$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150263.roa File: AS150263.roa (raw, json) Hash identifier: I3zYv+hS89MSNv4I43F4sR/NdfPe+tL+uQHkDX0I/KA= Subject key identifier: 9A:52:35:37:B1:90:C3:47:02:CF:80:DB:B8:D4:51:96:B4:5E:07:71 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0E7772B1112D5258357D43257BA70CA0D3653815 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150263.roa Signing time: Fri 12 Jan 2024 07:00:00 +0000 ROA not before: Fri 12 Jan 2024 06:55:00 +0000 ROA not after: Fri 10 Jan 2025 07:00:00 +0000 asID: 150263 IP address blocks: 2001:df1:d940::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:77:72:b1:11:2d:52:58:35:7d:43:25:7b:a7:0c:a0:d3:65:38:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 12 06:55:00 2024 GMT Not After : Jan 10 07:00:00 2025 GMT Subject: CN=9A523537B190C34702CF80DBB8D45196B45E0771 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:06:df:da:79:0b:41:12:f8:3b:ae:f7:c6:f8: 8a:28:e6:01:e6:20:3a:0d:39:5c:18:4f:a1:60:2d: 37:45:b4:c5:79:a1:26:72:02:31:74:65:50:a0:b6: bb:45:04:71:b1:93:0b:61:b0:81:16:28:af:7a:49: 4b:c3:87:d8:5b:56:e5:c6:90:56:ee:e6:42:3f:7f: 4b:8a:03:16:3e:26:9e:8d:dd:64:db:cb:84:ae:ba: 0c:04:68:b9:4e:f1:c5:31:44:47:09:8d:25:35:f9: dd:25:ee:5d:5a:11:21:e5:52:fb:26:88:e9:7b:c1: c1:e9:e0:e8:9f:a7:5c:b9:8b:65:9c:4d:93:54:0a: 76:57:5e:42:07:eb:d8:57:d1:7a:b4:5d:e1:1f:17: 78:5b:c5:3d:22:63:d3:ba:e8:da:fc:68:2c:35:ca: 71:d2:f5:2f:1f:b6:5d:b0:cf:c5:e4:25:85:93:69: bd:8f:83:c1:a6:29:24:fe:4a:a4:b0:5a:75:98:19: c8:13:5e:6f:11:f4:9a:7f:5a:25:c4:a3:d3:3a:a1: 2f:00:80:a6:2e:ec:e9:44:e1:a6:cb:36:f5:d5:af: a6:6a:b6:58:50:7b:e0:fa:a8:cc:96:31:18:f7:dd: 40:ec:93:7c:ec:07:f6:34:83:fb:59:71:c9:be:99: d9:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:52:35:37:B1:90:C3:47:02:CF:80:DB:B8:D4:51:96:B4:5E:07:71 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150263.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:d940::/48 Signature Algorithm: sha256WithRSAEncryption 32:7f:87:b6:87:58:b2:00:a9:c5:df:4c:8a:d1:4f:3b:9a:60: 61:69:86:92:00:d8:c6:d2:58:7d:9c:ab:35:d9:90:30:33:e1: 2e:09:5c:0b:56:1d:c4:b4:15:c8:ca:0f:99:e2:40:0f:44:eb: 37:71:e0:4e:3b:cf:4c:05:58:aa:0c:ff:13:18:9d:09:90:18: 74:b8:ef:cf:a0:6c:56:59:8a:ff:c8:94:68:a5:fe:81:09:86: f6:57:2d:e2:e3:dc:7a:d8:f9:35:cd:6c:37:70:bc:5f:bf:f1: c0:db:0e:4b:84:76:c8:9b:3e:b2:7d:df:14:f5:cb:85:36:21: ba:86:95:1a:68:13:b0:91:a0:e0:32:73:ac:db:14:76:ad:8d: b5:d5:fd:85:85:5a:27:fb:d9:3d:7b:0b:bf:ba:fb:02:52:d8: 56:0b:47:f9:6e:49:32:d3:24:0e:aa:2d:db:f3:1c:13:7e:a3: 59:f6:a9:5c:f1:ae:02:55:6b:37:03:56:7b:99:79:59:2c:ac: d2:9e:3c:6f:a3:12:59:7c:66:4a:f0:74:77:c2:ee:97:11:35: 9d:df:bf:10:bd:ea:0c:aa:26:86:02:48:c0:b2:6b:68:50:ca: 2e:79:83:4e:2f:ae:24:4e:10:1b:97:6b:4d:57:d0:ab:3f:01: cf:70:8e:a1 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUDndysREtUlg1fUMle6cMoNNlOBUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExMjA2NTUwMFoX DTI1MDExMDA3MDAwMFowMzExMC8GA1UEAxMoOUE1MjM1MzdCMTkwQzM0NzAyQ0Y4 MERCQjhENDUxOTZCNDVFMDc3MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPQG39p5C0ES+Duu98b4iijmAeYgOg05XBhPoWAtN0W0xXmhJnICMXRlUKC2 u0UEcbGTC2GwgRYor3pJS8OH2FtW5caQVu7mQj9/S4oDFj4mno3dZNvLhK66DARo uU7xxTFERwmNJTX53SXuXVoRIeVS+yaI6XvBweng6J+nXLmLZZxNk1QKdldeQgfr 2FfRerRd4R8XeFvFPSJj07ro2vxoLDXKcdL1Lx+2XbDPxeQlhZNpvY+DwaYpJP5K pLBadZgZyBNebxH0mn9aJcSj0zqhLwCApi7s6UThpss29dWvpmq2WFB74PqozJYx GPfdQOyTfOwH9jSD+1lxyb6Z2UUCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSaUjU3 sZDDRwLPgNu41FGWtF4HcTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDI2My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfHZQDANBgkqhkiG9w0BAQsFAAOCAQEAMn+HtodYsgCpxd9M itFPO5pgYWmGkgDYxtJYfZyrNdmQMDPhLglcC1YdxLQVyMoPmeJAD0TrN3HgTjvP TAVYqgz/ExidCZAYdLjvz6BsVlmK/8iUaKX+gQmG9lct4uPcetj5Nc1sN3C8X7/x wNsOS4R2yJs+sn3fFPXLhTYhuoaVGmgTsJGg4DJzrNsUdq2NtdX9hYVaJ/vZPXsL v7r7AlLYVgtH+W5JMtMkDqot2/McE36jWfapXPGuAlVrNwNWe5l5WSys0p48b6MS WXxmSvB0d8LulxE1nd+/EL3qDKomhgJIwLJraFDKLnmDTi+uJE4QG5drTVfQqz8B z3COoQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:49 2024 by rpki-client on console-ams.rpki-client.org