$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150254.roa File: AS150254.roa (raw, json) Hash identifier: kZld5OSlrMPnhypJ2m1OfxkoEG23pNENOZI9RBisVug= Subject key identifier: 3E:9B:26:2E:29:C3:F5:B3:66:EA:CD:91:6A:5F:ED:2B:ED:D7:F7:22 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7C3930BDAD8B7D0D4CF7A1807FDC689EEA0A0FC3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150254.roa Signing time: Fri 01 Nov 2024 08:00:00 +0000 ROA not before: Fri 01 Nov 2024 07:55:00 +0000 ROA not after: Fri 31 Oct 2025 08:00:00 +0000 asID: 150254 IP address blocks: 103.28.16.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:39:30:bd:ad:8b:7d:0d:4c:f7:a1:80:7f:dc:68:9e:ea:0a:0f:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 1 07:55:00 2024 GMT Not After : Oct 31 08:00:00 2025 GMT Subject: CN=3E9B262E29C3F5B366EACD916A5FED2BEDD7F722 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e2:d6:32:65:7f:aa:a4:5a:b6:44:22:00:87: ac:83:7e:9d:73:87:14:94:8c:40:16:8d:4c:40:2d: f3:c8:ba:2d:55:b0:6f:25:9e:09:c1:c9:7f:5a:a0: 56:2a:43:13:2c:e8:e4:4d:f4:5c:12:3a:2e:6f:9a: 63:6b:c9:f9:b4:13:96:e8:83:ad:c3:2f:4f:fb:ad: aa:ba:b4:08:05:20:30:c2:e2:ab:8a:8d:47:82:c3: 70:b0:06:af:a9:b4:48:8a:61:a8:98:da:79:cd:1f: 80:6a:93:b5:c2:89:e7:5d:35:1a:30:44:20:9c:b9: 33:79:e0:3a:f1:b6:17:7a:3e:3a:90:bc:1f:ac:33: 84:a8:4c:70:19:03:cf:bd:19:36:81:73:a2:01:54: 13:0f:fd:cf:21:f5:8e:6a:61:03:fa:26:87:a4:f1: bc:f8:2d:58:8b:11:39:68:db:e8:a2:d8:01:04:c0: c6:8f:ed:bd:cc:75:a8:e2:b1:8f:cb:04:35:c8:07: ea:cd:16:72:45:2f:07:72:66:87:37:05:19:95:6d: 3e:35:ec:94:17:e9:21:73:52:3d:80:c5:43:a0:8a: eb:18:77:84:cd:0d:f4:05:a8:0f:ee:5f:65:f8:eb: cb:42:59:ff:4c:ed:c4:fb:5b:4e:7e:b3:b3:3a:4e: 08:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:9B:26:2E:29:C3:F5:B3:66:EA:CD:91:6A:5F:ED:2B:ED:D7:F7:22 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150254.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.16.0/23 Signature Algorithm: sha256WithRSAEncryption 51:4b:f2:b6:7a:41:cc:7b:4b:a6:ef:14:c0:6b:82:ad:e7:3b: 23:f1:3e:21:87:25:41:a9:c3:35:30:bc:fa:e1:a5:a8:2c:d1: 45:3f:45:61:7e:2c:97:2b:18:05:1a:7a:89:91:e7:c4:39:d2: f8:78:7f:fe:f4:88:86:62:54:8e:de:de:7d:96:32:45:60:ce: eb:40:5f:55:dc:56:0a:6e:df:76:c9:ce:54:e2:05:7d:fe:1e: da:01:93:20:6b:e1:e3:b3:7a:1b:55:70:58:ad:be:af:3d:cf: 00:0b:e2:ea:06:6b:c0:53:19:af:ea:89:32:06:ae:c7:8b:07: f6:e5:22:24:ec:91:e0:57:67:e0:3e:e1:07:da:6e:55:95:21: 67:f9:73:90:70:49:e6:8a:b9:c0:8d:8c:5b:17:76:a9:74:63: 8d:2b:83:47:51:e5:f4:5b:bd:21:b6:1a:57:6e:60:4e:97:e2: cc:76:67:cd:51:e1:42:52:2f:7b:f8:10:ed:25:bf:2a:d2:14: 05:39:ed:ee:11:2b:65:06:2e:31:64:43:03:ce:12:88:d6:84: 4a:d0:ca:f9:b7:3b:0c:c5:58:61:9d:c9:b2:09:27:56:d9:9a: 5d:50:c5:23:a8:e2:6f:a5:05:a2:1f:70:3f:a8:6f:36:1f:e6: a0:39:29:06 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUfDkwva2LfQ1M96GAf9xonuoKD8MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEwMTA3NTUwMFoX DTI1MTAzMTA4MDAwMFowMzExMC8GA1UEAxMoM0U5QjI2MkUyOUMzRjVCMzY2RUFD RDkxNkE1RkVEMkJFREQ3RjcyMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK7i1jJlf6qkWrZEIgCHrIN+nXOHFJSMQBaNTEAt88i6LVWwbyWeCcHJf1qg VipDEyzo5E30XBI6Lm+aY2vJ+bQTluiDrcMvT/utqrq0CAUgMMLiq4qNR4LDcLAG r6m0SIphqJjaec0fgGqTtcKJ5101GjBEIJy5M3ngOvG2F3o+OpC8H6wzhKhMcBkD z70ZNoFzogFUEw/9zyH1jmphA/omh6TxvPgtWIsROWjb6KLYAQTAxo/tvcx1qOKx j8sENcgH6s0WckUvB3JmhzcFGZVtPjXslBfpIXNSPYDFQ6CK6xh3hM0N9AWoD+5f Zfjry0JZ/0ztxPtbTn6zszpOCNMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ+myYu KcP1s2bqzZFqX+0r7df3IjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDI1NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWccEDANBgkqhkiG9w0BAQsFAAOCAQEAUUvytnpBzHtLpu8UwGuC rec7I/E+IYclQanDNTC8+uGlqCzRRT9FYX4slysYBRp6iZHnxDnS+Hh//vSIhmJU jt7efZYyRWDO60BfVdxWCm7fdsnOVOIFff4e2gGTIGvh47N6G1VwWK2+rz3PAAvi 6gZrwFMZr+qJMgaux4sH9uUiJOyR4Fdn4D7hB9puVZUhZ/lzkHBJ5oq5wI2MWxd2 qXRjjSuDR1Hl9Fu9IbYaV25gTpfizHZnzVHhQlIve/gQ7SW/KtIUBTnt7hErZQYu MWRDA84SiNaEStDK+bc7DMVYYZ3JsgknVtmaXVDFI6jib6UFoh9wP6hvNh/moDkp Bg== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:56 2024 by rpki-client on console-fra.rpki-client.org