$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150272.roa File: AS150272.roa (raw, json) Hash identifier: itsjx4IKa7seHuPaPJolB7lnN4dYpEJp4oTWmHPGqf0= Subject key identifier: C9:C3:49:00:42:90:53:81:3F:1B:93:59:F0:05:62:F3:EC:FA:90:E5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 47D93A39E36CF773DC0D80D061692B80A0DB7722 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150272.roa Signing time: Tue 12 Sep 2023 03:03:24 +0000 ROA not before: Tue 12 Sep 2023 02:58:24 +0000 ROA not after: Tue 10 Sep 2024 03:03:24 +0000 asID: 150272 IP address blocks: 2001:df2:e6c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:d9:3a:39:e3:6c:f7:73:dc:0d:80:d0:61:69:2b:80:a0:db:77:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 12 02:58:24 2023 GMT Not After : Sep 10 03:03:24 2024 GMT Subject: CN=C9C34900429053813F1B9359F00562F3ECFA90E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5e:3f:60:24:11:4e:64:8f:fe:6c:c4:55:45: 2c:88:61:92:d6:0c:a9:c0:65:8e:31:35:14:cb:6e: ee:8d:c4:36:66:fe:a5:02:96:57:2f:a4:b7:55:76: 7e:d2:03:13:a7:da:fb:c1:12:a2:a9:49:18:3c:49: 95:63:fb:bd:70:94:52:f4:b8:d5:8d:4d:7c:00:43: 0a:b5:94:90:88:cf:59:04:e8:40:0f:28:bb:da:00: a6:b1:18:62:df:33:5d:c7:14:88:1e:95:8b:26:bc: a5:6d:9b:a7:85:53:f1:ff:8b:e4:7a:ab:e7:35:76: 68:89:5d:32:81:c4:dc:a3:c8:ff:2a:7f:07:07:05: 4b:cd:ce:3a:09:a1:a3:82:5f:8a:d2:86:df:aa:f5: 95:1b:53:20:c3:c2:7d:bc:f7:74:ed:fd:43:b7:22: 41:e4:18:b4:87:60:b2:61:4d:f8:22:76:ac:3f:ba: 72:27:04:7f:c1:61:e7:a6:9f:61:5f:8d:4b:e9:82: 09:23:fe:e7:b6:0b:57:a8:2e:1a:c7:88:12:96:d1: 95:f7:d7:c8:00:f3:9b:14:98:4e:5c:c9:02:aa:b2: b7:c0:84:7d:0e:75:85:f8:60:44:6c:59:fa:44:82: 73:07:67:49:dc:3d:d2:b5:c5:77:f4:df:fa:e4:d2: f4:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:C3:49:00:42:90:53:81:3F:1B:93:59:F0:05:62:F3:EC:FA:90:E5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150272.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:e6c0::/48 Signature Algorithm: sha256WithRSAEncryption 07:9b:11:92:4a:a1:fe:c7:15:a0:95:51:6e:f1:c9:ce:99:04: 01:67:29:a6:5c:94:ca:9e:bd:8c:7c:96:eb:73:41:3e:87:4c: 31:d3:2b:45:a6:56:90:67:40:ad:2d:fa:85:3d:cf:04:3a:c0: 43:7c:fd:f0:0e:6f:5a:c6:e4:b0:be:3f:b2:1c:73:35:c3:95: fe:58:77:31:b3:bd:1e:d8:45:47:0a:8c:a9:aa:ed:e7:ea:f4: da:62:4c:70:d7:53:6d:a2:55:80:7d:32:27:65:90:10:50:15: ee:8b:a1:42:08:39:24:4d:b7:3b:2b:22:60:26:7e:88:3c:5c: 34:56:70:a8:f8:02:b6:04:10:03:07:b0:d9:17:11:cf:ff:1d: a0:3c:e2:55:20:22:4a:c5:a0:fb:ce:6f:13:71:b1:2d:a3:9a: da:64:9a:4e:4c:58:4d:0c:62:cc:ea:68:a6:3e:c8:39:8f:11: db:d1:e9:59:fa:4c:a1:19:51:01:07:02:bf:59:e5:66:d0:98: 76:bc:7d:81:6d:34:93:80:d0:dc:c6:49:53:3f:6f:e6:7a:23: 2c:6c:e4:7a:00:84:4c:68:ed:76:23:41:c1:7c:03:a3:15:6f: f3:f6:f4:b4:ea:91:5f:1c:fc:3b:d0:69:2c:be:30:f5:5f:b8: 3f:81:a5:3d -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUR9k6OeNs93PcDYDQYWkrgKDbdyIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkxMjAyNTgyNFoX DTI0MDkxMDAzMDMyNFowMzExMC8GA1UEAxMoQzlDMzQ5MDA0MjkwNTM4MTNGMUI5 MzU5RjAwNTYyRjNFQ0ZBOTBFNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANZeP2AkEU5kj/5sxFVFLIhhktYMqcBljjE1FMtu7o3ENmb+pQKWVy+kt1V2 ftIDE6fa+8ESoqlJGDxJlWP7vXCUUvS41Y1NfABDCrWUkIjPWQToQA8ou9oAprEY Yt8zXccUiB6Viya8pW2bp4VT8f+L5Hqr5zV2aIldMoHE3KPI/yp/BwcFS83OOgmh o4JfitKG36r1lRtTIMPCfbz3dO39Q7ciQeQYtIdgsmFN+CJ2rD+6cicEf8Fh56af YV+NS+mCCSP+57YLV6guGseIEpbRlffXyADzmxSYTlzJAqqyt8CEfQ51hfhgRGxZ +kSCcwdnSdw90rXFd/Tf+uTS9I8CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTJw0kA QpBTgT8bk1nwBWLz7PqQ5TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDI3Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfLmwDANBgkqhkiG9w0BAQsFAAOCAQEAB5sRkkqh/scVoJVR bvHJzpkEAWcpplyUyp69jHyW63NBPodMMdMrRaZWkGdArS36hT3PBDrAQ3z98A5v WsbksL4/shxzNcOV/lh3MbO9HthFRwqMqart5+r02mJMcNdTbaJVgH0yJ2WQEFAV 7ouhQgg5JE23OysiYCZ+iDxcNFZwqPgCtgQQAwew2RcRz/8doDziVSAiSsWg+85v E3GxLaOa2mSaTkxYTQxizOpopj7IOY8R29HpWfpMoRlRAQcCv1nlZtCYdrx9gW00 k4DQ3MZJUz9v5nojLGzkegCETGjtdiNBwXwDoxVv8/b0tOqRXxz8O9BpLL4w9V+4 P4GlPQ== -----END CERTIFICATE-----Generated at Wed May 8 18:12:17 2024 by rpki-client on console-fra.rpki-client.org