$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149964.roa File: AS149964.roa (raw, json) Hash identifier: ksw5jIqfvBHMGV/tkAf3WuHfwk8GkPhLCunUy3NaaKk= Subject key identifier: BB:2E:8F:9B:7F:47:FC:83:AE:F1:76:2F:A1:08:37:30:19:CD:4E:2A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 54E7FB3E45A11380CA5E506BACF3B53706414FFC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149964.roa Signing time: Fri 29 Nov 2024 11:00:00 +0000 ROA not before: Fri 29 Nov 2024 10:55:00 +0000 ROA not after: Fri 28 Nov 2025 11:00:00 +0000 asID: 149964 IP address blocks: 103.139.126.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:e7:fb:3e:45:a1:13:80:ca:5e:50:6b:ac:f3:b5:37:06:41:4f:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Nov 29 10:55:00 2024 GMT Not After : Nov 28 11:00:00 2025 GMT Subject: CN=BB2E8F9B7F47FC83AEF1762FA108373019CD4E2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6c:c9:7d:7b:6f:72:77:c9:1a:05:fd:39:ba: f4:23:cc:b1:af:75:5d:d6:23:8a:64:3f:22:3d:93: 2a:49:41:52:3b:b9:4c:5c:ff:6d:50:8d:20:ce:a4: c3:84:4d:46:14:35:be:f1:19:44:cb:1b:40:d4:60: c4:a0:80:12:e9:69:f4:99:c2:f9:43:f7:47:31:38: 83:cb:df:9b:f4:7d:e9:12:ce:a1:11:79:60:82:fa: ca:09:fe:96:54:3c:b0:81:bc:f9:81:55:85:98:9a: 2c:e1:c4:31:7f:80:b1:76:e9:6f:cd:8c:1f:22:30: ed:28:ae:7b:3d:6f:ed:b5:f9:f7:fc:a7:6f:03:fa: 89:87:12:a9:e0:12:4d:b4:ad:28:16:00:2a:c9:4e: 08:a1:6f:43:f3:07:cc:d4:e5:90:30:8e:df:dc:45: 89:ce:71:6d:2c:27:85:ae:9b:50:df:5a:09:fe:31: 8f:0a:ed:d2:82:a2:3e:b8:27:12:4c:99:86:1a:7b: 2b:cb:94:e9:4b:e2:48:38:47:3d:2a:75:94:1e:7e: e2:1f:0a:c8:fc:7b:7e:6e:92:f0:36:c2:fb:d8:ed: 22:98:f4:41:1d:98:f7:27:a6:4a:8e:93:eb:54:bd: 2d:e8:89:33:0d:51:1e:37:fa:45:a8:89:24:d2:3a: ac:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:2E:8F:9B:7F:47:FC:83:AE:F1:76:2F:A1:08:37:30:19:CD:4E:2A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149964.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.126.0/23 Signature Algorithm: sha256WithRSAEncryption 24:08:05:78:c5:97:66:c7:14:5c:d2:50:db:fb:61:65:e8:23: f7:03:a0:be:67:72:bb:e0:43:6c:76:79:5d:69:51:ac:a8:53: 30:63:4f:20:7f:e5:f1:8e:ca:84:aa:89:57:2f:ba:bc:be:20: 16:4c:1b:e8:9e:d9:7f:d2:ad:41:13:41:77:0e:f7:e7:78:12: e9:11:29:35:fc:06:4a:0f:bd:11:c2:41:85:50:bd:06:cc:26: 51:9d:93:56:55:0b:39:4c:e3:cb:74:98:1e:78:61:9a:1f:37: e7:e7:d9:83:25:2e:58:d2:2d:fa:ee:9f:ce:d7:cc:86:02:3b: d7:d6:4e:5f:05:d2:59:32:a5:2b:b1:c4:e2:c7:59:05:9e:1d: fb:38:80:21:50:75:e8:63:31:38:71:2f:c6:46:98:16:83:04: a2:be:bb:30:2b:46:73:ba:40:fe:cb:f0:52:e5:68:62:bc:1c: 2e:0e:84:34:e5:bd:b5:08:01:b9:32:06:6e:08:21:45:c6:f9: 0e:d9:00:d5:73:b1:1e:10:58:76:35:14:8b:d9:54:79:1e:b8: e5:ad:71:15:98:c7:d1:17:ca:98:95:fe:17:3a:1c:17:38:1f: e8:fa:22:dd:46:1a:b3:79:47:78:e7:07:c3:78:ae:f9:eb:10: 28:ed:a5:3c -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUVOf7PkWhE4DKXlBrrPO1NwZBT/wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEyOTEwNTUwMFoX DTI1MTEyODExMDAwMFowMzExMC8GA1UEAxMoQkIyRThGOUI3RjQ3RkM4M0FFRjE3 NjJGQTEwODM3MzAxOUNENEUyQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKZsyX17b3J3yRoF/Tm69CPMsa91XdYjimQ/Ij2TKklBUju5TFz/bVCNIM6k w4RNRhQ1vvEZRMsbQNRgxKCAEulp9JnC+UP3RzE4g8vfm/R96RLOoRF5YIL6ygn+ llQ8sIG8+YFVhZiaLOHEMX+AsXbpb82MHyIw7Siuez1v7bX59/ynbwP6iYcSqeAS TbStKBYAKslOCKFvQ/MHzNTlkDCO39xFic5xbSwnha6bUN9aCf4xjwrt0oKiPrgn EkyZhhp7K8uU6UviSDhHPSp1lB5+4h8KyPx7fm6S8DbC+9jtIpj0QR2Y9yemSo6T 61S9LeiJMw1RHjf6RaiJJNI6rL8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS7Lo+b f0f8g67xdi+hCDcwGc1OKjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTk2NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeLfjANBgkqhkiG9w0BAQsFAAOCAQEAJAgFeMWXZscUXNJQ2/th Zegj9wOgvmdyu+BDbHZ5XWlRrKhTMGNPIH/l8Y7KhKqJVy+6vL4gFkwb6J7Zf9Kt QRNBdw7353gS6REpNfwGSg+9EcJBhVC9BswmUZ2TVlULOUzjy3SYHnhhmh835+fZ gyUuWNIt+u6fztfMhgI719ZOXwXSWTKlK7HE4sdZBZ4d+ziAIVB16GMxOHEvxkaY FoMEor67MCtGc7pA/svwUuVoYrwcLg6ENOW9tQgBuTIGbgghRcb5DtkA1XOxHhBY djUUi9lUeR645a1xFZjH0RfKmJX+FzocFzgf6Poi3UYas3lHeOcHw3iu+esQKO2l PA== -----END CERTIFICATE-----Generated at Sat Apr 5 06:19:51 2025 by rpki-client