$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150237.roa File: AS150237.roa (raw, json) Hash identifier: yIpFgWwMduGsXfQWDBiqcbN6O9ThN9AXj5cgeblC5YM= Subject key identifier: 0A:64:41:ED:05:8F:F2:6C:67:4C:80:A9:AD:4D:AE:DE:D1:D4:73:8B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4BECEF4FC4DDEABF7D70A65CC1F1F8D93AD0CB5F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150237.roa Signing time: Thu 19 Oct 2023 07:00:00 +0000 ROA not before: Thu 19 Oct 2023 06:55:00 +0000 ROA not after: Thu 17 Oct 2024 07:00:00 +0000 asID: 150237 IP address blocks: 2001:df1:8340::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:ec:ef:4f:c4:dd:ea:bf:7d:70:a6:5c:c1:f1:f8:d9:3a:d0:cb:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 19 06:55:00 2023 GMT Not After : Oct 17 07:00:00 2024 GMT Subject: CN=0A6441ED058FF26C674C80A9AD4DAEDED1D4738B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:8c:c5:16:98:31:84:18:c5:fe:3f:82:d5:87: 71:f5:67:ad:25:b1:24:2b:ba:38:73:b0:bd:e7:e0: c0:03:d0:92:5f:42:54:0d:7d:8e:6e:ff:1c:f3:88: ae:7c:67:41:b6:bb:ff:3b:31:14:0f:59:f6:74:81: 85:e9:bd:c2:5a:e2:c1:d6:a2:ac:ff:8a:3b:77:94: 7f:bc:1d:2b:55:3b:c7:97:8d:47:4a:ab:9f:35:c3: 4a:25:19:47:92:36:4d:7a:6f:6e:d5:85:78:79:9d: a7:62:86:84:16:31:57:1f:fc:d5:a6:07:bd:5b:dc: 2f:69:36:24:f5:a5:44:10:5e:76:58:71:95:fb:63: 06:9c:35:61:f5:6f:4b:dd:2e:99:8a:ae:03:25:fe: 39:61:ff:b0:66:15:7b:1b:dc:eb:a2:0b:96:67:1c: 58:6e:f2:a3:18:b9:80:b5:21:24:3e:6e:59:cc:59: b9:dd:ea:33:cb:ff:d5:a6:8a:18:f3:77:9d:67:8c: a6:88:6d:f0:98:cd:a4:d3:3d:73:81:5e:66:b6:61: bb:76:f6:67:2e:ac:12:40:d3:05:dd:56:1c:3e:08: df:c7:76:d4:19:0b:2b:cf:64:d3:f0:2d:56:35:ac: af:54:da:30:fa:e4:d6:dc:39:7d:ed:4c:c5:6e:b7: 60:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:64:41:ED:05:8F:F2:6C:67:4C:80:A9:AD:4D:AE:DE:D1:D4:73:8B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:8340::/48 Signature Algorithm: sha256WithRSAEncryption 19:46:b0:55:a5:bc:3b:42:ea:6c:62:cb:56:8c:a8:b5:7b:96: 19:1a:34:28:65:ad:ab:db:ff:5b:16:06:19:02:55:3e:17:7f: ed:af:ad:e1:47:3e:30:70:83:a3:ff:8f:18:e6:6e:6c:8c:34: 58:5f:75:3f:34:96:44:ad:9c:4d:2c:fa:35:4e:8f:51:2d:50: 6c:17:f3:10:d2:b1:7f:a0:ad:e5:8e:8d:2b:5f:5f:64:71:5d: b0:43:71:9c:00:71:fc:28:51:96:d0:1f:45:36:f0:d6:67:ba: 2e:fc:40:a3:bd:3d:66:9f:a9:f7:51:f3:90:45:53:8b:8e:a8: f1:94:c1:5d:51:06:7c:ea:e3:14:01:de:48:03:5e:5f:af:1b: 2a:dc:14:9d:4a:b1:c3:b7:ff:bd:b3:3e:be:b6:76:bc:ab:53: 11:ba:f4:6f:79:96:4f:76:f6:88:b9:5e:e9:e8:36:03:67:2a: ad:50:8d:f2:25:dd:3f:d1:f7:bb:de:7e:c0:0d:07:5a:e3:a7: f1:ed:05:fe:91:be:d1:e1:71:9c:6f:cb:c9:5c:22:fd:96:53: c9:e4:cc:47:b0:3e:a9:9e:6f:62:14:02:00:a9:63:a9:78:f6: e4:6e:86:3b:25:67:b1:35:bf:a6:53:6b:00:49:47:11:f8:cc: eb:d0:90:51 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUS+zvT8Td6r99cKZcwfH42TrQy18wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAxOTA2NTUwMFoX DTI0MTAxNzA3MDAwMFowMzExMC8GA1UEAxMoMEE2NDQxRUQwNThGRjI2QzY3NEM4 MEE5QUQ0REFFREVEMUQ0NzM4QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANqMxRaYMYQYxf4/gtWHcfVnrSWxJCu6OHOwvefgwAPQkl9CVA19jm7/HPOI rnxnQba7/zsxFA9Z9nSBhem9wlriwdairP+KO3eUf7wdK1U7x5eNR0qrnzXDSiUZ R5I2TXpvbtWFeHmdp2KGhBYxVx/81aYHvVvcL2k2JPWlRBBedlhxlftjBpw1YfVv S90umYquAyX+OWH/sGYVexvc66ILlmccWG7yoxi5gLUhJD5uWcxZud3qM8v/1aaK GPN3nWeMpoht8JjNpNM9c4FeZrZhu3b2Zy6sEkDTBd1WHD4I38d21BkLK89k0/At VjWsr1TaMPrk1tw5fe1MxW63YFMCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQKZEHt BY/ybGdMgKmtTa7e0dRzizAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDIzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfGDQDANBgkqhkiG9w0BAQsFAAOCAQEAGUawVaW8O0LqbGLL VoyotXuWGRo0KGWtq9v/WxYGGQJVPhd/7a+t4Uc+MHCDo/+PGOZubIw0WF91PzSW RK2cTSz6NU6PUS1QbBfzENKxf6Ct5Y6NK19fZHFdsENxnABx/ChRltAfRTbw1me6 LvxAo709Zp+p91HzkEVTi46o8ZTBXVEGfOrjFAHeSANeX68bKtwUnUqxw7f/vbM+ vrZ2vKtTEbr0b3mWT3b2iLle6eg2A2cqrVCN8iXdP9H3u95+wA0HWuOn8e0F/pG+ 0eFxnG/LyVwi/ZZTyeTMR7A+qZ5vYhQCAKljqXj25G6GOyVnsTW/plNrAElHEfjM 69CQUQ== -----END CERTIFICATE-----Generated at Wed May 8 17:45:23 2024 by rpki-client on console-ams.rpki-client.org