$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150240.roa File: AS150240.roa (raw, json) Hash identifier: t3UJ3XO4NZmAWqceK5YvIQTkL3saS/wqj4QDAEbOys4= Subject key identifier: DF:FB:5F:A3:FD:0E:E2:F8:50:E9:13:18:AB:3D:44:5A:C7:D0:13:EE Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6CC93AFBACEF7B913F89D2CAF884169915A30292 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150240.roa Signing time: Mon 06 Nov 2023 08:00:00 +0000 ROA not before: Mon 06 Nov 2023 07:55:00 +0000 ROA not after: Mon 04 Nov 2024 08:00:00 +0000 asID: 150240 IP address blocks: 103.69.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:c9:3a:fb:ac:ef:7b:91:3f:89:d2:ca:f8:84:16:99:15:a3:02:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 6 07:55:00 2023 GMT Not After : Nov 4 08:00:00 2024 GMT Subject: CN=DFFB5FA3FD0EE2F850E91318AB3D445AC7D013EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ee:92:be:40:70:9f:a5:f4:58:b0:1c:8e:36: 45:9e:27:11:57:8a:73:de:56:28:18:18:9a:40:65: 63:cd:6a:01:35:ee:b9:52:1c:d6:21:4e:c3:f3:f5: ad:9b:5f:8c:0f:12:62:46:dd:78:37:01:df:74:63: 5a:d5:f3:fe:d0:a9:7a:ea:a7:e7:6a:c7:90:fc:05: e4:ee:43:08:36:c4:39:82:c4:c0:86:65:07:b2:2c: 64:41:8f:bd:d0:1c:44:00:8f:4e:53:46:98:85:50: 37:6f:c1:ee:42:33:d5:c7:ce:8f:63:e7:20:90:81: 0a:0e:bd:86:55:fc:e0:d1:70:0f:41:14:20:a7:2a: 5c:36:00:f4:9a:bf:6f:10:86:d7:b6:aa:5d:f8:05: 03:78:94:f6:5f:a0:00:bb:0f:4f:e5:ef:e1:8b:e3: 2e:b3:a1:e7:c7:02:2b:d6:37:f2:ce:a6:b6:58:85: c5:a4:2a:bd:cb:99:d2:0d:43:bb:c2:c1:44:7e:da: 40:9b:5e:17:1a:38:f6:d2:c9:28:08:eb:9d:e3:ca: 15:cb:0b:73:8a:6c:63:56:15:20:85:e1:ae:35:81: 62:a4:1e:25:b9:74:71:e1:fb:cd:e2:0d:a2:51:0b: 89:29:b1:9b:44:d6:eb:47:d8:a3:2b:65:2f:b5:ad: f5:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:FB:5F:A3:FD:0E:E2:F8:50:E9:13:18:AB:3D:44:5A:C7:D0:13:EE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150240.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.69.233.0/24 Signature Algorithm: sha256WithRSAEncryption 57:7a:4f:e6:c9:71:e0:4f:95:3d:a1:b3:a4:d1:e8:c7:c4:24: f5:89:c6:ce:78:2b:1e:9a:a3:02:73:e9:79:5c:9f:fe:b6:35: 02:b2:43:7e:c9:52:ea:d6:5f:af:bd:14:ef:49:c2:19:cf:e9: 18:bc:27:c4:64:26:99:c7:d3:be:f3:52:7f:dd:3a:e3:65:88: 83:f4:a8:09:cc:e7:a0:33:04:14:83:8c:c5:2f:63:b9:2e:c0: 24:41:bf:37:db:04:85:3c:bc:64:16:71:80:cc:ca:a4:1b:41: 72:5c:36:ae:5b:88:c3:75:1a:e6:d7:c0:a9:0f:a8:9f:8e:3b: 80:56:f9:90:91:da:12:e6:87:4e:99:e7:b3:96:35:49:1e:e2: f2:aa:46:0f:2c:2e:cf:5c:e4:90:99:93:08:b6:a6:ae:31:5e: 26:4f:1c:72:57:b0:47:56:2c:27:0a:9b:bc:41:59:19:5c:c1: 34:b2:89:65:e7:93:13:ce:54:57:27:28:c5:cb:aa:48:0a:4f: bc:f8:a7:e9:65:01:22:63:3b:6f:ed:0c:f5:b8:22:b1:78:bb: 27:b8:ef:db:8d:3c:99:51:d8:6e:41:16:bb:e2:27:3c:c4:81: 94:a0:d9:e2:b2:ec:11:1c:94:c7:86:28:fa:d7:7a:65:c0:59: 1b:00:0a:8b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUbMk6+6zve5E/idLK+IQWmRWjApIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEwNjA3NTUwMFoX DTI0MTEwNDA4MDAwMFowMzExMC8GA1UEAxMoREZGQjVGQTNGRDBFRTJGODUwRTkx MzE4QUIzRDQ0NUFDN0QwMTNFRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALLukr5AcJ+l9FiwHI42RZ4nEVeKc95WKBgYmkBlY81qATXuuVIc1iFOw/P1 rZtfjA8SYkbdeDcB33RjWtXz/tCpeuqn52rHkPwF5O5DCDbEOYLEwIZlB7IsZEGP vdAcRACPTlNGmIVQN2/B7kIz1cfOj2PnIJCBCg69hlX84NFwD0EUIKcqXDYA9Jq/ bxCG17aqXfgFA3iU9l+gALsPT+Xv4YvjLrOh58cCK9Y38s6mtliFxaQqvcuZ0g1D u8LBRH7aQJteFxo49tLJKAjrnePKFcsLc4psY1YVIIXhrjWBYqQeJbl0ceH7zeIN olELiSmxm0TW60fYoytlL7Wt9VMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTf+1+j /Q7i+FDpExirPURax9AT7jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDI0MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGdF6TANBgkqhkiG9w0BAQsFAAOCAQEAV3pP5slx4E+VPaGzpNHo x8Qk9YnGzngrHpqjAnPpeVyf/rY1ArJDfslS6tZfr70U70nCGc/pGLwnxGQmmcfT vvNSf90642WIg/SoCcznoDMEFIOMxS9juS7AJEG/N9sEhTy8ZBZxgMzKpBtBclw2 rluIw3Ua5tfAqQ+on447gFb5kJHaEuaHTpnns5Y1SR7i8qpGDywuz1zkkJmTCLam rjFeJk8cclewR1YsJwqbvEFZGVzBNLKJZeeTE85UVycoxcuqSApPvPin6WUBImM7 b+0M9bgisXi7J7jv2408mVHYbkEWu+InPMSBlKDZ4rLsERyUx4Yo+td6ZcBZGwAK iw== -----END CERTIFICATE-----Generated at Tue May 7 16:42:41 2024 by rpki-client on console-ams.rpki-client.org