$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150233.roa File: AS150233.roa (raw, json) Hash identifier: 0hbmXd1Z+F87j6Oa/c3JUftMTU4AVjwOg2JBXz839ic= Subject key identifier: 0E:78:4D:46:0C:BA:F3:71:61:E4:C2:53:18:44:52:CB:7E:A8:D4:82 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5FECCD2B05C355E233893CAB105EF8B2B569A2CD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150233.roa Signing time: Mon 30 Sep 2024 03:00:00 +0000 ROA not before: Mon 30 Sep 2024 02:55:00 +0000 ROA not after: Mon 29 Sep 2025 03:00:00 +0000 asID: 150233 IP address blocks: 103.71.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:ec:cd:2b:05:c3:55:e2:33:89:3c:ab:10:5e:f8:b2:b5:69:a2:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 30 02:55:00 2024 GMT Not After : Sep 29 03:00:00 2025 GMT Subject: CN=0E784D460CBAF37161E4C253184452CB7EA8D482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:eb:5a:c2:f7:2a:26:1e:5d:b7:b4:96:68:e7: 4d:a3:e3:7a:50:31:31:8a:17:5a:43:bb:15:a1:42: fe:37:cb:9f:ed:0f:ee:be:a8:4f:64:40:8a:e8:6f: 82:9d:12:87:4e:a2:91:0e:72:c4:2a:4e:60:14:09: 80:24:06:df:60:5c:20:b2:cb:9d:62:11:9b:98:7b: 6a:ce:09:83:d5:75:88:43:83:ab:0a:24:af:0d:e6: aa:ae:d7:25:1f:c6:00:94:8a:ff:d9:06:5d:03:9c: 21:45:e0:df:d3:4e:72:6e:09:74:be:2f:63:b7:13: 30:cf:37:3b:a5:36:81:fd:00:4f:1f:ae:56:97:fb: 33:c5:78:2b:97:21:b0:41:dc:a2:5c:70:d7:26:f8: 7f:19:3a:dd:d0:ab:4e:2c:7e:7b:5f:98:17:6c:4f: 90:b5:ef:bc:5a:72:40:61:93:cc:ae:0d:64:b4:67: a8:35:8b:b8:fd:11:7d:5b:1f:3d:16:b5:75:bf:7f: 9e:9d:cf:51:8f:70:b6:0d:02:e6:65:dc:67:c1:31: 71:9d:c2:2f:66:02:8e:0b:5e:1d:50:95:b6:a8:c8: d6:78:d4:fb:c4:2d:21:49:96:89:e0:74:0f:23:92: f5:43:24:fa:1a:bf:08:98:41:e9:09:8c:14:b4:71: c9:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:78:4D:46:0C:BA:F3:71:61:E4:C2:53:18:44:52:CB:7E:A8:D4:82 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.25.0/24 Signature Algorithm: sha256WithRSAEncryption 68:14:4c:e6:d1:d6:9c:22:7c:ad:1e:30:9f:c4:a0:20:4f:2d: b4:fb:4e:fb:c7:ec:37:1c:9f:4c:57:58:d8:88:13:db:2f:13: 7b:6d:77:2c:34:dd:0e:9b:d2:aa:04:97:a0:38:b8:c2:f9:d9: 61:dd:09:d7:7f:3b:7c:9f:2b:d6:57:64:80:24:87:06:5d:30: 19:6c:ed:1e:8f:23:80:5d:79:18:5a:21:59:be:bf:df:ac:7c: 1f:48:ed:a4:44:d1:b0:60:8b:37:47:a4:b5:da:9e:55:35:98: 44:e1:2b:3d:dc:64:ae:74:ac:67:23:d4:58:8c:98:d0:d8:83: a1:20:f0:b9:89:0a:e0:5c:e4:fc:8d:03:9f:7b:77:23:b7:c0: d0:2e:0f:1d:ef:df:5a:33:06:2f:33:d9:a7:5e:b3:7c:b7:69: 8c:b7:6d:ad:16:a7:f7:cd:a7:ec:ee:cf:fc:87:a7:ab:01:99: 11:a0:57:b7:e3:41:d6:c5:22:c9:4e:db:4e:69:c0:73:13:97: 97:d7:ef:91:f5:48:db:7f:d3:17:7a:8e:f1:45:66:ea:77:da: 56:13:33:20:9b:e8:e6:5b:a2:d4:c7:82:44:4c:3c:af:0c:8e: 0d:8a:ed:b9:f1:10:28:4d:78:bc:d9:02:05:21:4a:e0:46:0f: 94:a8:11:7f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUX+zNKwXDVeIziTyrEF74srVpos0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkzMDAyNTUwMFoX DTI1MDkyOTAzMDAwMFowMzExMC8GA1UEAxMoMEU3ODRENDYwQ0JBRjM3MTYxRTRD MjUzMTg0NDUyQ0I3RUE4RDQ4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANzrWsL3KiYeXbe0lmjnTaPjelAxMYoXWkO7FaFC/jfLn+0P7r6oT2RAiuhv gp0Sh06ikQ5yxCpOYBQJgCQG32BcILLLnWIRm5h7as4Jg9V1iEODqwokrw3mqq7X JR/GAJSK/9kGXQOcIUXg39NOcm4JdL4vY7cTMM83O6U2gf0ATx+uVpf7M8V4K5ch sEHcolxw1yb4fxk63dCrTix+e1+YF2xPkLXvvFpyQGGTzK4NZLRnqDWLuP0RfVsf PRa1db9/np3PUY9wtg0C5mXcZ8ExcZ3CL2YCjgteHVCVtqjI1njU+8QtIUmWieB0 DyOS9UMk+hq/CJhB6QmMFLRxyZMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQOeE1G DLrzcWHkwlMYRFLLfqjUgjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDIzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGdHGTANBgkqhkiG9w0BAQsFAAOCAQEAaBRM5tHWnCJ8rR4wn8Sg IE8ttPtO+8fsNxyfTFdY2IgT2y8Te213LDTdDpvSqgSXoDi4wvnZYd0J1387fJ8r 1ldkgCSHBl0wGWztHo8jgF15GFohWb6/36x8H0jtpETRsGCLN0ektdqeVTWYROEr PdxkrnSsZyPUWIyY0NiDoSDwuYkK4Fzk/I0Dn3t3I7fA0C4PHe/fWjMGLzPZp16z fLdpjLdtrRan982n7O7P/IenqwGZEaBXt+NB1sUiyU7bTmnAcxOXl9fvkfVI23/T F3qO8UVm6nfaVhMzIJvo5lui1MeCREw8rwyODYrtufEQKE14vNkCBSFK4EYPlKgR fw== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:29 2024 by rpki-client on console-ams.rpki-client.org