$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150272.roa File: AS150272.roa (raw, json) Hash identifier: OxJuMRgU9tFp+1ykPF3M0165dPZloGqs59FfXcDyDDg= Subject key identifier: 60:B3:C2:3F:82:C9:73:D2:9C:81:BA:C5:6C:99:8A:3E:5C:02:BA:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 34D4A922C15A0711FF264E4D7D2F50AB15127FE5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150272.roa Signing time: Tue 13 Aug 2024 04:00:00 +0000 ROA not before: Tue 13 Aug 2024 03:55:00 +0000 ROA not after: Tue 12 Aug 2025 04:00:00 +0000 asID: 150272 IP address blocks: 2001:df2:e6c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:d4:a9:22:c1:5a:07:11:ff:26:4e:4d:7d:2f:50:ab:15:12:7f:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 13 03:55:00 2024 GMT Not After : Aug 12 04:00:00 2025 GMT Subject: CN=60B3C23F82C973D29C81BAC56C998A3E5C02BA6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:69:96:f8:36:45:6f:5f:4b:1c:c0:02:22:8c: fe:84:80:be:de:40:87:ed:2e:8f:37:a3:eb:78:09: 5c:f7:b8:ec:a6:3a:4c:a9:47:f6:ae:c0:bf:ca:0b: 42:0f:c8:76:dd:2b:2a:bf:ba:ad:55:64:58:4c:dd: 5f:34:c1:fe:db:4e:0f:e4:fd:1e:6e:cd:90:39:97: 73:71:7d:a6:10:c4:41:be:23:27:70:e0:a1:cd:3f: 94:48:5c:2f:f3:fa:98:3b:47:42:d0:44:a4:ef:63: b3:f4:71:2c:83:4b:46:ef:e0:37:f2:c9:41:1f:7c: 14:bc:86:3d:73:fd:b4:fc:7f:4f:8f:dd:36:0f:45: a0:17:c2:bc:81:ba:33:41:15:de:4b:98:de:30:68: 42:a8:92:5c:ad:3a:c1:e8:30:71:80:dd:0f:93:5f: 0c:e2:af:64:fe:da:f5:e6:e7:e5:24:57:20:c9:4b: c6:81:93:d8:44:a0:db:d3:4c:40:1c:99:ae:9a:0f: f8:82:11:e3:15:06:9a:dc:17:1b:e4:ca:b4:0e:9c: d7:1b:7a:2a:f9:42:13:54:db:81:f9:78:1d:c9:4a: 4d:23:d0:9b:12:73:92:ee:43:13:63:d3:3e:c5:d7: 5a:bb:66:92:cc:2f:6a:50:e2:28:5d:0f:4e:c1:dc: 32:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:B3:C2:3F:82:C9:73:D2:9C:81:BA:C5:6C:99:8A:3E:5C:02:BA:6B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150272.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:e6c0::/48 Signature Algorithm: sha256WithRSAEncryption 7b:cf:b7:61:7e:ef:c9:0f:f9:0e:4f:4a:c5:92:e9:2c:ab:54: f2:f4:56:03:39:bf:40:b2:99:e3:c7:85:c1:45:ed:71:b4:74: 23:8a:55:6a:9f:b2:71:70:e6:58:c6:12:6e:36:1d:ee:57:30: 2a:14:54:d4:f6:fb:ff:3e:f7:80:85:ef:49:3b:db:2e:a2:cc: 50:7a:c2:a1:cc:8b:61:54:f6:3f:8d:43:f7:40:f9:d7:64:79: 69:41:0e:07:36:de:d8:50:36:70:78:98:47:c6:9c:c2:29:87: 18:bd:85:00:05:f3:62:03:50:ae:23:4b:7d:9a:01:0e:bf:e2: 1e:90:92:39:08:f6:27:09:43:89:d7:75:2e:c0:2b:7c:61:3a: c9:23:a6:e4:6e:38:df:4e:5d:68:f3:df:c2:ab:a8:27:f3:89: c6:85:40:d1:0b:12:11:fb:c3:ca:f9:c6:cc:bf:c1:8a:0b:13: d8:69:ea:bb:d6:4d:a6:6c:b7:0c:96:ff:5d:96:9b:0a:48:c3: 47:b2:e5:13:f7:8b:96:60:63:4e:5e:c0:b8:c0:cb:02:31:20: 36:b4:52:40:c6:44:a3:51:ae:39:ba:ac:65:7e:a5:12:0a:97: 93:4b:bb:e1:4d:84:93:fd:55:b2:f6:3e:62:0a:47:30:76:42: f2:0c:60:4b -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUNNSpIsFaBxH/Jk5NfS9QqxUSf+UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxMzAzNTUwMFoX DTI1MDgxMjA0MDAwMFowMzExMC8GA1UEAxMoNjBCM0MyM0Y4MkM5NzNEMjlDODFC QUM1NkM5OThBM0U1QzAyQkE2QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKpplvg2RW9fSxzAAiKM/oSAvt5Ah+0ujzej63gJXPe47KY6TKlH9q7Av8oL Qg/Idt0rKr+6rVVkWEzdXzTB/ttOD+T9Hm7NkDmXc3F9phDEQb4jJ3Dgoc0/lEhc L/P6mDtHQtBEpO9js/RxLINLRu/gN/LJQR98FLyGPXP9tPx/T4/dNg9FoBfCvIG6 M0EV3kuY3jBoQqiSXK06wegwcYDdD5NfDOKvZP7a9ebn5SRXIMlLxoGT2ESg29NM QByZrpoP+IIR4xUGmtwXG+TKtA6c1xt6KvlCE1Tbgfl4HclKTSPQmxJzku5DE2PT PsXXWrtmkswvalDiKF0PTsHcMkECAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRgs8I/ gslz0pyBusVsmYo+XAK6azAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDI3Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfLmwDANBgkqhkiG9w0BAQsFAAOCAQEAe8+3YX7vyQ/5Dk9K xZLpLKtU8vRWAzm/QLKZ48eFwUXtcbR0I4pVap+ycXDmWMYSbjYd7lcwKhRU1Pb7 /z73gIXvSTvbLqLMUHrCocyLYVT2P41D90D512R5aUEOBzbe2FA2cHiYR8acwimH GL2FAAXzYgNQriNLfZoBDr/iHpCSOQj2JwlDidd1LsArfGE6ySOm5G44305daPPf wquoJ/OJxoVA0QsSEfvDyvnGzL/BigsT2Gnqu9ZNpmy3DJb/XZabCkjDR7LlE/eL lmBjTl7AuMDLAjEgNrRSQMZEo1GuObqsZX6lEgqXk0u74U2Ek/1VsvY+YgpHMHZC 8gxgSw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org