$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59149.roa File: AS59149.roa (raw, json) Hash identifier: NUcDJrm6i4MnO51NhSY1r4ZjYamK81Lz+1q6AOy+adQ= Subject key identifier: FB:9B:E7:C6:59:08:D4:52:68:C5:D4:A6:BA:05:AF:EE:2B:9A:E9:D6 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7C5B6B8350953929D92497334FF516AEE57C6F03 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59149.roa Signing time: Thu 06 Mar 2025 04:00:00 +0000 ROA not before: Thu 06 Mar 2025 03:55:00 +0000 ROA not after: Thu 05 Mar 2026 04:00:00 +0000 asID: 59149 IP address blocks: 103.111.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:5b:6b:83:50:95:39:29:d9:24:97:33:4f:f5:16:ae:e5:7c:6f:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 6 03:55:00 2025 GMT Not After : Mar 5 04:00:00 2026 GMT Subject: CN=FB9BE7C65908D45268C5D4A6BA05AFEE2B9AE9D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d3:e3:78:3a:2c:ca:44:fb:63:6d:aa:d4:29: 65:35:b5:f4:e0:0d:67:24:f6:cf:0b:56:b2:a4:9c: 7b:c7:5f:bd:ec:99:74:12:6c:3b:f8:58:f5:56:60: 7d:ed:88:99:bf:4a:67:95:fe:9a:44:c8:f1:18:02: d9:79:c0:ea:76:57:f5:1c:7b:8c:3e:7d:e4:c9:9d: 0d:78:ad:e6:3d:e3:24:18:36:c8:d6:c2:fa:c9:22: ac:d1:d8:01:83:70:18:e9:e7:3a:2c:45:9b:a1:c9: ee:50:ff:f9:80:35:a9:08:e3:a2:be:84:fb:86:5e: 36:cd:f7:8e:2e:fa:1c:3e:74:19:38:3b:d8:e8:7d: 96:aa:70:b3:89:31:08:8c:c0:96:6f:3d:b1:7f:27: a8:0d:76:21:f0:ac:1d:b7:6d:20:c3:e1:98:14:d5: cc:0b:39:94:87:ed:25:14:da:69:36:6c:35:b6:46: 08:47:2d:c5:f0:c3:d7:f2:ee:3f:0a:81:c8:f8:fd: 48:c2:fa:ea:17:6d:be:b4:43:0c:22:d5:6e:59:73: bc:e2:7e:94:46:23:7d:0a:85:1b:52:04:94:49:50: fe:4d:a4:2a:d1:82:9e:24:7c:16:29:94:74:36:c5: 75:a0:80:95:0e:7a:bd:75:c2:83:54:0d:bc:6b:81: 59:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:9B:E7:C6:59:08:D4:52:68:C5:D4:A6:BA:05:AF:EE:2B:9A:E9:D6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59149.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.111.248.0/22 Signature Algorithm: sha256WithRSAEncryption 79:73:92:2c:7a:20:e3:92:8d:8a:4f:5a:65:a4:f7:e6:dc:22: 84:88:ad:8c:4b:0e:4d:b6:6f:ee:4f:88:5a:22:3e:57:24:86: 09:af:38:ef:4b:8b:3a:e8:36:c9:d3:11:82:bc:37:4a:06:08: 8a:eb:9d:b3:2f:4d:b4:0e:02:ef:80:58:ea:ef:50:58:ef:40: 67:0c:6c:ca:3b:84:ac:5d:83:e2:55:3d:3c:03:29:67:b0:a2: 34:f5:ea:bd:78:6a:ae:bc:43:74:d6:b9:ce:ac:1e:1d:12:b4: f7:56:28:ac:d9:c5:9c:1b:35:4f:0f:df:2f:76:03:3f:98:13: 74:af:52:81:ca:0a:a1:f4:69:dc:3f:ae:57:88:cf:c1:43:ff: cc:51:6d:55:5d:c6:cb:2d:b1:49:fc:66:c5:a5:52:39:49:68: 16:c8:3b:dc:55:06:6f:83:4b:92:99:e5:a9:b7:42:9d:70:66: ea:c7:2e:c2:e6:5d:20:08:a1:ae:85:88:d2:84:82:48:c4:ed: ce:ea:29:4d:2f:af:7d:3b:c6:c9:2a:ac:54:f2:77:95:db:89: fd:4b:13:af:43:9c:7f:96:08:e5:b8:a8:f6:d1:03:de:0f:76: 87:fc:e8:02:d8:be:7f:2a:d8:62:c7:65:70:9e:30:4a:64:5a: b6:e0:6d:f6 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUfFtrg1CVOSnZJJczT/UWruV8bwMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDMwNjAzNTUwMFoX DTI2MDMwNTA0MDAwMFowMzExMC8GA1UEAxMoRkI5QkU3QzY1OTA4RDQ1MjY4QzVE NEE2QkEwNUFGRUUyQjlBRTlENjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMbT43g6LMpE+2NtqtQpZTW19OANZyT2zwtWsqSce8dfveyZdBJsO/hY9VZg fe2Imb9KZ5X+mkTI8RgC2XnA6nZX9Rx7jD595MmdDXit5j3jJBg2yNbC+skirNHY AYNwGOnnOixFm6HJ7lD/+YA1qQjjor6E+4ZeNs33ji76HD50GTg72Oh9lqpws4kx CIzAlm89sX8nqA12IfCsHbdtIMPhmBTVzAs5lIftJRTaaTZsNbZGCEctxfDD1/Lu PwqByPj9SML66hdtvrRDDCLVbllzvOJ+lEYjfQqFG1IElElQ/k2kKtGCniR8FimU dDbFdaCAlQ56vXXCg1QNvGuBWTsCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBT7m+fG WQjUUmjF1Ka6Ba/uK5rp1jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU5MTQ5LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ2/4MA0GCSqGSIb3DQEBCwUAA4IBAQB5c5IseiDjko2KT1plpPfm 3CKEiK2MSw5Ntm/uT4haIj5XJIYJrzjvS4s66DbJ0xGCvDdKBgiK652zL020DgLv gFjq71BY70BnDGzKO4SsXYPiVT08AylnsKI09eq9eGquvEN01rnOrB4dErT3Viis 2cWcGzVPD98vdgM/mBN0r1KBygqh9GncP65XiM/BQ//MUW1VXcbLLbFJ/GbFpVI5 SWgWyDvcVQZvg0uSmeWpt0KdcGbqxy7C5l0gCKGuhYjShIJIxO3O6ilNL699O8bJ KqxU8neV24n9SxOvQ5x/lgjluKj20QPeD3aH/OgC2L5/Kthix2VwnjBKZFq24G32 -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:21 2025 by rpki-client on console.sobornost.net