$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149948.roa File: AS149948.roa (raw, json) Hash identifier: nWnKfr0WdJnk/0rzveqvY3yyXdkQI3YeBzk7zWNiNHk= Subject key identifier: D4:A0:35:7A:29:76:B0:CD:78:13:1A:D3:E8:3F:46:DD:2C:1D:F9:6E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5104AF19C99737DFA88A4221EAE5E1A1B2809389 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149948.roa Signing time: Mon 19 Aug 2024 06:36:12 +0000 ROA not before: Mon 19 Aug 2024 06:31:12 +0000 ROA not after: Mon 18 Aug 2025 06:36:12 +0000 asID: 149948 IP address blocks: 103.190.28.0/23 maxlen: 24 203.100.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:04:af:19:c9:97:37:df:a8:8a:42:21:ea:e5:e1:a1:b2:80:93:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 19 06:31:12 2024 GMT Not After : Aug 18 06:36:12 2025 GMT Subject: CN=D4A0357A2976B0CD78131AD3E83F46DD2C1DF96E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8c:69:61:96:c6:34:33:07:4f:48:bd:1b:9b: 50:da:8d:36:14:89:82:a2:ea:52:5d:7b:9a:11:11: b9:91:9c:b0:6b:20:08:7a:b4:94:6a:a2:03:c4:71: 22:a2:95:27:a8:f2:81:d2:29:2d:df:00:5d:2f:d6: e6:ec:9b:f5:35:02:5b:21:12:c7:52:fa:a9:24:2c: f4:35:e8:83:ab:0f:2e:42:42:42:b3:07:07:b6:ce: 94:9b:de:1c:76:8f:be:cf:59:fe:e9:73:85:04:67: da:86:59:ba:05:c8:0e:e6:7c:38:33:ad:2f:f1:13: e3:f8:d2:00:29:11:83:93:c1:ac:ed:55:58:ee:fc: cb:22:58:47:c7:e9:2b:ba:94:33:ed:37:95:87:19: 5b:3b:74:45:5b:09:82:0d:9e:5c:c3:6d:db:e6:02: 96:5a:a3:83:d7:35:d8:65:3a:b6:51:f1:b4:d1:ba: 76:8e:20:ea:5e:f4:6f:0f:b8:8d:01:44:af:d7:fe: 38:cd:d3:ee:f7:1a:21:0d:17:32:8c:ee:a4:33:cb: c2:58:38:a5:75:e0:ed:d7:99:90:77:fb:4f:55:7b: 0d:ff:cc:08:73:f0:4f:9d:42:f5:3d:ce:c3:de:e5: fb:fe:23:79:0e:03:09:b6:69:cc:0b:0e:b6:39:de: ad:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:A0:35:7A:29:76:B0:CD:78:13:1A:D3:E8:3F:46:DD:2C:1D:F9:6E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149948.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.28.0/23 203.100.57.0/24 Signature Algorithm: sha256WithRSAEncryption 58:e6:52:78:86:94:1d:d6:e1:81:ef:60:f6:02:e3:68:5f:1c: ab:4f:ab:2d:8c:d0:0c:33:f7:6c:16:b5:d7:96:8d:e5:98:2d: 6f:5d:d9:58:b8:29:79:a9:ec:b1:5c:ff:c8:3a:55:dc:0d:a6: ff:27:43:b9:c7:03:ef:be:36:88:a2:fc:b3:62:00:4e:9e:e2: ba:ff:fb:b2:5c:f1:7c:b1:2c:62:5a:95:fa:bd:53:f4:b9:04: 22:5d:25:38:39:9c:23:a1:29:fc:a6:02:64:2f:2f:0c:01:a4: 85:e7:32:6c:7c:27:00:34:19:91:98:cc:db:27:db:be:f4:fd: c2:a6:48:87:24:c0:40:a3:ab:ae:7e:34:93:83:59:ed:9b:4d: 15:62:d8:64:8d:4f:38:ea:24:2d:63:9e:ee:f7:86:b8:4a:ee: 63:82:38:0b:bf:ab:72:82:15:a3:bf:ec:fa:3b:98:ca:01:cb: b7:78:30:35:8f:39:9c:af:9c:92:3d:64:e5:b9:ce:a7:7b:d2: 06:da:ad:0f:e1:ff:2e:63:14:04:06:82:fc:58:7b:fb:86:4d: ae:c7:85:5b:fb:d5:a2:53:26:38:18:de:00:ca:0d:4e:73:f5: ae:04:ca:fb:cb:45:70:95:ae:da:fd:ec:1f:14:12:c3:0a:68: 90:fe:59:25 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUUQSvGcmXN9+oikIh6uXhobKAk4kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxOTA2MzExMloX DTI1MDgxODA2MzYxMlowMzExMC8GA1UEAxMoRDRBMDM1N0EyOTc2QjBDRDc4MTMx QUQzRTgzRjQ2REQyQzFERjk2RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALuMaWGWxjQzB09IvRubUNqNNhSJgqLqUl17mhERuZGcsGsgCHq0lGqiA8Rx IqKVJ6jygdIpLd8AXS/W5uyb9TUCWyESx1L6qSQs9DXog6sPLkJCQrMHB7bOlJve HHaPvs9Z/ulzhQRn2oZZugXIDuZ8ODOtL/ET4/jSACkRg5PBrO1VWO78yyJYR8fp K7qUM+03lYcZWzt0RVsJgg2eXMNt2+YCllqjg9c12GU6tlHxtNG6do4g6l70bw+4 jQFEr9f+OM3T7vcaIQ0XMozupDPLwlg4pXXg7deZkHf7T1V7Df/MCHPwT51C9T3O w97l+/4jeQ4DCbZpzAsOtjnerZkCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBTUoDV6 KXawzXgTGtPoP0bdLB35bjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTk0OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAWe+HAMEAMtkOTANBgkqhkiG9w0BAQsFAAOCAQEAWOZSeIaUHdbh ge9g9gLjaF8cq0+rLYzQDDP3bBa115aN5Zgtb13ZWLgpeanssVz/yDpV3A2m/ydD uccD7742iKL8s2IATp7iuv/7slzxfLEsYlqV+r1T9LkEIl0lODmcI6Ep/KYCZC8v DAGkhecybHwnADQZkZjM2yfbvvT9wqZIhyTAQKOrrn40k4NZ7ZtNFWLYZI1POOok LWOe7veGuEruY4I4C7+rcoIVo7/s+juYygHLt3gwNY85nK+ckj1k5bnOp3vSBtqt D+H/LmMUBAaC/Fh7+4ZNrseFW/vVolMmOBjeAMoNTnP1rgTK+8tFcJWu2v3sHxQS wwpokP5ZJQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org