$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150191.roa File: AS150191.roa (raw, json) Hash identifier: LAShbxA8E9A4q9ZnXLBwa9fOWHpxWpDT6sAUZwmzfgQ= Subject key identifier: 89:49:AD:C5:03:2B:04:44:0C:1B:4D:80:0C:90:20:9F:C8:B2:77:5D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7D48A6C90046AEF9300179EC0A7BFB87F4E08B67 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150191.roa Signing time: Tue 18 Jul 2023 06:32:40 +0000 ROA not before: Tue 18 Jul 2023 06:27:40 +0000 ROA not after: Tue 16 Jul 2024 06:32:40 +0000 asID: 150191 IP address blocks: 103.152.21.0/24 maxlen: 24 2001:df2:5dc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:48:a6:c9:00:46:ae:f9:30:01:79:ec:0a:7b:fb:87:f4:e0:8b:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 18 06:27:40 2023 GMT Not After : Jul 16 06:32:40 2024 GMT Subject: CN=8949ADC5032B04440C1B4D800C90209FC8B2775D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e5:55:a9:fb:10:d8:ed:06:f8:a8:51:f7:58: 11:be:91:b2:45:af:f9:2d:a4:a7:09:a6:29:6f:95: f0:a7:6b:97:c8:1c:4f:2a:e3:a1:c9:bf:a6:85:01: dd:31:11:2c:59:17:50:94:08:75:8b:0f:58:16:28: b1:b5:4c:ca:81:c4:2d:e5:b0:24:e8:58:88:73:b4: 5c:f7:18:c7:b3:43:0d:36:04:e2:9c:65:3b:c5:40: 34:c8:c9:06:0a:52:ca:9c:79:05:b6:8b:5e:93:c5: d4:b8:29:d1:9f:34:98:2f:38:1a:7e:a9:02:ef:b1: ee:fb:bf:c8:24:78:90:fe:87:25:4b:02:6f:d2:b1: 73:df:42:dd:50:80:50:4a:20:1f:bd:28:d3:d9:a6: 38:b4:8e:93:bb:ec:ba:12:77:2e:bb:f2:b8:44:a0: 12:39:64:c8:30:96:e9:74:bc:ef:1c:77:c4:cb:b0: d9:c3:2f:de:e0:7e:76:d0:c5:57:a2:8e:16:39:73: 80:e2:ea:d6:cf:61:98:5c:ee:37:03:f8:79:9f:0a: 6a:1c:ae:6c:a2:4e:03:45:54:33:af:61:3d:03:88: a8:57:02:06:56:8f:33:06:b1:42:ad:9d:a3:14:ec: e9:94:f6:c9:ed:6a:0b:c6:59:00:24:ed:b4:2f:bf: 26:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:49:AD:C5:03:2B:04:44:0C:1B:4D:80:0C:90:20:9F:C8:B2:77:5D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150191.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.21.0/24 IPv6: 2001:df2:5dc0::/48 Signature Algorithm: sha256WithRSAEncryption 56:04:6a:1a:2a:e3:80:ef:a5:2f:ae:c7:07:e7:86:2c:70:6b: 54:b0:b3:be:93:94:41:2e:10:32:c5:90:d2:da:4e:bc:0f:2e: 70:10:df:38:2c:0e:6c:23:64:9d:ca:ac:37:c4:dc:76:80:db: 9a:da:e5:cc:7a:aa:dc:83:61:b0:41:e4:cc:f8:43:85:26:af: 13:7d:83:fd:a5:f2:b8:10:79:fd:61:96:0a:52:1e:75:82:9a: 12:10:c6:36:16:2b:2e:0f:11:19:36:bc:c0:8b:b3:79:1e:53: 73:52:82:81:54:9f:bb:63:74:b3:61:96:bf:1e:22:75:52:8e: 4a:d6:e9:8b:b6:bc:3b:e6:1c:5a:41:69:df:af:4f:d0:2a:9b: a4:15:00:50:79:d5:c2:e5:7b:1b:90:28:d8:a6:99:d4:3e:e7: 43:1c:7d:b8:11:f8:a7:55:c7:1d:87:2e:bc:77:46:bb:b7:22: 13:a8:8f:9b:7d:7d:53:2e:7d:f9:ab:f0:df:e3:af:42:20:31: cf:ac:0c:d6:08:37:41:c2:0f:0b:39:d0:e2:42:8c:7c:ce:25: e1:f5:97:a9:ab:93:27:05:23:a0:5d:84:56:dc:43:72:09:8e: a5:be:2a:0a:e1:20:1f:c5:85:28:af:29:76:d5:85:89:5a:62: 71:05:97:d5 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUfUimyQBGrvkwAXnsCnv7h/Tgi2cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcxODA2Mjc0MFoX DTI0MDcxNjA2MzI0MFowMzExMC8GA1UEAxMoODk0OUFEQzUwMzJCMDQ0NDBDMUI0 RDgwMEM5MDIwOUZDOEIyNzc1RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM3lVan7ENjtBvioUfdYEb6RskWv+S2kpwmmKW+V8Kdrl8gcTyrjocm/poUB 3TERLFkXUJQIdYsPWBYosbVMyoHELeWwJOhYiHO0XPcYx7NDDTYE4pxlO8VANMjJ BgpSypx5BbaLXpPF1Lgp0Z80mC84Gn6pAu+x7vu/yCR4kP6HJUsCb9Kxc99C3VCA UEogH70o09mmOLSOk7vsuhJ3LrvyuESgEjlkyDCW6XS87xx3xMuw2cMv3uB+dtDF V6KOFjlzgOLq1s9hmFzuNwP4eZ8KahyubKJOA0VUM69hPQOIqFcCBlaPMwaxQq2d oxTs6ZT2ye1qC8ZZACTttC+/JrUCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBSJSa3F AysERAwbTYAMkCCfyLJ3XTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDE5MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGeYFTAPBAIAAjAJAwcAIAEN8l3AMA0GCSqGSIb3DQEBCwUAA4IB AQBWBGoaKuOA76UvrscH54YscGtUsLO+k5RBLhAyxZDS2k68Dy5wEN84LA5sI2Sd yqw3xNx2gNua2uXMeqrcg2GwQeTM+EOFJq8TfYP9pfK4EHn9YZYKUh51gpoSEMY2 FisuDxEZNrzAi7N5HlNzUoKBVJ+7Y3SzYZa/HiJ1Uo5K1umLtrw75hxaQWnfr0/Q KpukFQBQedXC5XsbkCjYppnUPudDHH24EfinVccdhy68d0a7tyITqI+bfX1TLn35 q/Df469CIDHPrAzWCDdBwg8LOdDiQox8ziXh9Zepq5MnBSOgXYRW3ENyCY6lvioK 4SAfxYUoryl21YWJWmJxBZfV -----END CERTIFICATE-----Generated at Wed May 8 04:37:58 2024 by rpki-client on console-fra.rpki-client.org