$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149412.roa File: AS149412.roa (raw, json) Hash identifier: papSoqfCiKOg+LNqvN2HIPTT3S17TulcXytkOyfetDM= Subject key identifier: 2F:E3:88:53:84:2E:79:4B:1E:06:F6:3F:A7:4D:73:AD:10:32:B4:34 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4A312C8CB254A4011CF95F1AD7776405F7AFA568 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149412.roa Signing time: Mon 21 Apr 2025 05:00:00 +0000 ROA not before: Mon 21 Apr 2025 04:55:00 +0000 ROA not after: Mon 20 Apr 2026 05:00:00 +0000 asID: 149412 IP address blocks: 103.183.94.0/24 maxlen: 24 103.191.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:31:2c:8c:b2:54:a4:01:1c:f9:5f:1a:d7:77:64:05:f7:af:a5:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 21 04:55:00 2025 GMT Not After : Apr 20 05:00:00 2026 GMT Subject: CN=2FE38853842E794B1E06F63FA74D73AD1032B434 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:67:0f:f2:16:e0:9d:9a:6e:65:5d:6b:59:ba: 14:61:88:e4:cc:4f:a2:99:50:60:d7:ba:80:fd:1b: 1a:66:95:1b:5f:e2:40:a0:1f:f2:3c:72:ff:b7:d0: d1:74:7d:c4:a9:bd:39:8f:65:44:a8:6c:44:30:93: 8e:b7:1b:5a:21:33:26:f0:f2:9b:9b:3d:85:3b:04: a3:56:cb:65:54:bd:5c:3d:48:12:58:06:fc:e3:56: 00:25:3c:22:47:c5:e5:b0:d9:ab:85:36:e3:74:ee: a8:39:36:7b:8b:29:42:30:8e:31:49:cf:af:d9:89: aa:bc:5c:6c:82:28:d8:eb:18:6c:c5:fa:25:a1:dd: 5d:a5:f6:e0:6d:a4:e3:6f:9e:23:7e:7a:c6:1e:9f: a5:87:d0:ee:89:cd:24:de:b3:3d:2d:d1:52:27:5f: e0:33:6a:a5:f4:69:da:5f:95:7d:56:8b:bf:5b:b4: de:f5:6a:fb:49:da:eb:9c:9d:f9:01:96:10:99:d2: a7:3e:1e:87:0e:c8:3b:c6:d0:02:d0:53:12:ff:ff: de:13:0d:06:7b:d2:48:d5:a5:e1:b0:36:0d:00:e7: 7a:bd:0a:c2:18:fb:77:d7:e5:76:10:fa:67:82:d8: 22:12:20:c4:54:8f:c7:10:ed:68:32:3e:6c:ba:83: 51:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:E3:88:53:84:2E:79:4B:1E:06:F6:3F:A7:4D:73:AD:10:32:B4:34 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149412.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.183.94.0/24 103.191.94.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:2a:40:2d:91:f3:2c:cb:cf:60:aa:2d:2b:63:d5:18:2b:f7: c1:c1:27:ac:49:28:b7:c4:7f:7f:71:15:a9:1e:80:7b:f8:1e: 19:b3:6c:ad:a6:da:2e:e9:7f:eb:ef:1d:29:d4:0c:45:f4:47: 76:9d:29:c5:8d:7e:cd:f9:41:87:90:a6:ff:c2:f9:30:04:10: 82:42:f4:88:d5:5a:69:f8:59:0b:1b:74:97:25:2d:0b:a0:cc: a0:a6:e9:72:de:41:28:0a:f8:d0:16:76:21:b9:15:22:09:76: 29:62:96:a0:0d:fb:ed:e0:c7:1f:99:d8:99:72:ad:ca:54:60: 76:06:fd:6f:dd:a2:32:26:d4:b1:45:a5:65:13:b8:f8:29:30: 4a:61:9e:87:f9:3f:1f:ef:9d:92:b2:85:04:5e:1c:57:e0:f7: 13:26:f5:0c:b4:66:8b:47:3c:1b:79:b0:a8:a3:22:07:a0:11: 5d:7f:ef:03:f8:90:9c:81:ba:6c:1d:5f:9b:e3:3f:2f:fd:96: e3:07:a6:84:40:b0:fd:09:b2:38:74:b0:02:77:30:ea:c2:64: 13:61:cf:2c:75:d2:31:3e:fb:b3:4e:f2:13:2b:e0:55:c2:a8: f5:1d:ef:0f:75:6c:a1:3e:a0:46:7a:31:12:24:20:ad:ad:ab: 75:5f:30:78 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUSjEsjLJUpAEc+V8a13dkBfevpWgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQyMTA0NTUwMFoX DTI2MDQyMDA1MDAwMFowMzExMC8GA1UEAxMoMkZFMzg4NTM4NDJFNzk0QjFFMDZG NjNGQTc0RDczQUQxMDMyQjQzNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPVnD/IW4J2abmVda1m6FGGI5MxPoplQYNe6gP0bGmaVG1/iQKAf8jxy/7fQ 0XR9xKm9OY9lRKhsRDCTjrcbWiEzJvDym5s9hTsEo1bLZVS9XD1IElgG/ONWACU8 IkfF5bDZq4U243TuqDk2e4spQjCOMUnPr9mJqrxcbIIo2OsYbMX6JaHdXaX24G2k 42+eI356xh6fpYfQ7onNJN6zPS3RUidf4DNqpfRp2l+VfVaLv1u03vVq+0na65yd +QGWEJnSpz4ehw7IO8bQAtBTEv//3hMNBnvSSNWl4bA2DQDner0Kwhj7d9fldhD6 Z4LYIhIgxFSPxxDtaDI+bLqDUScCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBQv44hT hC55Sx4G9j+nTXOtEDK0NDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTQxMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGe3XgMEAGe/XjANBgkqhkiG9w0BAQsFAAOCAQEAfSpALZHzLMvP YKotK2PVGCv3wcEnrEkot8R/f3EVqR6Ae/geGbNsrabaLul/6+8dKdQMRfRHdp0p xY1+zflBh5Cm/8L5MAQQgkL0iNVaafhZCxt0lyUtC6DMoKbpct5BKAr40BZ2IbkV Igl2KWKWoA377eDHH5nYmXKtylRgdgb9b92iMibUsUWlZRO4+CkwSmGeh/k/H++d krKFBF4cV+D3Eyb1DLRmi0c8G3mwqKMiB6ARXX/vA/iQnIG6bB1fm+M/L/2W4wem hECw/QmyOHSwAncw6sJkE2HPLHXSMT77s07yEyvgVcKo9R3vD3VsoT6gRnoxEiQg ra2rdV8weA== -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:19 2025 by rpki-client on console.sobornost.net