVFMUEyNDNGQzM5M0IzQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOSuGB/Q5u1ri+hZuPDT/kRdWhK1Ia3LEdR/jcfS/RLl2vqQrRzNelKAuE2S ai4LTzk/nw09T59efRZWHNlAZ0BNrQKey6SYhhrCDQuUv1eU9xtOwE6tEnMStbmQ USskBQ0ywJc7hlps/H1RMum7WILzLO+DQH1YtIm7Xi+E+0GFcI6+R/hRuBZV+5vC CAsNizdXuVjEc5SPRGrUw4jiJhfRQJUVtDye0AHyTptHG31lXYJwhQn9lMeMNWXo e/RCDDSiGg+scbNzKayRKuUVFbBWHeJW9H6FLzzZNiFZL2XDS0I9PYFDoi/ZtrUV YgrueCE5IpWO6trDVB4UGo20rckCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTO6R3G VwcRttHAStMV4aJD/Dk7OzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTkzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfKpQDANBgkqhkiG9w0BAQsFAAOCAQEATCvqKIUV7CiE/Y7H ym4xiQReQGKfFamNPussjixJY5LUWs60ZGP38tG3qtgktsLtKimjYoRRqDU9nMck U7/awBoTJ3JU7NKC8hjZONeE2S1tP0F3zooOqXbkUv0Z7YA2U+SeDaQQXYOlWC97 g1muRmFL5Rfa2V+gjTGRE/TIPOnfF4EgCxqH9D1iEN8L6iGh1Hk0VsPhTUU2JMz/ V0AhF0Of7yqsB9S7SkQfwniBelAiqrPVb2a+ATCJAx7RoxKbX1IsZEl0ejdNnMI7 iO6xfCJ/4m5SOIh+WcLhUrQvKZwum/CbR+wQMuN82/7V1Oit3oDHcja4vbGQlXx6 E7TScw== -----END CERTIFICATE-----Generated at Wed May 8 15:17:44 2024 by rpki-client on console-fra.rpki-client.org