$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59149.roa File: AS59149.roa (raw, json) Hash identifier: 2FNjSJI1tkHC+QR0l4IyJpYEOewjC5/NDA1HYVGxpj8= Subject key identifier: 02:FC:33:A4:CB:B5:84:95:30:BB:71:D2:08:47:9D:B9:8D:21:CE:76 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1D0E5535D4BA8C52668AE3C67923B3EA73044508 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59149.roa Signing time: Thu 04 Apr 2024 04:00:00 +0000 ROA not before: Thu 04 Apr 2024 03:55:00 +0000 ROA not after: Thu 03 Apr 2025 04:00:00 +0000 asID: 59149 IP address blocks: 103.111.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:0e:55:35:d4:ba:8c:52:66:8a:e3:c6:79:23:b3:ea:73:04:45:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 4 03:55:00 2024 GMT Not After : Apr 3 04:00:00 2025 GMT Subject: CN=02FC33A4CBB5849530BB71D208479DB98D21CE76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:10:ae:98:a0:1b:dd:86:cd:45:f8:dc:55:cf: 33:90:25:94:01:f3:47:48:30:8a:7d:7e:28:b0:64: 4f:54:d8:07:af:dc:95:6b:c7:24:7f:9d:1b:0c:2b: 42:39:35:59:27:5f:2c:f9:fa:da:c1:79:db:a1:f9: dc:6a:dd:ff:6b:d0:51:4a:a0:d2:dd:93:35:cd:fc: 7c:f6:87:57:3a:98:a5:cb:0b:22:d0:01:58:9f:cd: 3c:6e:de:df:79:0c:47:98:0f:e3:87:be:31:cd:3b: fc:e9:60:6f:02:9b:9d:11:cf:27:1e:56:e4:97:7b: 99:7b:26:5a:d0:53:d6:c8:96:00:91:be:70:73:4e: 95:40:e2:81:2a:93:c4:a9:03:ee:36:5f:bf:3f:e9: 7b:22:6c:1f:ae:2f:68:6d:dc:d2:01:93:fe:ab:0f: 1b:a2:92:70:6f:3a:8b:b6:02:42:78:ac:ef:de:50: ab:c1:45:16:30:99:82:d2:75:e7:4b:b8:2b:a5:40: d7:7b:d6:4d:65:d0:42:72:23:26:54:a6:68:b6:e4: 9d:38:07:1e:c4:8a:fe:1f:62:96:e3:d7:1f:8c:97: 63:a4:92:bc:c5:41:1b:ba:b9:fa:1d:52:18:ab:be: a1:6b:1e:06:90:f6:55:8d:fc:db:b6:52:b0:c5:86: 3e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:FC:33:A4:CB:B5:84:95:30:BB:71:D2:08:47:9D:B9:8D:21:CE:76 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59149.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.111.248.0/22 Signature Algorithm: sha256WithRSAEncryption 82:bf:82:9a:63:5d:35:5f:a3:b9:e8:bd:cc:8e:bd:41:f8:d7: e3:07:00:13:78:01:12:a3:dc:2e:2c:3a:8e:e6:2f:26:74:f0: 1a:89:0b:36:af:28:fd:5e:e4:d0:c0:55:74:29:4d:1c:08:bb: 29:b8:9c:19:b0:64:77:11:2c:87:dd:31:87:8c:44:b3:77:5b: e0:9a:e0:e1:56:d7:ef:26:0d:0c:39:0b:e5:7f:89:04:47:20: ce:53:25:1e:e1:b4:6f:45:95:c9:bf:92:d0:cc:99:78:fe:2f: ee:1a:54:9f:9f:01:d9:b6:56:c4:0a:ad:07:56:ba:23:74:15: ee:57:30:7f:75:b6:a0:62:da:ba:02:33:d5:ff:d9:48:e2:9d: 80:8f:ce:4f:2b:d1:e4:87:0c:2d:36:82:43:ac:6b:7c:d3:a6: 44:93:c5:2f:f2:e3:ce:37:2a:5c:7b:36:4a:b1:83:d5:6b:bd: ef:6e:80:0f:85:3e:be:43:0e:7e:a5:10:b9:f3:9f:20:27:90: 32:ed:34:55:3a:0e:46:71:d1:1a:1d:70:37:5c:d3:4e:46:8d: 7e:77:69:d4:bf:eb:ee:1c:1f:4a:1f:fa:d0:40:3f:47:a6:15: 9e:fa:d3:1d:5e:50:5d:ee:65:16:64:e2:b0:2e:2f:4f:1b:1b: 90:d6:8e:c1 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUHQ5VNdS6jFJmiuPGeSOz6nMERQgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQwNDAzNTUwMFoX DTI1MDQwMzA0MDAwMFowMzExMC8GA1UEAxMoMDJGQzMzQTRDQkI1ODQ5NTMwQkI3 MUQyMDg0NzlEQjk4RDIxQ0U3NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMoQrpigG92GzUX43FXPM5AllAHzR0gwin1+KLBkT1TYB6/clWvHJH+dGwwr Qjk1WSdfLPn62sF526H53Grd/2vQUUqg0t2TNc38fPaHVzqYpcsLItABWJ/NPG7e 33kMR5gP44e+Mc07/OlgbwKbnRHPJx5W5Jd7mXsmWtBT1siWAJG+cHNOlUDigSqT xKkD7jZfvz/peyJsH64vaG3c0gGT/qsPG6KScG86i7YCQnis795Qq8FFFjCZgtJ1 50u4K6VA13vWTWXQQnIjJlSmaLbknTgHHsSK/h9iluPXH4yXY6SSvMVBG7q5+h1S GKu+oWseBpD2VY3827ZSsMWGPiUCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBQC/DOk y7WElTC7cdIIR525jSHOdjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU5MTQ5LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ2/4MA0GCSqGSIb3DQEBCwUAA4IBAQCCv4KaY101X6O56L3Mjr1B +NfjBwATeAESo9wuLDqO5i8mdPAaiQs2ryj9XuTQwFV0KU0cCLspuJwZsGR3ESyH 3TGHjESzd1vgmuDhVtfvJg0MOQvlf4kERyDOUyUe4bRvRZXJv5LQzJl4/i/uGlSf nwHZtlbECq0HVrojdBXuVzB/dbagYtq6AjPV/9lI4p2Aj85PK9HkhwwtNoJDrGt8 06ZEk8Uv8uPONypcezZKsYPVa73vboAPhT6+Qw5+pRC5858gJ5Ay7TRVOg5GcdEa HXA3XNNORo1+d2nUv+vuHB9KH/rQQD9HphWe+tMdXlBd7mUWZOKwLi9PGxuQ1o7B -----END CERTIFICATE-----Generated at Wed May 8 22:46:44 2024 by rpki-client on console-ams.rpki-client.org