$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149964.roa File: AS149964.roa (raw, json) Hash identifier: Thm6b9rT4PamffuGs8vips/Zw9YvNjv4ieQ7qtWaj5s= Subject key identifier: 36:30:D2:05:92:95:C7:45:2E:65:87:32:56:77:E0:1A:71:BD:E4:3A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 78F058BFFB532020DC93F151CBB03C8B2C2B9F6D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149964.roa Signing time: Fri 29 Dec 2023 11:00:00 +0000 ROA not before: Fri 29 Dec 2023 10:55:00 +0000 ROA not after: Fri 27 Dec 2024 11:00:00 +0000 asID: 149964 IP address blocks: 103.139.126.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:f0:58:bf:fb:53:20:20:dc:93:f1:51:cb:b0:3c:8b:2c:2b:9f:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 29 10:55:00 2023 GMT Not After : Dec 27 11:00:00 2024 GMT Subject: CN=3630D2059295C7452E6587325677E01A71BDE43A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:99:19:07:e6:11:e6:72:fb:db:ff:8f:93:3c: e7:ad:41:33:5d:3d:a1:2a:b7:dd:19:d4:92:dc:1a: c6:4d:7b:d9:81:f1:2f:59:98:c0:c5:c1:1a:e1:b4: 83:df:b7:54:e0:ce:8d:1b:bd:bf:da:58:4e:5b:f9: d8:7c:01:98:17:2e:c3:8a:98:be:79:53:f6:68:33: 0c:c1:1e:cf:78:fc:ac:69:a6:f8:eb:cb:44:e0:87: c9:85:fb:f2:b6:cf:aa:71:06:e7:09:42:b0:28:96: 36:a3:9a:f1:70:33:66:12:3e:c5:fc:74:8d:80:c8: 69:2c:fb:00:08:36:c5:87:ee:96:62:ab:e9:eb:62: 45:75:a2:70:ac:ef:55:c1:81:dd:ee:44:36:2d:d8: 24:c9:b3:68:79:6d:1b:a2:82:74:d3:48:30:d8:e2: 54:0a:87:b8:55:51:71:e5:21:8c:39:6a:92:02:30: ac:07:4c:0f:c8:c8:f8:79:0f:8b:77:c8:41:2f:c8: 77:42:74:f6:23:8c:42:38:9d:19:9d:28:6a:ee:24: bf:00:e0:a3:26:28:dd:04:76:48:79:1a:cc:7f:2b: 31:23:53:1e:e4:0e:ae:e3:4e:40:bc:a0:ee:a8:18: b8:37:bf:aa:2d:39:6e:d5:43:31:32:11:47:2f:a4: f1:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:30:D2:05:92:95:C7:45:2E:65:87:32:56:77:E0:1A:71:BD:E4:3A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149964.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.126.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:b6:b1:e7:9b:cf:6f:5a:27:7c:3b:3f:35:a5:33:41:db:0b: 75:70:47:ed:97:90:61:4e:09:99:11:ae:c3:43:6a:35:8e:a8: 54:c8:75:8d:22:86:d1:b0:8e:6b:27:5c:d4:09:15:1f:ca:93: 22:36:cd:db:eb:09:30:c9:d1:26:bf:99:f0:6d:87:4e:87:be: 15:98:12:57:df:d9:74:3d:74:d1:30:b1:e3:81:8b:be:78:24: fc:73:62:65:45:9c:c2:21:c7:e0:09:b8:9f:69:47:df:fd:69: a7:97:f8:48:3b:3b:c0:60:f5:5b:fd:5c:3e:82:42:17:4c:df: 2b:fd:c2:ea:58:7c:67:1d:c8:bd:77:ae:fd:60:80:f9:80:42: c9:b9:b1:2e:82:69:66:fd:6c:f9:b2:01:49:fe:04:fb:07:44: 3d:a2:f8:db:48:20:36:7b:d8:d8:61:12:1d:c0:46:7e:db:f8: e5:ab:96:ef:29:07:ca:9b:27:70:9b:cf:7a:d8:ef:cc:a8:b1: a0:2f:60:ef:c5:87:4f:7e:9d:7d:4c:c8:ad:00:13:3b:64:c4: 6f:c0:c3:be:2b:9c:29:a0:d5:0e:25:bc:b5:00:79:88:2c:09: d0:3d:c4:50:99:85:f4:79:c8:ec:cf:8d:10:dc:51:47:a6:48: fe:c5:d4:0c -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUePBYv/tTICDck/FRy7A8iywrn20wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIyOTEwNTUwMFoX DTI0MTIyNzExMDAwMFowMzExMC8GA1UEAxMoMzYzMEQyMDU5Mjk1Qzc0NTJFNjU4 NzMyNTY3N0UwMUE3MUJERTQzQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2ZGQfmEeZy+9v/j5M8561BM109oSq33RnUktwaxk172YHxL1mYwMXBGuG0 g9+3VODOjRu9v9pYTlv52HwBmBcuw4qYvnlT9mgzDMEez3j8rGmm+OvLROCHyYX7 8rbPqnEG5wlCsCiWNqOa8XAzZhI+xfx0jYDIaSz7AAg2xYfulmKr6etiRXWicKzv VcGB3e5ENi3YJMmzaHltG6KCdNNIMNjiVAqHuFVRceUhjDlqkgIwrAdMD8jI+HkP i3fIQS/Id0J09iOMQjidGZ0oau4kvwDgoyYo3QR2SHkazH8rMSNTHuQOruNOQLyg 7qgYuDe/qi05btVDMTIRRy+k8WECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ2MNIF kpXHRS5lhzJWd+Aacb3kOjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTk2NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeLfjANBgkqhkiG9w0BAQsFAAOCAQEAf7ax55vPb1onfDs/NaUz QdsLdXBH7ZeQYU4JmRGuw0NqNY6oVMh1jSKG0bCOaydc1AkVH8qTIjbN2+sJMMnR Jr+Z8G2HToe+FZgSV9/ZdD100TCx44GLvngk/HNiZUWcwiHH4Am4n2lH3/1pp5f4 SDs7wGD1W/1cPoJCF0zfK/3C6lh8Zx3IvXeu/WCA+YBCybmxLoJpZv1s+bIBSf4E +wdEPaL420ggNnvY2GESHcBGftv45auW7ykHypsncJvPetjvzKixoC9g78WHT36d fUzIrQATO2TEb8DDviucKaDVDiW8tQB5iCwJ0D3EUJmF9HnI7M+NENxRR6ZI/sXU DA== -----END CERTIFICATE-----Generated at Wed May 8 05:33:21 2024 by rpki-client on console-ams.rpki-client.org