$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150237.roa File: AS150237.roa (raw, json) Hash identifier: bDMYQ6ibLdYXGDqlJU1W5d+8GWY8DOFhhBjdzE4bHqI= Subject key identifier: A1:AF:3B:B5:46:32:0D:F5:FF:57:72:1A:0B:6B:C2:6B:64:D5:01:DB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 558DF9E3665D01566767C5C4FCDE6186B198BA54 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150237.roa Signing time: Thu 19 Sep 2024 07:00:00 +0000 ROA not before: Thu 19 Sep 2024 06:55:00 +0000 ROA not after: Thu 18 Sep 2025 07:00:00 +0000 asID: 150237 IP address blocks: 2001:df1:8340::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:8d:f9:e3:66:5d:01:56:67:67:c5:c4:fc:de:61:86:b1:98:ba:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 19 06:55:00 2024 GMT Not After : Sep 18 07:00:00 2025 GMT Subject: CN=A1AF3BB546320DF5FF57721A0B6BC26B64D501DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:77:7e:25:7f:74:1c:27:89:ac:59:42:ca:0e: 04:f6:31:70:1f:d8:15:d9:33:2b:57:f2:b5:67:f3: a7:bb:a2:a6:10:24:41:be:2d:51:28:0e:ca:3e:0f: a5:26:3a:3a:ee:06:ad:ea:2a:7c:71:52:07:31:da: cf:76:33:c6:e0:08:7c:f5:0d:4d:79:36:ab:65:db: 58:e2:80:99:97:92:d2:fb:98:66:a4:e9:48:34:ce: 28:21:e5:b6:05:8a:6b:9b:63:bc:11:70:16:89:f1: 67:f4:70:bc:48:fe:e5:ed:6f:d4:9d:78:7e:f4:61: a3:df:2e:cc:81:be:29:59:aa:4d:0c:1b:16:40:58: 11:01:46:30:53:be:87:cc:ef:47:36:29:90:59:56: 8f:44:61:ac:1a:12:76:47:0b:d9:c9:3e:7d:68:d4: 7a:f3:27:1d:a0:0c:68:00:52:5f:a0:ec:2a:9f:37: b2:b4:3f:4d:ef:df:23:5f:4f:35:52:96:d9:1b:8a: d3:91:f1:86:2c:78:9c:f2:bf:0d:fe:7c:b2:92:9e: 6f:7d:54:a9:6f:f7:01:7b:d0:ff:fd:3e:29:ea:b2: 82:b8:aa:fe:1d:01:f6:8c:5a:58:87:cf:9e:5a:e2: 9f:3b:a4:95:6f:d8:cf:48:e4:a1:f3:02:a2:c4:0a: ff:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:AF:3B:B5:46:32:0D:F5:FF:57:72:1A:0B:6B:C2:6B:64:D5:01:DB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:8340::/48 Signature Algorithm: sha256WithRSAEncryption 80:8e:54:9c:7c:ab:2b:93:b0:aa:f9:75:8f:1e:2c:49:5c:33: c5:d8:0f:69:5d:90:6c:65:ea:5b:60:a2:d2:35:b3:45:fa:3c: 0c:3e:ca:b3:10:4c:93:c9:85:97:1b:81:61:6b:39:2a:14:74: 8d:4c:90:03:25:66:89:36:7c:01:e8:35:ff:49:70:92:1a:60: 4a:eb:fc:77:89:89:2c:8e:db:1b:fa:07:09:a8:fc:9e:1c:dd: 57:12:ec:44:1c:f3:ab:fa:f6:f5:8c:61:23:01:6f:bb:18:09: 9c:77:e0:ee:3b:af:92:9b:a2:ef:19:80:4f:f1:ed:87:b8:0a: aa:6c:dd:eb:3e:5f:7a:e8:50:a0:4d:0f:c1:9b:d2:6a:31:67: fa:6b:59:b2:50:ad:63:f0:15:5a:3a:26:9b:99:cd:72:1d:e0: 57:56:dd:3b:d5:5e:13:a9:b4:37:63:b6:87:dc:c5:32:de:9a: b3:29:ff:76:94:ed:44:1d:e4:e2:4e:3c:ca:95:8c:8e:18:a7: f3:18:4d:6b:67:08:08:f0:a2:5f:54:d8:90:0b:7f:ff:fc:e9: 6f:fb:8b:81:fd:ba:e6:6b:db:93:82:72:31:2e:15:23:64:63: 36:ef:d6:e7:f6:2a:07:d1:81:86:4a:c1:ed:f2:4a:2a:8e:1d: e5:a6:f7:48 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUVY3542ZdAVZnZ8XE/N5hhrGYulQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkxOTA2NTUwMFoX DTI1MDkxODA3MDAwMFowMzExMC8GA1UEAxMoQTFBRjNCQjU0NjMyMERGNUZGNTc3 MjFBMEI2QkMyNkI2NEQ1MDFEQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPV3fiV/dBwniaxZQsoOBPYxcB/YFdkzK1fytWfzp7uiphAkQb4tUSgOyj4P pSY6Ou4GreoqfHFSBzHaz3YzxuAIfPUNTXk2q2XbWOKAmZeS0vuYZqTpSDTOKCHl tgWKa5tjvBFwFonxZ/RwvEj+5e1v1J14fvRho98uzIG+KVmqTQwbFkBYEQFGMFO+ h8zvRzYpkFlWj0RhrBoSdkcL2ck+fWjUevMnHaAMaABSX6DsKp83srQ/Te/fI19P NVKW2RuK05Hxhix4nPK/Df58spKeb31UqW/3AXvQ//0+Keqygriq/h0B9oxaWIfP nlrinzuklW/Yz0jkofMCosQK/8MCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBShrzu1 RjIN9f9XchoLa8JrZNUB2zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDIzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfGDQDANBgkqhkiG9w0BAQsFAAOCAQEAgI5UnHyrK5Owqvl1 jx4sSVwzxdgPaV2QbGXqW2Ci0jWzRfo8DD7KsxBMk8mFlxuBYWs5KhR0jUyQAyVm iTZ8Aeg1/0lwkhpgSuv8d4mJLI7bG/oHCaj8nhzdVxLsRBzzq/r29YxhIwFvuxgJ nHfg7juvkpui7xmAT/Hth7gKqmzd6z5feuhQoE0PwZvSajFn+mtZslCtY/AVWjom m5nNch3gV1bdO9VeE6m0N2O2h9zFMt6asyn/dpTtRB3k4k48ypWMjhin8xhNa2cI CPCiX1TYkAt///zpb/uLgf265mvbk4JyMS4VI2RjNu/W5/YqB9GBhkrB7fJKKo4d 5ab3SA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org