$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS150279.roa File: AS150279.roa (raw, json) Hash identifier: DKLV5Tgd0Z0UpY2L4R/JM2w8QLQVkRKpCdf2zZveDL4= Subject key identifier: 8D:F4:AB:B2:3E:1F:8E:8C:5A:F0:EE:04:B3:4C:78:7A:E4:8F:FA:D2 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 576BD85C1035167715C9E11DF72C5BAE79A2DFA4 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS150279.roa Signing time: Thu 06 Feb 2025 10:44:48 +0000 ROA not before: Thu 06 Feb 2025 10:39:48 +0000 ROA not after: Thu 05 Feb 2026 10:44:48 +0000 asID: 150279 IP address blocks: 157.20.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:6b:d8:5c:10:35:16:77:15:c9:e1:1d:f7:2c:5b:ae:79:a2:df:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 6 10:39:48 2025 GMT Not After : Feb 5 10:44:48 2026 GMT Subject: CN=8DF4ABB23E1F8E8C5AF0EE04B34C787AE48FFAD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0e:5a:12:80:a6:2b:d9:db:5e:9b:30:6f:61: b1:e9:1e:86:9f:78:e5:1b:3a:1b:9c:29:0b:e4:b1: 81:62:a6:f9:45:38:26:22:b6:39:1e:01:b2:90:21: 87:7e:ec:49:af:75:97:d7:6a:88:ce:d0:11:03:ab: 57:d0:f7:e9:d5:b2:1c:ad:4d:02:62:cd:40:ce:5f: fc:f4:18:eb:1e:54:29:69:37:91:d3:f9:00:3b:26: be:93:2d:d5:cf:b5:66:29:15:a5:72:27:50:19:e6: ef:de:0b:f0:73:1f:d9:c9:f0:5b:7c:6e:5f:b2:3b: 50:8e:5c:0b:3a:90:99:06:46:4e:6a:68:78:1f:fc: 58:1f:81:64:de:70:b8:c1:75:bc:40:db:1b:83:05: 1f:ba:1a:c1:fa:d5:fc:86:7b:a4:6a:30:57:61:a6: 98:eb:9b:73:34:a4:5d:9c:02:49:6e:72:3f:c0:09: a1:ee:2b:bf:6d:3b:1c:9a:51:ab:cb:02:3c:93:d6: 09:e9:a5:b3:1f:f2:0d:a7:bb:f9:59:b5:76:f3:75: a3:b2:23:84:aa:53:88:51:41:fd:7f:36:68:c0:f3: 59:cc:c0:b4:40:8a:99:17:a9:e1:9b:98:d2:d6:1c: 95:2b:e8:00:7d:e7:ac:5d:84:a8:5e:d8:13:56:21: fa:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:F4:AB:B2:3E:1F:8E:8C:5A:F0:EE:04:B3:4C:78:7A:E4:8F:FA:D2 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS150279.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.144.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:93:a9:0d:f9:93:86:b4:1a:d6:9a:ca:f5:1f:d8:1b:17:78: bf:07:6e:e4:20:61:d9:d3:ca:97:b0:39:24:c5:4b:10:b5:23: 52:dd:60:03:f3:ae:df:a3:f8:b8:b0:73:5a:50:fe:10:88:e6: 8a:33:44:b1:48:1c:56:8b:15:e9:35:94:34:14:38:59:e0:8b: e1:6b:47:15:02:29:c7:27:ea:36:f0:4d:76:5a:3a:cf:5e:1c: 7b:8d:f6:a7:19:c8:cd:eb:bf:83:7b:ac:67:e4:34:3c:93:26: 9a:62:4a:44:f6:60:83:94:9a:d2:d9:5f:a2:8c:5c:ef:0a:6c: 45:03:10:49:ec:3b:66:98:9a:a3:cc:db:77:4d:60:54:9d:f7: 58:26:73:f1:71:47:5e:65:cd:e0:f6:f7:3c:52:a7:de:89:a2: 97:ee:9d:03:1d:54:27:97:b4:62:c6:80:e4:3b:90:37:99:d7: a5:a0:31:f7:02:aa:a0:a6:c2:42:98:eb:9d:9b:f5:09:60:cc: 70:b0:13:b9:f1:ce:ef:ec:87:2e:d2:fc:7d:c2:5b:b5:b1:a5: bc:0a:0f:bf:cd:04:27:21:ab:77:2c:d0:7b:31:8d:fa:ad:0f: a3:5c:39:df:e9:1e:6c:29:ef:06:86:d4:87:78:f2:db:f8:5f: a3:21:6c:1c -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUV2vYXBA1FncVyeEd9yxbrnmi36QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIwNjEwMzk0OFoX DTI2MDIwNTEwNDQ0OFowMzExMC8GA1UEAxMoOERGNEFCQjIzRTFGOEU4QzVBRjBF RTA0QjM0Qzc4N0FFNDhGRkFEMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM0OWhKApivZ216bMG9hsekehp945Rs6G5wpC+SxgWKm+UU4JiK2OR4BspAh h37sSa91l9dqiM7QEQOrV9D36dWyHK1NAmLNQM5f/PQY6x5UKWk3kdP5ADsmvpMt 1c+1ZikVpXInUBnm794L8HMf2cnwW3xuX7I7UI5cCzqQmQZGTmpoeB/8WB+BZN5w uMF1vEDbG4MFH7oawfrV/IZ7pGowV2GmmOubczSkXZwCSW5yP8AJoe4rv207HJpR q8sCPJPWCemlsx/yDae7+Vm1dvN1o7IjhKpTiFFB/X82aMDzWczAtECKmRep4ZuY 0tYclSvoAH3nrF2EqF7YE1Yh+kUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSN9Kuy Ph+OjFrw7gSzTHh65I/60jAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MDI3OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAJ0UkDANBgkqhkiG9w0BAQsFAAOCAQEAPpOpDfmThrQa1prK9R/Y Gxd4vwdu5CBh2dPKl7A5JMVLELUjUt1gA/Ou36P4uLBzWlD+EIjmijNEsUgcVosV 6TWUNBQ4WeCL4WtHFQIpxyfqNvBNdlo6z14ce432pxnIzeu/g3usZ+Q0PJMmmmJK RPZgg5Sa0tlfooxc7wpsRQMQSew7Zpiao8zbd01gVJ33WCZz8XFHXmXN4Pb3PFKn 3omil+6dAx1UJ5e0YsaA5DuQN5nXpaAx9wKqoKbCQpjrnZv1CWDMcLATufHO7+yH LtL8fcJbtbGlvAoPv80EJyGrdyzQezGN+q0Po1w53+kebCnvBobUh3jy2/hfoyFs HA== -----END CERTIFICATE-----Generated at Mon Apr 7 03:32:00 2025 by rpki-client