$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149974.roa File: AS149974.roa (raw, json) Hash identifier: o/rYb/W+VG7UFiQI7yn3/afkSCvVhEzd5Zt0vecwLZE= Subject key identifier: 78:0F:6A:CC:08:BF:DA:08:17:1D:BC:80:F7:2D:CD:D0:9B:43:09:96 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 170751FD6B56C9C004B53F6CE73C2AA64F93D4ED Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149974.roa Signing time: Wed 20 Dec 2023 10:00:00 +0000 ROA not before: Wed 20 Dec 2023 09:55:00 +0000 ROA not after: Wed 18 Dec 2024 10:00:00 +0000 asID: 149974 IP address blocks: 103.18.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:07:51:fd:6b:56:c9:c0:04:b5:3f:6c:e7:3c:2a:a6:4f:93:d4:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 20 09:55:00 2023 GMT Not After : Dec 18 10:00:00 2024 GMT Subject: CN=780F6ACC08BFDA08171DBC80F72DCDD09B430996 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0d:14:fe:e9:46:8f:1f:26:c5:1f:97:b9:b1: 44:80:6a:bc:e5:a2:a2:ff:91:d3:ed:a0:16:87:ff: ce:c5:52:59:96:d0:c3:9a:dc:f4:5c:02:5b:93:62: 89:12:11:0a:01:d9:53:d1:31:cb:bb:e4:39:fe:09: ea:6e:76:0e:d2:63:e2:63:70:c8:10:47:ec:43:87: 43:e1:3e:62:84:44:a0:1a:7f:6d:a1:24:52:9c:9b: e3:04:e1:b2:12:a3:01:c3:c8:b8:06:eb:93:eb:dc: 05:c7:e3:6a:a8:fa:c0:18:a8:f7:48:20:f0:58:d8: f1:f9:f8:ab:05:bf:60:66:0b:09:41:17:f1:0c:fc: b2:a9:6e:d4:7f:aa:33:e7:63:c9:38:82:a5:05:c9: 14:82:01:f4:97:32:74:fa:a8:08:d3:86:aa:2e:e2: 6c:79:45:d6:19:04:81:b2:ff:af:3a:5c:dc:b4:73: f1:74:74:10:01:35:10:45:9d:31:c3:75:29:f3:ff: 56:b8:c3:ef:d8:e3:20:db:19:79:62:07:2b:3c:f9: 55:12:89:e9:4c:04:18:03:77:52:6d:51:29:b8:4c: dc:76:93:55:6a:48:c9:e3:2c:74:49:d9:d0:8b:68: ee:df:06:c4:d2:03:cf:14:c1:02:d2:1d:7b:2e:a6: e6:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:0F:6A:CC:08:BF:DA:08:17:1D:BC:80:F7:2D:CD:D0:9B:43:09:96 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149974.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.18.188.0/24 Signature Algorithm: sha256WithRSAEncryption 99:d5:7b:56:24:2a:a9:f6:f3:8a:5c:24:68:e6:25:a7:a4:04: c5:03:9f:83:cf:25:42:21:7b:73:42:53:2c:51:b2:7c:f4:72: f0:42:3c:9f:4d:8d:69:82:88:41:73:8b:db:ac:72:a1:78:45: 72:f6:49:44:d6:06:29:2e:95:94:e6:76:0c:91:34:77:4f:31: d4:ff:4f:b4:11:5e:35:e4:49:7c:3d:bf:54:d9:d7:b7:2e:5e: 25:66:9a:21:5c:bf:39:d0:87:06:56:d7:05:49:53:38:c6:ea: 09:17:e9:43:76:35:f8:c5:52:73:a7:6e:24:aa:95:96:3a:03: 04:50:4e:4c:cc:99:6d:18:a3:4c:1d:72:a0:75:7d:8c:f8:27: 8d:dd:5f:a4:e6:2a:d7:53:68:e1:57:9b:94:0a:fd:a0:1f:04: 84:ab:17:77:20:8f:8d:c9:a4:66:8d:88:6c:43:24:94:32:f6: de:dc:2e:d9:da:dd:20:ff:6e:fb:94:45:d1:d4:b4:3f:a1:c4: c2:cd:61:b8:c2:ed:20:40:73:36:5c:8d:ec:01:0a:5d:71:22: 61:a3:e3:15:d9:1b:b7:76:f8:ce:03:bf:6b:62:56:bc:22:53: b9:2e:07:7f:c5:c6:84:5c:c4:6d:94:01:e3:03:2e:cd:0b:93: f2:ec:2d:48 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUFwdR/WtWycAEtT9s5zwqpk+T1O0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIyMDA5NTUwMFoX DTI0MTIxODEwMDAwMFowMzExMC8GA1UEAxMoNzgwRjZBQ0MwOEJGREEwODE3MURC QzgwRjcyRENERDA5QjQzMDk5NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALANFP7pRo8fJsUfl7mxRIBqvOWiov+R0+2gFof/zsVSWZbQw5rc9FwCW5Ni iRIRCgHZU9Exy7vkOf4J6m52DtJj4mNwyBBH7EOHQ+E+YoREoBp/baEkUpyb4wTh shKjAcPIuAbrk+vcBcfjaqj6wBio90gg8FjY8fn4qwW/YGYLCUEX8Qz8sqlu1H+q M+djyTiCpQXJFIIB9JcydPqoCNOGqi7ibHlF1hkEgbL/rzpc3LRz8XR0EAE1EEWd McN1KfP/VrjD79jjINsZeWIHKzz5VRKJ6UwEGAN3Um1RKbhM3HaTVWpIyeMsdEnZ 0Ito7t8GxNIDzxTBAtIdey6m5jMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR4D2rM CL/aCBcdvID3Lc3Qm0MJljAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTk3NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGcSvDANBgkqhkiG9w0BAQsFAAOCAQEAmdV7ViQqqfbzilwkaOYl p6QExQOfg88lQiF7c0JTLFGyfPRy8EI8n02NaYKIQXOL26xyoXhFcvZJRNYGKS6V lOZ2DJE0d08x1P9PtBFeNeRJfD2/VNnXty5eJWaaIVy/OdCHBlbXBUlTOMbqCRfp Q3Y1+MVSc6duJKqVljoDBFBOTMyZbRijTB1yoHV9jPgnjd1fpOYq11No4VeblAr9 oB8EhKsXdyCPjcmkZo2IbEMklDL23twu2drdIP9u+5RF0dS0P6HEws1huMLtIEBz NlyN7AEKXXEiYaPjFdkbt3b4zgO/a2JWvCJTuS4Hf8XGhFzEbZQB4wMuzQuT8uwt SA== -----END CERTIFICATE-----Generated at Wed May 8 04:37:58 2024 by rpki-client on console-fra.rpki-client.org