$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150254.roa File: AS150254.roa (raw, json) Hash identifier: wdYEXzulkZVCjSksfDPfQgpeseNKF7ma9eM8Cgd1rSM= Subject key identifier: 30:A5:A4:57:C4:17:E8:AE:A8:E1:A2:26:9B:EA:49:2D:42:94:BB:A6 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 050D9991EA9092ED9D72B7C0ED3BBC8A8362DE5A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150254.roa Signing time: Fri 01 Dec 2023 07:20:21 +0000 ROA not before: Fri 01 Dec 2023 07:15:21 +0000 ROA not after: Fri 29 Nov 2024 07:20:21 +0000 asID: 150254 IP address blocks: 103.28.16.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:0d:99:91:ea:90:92:ed:9d:72:b7:c0:ed:3b:bc:8a:83:62:de:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 1 07:15:21 2023 GMT Not After : Nov 29 07:20:21 2024 GMT Subject: CN=30A5A457C417E8AEA8E1A2269BEA492D4294BBA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c8:f8:f2:b3:39:f8:b9:ed:20:5b:e6:e2:00: d2:c0:3c:34:b1:a6:94:eb:b4:d9:e7:3b:6e:54:ac: 17:f4:bd:95:6d:13:8b:06:dc:13:84:63:62:20:52: 77:c0:9b:5a:a6:d4:66:8e:6e:4a:f6:57:4c:ec:08: da:e3:46:6e:b2:e9:b6:98:1d:44:a5:5e:5c:c1:b9: 7a:7c:0b:0b:10:bc:8d:33:fc:36:d0:67:a5:66:08: 7a:c7:be:19:66:0e:b0:f7:2b:41:50:cf:96:36:a9: f8:0a:27:73:d3:b9:bb:71:f0:73:f6:4b:d0:e9:62: 75:1d:71:20:26:32:e8:a4:4a:2e:c7:7c:8a:7c:e1: 99:bb:b4:00:f3:71:b8:07:6c:35:49:16:06:d4:ed: 31:78:c7:c9:96:77:a7:39:70:92:61:77:17:11:1d: 15:d9:ab:07:94:f4:89:bb:8a:31:a1:4c:43:01:cb: 2f:90:0d:fe:c0:ff:01:7a:ab:0e:c0:e7:12:17:ae: 07:8d:1d:8f:db:c3:bf:e7:c4:ba:32:4b:69:57:3c: 1b:31:6f:fd:ca:43:a4:ff:68:9a:60:5c:c5:b6:7e: 42:fc:e8:4a:94:36:8d:b6:cd:77:f0:e0:f5:2b:37: 17:1d:67:c4:80:01:df:f2:23:2e:29:37:9d:69:ac: b5:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:A5:A4:57:C4:17:E8:AE:A8:E1:A2:26:9B:EA:49:2D:42:94:BB:A6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150254.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.16.0/23 Signature Algorithm: sha256WithRSAEncryption 45:8a:f5:ff:de:21:0b:b2:94:b0:f9:d0:08:2a:2a:d4:08:13: 43:fe:22:38:c4:ae:a1:bb:db:8b:c3:c0:3c:6c:1f:52:26:3d: da:af:31:0b:a2:22:63:8b:fb:d2:60:10:84:af:cb:70:98:fb: fd:59:8c:43:e3:e0:58:73:4b:fa:13:ad:f8:fc:30:e7:10:d9: 2b:b3:ca:5a:06:c4:0e:01:9b:35:97:a2:5a:80:7c:6b:9f:f1: 3d:03:ad:16:77:cd:ce:8d:6b:06:89:dd:c6:8c:64:ab:78:24: 9e:98:88:54:43:38:46:89:54:0a:c1:07:3d:50:26:dd:45:a8: c8:bb:66:d2:ec:35:23:de:bb:63:60:4e:1b:eb:ef:96:d3:9b: d0:b8:13:d8:ca:b6:49:50:8c:7a:5f:7f:6f:7c:63:64:55:71: e7:3e:47:a6:d0:fb:1a:0f:a2:b0:fb:cf:e2:88:a2:3f:86:f4: bf:15:fe:ac:4e:d9:1f:39:74:c5:d4:40:d4:62:b4:a3:25:1c: 6d:8f:61:37:25:33:4e:a1:a7:36:69:a2:37:0b:6f:91:a7:9b: a7:ac:65:d6:27:63:9e:09:33:69:f2:7e:f5:3d:47:63:d3:19: 6e:21:03:de:ac:92:2b:a8:85:90:fb:aa:7d:99:8e:5b:b1:f8: 56:f5:a2:1b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUBQ2ZkeqQku2dcrfA7Tu8ioNi3lowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIwMTA3MTUyMVoX DTI0MTEyOTA3MjAyMVowMzExMC8GA1UEAxMoMzBBNUE0NTdDNDE3RThBRUE4RTFB MjI2OUJFQTQ5MkQ0Mjk0QkJBNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMbI+PKzOfi57SBb5uIA0sA8NLGmlOu02ec7blSsF/S9lW0TiwbcE4RjYiBS d8CbWqbUZo5uSvZXTOwI2uNGbrLptpgdRKVeXMG5enwLCxC8jTP8NtBnpWYIese+ GWYOsPcrQVDPljap+Aonc9O5u3Hwc/ZL0OlidR1xICYy6KRKLsd8inzhmbu0APNx uAdsNUkWBtTtMXjHyZZ3pzlwkmF3FxEdFdmrB5T0ibuKMaFMQwHLL5AN/sD/AXqr DsDnEheuB40dj9vDv+fEujJLaVc8GzFv/cpDpP9ommBcxbZ+QvzoSpQ2jbbNd/Dg 9Ss3Fx1nxIAB3/IjLik3nWmstfUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQwpaRX xBforqjhoiab6kktQpS7pjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDI1NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWccEDANBgkqhkiG9w0BAQsFAAOCAQEARYr1/94hC7KUsPnQCCoq 1AgTQ/4iOMSuobvbi8PAPGwfUiY92q8xC6IiY4v70mAQhK/LcJj7/VmMQ+PgWHNL +hOt+Pww5xDZK7PKWgbEDgGbNZeiWoB8a5/xPQOtFnfNzo1rBondxoxkq3gknpiI VEM4RolUCsEHPVAm3UWoyLtm0uw1I967Y2BOG+vvltOb0LgT2Mq2SVCMel9/b3xj ZFVx5z5HptD7Gg+isPvP4oiiP4b0vxX+rE7ZHzl0xdRA1GK0oyUcbY9hNyUzTqGn NmmiNwtvkaebp6xl1idjngkzafJ+9T1HY9MZbiED3qySK6iFkPuqfZmOW7H4VvWi Gw== -----END CERTIFICATE-----Generated at Thu May 9 00:29:16 2024 by rpki-client on console-ams.rpki-client.org