$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149948.roa File: AS149948.roa (raw, json) Hash identifier: /Bl++ue7N3PaFSnaLDBvQ5HWWmReLpWk7n5U2RXJV4E= Subject key identifier: 69:FA:1F:38:E5:15:C8:8E:FC:ED:D5:5D:75:C7:FE:1D:FD:07:2D:22 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 02BA2F59E050E6FB6CB86DA1DADB86B469515EE0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149948.roa Signing time: Thu 05 Oct 2023 02:19:06 +0000 ROA not before: Thu 05 Oct 2023 02:14:06 +0000 ROA not after: Thu 03 Oct 2024 02:19:06 +0000 asID: 149948 IP address blocks: 103.190.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:ba:2f:59:e0:50:e6:fb:6c:b8:6d:a1:da:db:86:b4:69:51:5e:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 5 02:14:06 2023 GMT Not After : Oct 3 02:19:06 2024 GMT Subject: CN=69FA1F38E515C88EFCEDD55D75C7FE1DFD072D22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:3d:27:22:ca:de:29:41:62:8f:72:31:c8:96: 87:0c:ed:81:31:ab:ba:1e:79:a7:84:ae:1c:6f:1b: 4f:9d:c9:44:4b:f4:83:9d:a4:06:2e:08:3b:8a:3a: 88:ef:60:21:e1:34:f9:d6:3c:f7:10:2e:db:d8:82: 26:4b:2a:ed:b5:98:a0:b5:7d:d3:59:f1:88:fb:16: b3:74:82:f7:10:5a:fa:b1:a3:01:97:d4:9e:3b:b7: 10:83:5e:b8:c7:21:33:7c:9d:b1:dd:8a:0b:b3:93: e1:53:e2:86:1d:69:dd:de:5e:a9:55:4f:71:6d:bc: 99:79:c4:72:d2:96:01:43:e9:24:36:f5:e7:d1:3e: 62:22:fb:a4:ef:47:9c:a7:a9:a9:a3:82:23:d1:51: 4b:b2:32:9b:6b:8a:b6:bb:ec:ea:c7:f5:5c:38:f1: 2d:70:3e:de:d0:d2:41:e6:4d:02:d0:6c:4a:ac:aa: 21:96:50:7d:54:77:a2:cc:24:1f:07:90:fb:b0:a6: 34:79:25:11:24:ca:99:7e:aa:30:3f:a9:98:bb:a0: 37:d4:88:68:bb:99:57:96:16:b9:84:b7:62:84:b5: a4:ab:6a:bd:e0:80:46:90:d1:53:50:92:1d:80:75: 34:82:28:65:7f:23:9a:1f:92:07:0f:18:16:a4:6e: 58:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:FA:1F:38:E5:15:C8:8E:FC:ED:D5:5D:75:C7:FE:1D:FD:07:2D:22 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149948.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.28.0/23 Signature Algorithm: sha256WithRSAEncryption 15:d0:ce:c9:10:98:31:ec:be:d3:e2:f7:f8:57:e1:59:a6:73: 9e:e1:49:73:a6:54:4f:14:1f:a7:97:d7:2b:b1:a7:1f:96:f0: 16:f0:a9:dd:56:13:d9:24:e2:56:93:72:18:a2:59:04:6e:2a: 7b:a0:92:13:de:e1:84:11:00:94:6e:57:bc:11:78:30:4b:e0: f5:f9:0c:e1:29:a2:23:7b:c3:f5:9f:14:3e:c4:ce:13:db:40: 22:2a:6b:4c:01:09:5e:ab:a0:8e:cb:90:d2:b9:56:d2:15:49: 6d:b5:4a:9d:78:35:51:75:99:ff:71:6f:74:69:eb:a4:c5:98: 3a:b8:5e:d6:c9:d1:09:20:d9:71:0f:f0:9d:54:1e:8e:2a:54: b6:27:71:d2:fa:60:83:78:a5:53:11:dc:39:75:81:cc:8a:fa: 25:58:c4:6b:ac:d2:77:60:de:50:6f:78:73:44:42:24:12:1e: 07:e1:a2:b2:01:4e:45:9b:1d:08:22:e0:d1:57:19:23:5f:36: 42:1e:de:81:d1:c8:e3:59:0d:e0:cb:36:bd:fe:1c:5f:73:83: 67:d9:8b:9c:a1:57:17:1e:c7:c9:80:e0:8c:4e:15:0a:48:4b: a4:bc:a6:8d:22:8f:0a:5d:ec:1a:89:00:97:98:2b:ff:9e:2f: 7d:81:02:14 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUArovWeBQ5vtsuG2h2tuGtGlRXuAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAwNTAyMTQwNloX DTI0MTAwMzAyMTkwNlowMzExMC8GA1UEAxMoNjlGQTFGMzhFNTE1Qzg4RUZDRURE NTVENzVDN0ZFMURGRDA3MkQyMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANs9JyLK3ilBYo9yMciWhwztgTGruh55p4SuHG8bT53JREv0g52kBi4IO4o6 iO9gIeE0+dY89xAu29iCJksq7bWYoLV901nxiPsWs3SC9xBa+rGjAZfUnju3EINe uMchM3ydsd2KC7OT4VPihh1p3d5eqVVPcW28mXnEctKWAUPpJDb159E+YiL7pO9H nKepqaOCI9FRS7Iym2uKtrvs6sf1XDjxLXA+3tDSQeZNAtBsSqyqIZZQfVR3oswk HweQ+7CmNHklESTKmX6qMD+pmLugN9SIaLuZV5YWuYS3YoS1pKtqveCARpDRU1CS HYB1NIIoZX8jmh+SBw8YFqRuWM8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRp+h84 5RXIjvzt1V11x/4d/QctIjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTk0OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe+HDANBgkqhkiG9w0BAQsFAAOCAQEAFdDOyRCYMey+0+L3+Ffh WaZznuFJc6ZUTxQfp5fXK7GnH5bwFvCp3VYT2STiVpNyGKJZBG4qe6CSE97hhBEA lG5XvBF4MEvg9fkM4SmiI3vD9Z8UPsTOE9tAIiprTAEJXqugjsuQ0rlW0hVJbbVK nXg1UXWZ/3FvdGnrpMWYOrhe1snRCSDZcQ/wnVQejipUtidx0vpgg3ilUxHcOXWB zIr6JVjEa6zSd2DeUG94c0RCJBIeB+GisgFORZsdCCLg0VcZI182Qh7egdHI41kN 4Ms2vf4cX3ODZ9mLnKFXFx7HyYDgjE4VCkhLpLymjSKPCl3sGokAl5gr/54vfYEC FA== -----END CERTIFICATE-----Generated at Wed May 8 21:02:23 2024 by rpki-client on console-fra.rpki-client.org