$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149712.roa File: AS149712.roa (raw, json) Hash identifier: PUMFTnS8QiMTEhOhsmQwC/mo6uA2l1YBuKRpo8MOnM4= Subject key identifier: 6C:AC:1B:3C:08:BF:98:49:D1:E5:AC:3D:FB:B9:E9:53:93:E5:C9:49 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 762E880FADAA88085B07E810E9D93927F89EC4F1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149712.roa Signing time: Tue 07 Jan 2025 08:00:00 +0000 ROA not before: Tue 07 Jan 2025 07:55:00 +0000 ROA not after: Tue 06 Jan 2026 08:00:00 +0000 asID: 149712 IP address blocks: 2001:df1:3d40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:2e:88:0f:ad:aa:88:08:5b:07:e8:10:e9:d9:39:27:f8:9e:c4:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 7 07:55:00 2025 GMT Not After : Jan 6 08:00:00 2026 GMT Subject: CN=6CAC1B3C08BF9849D1E5AC3DFBB9E95393E5C949 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6d:c1:2a:38:0b:96:5d:18:18:4f:8d:2c:24: 5c:da:00:5a:1a:ef:c4:4a:aa:0a:ad:d4:8e:51:b4: 52:ad:af:b4:06:4f:36:3a:7f:aa:7c:f4:89:74:f7: 63:ea:7b:74:a7:1b:85:96:d7:1a:61:11:89:3f:c2: 43:6f:c9:4e:c1:80:1e:7e:e5:fb:0e:56:b4:cd:a4: ee:93:68:fa:31:42:8a:49:c0:f1:4f:1a:6e:f1:70: a8:cf:53:5a:82:c7:95:64:69:fe:0b:81:e0:24:03: 2c:3b:c1:7d:7d:50:7a:f1:ef:bb:12:02:a3:d6:5c: d8:9e:1a:94:34:6c:b4:3d:c8:50:e0:da:11:51:dd: 78:b0:dc:01:d7:82:26:e0:3b:be:ba:fe:62:dc:0f: d4:e4:77:03:12:c6:bf:3a:46:55:f8:2b:a4:1f:09: 93:c7:2b:a1:d9:2a:cb:da:47:6e:1c:1a:84:7b:3f: 0a:bf:c0:ee:16:75:ae:8c:02:6f:87:16:9e:fc:f3: 27:27:ed:8d:97:ea:03:da:23:ef:ee:f0:d8:5f:8d: 87:20:e4:ee:21:df:85:05:89:45:6c:be:97:f3:57: 5b:dd:f1:21:67:0f:0e:47:1d:15:a4:04:27:72:c0: c5:77:ab:90:b6:e7:24:20:2f:49:63:75:ce:80:ec: 0d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:AC:1B:3C:08:BF:98:49:D1:E5:AC:3D:FB:B9:E9:53:93:E5:C9:49 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149712.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:3d40::/48 Signature Algorithm: sha256WithRSAEncryption 5b:c4:93:a6:29:d3:6c:d9:6b:a8:1d:c6:d4:7f:47:a7:83:67: 04:9c:6d:90:4a:79:8e:02:7b:5b:7e:3c:ad:03:21:00:b3:bc: 7d:91:25:66:f8:dc:43:36:3b:00:0c:c1:11:f2:3a:53:9a:fb: 30:59:4f:83:a0:76:9e:46:3f:22:41:36:ae:ac:5d:58:ef:e1: 6d:38:57:df:92:1a:b7:71:3f:26:8d:df:07:73:0d:9b:4e:70: 2d:3d:15:dd:f3:8d:50:df:ef:44:cf:f1:ca:26:bc:6e:30:1c: 16:f9:b9:23:91:12:27:af:d5:05:49:93:5e:a9:f2:98:e8:62: 8f:d2:39:be:bc:3e:a5:d0:93:c4:6a:62:bf:4d:1b:1e:a7:11: 85:6f:90:ce:b5:04:b7:62:d1:23:f2:d8:aa:2f:d8:7c:7a:b4: 37:ce:22:d4:33:c6:71:e1:4c:57:b6:76:2c:dd:f1:22:66:75: 2c:49:49:ef:f1:15:1e:7c:42:3d:6c:4e:d1:37:05:99:6d:3e: 28:f3:da:e7:3b:3d:77:80:ce:e7:cf:c6:1b:72:3b:95:48:4d: bc:29:ba:2c:23:e7:7e:12:13:67:7d:8f:10:8b:e3:e6:1b:8f: d5:a8:f3:f4:f7:6f:a6:98:9d:b0:b2:d7:e5:13:19:94:5a:21: c6:7e:7c:64 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUdi6ID62qiAhbB+gQ6dk5J/iexPEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDEwNzA3NTUwMFoX DTI2MDEwNjA4MDAwMFowMzExMC8GA1UEAxMoNkNBQzFCM0MwOEJGOTg0OUQxRTVB QzNERkJCOUU5NTM5M0U1Qzk0OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMRtwSo4C5ZdGBhPjSwkXNoAWhrvxEqqCq3UjlG0Uq2vtAZPNjp/qnz0iXT3 Y+p7dKcbhZbXGmERiT/CQ2/JTsGAHn7l+w5WtM2k7pNo+jFCiknA8U8abvFwqM9T WoLHlWRp/guB4CQDLDvBfX1QevHvuxICo9Zc2J4alDRstD3IUODaEVHdeLDcAdeC JuA7vrr+YtwP1OR3AxLGvzpGVfgrpB8Jk8crodkqy9pHbhwahHs/Cr/A7hZ1rowC b4cWnvzzJyftjZfqA9oj7+7w2F+NhyDk7iHfhQWJRWy+l/NXW93xIWcPDkcdFaQE J3LAxXerkLbnJCAvSWN1zoDsDc8CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRsrBs8 CL+YSdHlrD37uelTk+XJSTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTcxMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfE9QDANBgkqhkiG9w0BAQsFAAOCAQEAW8STpinTbNlrqB3G 1H9Hp4NnBJxtkEp5jgJ7W348rQMhALO8fZElZvjcQzY7AAzBEfI6U5r7MFlPg6B2 nkY/IkE2rqxdWO/hbThX35Iat3E/Jo3fB3MNm05wLT0V3fONUN/vRM/xyia8bjAc Fvm5I5ESJ6/VBUmTXqnymOhij9I5vrw+pdCTxGpiv00bHqcRhW+QzrUEt2LRI/LY qi/YfHq0N84i1DPGceFMV7Z2LN3xImZ1LElJ7/EVHnxCPWxO0TcFmW0+KPPa5zs9 d4DO58/GG3I7lUhNvCm6LCPnfhITZ32PEIvj5huP1ajz9PdvppidsLLX5RMZlFoh xn58ZA== -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:19 2025 by rpki-client on console.sobornost.net