$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150240.roa File: AS150240.roa (raw, json) Hash identifier: 7ikzhnxqTTtEpzMCNquXoT8hX+LSVZ09QVLosghQDVU= Subject key identifier: 6B:6D:72:5E:58:59:F9:64:72:81:17:22:7C:D3:3A:5C:AF:3A:A1:D0 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 66A11A92E4E72F041C98C121187949E2DAA0B5AB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150240.roa Signing time: Mon 07 Oct 2024 08:00:00 +0000 ROA not before: Mon 07 Oct 2024 07:55:00 +0000 ROA not after: Mon 06 Oct 2025 08:00:00 +0000 asID: 150240 IP address blocks: 103.69.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:a1:1a:92:e4:e7:2f:04:1c:98:c1:21:18:79:49:e2:da:a0:b5:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 7 07:55:00 2024 GMT Not After : Oct 6 08:00:00 2025 GMT Subject: CN=6B6D725E5859F964728117227CD33A5CAF3AA1D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:df:7e:60:a8:76:39:7b:3a:d8:2f:b8:6d:6b: 1e:af:e7:b9:38:f3:34:ce:69:4c:81:3e:82:bb:3f: 9e:ff:32:58:d2:88:33:d6:e2:74:bc:5a:8f:2f:a2: 89:03:8b:87:ce:25:41:11:82:12:29:53:62:44:d5: 39:36:23:e1:13:1c:a2:e2:27:ac:31:f0:c4:b1:52: b3:da:f7:9d:5e:dd:53:31:b5:fa:c5:31:aa:35:bf: 6e:cf:44:3b:58:4e:3a:85:06:16:6f:47:00:1e:ef: e7:93:49:83:f5:32:bd:ad:6e:37:23:d8:cb:0b:52: 91:50:17:83:d5:91:a6:03:ea:cd:4f:73:20:7a:6e: f8:73:2e:cf:1b:ce:79:3b:0f:b6:64:26:4c:3a:f9: 5f:fe:01:16:04:44:18:bd:0c:7e:0e:77:77:d4:ee: 41:bb:2f:71:33:d1:aa:bb:0d:2d:b7:2b:5a:3f:32: 86:31:4a:a8:f6:7b:5b:c6:0f:4a:6e:4f:77:fc:e1: e3:ef:89:6a:6d:36:df:ef:78:1d:a0:2e:1c:0f:cc: 8e:47:6e:79:56:6e:02:b8:41:a9:1e:9c:90:f1:16: 4d:3b:4a:80:0b:f7:c0:01:71:ce:8a:f5:bf:79:39: 66:09:65:bf:84:e8:5a:12:34:67:57:7e:67:b3:a2: 01:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:6D:72:5E:58:59:F9:64:72:81:17:22:7C:D3:3A:5C:AF:3A:A1:D0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150240.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.69.233.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:6c:e4:89:89:e6:40:23:71:65:e8:3c:62:2b:b1:0d:19:59: 58:7c:99:f4:c4:54:97:3c:b7:8f:db:28:50:35:64:78:20:43: 27:08:5a:49:6b:b9:19:b2:a8:dc:f9:c8:cb:c3:49:70:19:dc: 7c:af:1f:30:ca:80:bd:fe:6d:54:34:2d:bb:81:3b:67:4b:39: ad:6a:a6:f5:03:43:05:51:97:4c:5c:25:68:2c:cc:85:c0:bb: 14:8a:1f:c3:d2:27:6a:35:7f:c7:8f:3c:ef:fa:f5:34:c1:53: 4d:03:ec:de:3e:36:60:d3:af:ac:38:ac:db:20:36:d9:22:33: 29:82:9e:aa:6e:74:69:c8:28:37:69:74:a8:be:71:e6:41:c5: b8:44:00:bc:46:b9:bb:13:32:72:84:ef:3e:9f:0a:d9:4e:bc: cd:6a:08:34:04:d7:25:38:c8:ae:ee:be:20:18:bd:39:1b:22: c9:d3:f8:fe:05:a9:de:30:96:5a:ea:50:5d:02:0e:43:18:4c: 59:2c:11:92:76:08:96:6b:bb:c5:d5:fc:2c:e9:ee:c4:1b:df: 6b:47:28:cb:9e:c6:a9:7d:a1:96:fd:55:0c:c3:d9:4b:ef:f7: 26:40:52:19:29:ca:48:83:c0:53:69:74:b5:35:24:a4:78:a9: 78:86:6e:b3 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUZqEakuTnLwQcmMEhGHlJ4tqgtaswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAwNzA3NTUwMFoX DTI1MTAwNjA4MDAwMFowMzExMC8GA1UEAxMoNkI2RDcyNUU1ODU5Rjk2NDcyODEx NzIyN0NEMzNBNUNBRjNBQTFEMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMXffmCodjl7OtgvuG1rHq/nuTjzNM5pTIE+grs/nv8yWNKIM9bidLxajy+i iQOLh84lQRGCEilTYkTVOTYj4RMcouInrDHwxLFSs9r3nV7dUzG1+sUxqjW/bs9E O1hOOoUGFm9HAB7v55NJg/Uyva1uNyPYywtSkVAXg9WRpgPqzU9zIHpu+HMuzxvO eTsPtmQmTDr5X/4BFgREGL0Mfg53d9TuQbsvcTPRqrsNLbcrWj8yhjFKqPZ7W8YP Sm5Pd/zh4++Jam023+94HaAuHA/MjkdueVZuArhBqR6ckPEWTTtKgAv3wAFxzor1 v3k5Zgllv4ToWhI0Z1d+Z7OiAXsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRrbXJe WFn5ZHKBFyJ80zpcrzqh0DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDI0MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGdF6TANBgkqhkiG9w0BAQsFAAOCAQEALGzkiYnmQCNxZeg8Yiux DRlZWHyZ9MRUlzy3j9soUDVkeCBDJwhaSWu5GbKo3PnIy8NJcBncfK8fMMqAvf5t VDQtu4E7Z0s5rWqm9QNDBVGXTFwlaCzMhcC7FIofw9InajV/x4887/r1NMFTTQPs 3j42YNOvrDis2yA22SIzKYKeqm50acgoN2l0qL5x5kHFuEQAvEa5uxMycoTvPp8K 2U68zWoINATXJTjIru6+IBi9ORsiydP4/gWp3jCWWupQXQIOQxhMWSwRknYIlmu7 xdX8LOnuxBvfa0coy57GqX2hlv1VDMPZS+/3JkBSGSnKSIPAU2l0tTUkpHipeIZu sw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org