$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149940.roa File: AS149940.roa (raw, json) Hash identifier: U8hmt+0zP8FE2z7HvyZG6o7BDSU6XUBM6BJDzSW4k5o= Subject key identifier: 7A:9E:87:AA:3D:28:12:ED:C9:1E:45:E3:6F:4F:27:8F:D2:8F:74:67 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 55B859A8A3C55C712E653D9243C7A9B74869FABD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149940.roa Signing time: Fri 08 Nov 2024 08:00:00 +0000 ROA not before: Fri 08 Nov 2024 07:55:00 +0000 ROA not after: Fri 07 Nov 2025 08:00:00 +0000 asID: 149940 IP address blocks: 103.191.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:b8:59:a8:a3:c5:5c:71:2e:65:3d:92:43:c7:a9:b7:48:69:fa:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 8 07:55:00 2024 GMT Not After : Nov 7 08:00:00 2025 GMT Subject: CN=7A9E87AA3D2812EDC91E45E36F4F278FD28F7467 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7a:01:16:9d:e4:64:06:05:ef:fd:df:f8:a3: 44:19:91:8b:47:a5:69:67:22:b4:7a:9a:84:30:ca: b9:76:ff:5a:8d:d0:67:9a:ff:c1:45:05:b6:cb:9f: 58:f6:b7:68:60:57:6f:8b:ec:f1:31:97:15:7f:6b: 9a:5c:92:ef:0b:79:93:97:c7:50:03:8d:d8:59:8d: 03:b3:01:06:d0:49:57:33:05:a5:eb:46:f1:fa:db: ef:9f:a6:52:c3:ba:bd:86:a7:e5:89:62:9e:19:9e: 99:56:53:33:91:95:69:88:62:80:0e:70:7a:dd:44: ea:ca:c7:9c:c2:7e:7a:4f:5e:4b:43:b6:84:b5:18: 51:09:fb:fb:22:1b:df:0b:db:f7:6b:08:98:a1:2a: bc:16:9d:dd:1b:7e:71:b6:53:68:c1:85:df:a5:bc: 41:e9:00:96:d8:3e:8f:12:49:e8:b4:f6:a3:c1:f4: 8d:45:25:a2:0b:07:1e:c4:0c:ab:a0:2e:62:0f:d3: 95:19:38:a7:2f:c9:a5:9d:b0:95:18:bd:78:76:fa: bc:5f:4e:2d:b3:15:41:cd:67:f3:40:f3:a6:f4:09: 98:9c:7c:24:d9:af:35:34:a1:eb:47:57:6a:20:41: c2:11:69:d9:31:d4:e4:45:e0:71:f0:60:f7:87:d2: e0:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:9E:87:AA:3D:28:12:ED:C9:1E:45:E3:6F:4F:27:8F:D2:8F:74:67 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149940.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.250.0/23 Signature Algorithm: sha256WithRSAEncryption 93:35:95:90:eb:be:82:9e:92:02:e3:37:a7:6b:68:57:0d:10: 18:d0:1e:f0:77:bb:cf:8e:58:0f:bd:9d:7f:74:fd:ec:83:32: 72:1c:36:36:81:69:06:e9:9e:20:e6:c8:21:e0:95:c3:22:b2: 68:02:aa:27:57:36:f1:55:ef:7d:7c:c0:07:b1:1d:d1:82:41: cc:79:a8:1c:83:ef:d5:d9:a5:c3:0d:d8:25:1e:72:ad:e6:f7: 15:60:4f:65:4f:9f:25:75:47:73:6d:86:c6:b8:e4:3f:fc:85: d3:b1:bf:47:64:cb:4a:14:bc:7b:a8:ad:09:fa:d3:ea:f9:0b: 37:ff:86:3d:f8:54:17:eb:e4:45:59:0c:8f:ac:99:c4:c6:2a: 6d:97:17:5c:83:d3:0c:a5:bc:4a:6f:a5:85:83:91:ea:f1:62: f7:6f:b7:a0:dd:13:29:18:76:08:fe:2e:9c:e8:1c:85:8e:81: 09:6d:ce:6f:20:45:9b:e0:bb:5d:bb:f8:97:65:63:c6:77:e4: 1e:f8:64:33:3b:6c:f5:20:1b:26:e1:b5:fd:1b:d6:5f:b5:5f: 0a:1c:27:99:a3:8b:b5:18:12:a6:4a:26:ac:f8:40:ba:a2:b8: ae:a5:4d:67:aa:84:96:23:9d:f8:16:81:03:06:02:72:f4:f0: db:3f:80:a3 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUVbhZqKPFXHEuZT2SQ8ept0hp+r0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEwODA3NTUwMFoX DTI1MTEwNzA4MDAwMFowMzExMC8GA1UEAxMoN0E5RTg3QUEzRDI4MTJFREM5MUU0 NUUzNkY0RjI3OEZEMjhGNzQ2NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMx6ARad5GQGBe/93/ijRBmRi0elaWcitHqahDDKuXb/Wo3QZ5r/wUUFtsuf WPa3aGBXb4vs8TGXFX9rmlyS7wt5k5fHUAON2FmNA7MBBtBJVzMFpetG8frb75+m UsO6vYan5YlinhmemVZTM5GVaYhigA5wet1E6srHnMJ+ek9eS0O2hLUYUQn7+yIb 3wvb92sImKEqvBad3Rt+cbZTaMGF36W8QekAltg+jxJJ6LT2o8H0jUUlogsHHsQM q6AuYg/TlRk4py/JpZ2wlRi9eHb6vF9OLbMVQc1n80DzpvQJmJx8JNmvNTSh60dX aiBBwhFp2THU5EXgcfBg94fS4G0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR6noeq PSgS7ckeReNvTyeP0o90ZzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTk0MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe/+jANBgkqhkiG9w0BAQsFAAOCAQEAkzWVkOu+gp6SAuM3p2to Vw0QGNAe8He7z45YD72df3T97IMychw2NoFpBumeIObIIeCVwyKyaAKqJ1c28VXv fXzAB7Ed0YJBzHmoHIPv1dmlww3YJR5yreb3FWBPZU+fJXVHc22GxrjkP/yF07G/ R2TLShS8e6itCfrT6vkLN/+GPfhUF+vkRVkMj6yZxMYqbZcXXIPTDKW8Sm+lhYOR 6vFi92+3oN0TKRh2CP4unOgchY6BCW3ObyBFm+C7Xbv4l2VjxnfkHvhkMzts9SAb JuG1/RvWX7VfChwnmaOLtRgSpkomrPhAuqK4rqVNZ6qEliOd+BaBAwYCcvTw2z+A ow== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:49 2024 by rpki-client on console-ams.rpki-client.org