$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150251.roa File: AS150251.roa (raw, json) Hash identifier: qjFdRVlObaGPH0Od128lb/aRgS+KY7DfqDe3id7+yZM= Subject key identifier: 11:39:05:6C:FB:1E:82:F7:53:B7:83:BA:53:69:5D:B4:52:6A:21:F9 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 672CF248EF7B10A16E2FBF9146E8920F616FA325 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150251.roa Signing time: Mon 07 Aug 2023 06:47:49 +0000 ROA not before: Mon 07 Aug 2023 06:42:49 +0000 ROA not after: Mon 05 Aug 2024 06:47:49 +0000 asID: 150251 IP address blocks: 49.156.58.0/23 maxlen: 24 49.156.61.0/24 maxlen: 24 49.156.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:2c:f2:48:ef:7b:10:a1:6e:2f:bf:91:46:e8:92:0f:61:6f:a3:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 7 06:42:49 2023 GMT Not After : Aug 5 06:47:49 2024 GMT Subject: CN=1139056CFB1E82F753B783BA53695DB4526A21F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:8c:cb:f8:ca:a3:59:91:7e:bd:2c:c0:be:51: 80:0b:aa:a7:f9:63:4f:3d:62:ab:af:76:1a:81:0a: 8f:a6:f5:26:e7:53:9b:38:92:9d:0e:5c:93:25:2b: 29:db:65:46:f2:54:49:6f:bd:42:e5:4e:3f:98:8b: 94:c5:37:48:0d:52:9d:88:2c:4a:d3:97:10:b2:ff: 27:ec:2d:f9:ff:20:6a:20:22:77:b8:6d:dc:02:91: 30:46:e7:70:1a:d3:51:38:48:0b:09:67:d8:b9:f5: ec:1a:44:8b:26:eb:d1:59:37:df:1b:f7:22:85:a0: 17:ac:62:69:ae:70:93:ac:59:45:2d:42:ed:ae:49: 12:04:48:23:e3:73:fb:ea:c3:c4:9e:e3:1a:b4:70: 14:8b:bb:09:35:35:5e:1d:23:a2:88:c4:6c:ef:cc: 68:53:fa:3f:0b:ca:07:d0:f3:90:0a:8f:27:17:ae: c8:98:52:99:62:30:d1:64:b2:58:2c:35:8c:a5:d6: af:ef:5a:3c:d6:ac:5b:8c:35:23:90:d5:4f:5d:16: b2:f1:1f:7f:54:f9:91:bc:f9:a3:74:1e:8f:0c:fc: 7a:c3:59:49:a7:63:31:d6:6b:91:58:dd:20:73:c5: c2:1b:b2:e6:78:09:ad:2e:c5:9e:21:79:fe:2f:5a: 46:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:39:05:6C:FB:1E:82:F7:53:B7:83:BA:53:69:5D:B4:52:6A:21:F9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150251.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.156.58.0/23 49.156.61.0-49.156.63.255 Signature Algorithm: sha256WithRSAEncryption 63:6b:04:a0:38:c5:0f:3e:b0:d2:45:e9:b1:9f:d8:44:43:c5: 01:4a:8b:44:1b:2f:fa:76:f9:d3:09:c0:6c:68:04:92:92:0e: 28:af:9d:22:0c:17:0a:cf:50:d2:c0:13:df:99:16:0b:03:e2: f2:cf:de:a0:96:e9:1c:82:2c:93:f8:f8:cd:4c:f5:cd:4e:cb: 55:6a:d5:2f:71:45:4f:ae:6c:5a:36:36:ea:3f:04:60:03:2b: da:e5:c1:7e:b3:68:ee:3e:b9:fd:99:6f:3e:06:25:fc:65:c7: 2f:14:15:97:fb:35:68:f8:8f:1e:4d:e0:80:b5:6b:56:6b:fd: 5a:84:ab:8b:c8:75:85:a2:f4:8d:24:3d:8d:f3:38:94:2b:c7: c0:82:1f:48:d6:5b:61:31:af:bb:d6:7b:18:54:c7:4e:7b:fc: 70:f6:8a:4a:d6:78:2b:59:47:13:a7:d0:0d:4a:16:9a:fe:c7: 68:0d:9c:14:1d:0b:19:64:ee:49:5e:5b:8f:af:29:83:d5:50: 25:d0:1c:e3:25:41:0b:67:02:9b:ad:9a:c3:a6:e2:12:88:6c: 82:d1:e9:60:6c:2a:43:6a:6c:42:a5:07:ba:a8:fd:44:a5:bd: 61:e4:9d:3d:d8:a4:5a:33:f3:6d:05:c1:47:c4:aa:3e:7d:4c: a6:20:e1:ce -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgIUZyzySO97EKFuL7+RRuiSD2FvoyUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgwNzA2NDI0OVoX DTI0MDgwNTA2NDc0OVowMzExMC8GA1UEAxMoMTEzOTA1NkNGQjFFODJGNzUzQjc4 M0JBNTM2OTVEQjQ1MjZBMjFGOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ+My/jKo1mRfr0swL5RgAuqp/ljTz1iq692GoEKj6b1JudTmziSnQ5ckyUr KdtlRvJUSW+9QuVOP5iLlMU3SA1SnYgsStOXELL/J+wt+f8gaiAid7ht3AKRMEbn cBrTUThICwln2Ln17BpEiybr0Vk33xv3IoWgF6xiaa5wk6xZRS1C7a5JEgRII+Nz ++rDxJ7jGrRwFIu7CTU1Xh0joojEbO/MaFP6PwvKB9DzkAqPJxeuyJhSmWIw0WSy WCw1jKXWr+9aPNasW4w1I5DVT10WsvEff1T5kbz5o3Qejwz8esNZSadjMdZrkVjd IHPFwhuy5ngJrS7FniF5/i9aRjsCAwEAAaOCAd4wggHaMB0GA1UdDgQWBBQROQVs +x6C91O3g7pTaV20Umoh+TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDI1MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAtBggrBgEFBQcBBwEB/wQeMBww GgQCAAEwFAMEATGcOjAMAwQAMZw9AwQGMZwAMA0GCSqGSIb3DQEBCwUAA4IBAQBj awSgOMUPPrDSRemxn9hEQ8UBSotEGy/6dvnTCcBsaASSkg4or50iDBcKz1DSwBPf mRYLA+Lyz96glukcgiyT+PjNTPXNTstVatUvcUVPrmxaNjbqPwRgAyva5cF+s2ju Prn9mW8+BiX8ZccvFBWX+zVo+I8eTeCAtWtWa/1ahKuLyHWFovSNJD2N8ziUK8fA gh9I1lthMa+71nsYVMdOe/xw9opK1ngrWUcTp9ANShaa/sdoDZwUHQsZZO5JXluP rymD1VAl0BzjJUELZwKbrZrDpuISiGyC0elgbCpDamxCpQe6qP1Epb1h5J092KRa M/NtBcFHxKo+fUymIOHO -----END CERTIFICATE-----Generated at Wed May 8 18:12:17 2024 by rpki-client on console-fra.rpki-client.org