$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149714.roa File: AS149714.roa (raw, json) Hash identifier: 33GJbsEdQr1gRDu3msBx1bFZf4BZZ0MT+Nx0Ct8r3Zo= Subject key identifier: 6A:F6:05:07:56:D4:E9:05:1E:B2:D7:6D:9F:29:12:A6:78:A4:41:9A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 522EA7453A06FF1E15794621C5750F64586D5C6E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149714.roa Signing time: Mon 21 Jul 2025 03:00:00 +0000 ROA not before: Mon 21 Jul 2025 02:55:00 +0000 ROA not after: Mon 20 Jul 2026 03:00:00 +0000 asID: 149714 IP address blocks: 2001:df1:56c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 13:36:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:2e:a7:45:3a:06:ff:1e:15:79:46:21:c5:75:0f:64:58:6d:5c:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 21 02:55:00 2025 GMT Not After : Jul 20 03:00:00 2026 GMT Subject: CN=6AF6050756D4E9051EB2D76D9F2912A678A4419A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:98:6c:0a:e3:08:b5:c3:fd:63:8a:bc:26:99: b8:d7:b7:f0:4c:87:96:04:09:4e:14:75:2d:75:06: 4d:a4:2c:93:45:ca:9a:28:f2:4c:99:e1:f7:e7:de: 64:4a:a6:b5:9a:fd:35:30:3c:d5:43:0d:e1:9d:16: a6:54:94:8e:ca:1d:8f:4f:a4:f6:b2:90:78:3b:97: 52:6e:6c:a0:10:68:e3:75:32:35:df:93:c1:11:d7: 84:88:06:32:78:2a:9a:12:36:0b:45:fd:9d:be:8c: 2a:28:44:4b:67:b3:57:16:54:f2:bd:e1:d6:34:91: ae:e7:81:16:85:7f:d9:9b:91:9f:04:c6:70:67:b0: a5:e5:74:fc:30:80:95:4c:01:ba:e6:d3:81:d8:04: cd:f4:dc:26:95:88:2d:f0:64:3c:07:1c:94:0a:a4: 04:12:fc:bf:3a:dd:73:e2:dd:f6:0e:e0:b0:c1:12: c2:03:38:80:6e:88:42:97:16:6d:c5:19:3f:0c:93: d0:18:3a:05:97:ca:54:b4:29:dc:e2:80:4b:0e:de: 14:12:25:77:0c:63:d1:0f:b4:8e:7a:17:03:13:b2: 2f:32:f0:4b:93:54:29:d8:78:9d:0f:0f:39:a8:61: e0:0e:83:2f:de:38:69:f3:0b:0f:a9:af:69:cf:56: 6f:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:F6:05:07:56:D4:E9:05:1E:B2:D7:6D:9F:29:12:A6:78:A4:41:9A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149714.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:56c0::/48 Signature Algorithm: sha256WithRSAEncryption 69:bc:e4:66:52:6a:96:87:83:3a:1a:23:ee:86:ac:11:95:3c: e4:61:7c:a6:82:b5:4e:37:8e:b6:c3:22:55:d1:c1:fe:f1:7b: ad:54:c1:7c:d7:75:74:f4:5c:04:2f:3f:20:c0:7e:a1:b5:03: 81:37:95:21:77:43:ad:cc:7f:27:03:d1:6a:23:27:6e:22:d7: 7c:c5:b0:60:7b:d7:b3:42:36:41:a1:16:93:1b:eb:a5:de:96: 17:f0:71:7f:2c:2e:36:cb:c6:a0:18:69:db:69:33:e7:9f:7b: 26:89:ba:f0:bd:00:34:81:1d:66:96:40:1e:76:7f:60:5a:12: 04:1f:f8:be:ef:6d:90:53:4b:96:21:83:88:29:2a:90:61:95: 18:e4:fb:10:08:82:59:89:e2:e2:ac:2a:22:32:d0:ad:5f:7b: 89:45:e9:c9:59:be:3e:d6:ac:7a:85:6e:de:51:d2:8b:2d:91: ca:24:ed:49:3a:5f:67:3d:b7:36:5a:7b:fb:90:d1:eb:c5:36: 52:80:2c:b7:a8:c8:9b:b3:13:1b:f9:a2:f5:82:66:1a:7b:83: ed:44:c9:ac:cb:b4:cd:81:f0:91:fd:2a:a2:06:90:d9:41:dc: 3e:63:61:9b:a2:90:fc:cc:23:e1:3e:37:8f:3b:c4:37:95:36: 45:94:a9:73 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUUi6nRToG/x4VeUYhxXUPZFhtXG4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcyMTAyNTUwMFoX DTI2MDcyMDAzMDAwMFowMzExMC8GA1UEAxMoNkFGNjA1MDc1NkQ0RTkwNTFFQjJE NzZEOUYyOTEyQTY3OEE0NDE5QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN2YbArjCLXD/WOKvCaZuNe38EyHlgQJThR1LXUGTaQsk0XKmijyTJnh9+fe ZEqmtZr9NTA81UMN4Z0WplSUjsodj0+k9rKQeDuXUm5soBBo43UyNd+TwRHXhIgG MngqmhI2C0X9nb6MKihES2ezVxZU8r3h1jSRrueBFoV/2ZuRnwTGcGewpeV0/DCA lUwBuubTgdgEzfTcJpWILfBkPAcclAqkBBL8vzrdc+Ld9g7gsMESwgM4gG6IQpcW bcUZPwyT0Bg6BZfKVLQp3OKASw7eFBIldwxj0Q+0jnoXAxOyLzLwS5NUKdh4nQ8P Oahh4A6DL944afMLD6mvac9WbwMCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRq9gUH VtTpBR6y122fKRKmeKRBmjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTcxNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfFWwDANBgkqhkiG9w0BAQsFAAOCAQEAabzkZlJqloeDOhoj 7oasEZU85GF8poK1TjeOtsMiVdHB/vF7rVTBfNd1dPRcBC8/IMB+obUDgTeVIXdD rcx/JwPRaiMnbiLXfMWwYHvXs0I2QaEWkxvrpd6WF/BxfywuNsvGoBhp22kz5597 Jom68L0ANIEdZpZAHnZ/YFoSBB/4vu9tkFNLliGDiCkqkGGVGOT7EAiCWYni4qwq IjLQrV97iUXpyVm+PtaseoVu3lHSiy2RyiTtSTpfZz23Nlp7+5DR68U2UoAst6jI m7MTG/mi9YJmGnuD7UTJrMu0zYHwkf0qogaQ2UHcPmNhm6KQ/Mwj4T43jzvEN5U2 RZSpcw== -----END CERTIFICATE-----Generated at Wed Aug 6 03:59:20 2025 by rpki-client