$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150233.roa File: AS150233.roa (raw, json) Hash identifier: YoF2O+hquWaplWX69tub91b3UxXOi5UvxYJltZ5vfMw= Subject key identifier: 3C:2E:01:3C:33:58:E3:A0:A3:1E:B4:41:AD:E8:EB:F8:AE:A4:43:95 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 01C0F29CA09AA90A235E0E3E6FDD658F499BD2F6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150233.roa Signing time: Mon 30 Oct 2023 03:00:00 +0000 ROA not before: Mon 30 Oct 2023 02:55:00 +0000 ROA not after: Mon 28 Oct 2024 03:00:00 +0000 asID: 150233 IP address blocks: 103.71.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:c0:f2:9c:a0:9a:a9:0a:23:5e:0e:3e:6f:dd:65:8f:49:9b:d2:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 30 02:55:00 2023 GMT Not After : Oct 28 03:00:00 2024 GMT Subject: CN=3C2E013C3358E3A0A31EB441ADE8EBF8AEA44395 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:8a:c0:e6:08:49:94:b7:9c:b6:7e:61:ed:7a: e6:71:6b:90:e5:bf:e5:9a:28:ab:6d:76:42:57:1a: 6f:ab:91:cb:62:b4:81:79:b2:94:15:cf:7e:55:0f: c2:ab:8d:58:bd:d7:0d:d7:37:f8:40:63:3a:f1:45: 5c:30:d6:3e:78:8b:3e:02:ad:86:fa:56:43:5b:75: 5c:18:3b:bc:05:83:12:41:01:70:7d:1a:62:22:ea: 6d:e8:b7:9b:f1:d6:d2:be:f6:04:61:51:23:0d:78: b9:b5:8f:c0:65:34:f7:3f:dd:2f:95:85:26:40:ee: 86:38:a9:19:da:3b:38:9e:5b:be:20:06:e8:81:95: 29:c1:5a:8d:b2:65:89:1f:df:49:76:16:8e:28:cc: 53:c5:ee:76:f6:3d:b0:88:db:50:47:bd:7a:55:e8: 27:c2:2b:b6:6b:ae:38:af:49:9a:b3:61:33:46:1f: 58:27:90:f1:97:87:e9:55:77:b0:23:d3:ed:7e:6c: dd:13:38:f9:ba:92:f3:36:7c:fe:8e:21:ed:49:c5: 29:00:7c:10:28:18:8f:0b:74:c5:5e:38:a3:b7:be: 14:07:c0:9b:b8:10:e7:1e:0c:97:46:06:ff:2b:63: 85:31:af:49:28:fc:33:cf:f8:fb:3c:a4:f7:40:8e: 35:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:2E:01:3C:33:58:E3:A0:A3:1E:B4:41:AD:E8:EB:F8:AE:A4:43:95 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.25.0/24 Signature Algorithm: sha256WithRSAEncryption 69:2a:d9:3e:b6:bb:e1:c4:76:b0:0b:d0:80:73:42:09:94:43: d2:65:05:6e:93:57:39:c1:59:e9:b6:6d:9c:27:19:19:29:6f: 9b:61:ac:8c:1b:c1:f2:9c:d6:ca:a4:c7:d1:5a:8a:22:32:cd: 3f:fd:b2:e4:80:26:75:1f:ab:28:56:19:3f:22:0e:b8:da:1a: 51:97:0f:d3:03:93:31:c1:17:b2:89:e4:29:75:c1:e7:6e:68: 9c:b4:ca:fb:c1:d3:c3:89:e9:9a:fa:bd:9c:20:30:f9:d4:ea: 21:31:cf:9b:88:bc:63:d3:ce:9c:a1:52:07:9b:b8:14:0b:d3: 92:94:52:9a:5f:a3:ed:23:78:01:d7:93:f3:2e:69:f3:2d:2d: 5d:f3:cd:8d:94:de:d2:b9:1e:1b:c7:b1:97:80:7e:0c:5b:0b: 14:68:0b:5a:17:60:12:e3:2b:93:b8:9d:e7:1f:cb:c5:f7:bf: 83:b8:1c:4c:0d:23:38:9f:d9:65:3b:63:85:97:dc:10:0d:07: 22:bd:71:66:9f:33:8b:e6:e9:e6:9c:95:e6:fd:e4:bb:e6:45: b3:1e:ef:8c:b2:24:1c:08:93:54:e2:b0:82:e4:95:b6:e0:97: c1:5a:e5:f6:10:fb:4b:73:92:21:d9:fe:6f:a7:c8:dc:f1:b3: a3:ae:c1:28 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUAcDynKCaqQojXg4+b91lj0mb0vYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAzMDAyNTUwMFoX DTI0MTAyODAzMDAwMFowMzExMC8GA1UEAxMoM0MyRTAxM0MzMzU4RTNBMEEzMUVC NDQxQURFOEVCRjhBRUE0NDM5NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMqKwOYISZS3nLZ+Ye165nFrkOW/5Zooq212Qlcab6uRy2K0gXmylBXPflUP wquNWL3XDdc3+EBjOvFFXDDWPniLPgKthvpWQ1t1XBg7vAWDEkEBcH0aYiLqbei3 m/HW0r72BGFRIw14ubWPwGU09z/dL5WFJkDuhjipGdo7OJ5bviAG6IGVKcFajbJl iR/fSXYWjijMU8XudvY9sIjbUEe9elXoJ8IrtmuuOK9JmrNhM0YfWCeQ8ZeH6VV3 sCPT7X5s3RM4+bqS8zZ8/o4h7UnFKQB8ECgYjwt0xV44o7e+FAfAm7gQ5x4Ml0YG /ytjhTGvSSj8M8/4+zyk90CONe0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ8LgE8 M1jjoKMetEGt6Ov4rqRDlTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDIzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGdHGTANBgkqhkiG9w0BAQsFAAOCAQEAaSrZPra74cR2sAvQgHNC CZRD0mUFbpNXOcFZ6bZtnCcZGSlvm2GsjBvB8pzWyqTH0VqKIjLNP/2y5IAmdR+r KFYZPyIOuNoaUZcP0wOTMcEXsonkKXXB525onLTK+8HTw4npmvq9nCAw+dTqITHP m4i8Y9POnKFSB5u4FAvTkpRSml+j7SN4AdeT8y5p8y0tXfPNjZTe0rkeG8exl4B+ DFsLFGgLWhdgEuMrk7id5x/Lxfe/g7gcTA0jOJ/ZZTtjhZfcEA0HIr1xZp8zi+bp 5pyV5v3ku+ZFsx7vjLIkHAiTVOKwguSVtuCXwVrl9hD7S3OSIdn+b6fI3PGzo67B KA== -----END CERTIFICATE-----Generated at Wed May 8 21:02:23 2024 by rpki-client on console-fra.rpki-client.org