$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149930.roa File: AS149930.roa (raw, json) Hash identifier: 9JuwAjQJVpvyjT9ozQXaWoOpmdpY4IvlQ21w3EW2KWU= Subject key identifier: F5:82:A9:FC:36:3B:67:6D:5C:2C:DF:31:0D:10:33:CC:24:44:65:1C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7ADF357475A5D866E87197AE7C0BF42A1A97F187 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149930.roa Signing time: Mon 10 Jun 2024 07:00:00 +0000 ROA not before: Mon 10 Jun 2024 06:55:00 +0000 ROA not after: Mon 09 Jun 2025 07:00:00 +0000 asID: 149930 IP address blocks: 2001:df2:a940::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:df:35:74:75:a5:d8:66:e8:71:97:ae:7c:0b:f4:2a:1a:97:f1:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 10 06:55:00 2024 GMT Not After : Jun 9 07:00:00 2025 GMT Subject: CN=F582A9FC363B676D5C2CDF310D1033CC2444651C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:40:ad:ef:99:4b:ca:f5:ea:ec:9f:67:53:b4: 78:fd:4e:f4:20:8f:48:31:ba:33:4b:03:b1:c8:4c: 3e:7c:cb:34:e2:e9:1c:8a:6a:31:9c:e0:94:a2:ed: 24:cd:d4:0c:97:20:6c:c0:64:dd:7e:2f:71:4a:c7: 1d:cf:33:dd:bf:ad:06:b9:b6:d6:6a:fd:05:fe:21: 20:d5:7b:8b:59:3b:58:46:45:8b:cf:14:55:38:27: e1:21:8b:db:73:e9:cf:97:c2:18:ff:b9:2a:49:4a: b1:36:27:00:1e:24:8e:29:53:d3:a6:3e:bb:7d:55: a1:31:92:79:88:14:36:e2:c8:a9:5a:34:90:09:36: 18:2e:90:e1:eb:af:7b:db:3a:88:96:55:bf:37:d0: 45:71:f4:2b:da:8b:61:73:1a:48:93:c6:d8:22:ae: 76:e1:00:a9:f2:11:2a:5d:e7:76:cc:76:aa:d1:61: 82:03:f5:aa:b7:79:65:1d:7d:63:71:d8:a5:63:32: 68:18:20:55:90:be:3e:41:61:1f:38:f2:ac:86:49: 9b:c3:33:da:ec:be:b3:49:ae:33:09:19:73:13:7b: 31:c3:64:dd:fe:c0:03:5f:5c:f7:16:d0:4b:72:a3: b6:3a:c3:4e:39:93:2b:66:5a:bc:13:5e:71:d8:20: fd:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:82:A9:FC:36:3B:67:6D:5C:2C:DF:31:0D:10:33:CC:24:44:65:1C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:a940::/48 Signature Algorithm: sha256WithRSAEncryption 64:45:67:9a:64:d2:91:13:4b:f1:d1:c6:26:74:03:2b:61:0b: d3:27:a6:fc:fd:db:ba:b2:49:b1:d5:c5:1c:e2:9d:fd:9f:cc: 13:e1:c1:cc:74:c5:3c:3b:0e:54:66:21:8d:54:ab:c2:4b:73: be:27:99:26:69:49:89:57:2f:35:8e:0f:5a:d3:35:f8:d9:1e: 6f:c8:7c:ef:19:b6:9d:cf:e6:35:8d:29:31:46:f2:ef:c7:55: 48:a0:ed:a2:50:8f:86:ca:94:17:d9:27:19:ea:05:5d:cb:f4: c1:ab:02:b5:08:b8:e5:73:d4:0d:22:be:61:83:c8:8c:e0:0b: 1e:bc:fa:37:37:ed:29:2c:d6:79:39:27:8d:8b:6e:6c:e6:64: 9c:ee:55:48:e9:96:87:75:27:e8:5b:9b:a1:89:1c:b6:9c:be: 42:68:d0:1a:27:1d:50:cf:c7:4b:10:ce:8b:6f:38:21:09:c9: 36:8c:3f:ae:a1:27:0e:94:a7:d4:59:e9:ca:b1:86:9f:fb:6d: 45:2b:65:c1:20:ed:74:91:54:c2:ea:f1:08:a9:be:11:c1:75: d9:df:17:e4:86:4f:41:6d:c5:e4:e3:af:87:c4:e6:17:ba:97: be:f6:60:f5:2e:92:24:6d:81:62:67:1f:76:2a:c5:02:9a:66: ad:54:f9:e7 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUet81dHWl2GbocZeufAv0KhqX8YcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYxMDA2NTUwMFoX DTI1MDYwOTA3MDAwMFowMzExMC8GA1UEAxMoRjU4MkE5RkMzNjNCNjc2RDVDMkNE RjMxMEQxMDMzQ0MyNDQ0NjUxQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANxAre+ZS8r16uyfZ1O0eP1O9CCPSDG6M0sDschMPnzLNOLpHIpqMZzglKLt JM3UDJcgbMBk3X4vcUrHHc8z3b+tBrm21mr9Bf4hINV7i1k7WEZFi88UVTgn4SGL 23Ppz5fCGP+5KklKsTYnAB4kjilT06Y+u31VoTGSeYgUNuLIqVo0kAk2GC6Q4euv e9s6iJZVvzfQRXH0K9qLYXMaSJPG2CKuduEAqfIRKl3ndsx2qtFhggP1qrd5ZR19 Y3HYpWMyaBggVZC+PkFhHzjyrIZJm8Mz2uy+s0muMwkZcxN7McNk3f7AA19c9xbQ S3KjtjrDTjmTK2ZavBNecdgg/fUCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBT1gqn8 NjtnbVws3zENEDPMJERlHDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTkzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfKpQDANBgkqhkiG9w0BAQsFAAOCAQEAZEVnmmTSkRNL8dHG JnQDK2EL0yem/P3burJJsdXFHOKd/Z/ME+HBzHTFPDsOVGYhjVSrwktzvieZJmlJ iVcvNY4PWtM1+Nkeb8h87xm2nc/mNY0pMUby78dVSKDtolCPhsqUF9knGeoFXcv0 wasCtQi45XPUDSK+YYPIjOALHrz6NzftKSzWeTknjYtubOZknO5VSOmWh3Un6Fub oYkctpy+QmjQGicdUM/HSxDOi284IQnJNow/rqEnDpSn1FnpyrGGn/ttRStlwSDt dJFUwurxCKm+EcF12d8X5IZPQW3F5OOvh8TmF7qXvvZg9S6SJG2BYmcfdirFAppm rVT55w== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:26 2024 by rpki-client on console-fra.rpki-client.org