$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149962.roa File: AS149962.roa (raw, json) Hash identifier: amtxHJnqbkaCfsxmK75OqiO04ETzRhcF9X0C0h1hMbw= Subject key identifier: 77:A6:3D:92:82:9D:A2:69:9A:16:2B:EC:F8:27:D9:89:D1:2E:A1:94 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 58A57912475E6BABED2F922B9A2E2BCDB3EAE298 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149962.roa Signing time: Thu 25 Apr 2024 07:36:31 +0000 ROA not before: Thu 25 Apr 2024 07:31:31 +0000 ROA not after: Thu 24 Apr 2025 07:36:31 +0000 asID: 149962 IP address blocks: 103.112.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:a5:79:12:47:5e:6b:ab:ed:2f:92:2b:9a:2e:2b:cd:b3:ea:e2:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 25 07:31:31 2024 GMT Not After : Apr 24 07:36:31 2025 GMT Subject: CN=77A63D92829DA2699A162BECF827D989D12EA194 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6a:d0:96:f0:ff:98:c9:48:dc:ff:dd:2e:9a: 26:bf:12:92:13:26:8a:b5:1a:9b:5a:9c:ef:7a:50: a9:87:f6:df:1d:71:cb:09:17:a1:d8:ac:85:bd:0f: ec:2f:04:d6:26:57:1b:51:15:94:34:6a:a8:36:de: c9:5a:56:c6:27:c0:2b:55:d4:bb:dd:17:24:1f:ff: 62:a1:42:d5:54:b6:89:5d:5e:21:ad:3b:37:8f:77: a5:2a:cb:70:65:bd:62:cf:d1:1b:12:6d:b9:41:72: fa:9d:4e:29:6b:0f:1c:c3:e7:29:02:25:a4:7d:3c: a7:b8:27:6f:7f:b9:3e:8e:1b:cb:51:eb:41:3f:f7: 3d:73:ef:e4:2a:b0:37:a8:96:12:0e:32:d0:16:c2: 0d:4f:cb:ff:0b:dc:37:71:f8:4e:d3:d3:53:1d:63: 25:b5:3a:0e:37:2d:01:56:2b:53:30:e9:8e:3f:a3: e3:d7:6d:d2:9c:0b:dc:da:19:34:50:7d:0a:64:d4: 94:25:a2:46:cf:a8:c0:20:c8:a8:17:66:f6:43:e6: ed:55:50:a5:9c:53:b6:75:05:75:cf:71:8d:a9:12: d9:96:59:22:92:00:5d:11:51:28:18:d1:27:28:25: 66:6a:dd:04:f1:f6:7b:12:3c:2b:ce:80:50:c4:5f: e5:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:A6:3D:92:82:9D:A2:69:9A:16:2B:EC:F8:27:D9:89:D1:2E:A1:94 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149962.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.195.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:84:fe:1f:bb:3e:9d:b8:c7:c7:97:a8:8f:40:42:de:1a:7e: 1a:e6:72:9e:e6:56:71:66:fe:83:cd:11:5a:24:e0:81:76:12: 42:a6:05:e3:ed:b7:91:b7:8f:36:e4:bb:67:9e:7d:54:29:04: 92:b6:3b:cc:46:53:e2:ae:74:60:ab:7c:84:d1:61:4c:40:c2: 29:b5:eb:6a:50:4f:93:ac:60:54:c6:26:5a:71:7c:df:38:81: 9d:ce:8f:c6:bc:b8:e3:8b:28:00:b1:92:bd:e2:8e:89:f1:f1: 4e:07:fa:34:cb:41:d7:3f:75:60:bf:d3:bf:9d:cf:8f:79:ac: 72:3c:6e:26:6a:2b:94:9e:91:fe:15:9e:de:a4:32:0c:6f:cd: f7:31:5d:80:9f:3b:12:15:5a:28:c4:93:92:0d:04:62:76:f5: 66:28:9e:56:dc:be:ad:81:c4:79:ce:4e:ac:e7:59:d5:df:59: f0:d5:94:02:81:00:47:78:c5:4b:6b:59:e1:25:ec:68:c5:19: f2:ef:18:5f:55:3f:7d:93:68:76:fe:fa:e7:20:12:7d:3c:e6: ec:4c:12:39:07:72:54:79:3d:45:03:b1:bc:fe:58:0c:ff:6f: 78:c4:24:c4:57:4a:aa:a4:99:c9:fc:37:41:46:d4:2e:58:88: 09:2c:75:d3 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUWKV5Ekdea6vtL5Irmi4rzbPq4pgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQyNTA3MzEzMVoX DTI1MDQyNDA3MzYzMVowMzExMC8GA1UEAxMoNzdBNjNEOTI4MjlEQTI2OTlBMTYy QkVDRjgyN0Q5ODlEMTJFQTE5NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALFq0Jbw/5jJSNz/3S6aJr8SkhMmirUam1qc73pQqYf23x1xywkXodishb0P 7C8E1iZXG1EVlDRqqDbeyVpWxifAK1XUu90XJB//YqFC1VS2iV1eIa07N493pSrL cGW9Ys/RGxJtuUFy+p1OKWsPHMPnKQIlpH08p7gnb3+5Po4by1HrQT/3PXPv5Cqw N6iWEg4y0BbCDU/L/wvcN3H4TtPTUx1jJbU6DjctAVYrUzDpjj+j49dt0pwL3NoZ NFB9CmTUlCWiRs+owCDIqBdm9kPm7VVQpZxTtnUFdc9xjakS2ZZZIpIAXRFRKBjR JyglZmrdBPH2exI8K86AUMRf5bkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR3pj2S gp2iaZoWK+z4J9mJ0S6hlDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTk2Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGdwwzANBgkqhkiG9w0BAQsFAAOCAQEAKoT+H7s+nbjHx5eoj0BC 3hp+GuZynuZWcWb+g80RWiTggXYSQqYF4+23kbePNuS7Z559VCkEkrY7zEZT4q50 YKt8hNFhTEDCKbXralBPk6xgVMYmWnF83ziBnc6Pxry444soALGSveKOifHxTgf6 NMtB1z91YL/Tv53Pj3mscjxuJmorlJ6R/hWe3qQyDG/N9zFdgJ87EhVaKMSTkg0E Ynb1ZiieVty+rYHEec5OrOdZ1d9Z8NWUAoEAR3jFS2tZ4SXsaMUZ8u8YX1U/fZNo dv765yASfTzm7EwSOQdyVHk9RQOxvP5YDP9veMQkxFdKqqSZyfw3QUbULliICSx1 0w== -----END CERTIFICATE-----Generated at Wed May 8 17:45:23 2024 by rpki-client on console-ams.rpki-client.org