$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150222.roa File: AS150222.roa (raw, json) Hash identifier: erJEbxhtqA+2TwL8vu+1Tpn/m8a9dUx21MXAimg38DU= Subject key identifier: 96:5A:5A:B9:73:A4:5A:B9:0B:3A:05:AD:58:74:72:40:9A:6B:A3:98 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1199F4B372DC558FBE572B1D02FB9D54674E5323 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150222.roa Signing time: Thu 20 Jul 2023 07:29:58 +0000 ROA not before: Thu 20 Jul 2023 07:24:58 +0000 ROA not after: Thu 18 Jul 2024 07:29:58 +0000 asID: 150222 IP address blocks: 2001:df2:9240::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:99:f4:b3:72:dc:55:8f:be:57:2b:1d:02:fb:9d:54:67:4e:53:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 20 07:24:58 2023 GMT Not After : Jul 18 07:29:58 2024 GMT Subject: CN=965A5AB973A45AB90B3A05AD587472409A6BA398 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e0:3f:33:77:44:ee:61:30:bd:1a:60:1e:ec: f3:96:3b:df:57:ad:53:a3:97:17:18:f9:93:7f:1f: cb:22:fc:1d:a7:36:4e:d7:28:bd:aa:4a:d8:5e:06: c7:d1:73:4f:ac:c2:89:fa:b7:af:70:75:01:23:e0: 47:75:9f:9e:91:da:5f:b5:cb:b1:8f:dd:91:8c:3a: b8:2a:2c:b7:9a:48:c6:03:30:67:37:f9:b8:1f:52: 30:4c:b0:e4:f5:4d:b6:fa:8a:66:32:b6:65:c8:94: 93:cc:1b:3a:56:b6:86:9d:52:1d:16:2d:d2:ad:f3: 2c:32:6f:93:99:eb:7c:1b:23:94:e0:29:04:cd:54: 4d:c3:64:94:25:e9:48:5f:a3:eb:af:88:73:b3:ae: f0:b9:2b:17:12:62:b2:df:5b:58:8a:80:96:65:8c: 99:81:56:ae:3d:2b:ae:6e:0f:27:2f:f6:4c:70:15: 57:de:8d:ef:aa:5e:4c:5c:eb:eb:a6:81:4c:5b:ec: 24:40:f9:2f:2c:eb:26:7a:d0:97:5b:f7:7b:17:e6: 24:92:c5:0e:8c:4a:36:47:2f:77:4b:55:09:d2:29: db:f9:d2:e3:f7:0d:3b:2d:03:40:f6:55:3b:ef:0d: 4c:31:97:18:d7:2c:94:02:a7:46:ee:0f:84:81:03: 22:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:5A:5A:B9:73:A4:5A:B9:0B:3A:05:AD:58:74:72:40:9A:6B:A3:98 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150222.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:9240::/48 Signature Algorithm: sha256WithRSAEncryption 6d:fd:ef:4f:44:6b:76:2d:d5:74:c1:4a:ca:7a:9c:7b:ce:ce: 8c:22:d8:b4:00:70:d1:4b:66:13:b7:0b:cc:94:56:33:bf:2b: e9:ef:32:79:dd:4c:b2:4d:67:cc:db:18:79:73:ca:6e:cd:59: b2:cf:c0:5c:c4:11:d1:79:14:09:2d:4a:dc:0e:ce:30:4e:ea: c9:81:ff:55:1e:f7:51:c3:62:fe:b1:52:41:54:0b:d3:7c:b7: 8d:f0:ff:f7:15:24:bc:56:cd:75:cc:c2:c5:d5:7b:27:89:77: c7:83:aa:aa:59:82:92:52:f2:83:61:e1:36:ab:17:70:17:b7: 3d:4a:8e:9d:dd:d0:4c:43:ec:0c:f6:41:8a:c5:45:a9:f4:68: 9a:6c:a3:7b:3e:9d:03:de:fd:58:a5:a4:f8:bd:67:eb:34:2d: c7:44:59:32:d5:92:a1:bb:c6:c3:b4:1f:a2:39:7f:e6:7f:2b: f1:47:d4:52:ea:37:92:f7:ba:98:8f:ae:51:18:16:f6:df:50: ca:9f:60:e5:c8:c6:ba:86:dc:68:fa:ef:af:68:c0:2c:e5:1e: 4e:59:0e:e6:69:c7:cc:61:77:6b:36:33:0e:54:6d:03:38:1a: 3b:e5:35:ab:4c:7e:f2:52:da:e9:52:a2:1b:3e:10:fb:de:12: 92:b1:8d:d2 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUEZn0s3LcVY++VysdAvudVGdOUyMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcyMDA3MjQ1OFoX DTI0MDcxODA3Mjk1OFowMzExMC8GA1UEAxMoOTY1QTVBQjk3M0E0NUFCOTBCM0Ew NUFENTg3NDcyNDA5QTZCQTM5ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANHgPzN3RO5hML0aYB7s85Y731etU6OXFxj5k38fyyL8Hac2TtcovapK2F4G x9FzT6zCifq3r3B1ASPgR3WfnpHaX7XLsY/dkYw6uCost5pIxgMwZzf5uB9SMEyw 5PVNtvqKZjK2ZciUk8wbOla2hp1SHRYt0q3zLDJvk5nrfBsjlOApBM1UTcNklCXp SF+j66+Ic7Ou8LkrFxJist9bWIqAlmWMmYFWrj0rrm4PJy/2THAVV96N76peTFzr 66aBTFvsJED5LyzrJnrQl1v3exfmJJLFDoxKNkcvd0tVCdIp2/nS4/cNOy0DQPZV O+8NTDGXGNcslAKnRu4PhIEDIhcCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSWWlq5 c6RauQs6Ba1YdHJAmmujmDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDIyMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfKSQDANBgkqhkiG9w0BAQsFAAOCAQEAbf3vT0Rrdi3VdMFK ynqce87OjCLYtABw0UtmE7cLzJRWM78r6e8yed1Msk1nzNsYeXPKbs1Zss/AXMQR 0XkUCS1K3A7OME7qyYH/VR73UcNi/rFSQVQL03y3jfD/9xUkvFbNdczCxdV7J4l3 x4OqqlmCklLyg2HhNqsXcBe3PUqOnd3QTEPsDPZBisVFqfRommyjez6dA979WKWk +L1n6zQtx0RZMtWSobvGw7Qfojl/5n8r8UfUUuo3kve6mI+uURgW9t9Qyp9g5cjG uobcaPrvr2jALOUeTlkO5mnHzGF3azYzDlRtAzgaO+U1q0x+8lLa6VKiGz4Q+94S krGN0g== -----END CERTIFICATE-----Generated at Wed May 8 09:50:39 2024 by rpki-client on console-fra.rpki-client.org