$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149940.roa File: AS149940.roa (raw, json) Hash identifier: XrvPBqSciL0iMQ13eauxyaurcqu4LDmsXW3/OJf2oRk= Subject key identifier: CB:D4:76:8A:39:38:DA:BF:87:E3:D4:58:0E:C2:30:17:E5:00:C0:F9 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 54823ADC99505EAA37AD243D779D2ADD532F8434 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149940.roa Signing time: Fri 08 Dec 2023 07:00:00 +0000 ROA not before: Fri 08 Dec 2023 06:55:00 +0000 ROA not after: Fri 06 Dec 2024 07:00:00 +0000 asID: 149940 IP address blocks: 103.191.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:82:3a:dc:99:50:5e:aa:37:ad:24:3d:77:9d:2a:dd:53:2f:84:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 8 06:55:00 2023 GMT Not After : Dec 6 07:00:00 2024 GMT Subject: CN=CBD4768A3938DABF87E3D4580EC23017E500C0F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:05:4a:cb:33:74:0b:39:8f:4c:77:02:89:e1: 9e:88:70:22:b7:b8:90:8d:16:e6:50:bd:e4:34:7b: 96:b3:3f:cd:dc:26:e6:74:aa:96:b0:ee:10:6a:23: e0:7b:02:99:1b:a4:b9:04:01:28:be:87:dd:a9:78: 4e:6d:bc:ff:80:05:5f:d5:bc:33:90:cf:73:0e:d6: 9b:01:9e:be:31:76:e5:fa:a1:c3:0c:ca:5b:89:82: c8:ab:2f:62:4e:65:03:08:9c:b9:66:2b:99:af:8e: 0b:f6:cd:39:3d:3a:c1:05:b7:0c:76:03:83:c8:5c: 01:30:98:38:c5:bb:2d:50:59:6c:6f:e4:a0:f8:cf: 89:92:de:7d:03:ae:1a:d7:7e:1e:16:77:a7:51:f3: 0e:cb:62:cc:95:a4:d1:7b:69:76:74:cd:38:07:60: eb:4b:00:07:df:68:4a:f2:ed:64:ce:dc:05:a8:7b: a8:05:c8:8c:ca:d2:f2:f7:69:76:ad:53:3b:55:60: 09:ff:82:88:57:bf:38:0b:b2:86:f6:38:13:f4:22: 57:5d:bb:c7:90:aa:db:72:da:8a:a1:cf:ba:ee:3a: 81:80:66:a6:11:c6:52:de:67:10:9b:40:90:a1:b6: 04:b9:ae:a7:4c:84:dc:bb:67:02:95:5c:4a:24:e8: a2:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:D4:76:8A:39:38:DA:BF:87:E3:D4:58:0E:C2:30:17:E5:00:C0:F9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149940.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.250.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:bc:e5:e0:a9:d4:82:ec:0b:0c:44:27:53:11:cd:a1:4e:16: 23:9d:c0:2a:40:63:17:4e:c3:24:96:93:b2:60:f2:05:12:87: ca:f9:1b:32:33:33:22:67:9b:e2:76:22:80:4c:3d:5e:8a:04: 65:8b:81:3a:95:d2:85:55:3d:db:65:be:12:e4:e5:fe:59:f9: 4f:f0:ce:68:c0:85:b7:a2:6a:23:62:43:d8:6e:e5:86:3a:74: b1:6b:82:90:72:5d:fa:8f:05:50:12:0e:48:69:29:8f:3f:e6: cb:e8:49:80:e8:52:49:8d:ca:37:97:c7:7b:54:b5:2a:a0:66: 59:be:67:b5:3a:25:28:41:c9:21:9e:c8:a0:2f:3d:48:5e:00: 52:9d:a8:bc:40:57:4b:92:f4:f0:87:1d:e1:fe:95:3b:5f:d0: 91:5b:e0:04:9d:d5:5c:c7:17:b5:96:66:97:c2:79:4c:8e:3b: 2b:de:a1:4a:54:70:14:e0:ae:0b:15:f0:9a:d5:9d:bd:32:0e: 3a:b9:d1:d0:ad:ae:b1:fd:9f:f4:ce:6b:30:ef:4d:b0:c3:02: 75:9e:f8:af:c9:7b:21:84:ac:62:4f:ff:4b:de:1f:30:ca:dc: 48:c7:88:3a:83:e5:b1:34:d6:07:9b:4a:ae:ca:ec:aa:7e:12: e3:1d:59:65 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUVII63JlQXqo3rSQ9d50q3VMvhDQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIwODA2NTUwMFoX DTI0MTIwNjA3MDAwMFowMzExMC8GA1UEAxMoQ0JENDc2OEEzOTM4REFCRjg3RTNE NDU4MEVDMjMwMTdFNTAwQzBGOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMAFSsszdAs5j0x3AonhnohwIre4kI0W5lC95DR7lrM/zdwm5nSqlrDuEGoj 4HsCmRukuQQBKL6H3al4Tm28/4AFX9W8M5DPcw7WmwGevjF25fqhwwzKW4mCyKsv Yk5lAwicuWYrma+OC/bNOT06wQW3DHYDg8hcATCYOMW7LVBZbG/koPjPiZLefQOu Gtd+HhZ3p1HzDstizJWk0XtpdnTNOAdg60sAB99oSvLtZM7cBah7qAXIjMrS8vdp dq1TO1VgCf+CiFe/OAuyhvY4E/QiV127x5Cq23LaiqHPuu46gYBmphHGUt5nEJtA kKG2BLmup0yE3LtnApVcSiToomMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTL1HaK OTjav4fj1FgOwjAX5QDA+TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTk0MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe/+jANBgkqhkiG9w0BAQsFAAOCAQEAfbzl4KnUguwLDEQnUxHN oU4WI53AKkBjF07DJJaTsmDyBRKHyvkbMjMzImeb4nYigEw9XooEZYuBOpXShVU9 22W+EuTl/ln5T/DOaMCFt6JqI2JD2G7lhjp0sWuCkHJd+o8FUBIOSGkpjz/my+hJ gOhSSY3KN5fHe1S1KqBmWb5ntTolKEHJIZ7IoC89SF4AUp2ovEBXS5L08Icd4f6V O1/QkVvgBJ3VXMcXtZZml8J5TI47K96hSlRwFOCuCxXwmtWdvTIOOrnR0K2usf2f 9M5rMO9NsMMCdZ74r8l7IYSsYk//S94fMMrcSMeIOoPlsTTWB5tKrsrsqn4S4x1Z ZQ== -----END CERTIFICATE-----Generated at Wed May 8 21:02:23 2024 by rpki-client on console-fra.rpki-client.org