$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150268.roa File: AS150268.roa (raw, json) Hash identifier: Jb0npWz7qdPE5H84N1MclTPQFral7WoqLYaX2eDHLME= Subject key identifier: F8:0E:F1:D8:36:FF:9E:7D:3D:BC:A4:31:0D:E7:7F:A0:1C:35:76:E3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7513C009C296209769DCC11EC2DC776CE5014165 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150268.roa Signing time: Thu 28 Mar 2024 03:00:00 +0000 ROA not before: Thu 28 Mar 2024 02:55:00 +0000 ROA not after: Thu 27 Mar 2025 03:00:00 +0000 asID: 150268 IP address blocks: 2001:df1:7140::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:13:c0:09:c2:96:20:97:69:dc:c1:1e:c2:dc:77:6c:e5:01:41:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 28 02:55:00 2024 GMT Not After : Mar 27 03:00:00 2025 GMT Subject: CN=F80EF1D836FF9E7D3DBCA4310DE77FA01C3576E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e2:83:3c:5b:d6:a5:d8:81:8c:a4:e5:e2:4c: 17:89:42:5d:e8:ea:f4:35:a5:93:4e:68:f9:72:c0: de:ca:8f:33:0c:23:b0:af:af:6f:e7:12:f7:9f:9a: 71:a0:6d:e5:c0:97:0d:54:db:e4:21:2d:eb:df:be: 29:48:3e:91:2d:e6:70:22:c0:70:7a:6a:f8:ec:79: f9:67:d4:ce:59:53:1c:3b:fd:56:88:95:d5:f4:f9: 4f:d5:ba:ad:f2:eb:4a:17:1f:fc:7e:cc:e8:e4:11: 75:4e:59:5c:e9:a0:c9:54:93:55:28:cf:ef:c2:b6: 27:40:33:17:92:dc:07:fd:b9:e3:eb:36:7c:eb:7b: 75:10:34:2a:3d:dc:9f:69:c9:7c:76:df:d0:ce:cf: d9:4d:ba:79:b7:f0:e6:e4:9d:29:db:86:21:06:60: dc:e5:6f:31:29:b2:d5:52:ab:db:ab:57:28:c2:cd: 32:34:f2:2b:24:65:a4:c4:3c:e1:9f:e2:87:dc:25: ee:91:e3:e3:58:e5:2a:b9:b3:1d:65:c8:f5:b7:a0: 99:72:91:24:fd:54:82:38:e7:f8:27:cd:87:64:9d: 66:21:cd:9d:ad:2d:75:71:12:e9:72:94:82:9b:6f: 2c:a0:ce:b3:d5:ec:d0:f4:ce:38:58:ed:e4:fc:35: 7e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:0E:F1:D8:36:FF:9E:7D:3D:BC:A4:31:0D:E7:7F:A0:1C:35:76:E3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150268.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:7140::/48 Signature Algorithm: sha256WithRSAEncryption 42:fb:fd:eb:32:8a:5d:9e:e4:38:9b:d8:de:a9:8d:7c:c3:2f: bf:8d:d8:3f:cf:de:4b:aa:6f:d4:9c:5c:e0:0f:4b:9a:89:7d: d7:06:4a:e5:30:49:b1:6b:3f:e0:19:e6:28:64:a9:ce:31:ca: cc:4e:5d:52:02:7d:b0:38:cd:b9:71:65:0e:53:fb:05:d5:01: e7:27:6d:99:82:b6:62:ab:d3:a9:12:c1:dd:38:15:11:01:69: 0e:5f:01:6b:c9:94:5c:fd:17:67:3d:9b:82:ef:49:11:46:4d: 62:7b:5e:a6:8b:65:fd:40:5c:1b:a7:b0:83:a5:fc:8b:5e:a9: b4:fe:a7:d0:5a:1d:37:d8:ab:00:54:bd:9b:7e:3c:b7:e1:bf: 3c:8e:ae:0b:89:57:66:44:68:b0:0c:02:4b:ae:30:9e:1a:35: bb:54:b6:b4:32:08:83:4b:f1:37:fd:3b:9a:7c:dc:24:70:9b: 62:f8:d3:46:4f:ca:61:a6:2f:f3:e6:dd:fa:c0:ce:98:d9:b2: b6:d3:ed:83:28:d3:79:a7:1f:59:a5:87:90:fa:dc:e4:18:b4: 3c:3d:0d:ea:b4:58:68:ea:3a:f6:78:a3:41:f5:7d:ec:9c:06: 34:ec:e7:4e:a0:bb:4e:8a:53:c0:c1:63:e5:f0:9d:92:14:5a: 3f:42:bc:69 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUdRPACcKWIJdp3MEewtx3bOUBQWUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMyODAyNTUwMFoX DTI1MDMyNzAzMDAwMFowMzExMC8GA1UEAxMoRjgwRUYxRDgzNkZGOUU3RDNEQkNB NDMxMERFNzdGQTAxQzM1NzZFMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAODigzxb1qXYgYyk5eJMF4lCXejq9DWlk05o+XLA3sqPMwwjsK+vb+cS95+a caBt5cCXDVTb5CEt69++KUg+kS3mcCLAcHpq+Ox5+WfUzllTHDv9VoiV1fT5T9W6 rfLrShcf/H7M6OQRdU5ZXOmgyVSTVSjP78K2J0AzF5LcB/254+s2fOt7dRA0Kj3c n2nJfHbf0M7P2U26ebfw5uSdKduGIQZg3OVvMSmy1VKr26tXKMLNMjTyKyRlpMQ8 4Z/ih9wl7pHj41jlKrmzHWXI9begmXKRJP1Ugjjn+CfNh2SdZiHNna0tdXES6XKU gptvLKDOs9Xs0PTOOFjt5Pw1fjUCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBT4DvHY Nv+efT28pDEN53+gHDV24zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDI2OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfFxQDANBgkqhkiG9w0BAQsFAAOCAQEAQvv96zKKXZ7kOJvY 3qmNfMMvv43YP8/eS6pv1Jxc4A9Lmol91wZK5TBJsWs/4BnmKGSpzjHKzE5dUgJ9 sDjNuXFlDlP7BdUB5ydtmYK2YqvTqRLB3TgVEQFpDl8Ba8mUXP0XZz2bgu9JEUZN Yntepotl/UBcG6ewg6X8i16ptP6n0FodN9irAFS9m348t+G/PI6uC4lXZkRosAwC S64wnho1u1S2tDIIg0vxN/07mnzcJHCbYvjTRk/KYaYv8+bd+sDOmNmyttPtgyjT eacfWaWHkPrc5Bi0PD0N6rRYaOo69nijQfV97JwGNOznTqC7TopTwMFj5fCdkhRa P0K8aQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:56 2024 by rpki-client on console-fra.rpki-client.org