$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150213.roa File: AS150213.roa (raw, json) Hash identifier: TbJ+60HGyx+jcl6liIWQ76JC4VuVtHLK1p4T676zfhk= Subject key identifier: F4:5A:F6:59:FC:04:3E:7D:E0:B6:EE:EF:A4:21:6C:35:FB:0D:49:A9 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 24B274D6C37034CFAF321BE50E51E4E44E51B726 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150213.roa Signing time: Mon 30 Sep 2024 04:00:00 +0000 ROA not before: Mon 30 Sep 2024 03:55:00 +0000 ROA not after: Mon 29 Sep 2025 04:00:00 +0000 asID: 150213 IP address blocks: 103.246.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:b2:74:d6:c3:70:34:cf:af:32:1b:e5:0e:51:e4:e4:4e:51:b7:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 30 03:55:00 2024 GMT Not After : Sep 29 04:00:00 2025 GMT Subject: CN=F45AF659FC043E7DE0B6EEEFA4216C35FB0D49A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:44:f9:0f:73:24:88:ab:51:05:72:21:67:9f: 89:28:59:ba:51:a7:07:23:2e:a6:81:7c:41:9e:f1: c0:88:f7:60:10:cf:b9:eb:bb:b5:4b:20:72:59:d3: 44:9a:10:b7:f3:bc:aa:bf:31:a5:ed:84:50:3e:0c: be:69:ff:b0:06:a5:89:58:4a:78:3a:49:22:e7:7b: 2e:fa:c8:71:7a:31:d3:77:f7:17:d8:34:8c:5e:5b: 0b:73:1a:93:38:90:01:d9:af:79:21:14:cf:9a:a9: e8:f3:4c:5d:68:22:3a:21:08:d4:60:62:89:05:63: 01:b0:a9:6c:a9:7a:b9:6b:07:19:fe:e5:97:18:1e: 9e:22:5d:f0:ed:f9:2e:28:87:5b:9d:2d:f1:c9:75: 44:53:db:54:21:69:d0:57:bf:b9:b8:2e:6b:36:91: a6:4b:2f:fb:aa:bb:9e:2a:85:1f:18:64:25:49:4a: 82:ae:ca:4a:ce:94:a6:7b:1f:5c:1e:b6:b2:65:47: 46:f3:cf:d9:a9:8f:bc:0d:a9:17:53:19:39:e2:db: cd:59:57:25:39:2d:89:40:30:2a:e3:35:e9:98:84: 5a:77:b2:eb:a5:cc:46:5b:4d:03:68:0f:7c:05:78: 16:d0:e9:45:59:d3:71:9f:53:be:12:4b:0c:7c:29: 75:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:5A:F6:59:FC:04:3E:7D:E0:B6:EE:EF:A4:21:6C:35:FB:0D:49:A9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150213.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.246.78.0/23 Signature Algorithm: sha256WithRSAEncryption 53:f3:31:70:28:f6:b2:2c:db:5c:36:19:76:23:6e:c9:22:9c: aa:de:df:5d:5e:cb:01:87:c1:81:9c:5d:74:7e:69:2c:e6:36: b3:5a:2b:a3:39:09:f1:e7:0c:28:73:95:2e:37:55:ca:12:1a: aa:76:31:3a:86:36:3e:6c:e3:69:47:50:74:94:38:63:3e:46: 30:3d:10:51:24:6c:12:41:4d:a0:1e:94:86:87:a7:94:bd:25: 04:eb:fe:d3:ae:0f:c8:df:b1:aa:53:7e:62:2d:a2:9a:75:c7: 43:24:06:e7:c2:96:6d:32:e3:6c:5e:e8:df:23:20:c7:fc:eb: f4:e2:46:5d:49:f0:2f:dc:c6:fb:7e:3d:5d:39:09:e3:22:65: 31:a4:ad:f1:c7:c3:97:8d:e0:aa:4c:55:c8:30:5f:41:c8:46: 7f:0f:f6:10:b7:b1:2f:a0:32:15:cb:57:b3:bd:b9:93:54:55: 20:b6:f3:78:65:33:e4:92:60:71:a5:35:07:ef:3f:ae:17:5c: 86:f5:6a:b3:b3:2d:00:0c:c1:98:75:bc:ca:1d:73:5d:65:ae: b1:15:93:9c:10:aa:99:31:cc:1f:3e:e7:5f:94:b5:3f:0e:8a: 12:97:6b:bf:92:6a:69:6e:9d:70:cf:cc:33:44:93:d2:c5:c1: ed:1f:6f:13 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUJLJ01sNwNM+vMhvlDlHk5E5RtyYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkzMDAzNTUwMFoX DTI1MDkyOTA0MDAwMFowMzExMC8GA1UEAxMoRjQ1QUY2NTlGQzA0M0U3REUwQjZF RUVGQTQyMTZDMzVGQjBENDlBOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK5E+Q9zJIirUQVyIWefiShZulGnByMupoF8QZ7xwIj3YBDPueu7tUsgclnT RJoQt/O8qr8xpe2EUD4Mvmn/sAaliVhKeDpJIud7LvrIcXox03f3F9g0jF5bC3Ma kziQAdmveSEUz5qp6PNMXWgiOiEI1GBiiQVjAbCpbKl6uWsHGf7llxgeniJd8O35 LiiHW50t8cl1RFPbVCFp0Fe/ubguazaRpksv+6q7niqFHxhkJUlKgq7KSs6Upnsf XB62smVHRvPP2amPvA2pF1MZOeLbzVlXJTktiUAwKuM16ZiEWney66XMRltNA2gP fAV4FtDpRVnTcZ9TvhJLDHwpdTMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT0WvZZ /AQ+feC27u+kIWw1+w1JqTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDIxMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWf2TjANBgkqhkiG9w0BAQsFAAOCAQEAU/MxcCj2sizbXDYZdiNu ySKcqt7fXV7LAYfBgZxddH5pLOY2s1orozkJ8ecMKHOVLjdVyhIaqnYxOoY2Pmzj aUdQdJQ4Yz5GMD0QUSRsEkFNoB6UhoenlL0lBOv+064PyN+xqlN+Yi2imnXHQyQG 58KWbTLjbF7o3yMgx/zr9OJGXUnwL9zG+349XTkJ4yJlMaSt8cfDl43gqkxVyDBf QchGfw/2ELexL6AyFctXs725k1RVILbzeGUz5JJgcaU1B+8/rhdchvVqs7MtAAzB mHW8yh1zXWWusRWTnBCqmTHMHz7nX5S1Pw6KEpdrv5JqaW6dcM/MM0ST0sXB7R9v Ew== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:29 2024 by rpki-client on console-ams.rpki-client.org