$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149976.roa File: AS149976.roa (raw, json) Hash identifier: 9h4t8duhStzmiMoNPbTvJJcEUXJbHVIU/EHGugHVbj4= Subject key identifier: BF:7C:9F:46:99:85:CE:66:E6:56:FC:7A:CD:74:6F:B8:4E:D2:3C:68 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5604AC4EC3BE0425E14FAF3F167EE311A8F9717C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149976.roa Signing time: Wed 16 Apr 2025 03:00:00 +0000 ROA not before: Wed 16 Apr 2025 02:55:00 +0000 ROA not after: Wed 15 Apr 2026 03:00:00 +0000 asID: 149976 IP address blocks: 2001:df2:91c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:04:ac:4e:c3:be:04:25:e1:4f:af:3f:16:7e:e3:11:a8:f9:71:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 16 02:55:00 2025 GMT Not After : Apr 15 03:00:00 2026 GMT Subject: CN=BF7C9F469985CE66E656FC7ACD746FB84ED23C68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:54:6c:06:5f:56:11:c3:6e:aa:e4:3e:7d:66: b9:03:34:9a:28:9f:93:ef:2c:63:8a:f9:c7:d4:43: c0:85:37:1b:bd:2b:e1:ce:0a:62:df:65:25:34:47: ca:d3:a8:a6:2b:8b:ac:09:15:72:e3:76:7f:46:68: b9:db:96:a7:43:50:e7:92:7b:66:c3:ac:ae:aa:0c: 0e:ef:6a:a7:5c:d5:1b:d5:11:c8:38:55:7d:2d:0a: b9:de:97:db:42:c5:9b:40:d8:f3:c6:a9:ef:7b:17: 7b:4f:3d:97:73:8f:ea:b6:51:22:0f:2e:3b:91:f8: 42:c7:92:a5:fe:53:f7:68:94:01:60:bf:e7:eb:5e: e9:2c:7d:6b:cb:7a:ae:51:e8:1e:9a:93:22:58:e9: 9f:ae:63:e3:40:a3:ce:bb:5e:40:df:e6:c2:4b:3d: 0c:ca:83:9a:b8:0c:65:8c:76:67:0c:e0:28:fd:e2: 2b:76:44:b7:b9:2e:75:71:e4:71:7a:31:bd:29:41: de:86:20:e3:bd:cb:5d:11:26:9e:59:d4:76:6c:2f: 36:fb:92:48:0d:9e:10:1a:14:14:ee:f2:90:e8:8e: 05:a9:5b:d9:cd:61:a9:21:07:ed:a9:11:ca:3f:f1: 0a:4b:59:e2:a8:26:72:32:f2:d6:b0:b0:41:8c:a0: 94:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:7C:9F:46:99:85:CE:66:E6:56:FC:7A:CD:74:6F:B8:4E:D2:3C:68 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149976.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:91c0::/48 Signature Algorithm: sha256WithRSAEncryption 95:7e:42:5c:0d:5f:8f:58:5b:33:d7:dc:e0:8a:01:80:33:f6: 64:9a:b1:90:3c:2a:2b:1a:89:31:25:81:88:5b:37:ef:e5:7f: 49:c7:7b:f0:91:ca:81:2d:2f:4d:57:99:41:ad:73:88:a0:6a: e8:cd:ff:b3:2d:f7:2e:d1:74:44:34:fa:45:bb:47:dc:90:4d: 2d:b6:dd:50:41:63:3b:a9:46:12:dc:e2:dd:5a:f5:a9:ea:69: b8:99:fa:66:b1:6f:54:50:35:d4:2e:db:61:3e:3b:bc:8b:6f: 7a:5b:f2:1e:0e:45:86:92:72:96:65:35:67:a7:d5:53:2b:b5: 92:de:ea:b3:09:38:72:c0:9a:0d:86:ac:0e:d1:73:72:e1:9b: 3c:28:3f:68:65:80:43:fc:4a:32:66:41:54:49:6b:3d:1b:f9: 7f:1a:d6:47:5a:b8:95:0c:2e:68:7f:e5:c7:82:bc:22:44:d6: ea:e3:c9:93:2b:bc:de:45:65:cb:4b:62:be:a6:89:81:b4:18: c6:e2:dc:a3:c4:75:f1:72:f5:ce:10:24:f2:5a:e7:0a:02:5a: 1a:5e:54:15:76:44:37:3a:d5:a6:58:7e:09:02:e4:3f:de:9f: 64:9e:a6:a3:ae:88:f9:6e:34:66:ac:de:22:54:cc:a4:69:89: 7b:08:ca:dd -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUVgSsTsO+BCXhT68/Fn7jEaj5cXwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQxNjAyNTUwMFoX DTI2MDQxNTAzMDAwMFowMzExMC8GA1UEAxMoQkY3QzlGNDY5OTg1Q0U2NkU2NTZG QzdBQ0Q3NDZGQjg0RUQyM0M2ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALNUbAZfVhHDbqrkPn1muQM0miifk+8sY4r5x9RDwIU3G70r4c4KYt9lJTRH ytOopiuLrAkVcuN2f0ZouduWp0NQ55J7ZsOsrqoMDu9qp1zVG9URyDhVfS0Kud6X 20LFm0DY88ap73sXe089l3OP6rZRIg8uO5H4QseSpf5T92iUAWC/5+te6Sx9a8t6 rlHoHpqTIljpn65j40CjzrteQN/mwks9DMqDmrgMZYx2ZwzgKP3iK3ZEt7kudXHk cXoxvSlB3oYg473LXREmnlnUdmwvNvuSSA2eEBoUFO7ykOiOBalb2c1hqSEH7akR yj/xCktZ4qgmcjLy1rCwQYyglIECAwEAAaOCAdMwggHPMB0GA1UdDgQWBBS/fJ9G mYXOZuZW/HrNdG+4TtI8aDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTk3Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfKRwDANBgkqhkiG9w0BAQsFAAOCAQEAlX5CXA1fj1hbM9fc 4IoBgDP2ZJqxkDwqKxqJMSWBiFs37+V/Scd78JHKgS0vTVeZQa1ziKBq6M3/sy33 LtF0RDT6RbtH3JBNLbbdUEFjO6lGEtzi3Vr1qeppuJn6ZrFvVFA11C7bYT47vItv elvyHg5FhpJylmU1Z6fVUyu1kt7qswk4csCaDYasDtFzcuGbPCg/aGWAQ/xKMmZB VElrPRv5fxrWR1q4lQwuaH/lx4K8IkTW6uPJkyu83kVly0tivqaJgbQYxuLco8R1 8XL1zhAk8lrnCgJaGl5UFXZENzrVplh+CQLkP96fZJ6mo66I+W40ZqzeIlTMpGmJ ewjK3Q== -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:19 2025 by rpki-client on console.sobornost.net