$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149976.roa File: AS149976.roa (raw, json) Hash identifier: Y3a+3aEK0F6e3dGEqqwk8kL06ex+ey87K/rSSz7SQz8= Subject key identifier: DC:60:69:A4:6B:0C:D2:50:B3:FA:39:AA:FD:1D:8C:21:DB:62:90:66 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2E93BE73CB58DBBB778AD241BE8AE0F0E40F1403 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149976.roa Signing time: Wed 14 Jun 2023 02:13:30 +0000 ROA not before: Wed 14 Jun 2023 02:08:30 +0000 ROA not after: Wed 12 Jun 2024 02:13:30 +0000 asID: 149976 IP address blocks: 2001:df2:91c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:93:be:73:cb:58:db:bb:77:8a:d2:41:be:8a:e0:f0:e4:0f:14:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 14 02:08:30 2023 GMT Not After : Jun 12 02:13:30 2024 GMT Subject: CN=DC6069A46B0CD250B3FA39AAFD1D8C21DB629066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:23:7e:a8:85:3f:3e:9a:3d:68:10:31:b5:6a: c1:02:83:60:40:5a:c2:b2:67:fa:fd:4f:19:66:4b: eb:da:6d:c4:07:9a:fe:75:f4:5b:29:88:4b:7f:97: 1f:2b:97:a6:dc:ce:89:da:84:2a:29:1d:1e:f9:f2: 2b:8e:d7:e3:c1:e3:3e:14:63:a3:e9:fd:59:0c:39: 0e:0d:5d:ec:30:ba:6d:bb:b5:b8:6e:8c:41:bd:df: 10:d8:d2:67:2e:51:d6:54:e5:c9:85:31:9f:5f:be: e2:45:5d:90:da:bb:77:c7:6a:c4:34:cb:bb:d3:b2: 30:0f:bb:7c:42:ce:07:40:98:e2:ca:e3:fd:69:47: 5e:46:a5:8d:f0:d6:09:53:51:b0:7e:86:36:72:ac: 43:ef:2e:97:da:6e:3a:09:b0:1f:e2:be:29:fb:08: 4c:0c:3d:35:ff:d7:d3:ec:1d:d5:4c:b2:ca:51:34: e9:c1:12:dd:51:82:ce:cd:23:0b:19:04:62:72:f4: bd:c5:31:be:b1:67:29:7a:fa:a7:64:cf:4b:df:ec: db:a4:c5:55:f7:72:34:d1:8e:01:28:1d:19:aa:b8: 25:32:71:1e:88:b5:dd:0a:d0:46:28:97:d9:f1:31: 14:49:a7:54:00:6d:11:aa:a6:dd:29:75:2e:e6:91: 42:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:60:69:A4:6B:0C:D2:50:B3:FA:39:AA:FD:1D:8C:21:DB:62:90:66 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149976.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:91c0::/48 Signature Algorithm: sha256WithRSAEncryption 6a:a3:81:e7:68:7f:59:1d:db:92:f1:2e:23:85:36:67:c5:28: d8:03:04:8f:8b:2c:4d:a9:08:65:44:53:e5:25:11:44:1f:82: 3a:b0:fb:33:c2:44:4a:2e:1b:9d:03:7a:20:3b:15:fe:96:33: 8b:a3:b6:b6:e1:8d:ff:97:33:b7:15:d9:c8:a9:b1:61:98:31: 3f:0f:d1:e9:68:f7:7a:39:55:8b:07:ff:87:85:17:e4:10:bf: 1f:d1:62:16:e4:b9:45:1d:ab:35:b1:84:46:38:b3:c4:b2:52: b9:c8:9f:23:9e:db:2c:87:1c:69:94:39:8c:36:5c:8e:1f:20: 44:f7:3e:c9:5d:ad:b2:a9:ba:e4:12:11:fd:ea:51:a9:d1:00: ad:32:43:dc:92:e1:dd:07:e4:af:7c:d0:fe:f1:cf:18:77:71: f8:c9:c9:62:2c:59:b7:5d:8a:8c:e2:65:8b:58:cd:d7:3c:79: 0d:59:61:d3:f3:3f:bb:d9:21:50:4c:be:a6:1b:66:35:af:1f: 19:00:58:b1:47:cb:96:69:f5:30:50:f8:25:f4:c2:39:dd:78: 0d:29:6c:05:0c:e9:49:8c:b1:2a:81:ad:16:24:e5:26:6c:2e: af:66:4e:d0:62:8e:b7:7c:16:4f:3e:6a:fa:fd:1d:97:85:c2: 11:2c:f6:6c -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIULpO+c8tY27t3itJBvorg8OQPFAMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDYxNDAyMDgzMFoX DTI0MDYxMjAyMTMzMFowMzExMC8GA1UEAxMoREM2MDY5QTQ2QjBDRDI1MEIzRkEz OUFBRkQxRDhDMjFEQjYyOTA2NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMAjfqiFPz6aPWgQMbVqwQKDYEBawrJn+v1PGWZL69ptxAea/nX0WymIS3+X HyuXptzOidqEKikdHvnyK47X48HjPhRjo+n9WQw5Dg1d7DC6bbu1uG6MQb3fENjS Zy5R1lTlyYUxn1++4kVdkNq7d8dqxDTLu9OyMA+7fELOB0CY4srj/WlHXkaljfDW CVNRsH6GNnKsQ+8ul9puOgmwH+K+KfsITAw9Nf/X0+wd1UyyylE06cES3VGCzs0j CxkEYnL0vcUxvrFnKXr6p2TPS9/s26TFVfdyNNGOASgdGaq4JTJxHoi13QrQRiiX 2fExFEmnVABtEaqm3Sl1LuaRQo8CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTcYGmk awzSULP6Oar9HYwh22KQZjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTk3Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfKRwDANBgkqhkiG9w0BAQsFAAOCAQEAaqOB52h/WR3bkvEu I4U2Z8Uo2AMEj4ssTakIZURT5SURRB+COrD7M8JESi4bnQN6IDsV/pYzi6O2tuGN /5cztxXZyKmxYZgxPw/R6Wj3ejlViwf/h4UX5BC/H9FiFuS5RR2rNbGERjizxLJS ucifI57bLIccaZQ5jDZcjh8gRPc+yV2tsqm65BIR/epRqdEArTJD3JLh3Qfkr3zQ /vHPGHdx+MnJYixZt12KjOJli1jN1zx5DVlh0/M/u9khUEy+phtmNa8fGQBYsUfL lmn1MFD4JfTCOd14DSlsBQzpSYyxKoGtFiTlJmwur2ZO0GKOt3wWTz5q+v0dl4XC ESz2bA== -----END CERTIFICATE-----Generated at Thu May 9 00:37:07 2024 by rpki-client on console-fra.rpki-client.org