$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150213.roa File: AS150213.roa (raw, json) Hash identifier: ksUKX8tLVyOsXi+nKk+7DMR7UYPHIPskka8PejCcd90= Subject key identifier: 9D:42:7E:8B:9D:DF:87:93:C6:81:8F:88:74:38:59:18:67:E8:7C:12 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 458CFF7116EAF454186A94D8C8135BE6233A9017 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150213.roa Signing time: Mon 30 Oct 2023 04:00:00 +0000 ROA not before: Mon 30 Oct 2023 03:55:00 +0000 ROA not after: Mon 28 Oct 2024 04:00:00 +0000 asID: 150213 IP address blocks: 103.246.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:8c:ff:71:16:ea:f4:54:18:6a:94:d8:c8:13:5b:e6:23:3a:90:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 30 03:55:00 2023 GMT Not After : Oct 28 04:00:00 2024 GMT Subject: CN=9D427E8B9DDF8793C6818F887438591867E87C12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b5:ff:1a:d1:83:c0:1d:28:69:5a:5b:13:ca: 3d:68:92:50:6a:fc:7b:9d:fd:89:f5:61:c4:14:1b: c8:cd:42:1e:23:20:a2:79:ad:36:89:c3:09:bf:ba: e1:0c:72:26:93:4b:00:f1:14:59:85:14:50:4f:3e: 98:64:5b:78:36:ab:90:db:ca:91:54:b6:d6:9c:3f: 8b:c3:d9:65:90:15:f2:11:65:8c:ea:ac:06:0f:cf: f1:fb:de:0b:d6:7e:e2:1d:90:95:d5:be:32:28:f5: 54:76:dd:74:77:c7:d3:cf:14:10:d3:75:9f:4d:06: f0:f8:b9:dd:a7:60:ec:56:70:ce:aa:0e:83:64:7a: 0d:a2:87:5a:c4:9d:4f:d3:a5:43:72:7f:87:ae:63: aa:eb:85:13:0f:df:98:4b:9a:00:05:91:8e:d4:b6: 82:12:50:70:45:57:e7:13:58:43:69:6f:bd:bb:74: c4:64:32:11:0d:00:c8:e0:e5:53:2c:b9:b6:2b:47: 9c:c7:b4:8c:a3:66:19:94:93:47:a7:cb:2f:69:1d: aa:11:6d:b1:45:f2:36:e0:14:46:e3:66:5c:19:c9: 64:0c:90:cc:07:2e:0b:ba:cd:61:e2:30:28:67:6b: 0e:c4:ea:fc:21:15:fc:d9:11:33:c3:63:eb:bf:c0: 9d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:42:7E:8B:9D:DF:87:93:C6:81:8F:88:74:38:59:18:67:E8:7C:12 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150213.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.246.78.0/23 Signature Algorithm: sha256WithRSAEncryption 40:bb:dc:09:4d:3f:fb:46:b9:34:d7:a2:77:5d:d3:18:83:18: a5:b4:91:ef:ea:45:23:c0:d6:c1:db:7c:58:50:e1:b3:19:53: ab:14:22:b3:ce:36:d6:bd:79:a8:f8:02:ba:86:d2:76:82:79: b5:cd:fa:1d:3b:6f:56:f5:7e:9c:a1:9d:e8:0e:bd:ff:8f:5d: 7f:d4:d5:d5:ff:5a:ca:d3:67:a1:3f:c5:bd:b4:2a:cc:28:9b: 6c:f2:4c:87:a5:8b:95:91:12:13:a4:1f:51:f8:2d:81:05:2e: ea:d5:37:0f:06:cd:47:b0:0d:49:c6:45:aa:15:2c:f4:e6:b9: 23:80:7c:9e:17:cc:d1:11:71:61:b4:b2:43:4c:52:3a:6e:13: 4a:23:9d:a8:4d:7b:dd:fe:0d:73:13:14:e6:9f:e9:35:47:2b: 0c:51:60:8c:2f:80:22:7e:ee:e9:3f:b9:c8:58:58:b8:36:a2: 8c:6a:36:26:af:86:9f:16:68:b3:f7:10:c6:e9:52:85:56:d4: 56:8f:da:d5:08:b2:14:ba:2a:e1:d8:cc:d5:49:74:37:88:7d: a1:9b:be:ed:4e:d6:39:a1:fc:4e:da:22:42:5a:6a:b5:f5:d3: 71:1a:0c:5c:16:30:4f:f3:62:f5:6b:8c:ae:42:10:5b:dc:b7: 6e:78:2c:f0 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIURYz/cRbq9FQYapTYyBNb5iM6kBcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAzMDAzNTUwMFoX DTI0MTAyODA0MDAwMFowMzExMC8GA1UEAxMoOUQ0MjdFOEI5RERGODc5M0M2ODE4 Rjg4NzQzODU5MTg2N0U4N0MxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANa1/xrRg8AdKGlaWxPKPWiSUGr8e539ifVhxBQbyM1CHiMgonmtNonDCb+6 4QxyJpNLAPEUWYUUUE8+mGRbeDarkNvKkVS21pw/i8PZZZAV8hFljOqsBg/P8fve C9Z+4h2QldW+Mij1VHbddHfH088UENN1n00G8Pi53adg7FZwzqoOg2R6DaKHWsSd T9OlQ3J/h65jquuFEw/fmEuaAAWRjtS2ghJQcEVX5xNYQ2lvvbt0xGQyEQ0AyODl Uyy5titHnMe0jKNmGZSTR6fLL2kdqhFtsUXyNuAURuNmXBnJZAyQzAcuC7rNYeIw KGdrDsTq/CEV/NkRM8Nj67/AnX0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSdQn6L nd+Hk8aBj4h0OFkYZ+h8EjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDIxMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWf2TjANBgkqhkiG9w0BAQsFAAOCAQEAQLvcCU0/+0a5NNeid13T GIMYpbSR7+pFI8DWwdt8WFDhsxlTqxQis8421r15qPgCuobSdoJ5tc36HTtvVvV+ nKGd6A69/49df9TV1f9aytNnoT/FvbQqzCibbPJMh6WLlZESE6QfUfgtgQUu6tU3 DwbNR7ANScZFqhUs9Oa5I4B8nhfM0RFxYbSyQ0xSOm4TSiOdqE173f4NcxMU5p/p NUcrDFFgjC+AIn7u6T+5yFhYuDaijGo2Jq+GnxZos/cQxulShVbUVo/a1QiyFLoq 4djM1Ul0N4h9oZu+7U7WOaH8TtoiQlpqtfXTcRoMXBYwT/Ni9WuMrkIQW9y3bngs 8A== -----END CERTIFICATE-----Generated at Tue May 7 16:42:41 2024 by rpki-client on console-ams.rpki-client.org