$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149965.roa File: AS149965.roa (raw, json) Hash identifier: /ZOKoGzcM6W4GH16d3VvnHE6dK9Cxx9i5HDxd4sCVhg= Subject key identifier: 96:09:A0:D2:51:B3:40:41:BC:42:B8:4B:B7:00:6E:EF:C9:B6:48:21 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 05AB89922844FC13EF9BB5F130E6B41CB5674FBC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149965.roa Signing time: Tue 03 Sep 2024 09:00:00 +0000 ROA not before: Tue 03 Sep 2024 08:55:00 +0000 ROA not after: Tue 02 Sep 2025 09:00:00 +0000 asID: 149965 IP address blocks: 103.139.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:ab:89:92:28:44:fc:13:ef:9b:b5:f1:30:e6:b4:1c:b5:67:4f:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 3 08:55:00 2024 GMT Not After : Sep 2 09:00:00 2025 GMT Subject: CN=9609A0D251B34041BC42B84BB7006EEFC9B64821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ee:06:ee:7b:8e:e4:d3:51:f6:ba:d9:db:93: b6:61:7c:d5:8f:ef:48:e6:f5:45:91:d3:8a:5c:96: 33:f7:d3:e4:ea:73:2b:e3:d5:d9:ab:9d:56:af:68: d9:41:22:f8:65:dd:af:2c:ba:5a:10:db:d2:04:f7: b0:8c:bf:1f:a8:a5:10:be:93:42:36:9a:2a:a7:95: 0c:d3:4f:50:cf:ab:12:f4:5d:2b:03:93:f9:82:07: 3c:f3:26:ec:b6:8b:2e:d5:f9:53:b1:ff:5f:e5:c1: 46:9d:14:61:a9:33:bd:fd:9d:b7:ad:a5:91:68:ab: 84:84:ed:21:20:2d:1d:b2:a9:17:fa:59:58:e6:93: 29:73:91:8c:a5:e7:ba:44:4f:01:0e:d7:b5:b4:be: 0f:f0:55:37:d6:3d:62:59:82:61:b6:d2:b5:48:88: 19:87:b2:37:a4:c8:59:34:c3:20:b7:87:11:c3:51: cb:eb:e0:33:59:d0:00:2f:16:53:18:c1:ac:47:ac: 40:a9:ca:64:a2:6e:a9:55:66:6f:ae:f4:6c:1d:18: 94:21:e5:a1:8b:b2:81:f6:d8:fa:8b:9d:2a:e1:01: ef:3c:75:a7:d6:ed:46:be:a8:ed:eb:46:78:ee:eb: 2e:d6:4a:50:f5:66:64:cc:83:df:88:e2:ef:ac:bd: 1c:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:09:A0:D2:51:B3:40:41:BC:42:B8:4B:B7:00:6E:EF:C9:B6:48:21 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149965.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.138.0/23 Signature Algorithm: sha256WithRSAEncryption 98:b4:93:8c:91:f4:63:1f:aa:d9:c0:21:a3:48:c2:a1:44:2c: 89:0f:13:be:a0:b6:5b:ff:06:82:91:12:20:3d:5a:b4:0a:f6: bf:89:10:af:2b:88:40:c0:86:3f:02:96:79:ac:e3:aa:cc:cf: 2e:65:36:bf:0b:c9:cf:07:87:10:53:ef:df:2d:fe:76:b6:85: 17:19:95:56:40:4e:3a:0d:20:5b:6e:29:3f:12:5f:6a:03:c1: 15:be:8b:38:a1:de:28:d5:09:37:46:3e:82:4a:f8:be:df:69: 7a:d9:0e:56:1c:fe:68:a2:30:0a:6f:c2:71:05:a2:31:07:4d: 11:99:10:51:ae:35:d0:7d:8b:30:bf:54:43:3d:10:7b:a2:e9: a3:8b:92:5a:88:af:6e:d3:30:ac:68:94:68:ea:86:37:90:a4: e6:d5:bd:2d:2c:51:97:12:a9:f2:27:7c:ec:d2:61:9e:6d:b1: e2:34:fa:3f:1e:34:0b:01:6d:aa:be:c0:9f:9c:45:62:f2:00: 7c:51:ce:3e:40:7c:30:41:0e:44:38:d5:91:51:1d:35:04:fe: 04:c4:45:1e:30:1c:09:57:36:5b:ea:73:ac:11:4d:27:36:b1: ae:56:8f:ea:e0:7f:6e:53:e1:c4:b0:f7:9e:00:62:2f:4e:ad: e4:d4:90:6e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUBauJkihE/BPvm7XxMOa0HLVnT7wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkwMzA4NTUwMFoX DTI1MDkwMjA5MDAwMFowMzExMC8GA1UEAxMoOTYwOUEwRDI1MUIzNDA0MUJDNDJC ODRCQjcwMDZFRUZDOUI2NDgyMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ7uBu57juTTUfa62duTtmF81Y/vSOb1RZHTilyWM/fT5OpzK+PV2audVq9o 2UEi+GXdryy6WhDb0gT3sIy/H6ilEL6TQjaaKqeVDNNPUM+rEvRdKwOT+YIHPPMm 7LaLLtX5U7H/X+XBRp0UYakzvf2dt62lkWirhITtISAtHbKpF/pZWOaTKXORjKXn ukRPAQ7XtbS+D/BVN9Y9YlmCYbbStUiIGYeyN6TIWTTDILeHEcNRy+vgM1nQAC8W UxjBrEesQKnKZKJuqVVmb670bB0YlCHloYuygfbY+oudKuEB7zx1p9btRr6o7etG eO7rLtZKUPVmZMyD34ji76y9HLMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSWCaDS UbNAQbxCuEu3AG7vybZIITAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTk2NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeLijANBgkqhkiG9w0BAQsFAAOCAQEAmLSTjJH0Yx+q2cAho0jC oUQsiQ8TvqC2W/8GgpESID1atAr2v4kQryuIQMCGPwKWeazjqszPLmU2vwvJzweH EFPv3y3+draFFxmVVkBOOg0gW24pPxJfagPBFb6LOKHeKNUJN0Y+gkr4vt9petkO Vhz+aKIwCm/CcQWiMQdNEZkQUa410H2LML9UQz0Qe6Lpo4uSWoivbtMwrGiUaOqG N5Ck5tW9LSxRlxKp8id87NJhnm2x4jT6Px40CwFtqr7An5xFYvIAfFHOPkB8MEEO RDjVkVEdNQT+BMRFHjAcCVc2W+pzrBFNJzaxrlaP6uB/blPhxLD3ngBiL06t5NSQ bg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org