$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150259.roa File: AS150259.roa (raw, json) Hash identifier: +PgPSpTffqhXtJsmzNP5gASOE2mFEIJnNTyYshhCQGY= Subject key identifier: 8B:58:77:8D:1A:1D:CD:39:18:55:C1:91:D9:4B:45:19:41:96:41:48 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 48AA37F25B73CC61B2B5751E9220154479EB5F2C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150259.roa Signing time: Wed 10 Jan 2024 07:03:13 +0000 ROA not before: Wed 10 Jan 2024 06:58:13 +0000 ROA not after: Wed 08 Jan 2025 07:03:13 +0000 asID: 150259 IP address blocks: 103.127.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:aa:37:f2:5b:73:cc:61:b2:b5:75:1e:92:20:15:44:79:eb:5f:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 10 06:58:13 2024 GMT Not After : Jan 8 07:03:13 2025 GMT Subject: CN=8B58778D1A1DCD391855C191D94B451941964148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:26:66:f2:70:0b:cb:d0:f1:ef:37:94:8d:af: 2c:7c:55:f3:2a:1d:64:a9:52:84:ba:6b:62:4b:80: 10:0c:85:2f:82:f9:df:5c:e2:ce:90:1d:4c:a6:da: 6d:d3:b1:b5:26:62:cb:b1:6e:5e:10:65:bc:d1:82: e3:a1:9f:e3:0b:3c:4c:8f:cd:7d:4d:03:6e:a7:14: 9b:3e:fb:d6:3a:0d:70:db:56:f9:e8:06:6a:d1:33: b6:8f:4f:1f:f4:59:4b:fa:d9:c4:a1:0b:41:a3:21: 12:fa:70:72:27:77:ed:29:f3:b6:15:27:1c:0b:68: 89:8b:09:c3:e5:a0:a0:d7:a2:04:24:0c:e3:24:b7: 3a:2d:79:b6:57:91:a0:e5:65:7d:c0:e7:04:55:df: 21:38:84:51:06:30:f0:51:e9:ba:4d:46:88:fe:9e: ad:78:b1:35:c0:9c:b0:78:31:68:2d:8d:a5:95:74: 94:a3:58:20:b5:2a:03:cd:9c:fd:1f:35:1c:f7:12: bb:d8:11:46:99:f2:1d:0d:c8:f2:07:7f:41:be:d4: 11:dd:be:72:c3:e4:5b:fb:ca:56:3d:29:c2:f0:05: 05:db:4f:01:8f:1b:06:bb:c0:7f:d3:b8:53:5e:e1: 78:bd:94:46:5a:a5:70:ab:4b:3b:0a:c2:d1:19:20: 39:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:58:77:8D:1A:1D:CD:39:18:55:C1:91:D9:4B:45:19:41:96:41:48 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150259.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.127.220.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:ea:4b:22:3b:57:50:49:b3:68:02:50:79:df:78:20:4f:4f: 3c:98:10:e1:ef:d1:27:e1:22:13:af:52:e9:77:e3:0e:78:a6: df:ba:be:bf:3e:97:d6:97:f4:eb:8e:44:48:52:4e:d9:ef:62: 75:63:dd:41:d0:84:26:61:1a:82:6e:23:f5:1f:f3:20:73:24: c7:be:00:0f:6f:77:0f:4c:9b:0c:3e:ef:df:4a:87:ed:09:a7: b6:25:a6:4b:e6:b8:bd:fb:c1:6c:a8:fe:5c:5f:66:8c:83:bf: 3b:6f:54:c5:53:cd:26:0d:e8:be:02:31:46:ce:70:42:51:61: 97:6a:c5:0c:a6:44:30:77:28:df:58:b2:c2:d7:0f:b8:be:be: 1b:e6:42:39:5f:27:ac:b6:11:3b:bc:50:77:23:54:46:02:96: b4:d1:b2:12:2d:a4:cd:e6:54:36:b7:60:f1:d5:5a:54:e3:24: 10:dd:cf:a6:bf:32:51:48:2d:aa:26:45:72:f0:25:56:bc:82: ee:d4:29:b6:a6:c3:0b:a3:50:10:fc:f5:11:36:38:4d:7e:cd: 92:8f:ad:fc:63:91:69:1c:9c:0f:da:2f:aa:c7:c4:a9:f5:14: d5:fa:19:f9:21:fc:8a:33:fe:53:b5:10:c7:d2:64:f2:3b:1a: ef:39:21:36 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUSKo38ltzzGGytXUekiAVRHnrXywwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExMDA2NTgxM1oX DTI1MDEwODA3MDMxM1owMzExMC8GA1UEAxMoOEI1ODc3OEQxQTFEQ0QzOTE4NTVD MTkxRDk0QjQ1MTk0MTk2NDE0ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOImZvJwC8vQ8e83lI2vLHxV8yodZKlShLprYkuAEAyFL4L531zizpAdTKba bdOxtSZiy7FuXhBlvNGC46Gf4ws8TI/NfU0DbqcUmz771joNcNtW+egGatEzto9P H/RZS/rZxKELQaMhEvpwcid37SnzthUnHAtoiYsJw+WgoNeiBCQM4yS3Oi15tleR oOVlfcDnBFXfITiEUQYw8FHpuk1GiP6erXixNcCcsHgxaC2NpZV0lKNYILUqA82c /R81HPcSu9gRRpnyHQ3I8gd/Qb7UEd2+csPkW/vKVj0pwvAFBdtPAY8bBrvAf9O4 U17heL2URlqlcKtLOwrC0RkgOSkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSLWHeN Gh3NORhVwZHZS0UZQZZBSDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDI1OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGd/3DANBgkqhkiG9w0BAQsFAAOCAQEAiupLIjtXUEmzaAJQed94 IE9PPJgQ4e/RJ+EiE69S6XfjDnim37q+vz6X1pf0645ESFJO2e9idWPdQdCEJmEa gm4j9R/zIHMkx74AD293D0ybDD7v30qH7QmntiWmS+a4vfvBbKj+XF9mjIO/O29U xVPNJg3ovgIxRs5wQlFhl2rFDKZEMHco31iywtcPuL6+G+ZCOV8nrLYRO7xQdyNU RgKWtNGyEi2kzeZUNrdg8dVaVOMkEN3Ppr8yUUgtqiZFcvAlVryC7tQptqbDC6NQ EPz1ETY4TX7Nko+t/GORaRycD9ovqsfEqfUU1foZ+SH8ijP+U7UQx9Jk8jsa7zkh Ng== -----END CERTIFICATE-----Generated at Wed May 8 21:02:23 2024 by rpki-client on console-fra.rpki-client.org