$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149931.roa File: AS149931.roa (raw, json) Hash identifier: llNG8mMqvxliMP2h9oMKt/hFRbywUjsQ6NSM0+rHlwY= Subject key identifier: EC:95:F5:70:82:6C:04:D2:21:1F:B1:A2:81:C6:ED:BB:0F:B9:1E:02 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 29DF81B853C969793BA8DB3F634518DF5D744AF3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149931.roa Signing time: Wed 27 Nov 2024 10:00:00 +0000 ROA not before: Wed 27 Nov 2024 09:55:00 +0000 ROA not after: Wed 26 Nov 2025 10:00:00 +0000 asID: 149931 IP address blocks: 103.4.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:df:81:b8:53:c9:69:79:3b:a8:db:3f:63:45:18:df:5d:74:4a:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Nov 27 09:55:00 2024 GMT Not After : Nov 26 10:00:00 2025 GMT Subject: CN=EC95F570826C04D2211FB1A281C6EDBB0FB91E02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:4f:d3:15:84:c5:ad:25:c5:c2:18:38:1f:50: 38:d4:a3:c2:0c:9c:4c:b1:c8:17:f5:38:09:9a:97: 47:c0:2e:a9:fb:75:20:2a:6a:95:ab:2b:61:79:6e: 31:01:34:d9:5e:a7:d6:23:f2:20:f9:5d:3b:3e:b7: b1:b8:c4:fc:77:9a:5c:cb:82:35:d7:fb:b4:a2:e5: 20:e8:25:69:72:15:b1:32:4a:40:92:e0:c0:8a:fe: 5e:43:ac:fd:7d:e3:58:39:84:b4:d7:b3:ad:1e:74: fe:52:50:75:d2:59:2e:49:91:fa:e9:71:8f:94:15: 45:10:05:77:99:7d:7f:dc:b1:70:4a:e1:33:d0:81: 72:96:ed:de:9e:f8:08:6e:65:66:2b:d0:69:82:bd: 42:08:71:6a:fd:a4:a1:e6:5b:41:ca:e3:b2:c8:a7: 5a:23:60:eb:93:ed:fe:d2:b0:dc:0e:e2:d9:d4:ad: d8:5d:b1:59:14:f4:47:c4:98:ef:05:a8:47:6f:07: 45:ff:5c:24:2a:f4:67:8d:8c:33:05:46:26:b3:5f: 55:12:d4:e6:98:a7:c3:8a:b4:0f:9c:fe:36:9d:8f: 4a:fd:10:10:fc:8f:6d:3b:6d:b9:92:17:43:02:62: da:45:6c:f4:5f:9a:2e:19:9b:26:c4:d2:26:c2:19: ac:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:95:F5:70:82:6C:04:D2:21:1F:B1:A2:81:C6:ED:BB:0F:B9:1E:02 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.4.134.0/23 Signature Algorithm: sha256WithRSAEncryption 40:f5:7a:73:08:ae:dd:0e:42:a1:f9:2f:6c:29:aa:95:4f:02: 82:99:b4:01:b3:67:1f:60:a8:37:18:98:84:ae:26:20:c3:7b: cb:29:75:ee:72:4a:3a:58:32:25:28:87:f7:2f:11:90:64:17: c7:15:ff:58:04:cf:c3:20:61:81:99:dd:92:13:ed:e5:74:10: 20:bc:5e:f6:ff:b2:8c:fd:75:c7:ce:b9:5a:43:14:da:7b:db: da:97:98:09:f2:23:f9:6f:03:6c:57:a4:8d:c2:d2:01:99:8d: 48:9f:fd:46:96:68:0d:97:d1:38:28:d8:50:16:6a:18:c2:cb: 34:3b:da:04:55:53:f7:9e:c8:bd:51:5b:a1:52:10:fa:04:dd: 0a:49:1b:20:09:76:28:22:35:f7:70:c3:21:89:c3:58:49:8e: 5f:18:6c:e8:90:ad:cd:92:e7:f3:33:32:da:02:e5:da:5d:35: 5c:eb:d5:e0:8e:83:02:75:a9:4d:3e:23:95:94:bf:9d:c9:23: 21:ae:12:0b:4f:89:a6:99:01:32:84:71:d6:bd:c0:ba:2e:a8: 99:72:dd:46:b4:be:17:15:74:d0:7e:ff:fd:c6:af:62:29:50: 56:10:73:18:4f:cb:40:38:48:6d:62:a8:55:c2:96:7a:3a:18: eb:87:96:82 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUKd+BuFPJaXk7qNs/Y0UY3110SvMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEyNzA5NTUwMFoX DTI1MTEyNjEwMDAwMFowMzExMC8GA1UEAxMoRUM5NUY1NzA4MjZDMDREMjIxMUZC MUEyODFDNkVEQkIwRkI5MUUwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAP5P0xWExa0lxcIYOB9QONSjwgycTLHIF/U4CZqXR8Auqft1ICpqlasrYXlu MQE02V6n1iPyIPldOz63sbjE/HeaXMuCNdf7tKLlIOglaXIVsTJKQJLgwIr+XkOs /X3jWDmEtNezrR50/lJQddJZLkmR+ulxj5QVRRAFd5l9f9yxcErhM9CBcpbt3p74 CG5lZivQaYK9Qghxav2koeZbQcrjssinWiNg65Pt/tKw3A7i2dSt2F2xWRT0R8SY 7wWoR28HRf9cJCr0Z42MMwVGJrNfVRLU5pinw4q0D5z+Np2PSv0QEPyPbTttuZIX QwJi2kVs9F+aLhmbJsTSJsIZrCcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTslfVw gmwE0iEfsaKBxu27D7keAjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTkzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWcEhjANBgkqhkiG9w0BAQsFAAOCAQEAQPV6cwiu3Q5CofkvbCmq lU8Cgpm0AbNnH2CoNxiYhK4mIMN7yyl17nJKOlgyJSiH9y8RkGQXxxX/WATPwyBh gZndkhPt5XQQILxe9v+yjP11x865WkMU2nvb2peYCfIj+W8DbFekjcLSAZmNSJ/9 RpZoDZfROCjYUBZqGMLLNDvaBFVT957IvVFboVIQ+gTdCkkbIAl2KCI193DDIYnD WEmOXxhs6JCtzZLn8zMy2gLl2l01XOvV4I6DAnWpTT4jlZS/nckjIa4SC0+JppkB MoRx1r3Aui6omXLdRrS+FxV00H7//cavYilQVhBzGE/LQDhIbWKoVcKWejoY64eW gg== -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:49 2025 by rpki-client