$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149681.roa File: AS149681.roa (raw, json) Hash identifier: i7IhQ9SulHt+jTwuIXw+F/iqpAlZdOW9z6jL1HelpSw= Subject key identifier: 60:76:97:44:A4:6F:01:9D:71:98:E7:B9:1F:B4:E6:BA:87:F9:67:04 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 36B7590A25951E61C999F12C8DAE1340ED6E1DD3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149681.roa Signing time: Tue 22 Apr 2025 05:00:00 +0000 ROA not before: Tue 22 Apr 2025 04:55:00 +0000 ROA not after: Tue 21 Apr 2026 05:00:00 +0000 asID: 149681 IP address blocks: 103.185.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:b7:59:0a:25:95:1e:61:c9:99:f1:2c:8d:ae:13:40:ed:6e:1d:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 22 04:55:00 2025 GMT Not After : Apr 21 05:00:00 2026 GMT Subject: CN=60769744A46F019D7198E7B91FB4E6BA87F96704 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:57:a2:2f:20:b3:0b:47:f5:e4:ea:40:80:04: a9:f9:75:ee:f7:d2:a1:89:75:78:10:9e:04:ec:e6: 2b:1c:76:40:d0:16:49:98:50:c4:48:e4:97:94:aa: 91:4b:06:1b:a0:9f:e6:d1:a1:b9:cd:09:d4:68:3e: f4:fa:56:9c:fe:c4:df:d4:3f:12:f5:0e:d1:ff:d3: ff:74:81:c3:3f:43:89:d1:88:8a:17:5a:74:39:e8: 48:e0:77:5e:18:ed:06:ee:42:a0:e1:35:80:11:56: 05:bd:de:cd:9c:c8:66:aa:46:bc:c6:7e:2d:06:48: 45:4b:32:d0:09:00:cb:21:03:55:3a:fa:8c:92:ee: e5:e3:b6:50:6f:15:19:e8:dc:a5:a0:96:ee:96:b7: f6:97:44:7f:e5:e2:b2:d5:9a:df:f5:ef:06:d0:19: 51:45:80:78:69:32:46:99:e3:cb:4c:e3:3f:a3:e4: 5f:1d:87:ef:af:4b:81:21:dc:ae:aa:c3:bc:5e:45: 7a:88:ec:94:06:e0:78:f4:05:e3:43:f4:58:25:52: 91:0e:2c:b0:83:f0:aa:7f:9d:ff:19:e6:7b:4b:ff: a2:4a:30:b8:2b:f9:ad:f5:77:09:6b:e6:b1:12:68: f6:8d:89:2a:af:6b:77:59:9b:35:35:83:4e:23:dd: 55:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:76:97:44:A4:6F:01:9D:71:98:E7:B9:1F:B4:E6:BA:87:F9:67:04 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149681.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.185.40.0/23 Signature Algorithm: sha256WithRSAEncryption 07:6d:6f:aa:ef:04:2f:c5:e1:3c:3b:4a:9a:62:a7:ee:db:8b: 84:e9:ac:02:cc:f6:c5:06:57:28:c7:f4:47:d3:74:c4:9c:08: 7a:f0:bd:e4:57:3d:0a:05:e4:ef:91:85:ad:73:8e:bc:ac:0b: ba:b1:1d:90:58:94:ae:f6:45:c5:a8:1c:df:16:17:cf:29:51: ca:82:87:58:8d:e2:42:14:02:d3:3f:76:7d:2b:d2:df:04:e5: 37:55:2b:9e:61:74:fa:5f:3e:26:61:ed:72:5a:6c:f1:47:5f: e7:ca:d5:69:ec:64:bd:1a:17:ed:6f:b2:e5:b7:bb:06:e6:0a: 03:25:5f:93:84:0d:dd:c5:83:1e:a3:81:f7:e5:f6:76:34:b4: 36:fb:d7:3b:8a:02:f7:86:f7:58:3b:b3:02:20:73:7f:fe:aa: 20:32:89:0a:a1:2a:19:f2:0b:b8:99:55:94:fb:d6:d4:f3:59: c0:c3:83:bf:d3:86:1c:d2:e1:6d:29:c5:ca:ab:c7:d9:d5:76: 27:70:2c:e2:62:0e:45:3c:c7:cf:70:b3:bf:c2:ad:cc:2c:88: 56:be:ac:1d:38:1d:bc:d2:3a:f4:28:d4:db:df:73:45:fd:84: 64:b3:7f:ef:69:70:a3:07:d6:bc:56:e4:84:a4:ab:92:4e:71: 78:d0:71:ad -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUNrdZCiWVHmHJmfEsja4TQO1uHdMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQyMjA0NTUwMFoX DTI2MDQyMTA1MDAwMFowMzExMC8GA1UEAxMoNjA3Njk3NDRBNDZGMDE5RDcxOThF N0I5MUZCNEU2QkE4N0Y5NjcwNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKlXoi8gswtH9eTqQIAEqfl17vfSoYl1eBCeBOzmKxx2QNAWSZhQxEjkl5Sq kUsGG6Cf5tGhuc0J1Gg+9PpWnP7E39Q/EvUO0f/T/3SBwz9DidGIihdadDnoSOB3 XhjtBu5CoOE1gBFWBb3ezZzIZqpGvMZ+LQZIRUsy0AkAyyEDVTr6jJLu5eO2UG8V GejcpaCW7pa39pdEf+XistWa3/XvBtAZUUWAeGkyRpnjy0zjP6PkXx2H769LgSHc rqrDvF5FeojslAbgePQF40P0WCVSkQ4ssIPwqn+d/xnme0v/okowuCv5rfV3CWvm sRJo9o2JKq9rd1mbNTWDTiPdVSUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRgdpdE pG8BnXGY57kftOa6h/lnBDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTY4MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe5KDANBgkqhkiG9w0BAQsFAAOCAQEAB21vqu8EL8XhPDtKmmKn 7tuLhOmsAsz2xQZXKMf0R9N0xJwIevC95Fc9CgXk75GFrXOOvKwLurEdkFiUrvZF xagc3xYXzylRyoKHWI3iQhQC0z92fSvS3wTlN1UrnmF0+l8+JmHtclps8Udf58rV aexkvRoX7W+y5be7BuYKAyVfk4QN3cWDHqOB9+X2djS0NvvXO4oC94b3WDuzAiBz f/6qIDKJCqEqGfILuJlVlPvW1PNZwMODv9OGHNLhbSnFyqvH2dV2J3As4mIORTzH z3Czv8KtzCyIVr6sHTgdvNI69CjU299zRf2EZLN/72lwowfWvFbkhKSrkk5xeNBx rQ== -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:19 2025 by rpki-client on console.sobornost.net