$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150253.roa File: AS150253.roa (raw, json) Hash identifier: DqBVVpxeISoiKDFdcGLtnO5DebLwWhv7GnImIszvVIE= Subject key identifier: E9:2B:40:CD:04:50:92:80:7A:DB:D8:36:15:C7:EE:9A:EB:D5:A6:11 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0303F94FCFBCB7F35E6F95DF187E69FA0191DE38 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150253.roa Signing time: Fri 14 Feb 2025 14:24:34 +0000 ROA not before: Fri 14 Feb 2025 14:19:34 +0000 ROA not after: Fri 13 Feb 2026 14:24:34 +0000 asID: 150253 IP address blocks: 103.176.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:03:f9:4f:cf:bc:b7:f3:5e:6f:95:df:18:7e:69:fa:01:91:de:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 14 14:19:34 2025 GMT Not After : Feb 13 14:24:34 2026 GMT Subject: CN=E92B40CD045092807ADBD83615C7EE9AEBD5A611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:19:60:40:f0:b9:16:79:92:ab:9a:3b:f3:74: 48:74:27:e5:0a:a2:3d:72:3e:4e:bc:9a:f2:ae:2e: ff:b2:d4:71:60:a0:8c:71:96:d6:6e:5e:b5:c0:06: b1:e9:14:53:c5:15:10:02:df:8f:57:91:52:ed:b9: 70:37:f6:fe:04:ae:26:a1:65:18:12:83:1a:e3:17: e2:ec:76:93:d0:be:2b:b9:6d:8c:f7:c8:80:36:d1: b2:96:03:b6:b0:63:5a:49:2a:09:6d:c1:a6:24:4f: 8a:96:f0:a5:9e:85:9f:79:43:ec:ea:03:5c:2c:62: a6:97:8d:f5:5b:b5:dd:23:36:3a:53:31:17:52:9d: 5a:41:65:a3:53:ba:e9:7d:53:2b:7f:28:35:12:ac: 99:d9:4b:1c:62:ef:bf:36:d0:59:2c:2b:13:bd:12: 18:c7:8b:fb:cb:2a:93:0f:e4:83:01:bf:61:0f:79: 3a:fc:ec:68:07:63:ef:1f:85:b5:80:74:72:99:ed: 35:0c:0e:57:3e:b9:2b:9b:d6:9a:47:d5:80:91:f2: 9f:f0:ee:d3:f6:7b:68:3e:30:05:74:11:77:95:03: 62:f0:56:52:a0:2e:b2:fd:83:24:b2:ea:3e:99:9f: df:5d:e5:36:e8:b0:03:21:05:13:b3:59:46:d1:bf: 1a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:2B:40:CD:04:50:92:80:7A:DB:D8:36:15:C7:EE:9A:EB:D5:A6:11 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150253.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.106.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:94:75:98:e3:c9:88:30:cc:c3:c8:1a:c7:d7:7a:41:04:83: 97:e8:b5:82:a1:c0:ce:f8:41:c4:34:57:e6:91:cf:9c:5f:70: 5c:a1:47:11:39:f4:49:dc:d4:c4:9d:db:7c:d1:23:35:d5:3a: 73:8d:25:a1:7d:e7:e8:87:69:d6:16:b0:36:91:63:75:ee:b0: 9a:91:ef:fa:44:9c:e3:b7:e9:27:c1:e9:e8:6f:7a:4f:73:11: 30:9f:b3:cf:5e:56:a4:5c:6c:4c:a0:a2:9f:74:36:72:bd:e5: 4c:70:39:e8:db:26:7a:1e:9d:86:b5:95:1c:28:43:6e:3e:e3: 94:0f:1b:40:fc:23:d4:c9:c2:89:f1:6b:cf:1e:a8:ab:b8:2b: f9:4e:52:8a:94:72:6d:ad:45:ef:50:11:aa:2c:af:18:90:57: 9f:31:29:c3:89:a0:d1:75:aa:5f:64:18:a1:7f:5c:63:07:b2: e3:7a:b4:8e:93:ff:96:91:4a:26:81:5e:5d:bc:f0:61:02:51: 0e:34:63:b8:cd:55:66:93:50:1b:5b:b0:e8:ce:a4:cd:15:46: a0:73:11:f4:ec:6e:34:00:6b:11:dd:70:68:b7:5c:a9:45:c8: 16:82:0b:0d:42:86:75:e3:59:64:2e:0a:14:74:9a:54:0c:cb: cb:bd:ea:03 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUAwP5T8+8t/Neb5XfGH5p+gGR3jgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIxNDE0MTkzNFoX DTI2MDIxMzE0MjQzNFowMzExMC8GA1UEAxMoRTkyQjQwQ0QwNDUwOTI4MDdBREJE ODM2MTVDN0VFOUFFQkQ1QTYxMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKYZYEDwuRZ5kquaO/N0SHQn5QqiPXI+Trya8q4u/7LUcWCgjHGW1m5etcAG sekUU8UVEALfj1eRUu25cDf2/gSuJqFlGBKDGuMX4ux2k9C+K7ltjPfIgDbRspYD trBjWkkqCW3BpiRPipbwpZ6Fn3lD7OoDXCxippeN9Vu13SM2OlMxF1KdWkFlo1O6 6X1TK38oNRKsmdlLHGLvvzbQWSwrE70SGMeL+8sqkw/kgwG/YQ95OvzsaAdj7x+F tYB0cpntNQwOVz65K5vWmkfVgJHyn/Du0/Z7aD4wBXQRd5UDYvBWUqAusv2DJLLq Ppmf313lNuiwAyEFE7NZRtG/GkkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTpK0DN BFCSgHrb2DYVx+6a69WmETAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDI1My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGewajANBgkqhkiG9w0BAQsFAAOCAQEAP5R1mOPJiDDMw8gax9d6 QQSDl+i1gqHAzvhBxDRX5pHPnF9wXKFHETn0SdzUxJ3bfNEjNdU6c40loX3n6Idp 1hawNpFjde6wmpHv+kSc47fpJ8Hp6G96T3MRMJ+zz15WpFxsTKCin3Q2cr3lTHA5 6Nsmeh6dhrWVHChDbj7jlA8bQPwj1MnCifFrzx6oq7gr+U5SipRyba1F71ARqiyv GJBXnzEpw4mg0XWqX2QYoX9cYwey43q0jpP/lpFKJoFeXbzwYQJRDjRjuM1VZpNQ G1uw6M6kzRVGoHMR9OxuNABrEd1waLdcqUXIFoILDUKGdeNZZC4KFHSaVAzLy73q Aw== -----END CERTIFICATE-----Generated at Sat Apr 5 06:23:39 2025 by rpki-client