$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38150.roa File: AS38150.roa (raw, json) Hash identifier: DKiHdcl0BVOjKtC8Ny+Yf/3boPHcB2/ZscTseN7CHO4= Subject key identifier: D6:41:0A:AD:5D:C6:2C:E7:17:FF:CA:F0:B5:ED:76:4A:29:8C:6A:2D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 04DA33B75EFB619BCA93C8F56B414B7DF3B33E72 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38150.roa Signing time: Mon 07 Aug 2023 03:00:00 +0000 ROA not before: Mon 07 Aug 2023 02:55:00 +0000 ROA not after: Mon 05 Aug 2024 03:00:00 +0000 asID: 38150 IP address blocks: 103.156.240.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 17:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:da:33:b7:5e:fb:61:9b:ca:93:c8:f5:6b:41:4b:7d:f3:b3:3e:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 7 02:55:00 2023 GMT Not After : Aug 5 03:00:00 2024 GMT Subject: CN=D6410AAD5DC62CE717FFCAF0B5ED764A298C6A2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:b4:57:62:f6:0f:e1:89:da:9c:83:59:e5:3a: 6e:85:2f:b3:7e:34:8e:c9:54:7f:9d:30:79:d0:26: a2:76:a5:5e:9f:d4:50:2f:b5:f1:a6:03:2b:39:de: 40:d0:36:89:92:f3:f1:fd:f3:ad:57:3a:c1:9c:74: 4a:a7:c6:26:e4:25:2c:20:02:5e:b7:b1:be:fd:22: 50:c5:fb:62:25:2f:ec:82:a8:7b:f0:f7:5b:30:1b: bf:3c:88:6e:98:ae:a3:df:d8:df:1e:a0:4e:8d:a1: 31:ce:12:98:75:be:ef:ee:3c:47:6d:80:da:4d:27: 3e:0e:9f:a6:73:23:c3:d1:c7:4f:e1:ad:b7:21:56: c7:b9:4e:b3:0c:f0:5e:a7:90:f2:81:60:88:00:93: 9d:a4:21:9b:7b:7f:e5:9c:39:74:9f:36:43:00:5a: ed:03:cb:c9:23:c9:06:a9:e0:86:ed:dd:f9:35:01: 3c:3e:f7:80:e7:13:37:b3:ad:ba:e3:4a:aa:1a:a9: c6:b5:2f:17:cf:b6:61:b0:6d:0e:81:48:bc:99:82: e7:d3:28:96:22:f6:e8:e2:d3:3b:53:bb:b9:d7:64: b7:2b:66:56:3d:00:a9:9f:26:01:fe:0c:5f:ca:f6: ea:fc:6a:3a:fe:34:c6:f6:d3:5c:ac:09:66:0d:4f: cc:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:41:0A:AD:5D:C6:2C:E7:17:FF:CA:F0:B5:ED:76:4A:29:8C:6A:2D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38150.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.240.0/23 Signature Algorithm: sha256WithRSAEncryption 30:60:c3:74:e8:5f:d0:61:47:ff:0e:bc:a4:5b:67:8c:21:d0: 16:dc:d9:61:aa:1c:79:bd:7b:25:a8:18:49:d0:c8:c6:4d:a8: 8a:61:bf:87:5f:45:cc:71:36:25:b6:57:9c:40:7f:5a:93:46: 4c:af:8e:46:fd:4d:ce:d7:b7:43:6d:55:83:ba:dc:59:c0:6e: af:10:92:85:98:ce:71:d7:f4:85:65:2c:fa:67:94:c9:ec:2b: 65:0b:59:c6:fb:1e:d6:ef:4a:7d:8d:98:0d:75:35:c3:2b:38: 1f:75:78:b7:f0:ba:e4:1a:bb:84:b4:da:f3:46:e9:a0:42:35: 1d:15:16:ab:c8:32:fc:ce:8f:fb:17:73:16:e2:b9:f2:f6:a3: 64:5f:ed:8d:49:42:7a:ee:2e:bc:cf:df:57:95:82:ca:db:d0: 59:f5:3b:6d:11:91:aa:41:22:75:4e:a8:a5:2a:11:8f:51:ed: b9:7d:86:e3:c2:c1:19:7e:65:c6:cb:d8:ac:50:b9:92:36:f2: cd:cd:74:f9:c9:51:18:20:cf:14:ce:7b:e3:c1:46:f3:c8:26: 60:08:76:86:06:24:a0:16:27:c8:a1:d7:c1:95:2b:ee:78:f3: 56:00:13:c8:52:28:00:80:f4:44:cc:57:b7:9f:72:0e:a3:05: d2:c8:a5:f7 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUBNozt177YZvKk8j1a0FLffOzPnIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgwNzAyNTUwMFoX DTI0MDgwNTAzMDAwMFowMzExMC8GA1UEAxMoRDY0MTBBQUQ1REM2MkNFNzE3RkZD QUYwQjVFRDc2NEEyOThDNkEyRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJS0V2L2D+GJ2pyDWeU6boUvs340jslUf50wedAmonalXp/UUC+18aYDKzne QNA2iZLz8f3zrVc6wZx0SqfGJuQlLCACXrexvv0iUMX7YiUv7IKoe/D3WzAbvzyI bpiuo9/Y3x6gTo2hMc4SmHW+7+48R22A2k0nPg6fpnMjw9HHT+GttyFWx7lOswzw XqeQ8oFgiACTnaQhm3t/5Zw5dJ82QwBa7QPLySPJBqnghu3d+TUBPD73gOcTN7Ot uuNKqhqpxrUvF8+2YbBtDoFIvJmC59MoliL26OLTO1O7uddktytmVj0AqZ8mAf4M X8r26vxqOv40xvbTXKwJZg1PzLkCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBTWQQqt XcYs5xf/yvC17XZKKYxqLTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzM4MTUwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5zwMA0GCSqGSIb3DQEBCwUAA4IBAQAwYMN06F/QYUf/DrykW2eM IdAW3Nlhqhx5vXslqBhJ0MjGTaiKYb+HX0XMcTYltlecQH9ak0ZMr45G/U3O17dD bVWDutxZwG6vEJKFmM5x1/SFZSz6Z5TJ7CtlC1nG+x7W70p9jZgNdTXDKzgfdXi3 8LrkGruEtNrzRumgQjUdFRaryDL8zo/7F3MW4rny9qNkX+2NSUJ67i68z99XlYLK 29BZ9TttEZGqQSJ1TqilKhGPUe25fYbjwsEZfmXGy9isULmSNvLNzXT5yVEYIM8U znvjwUbzyCZgCHaGBiSgFifIodfBlSvuePNWABPIUigAgPREzFe3n3IOowXSyKX3 -----END CERTIFICATE-----Generated at Wed May 1 10:32:14 2024 by rpki-client on console-fra.rpki-client.org