$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150279.roa File: AS150279.roa (raw, json) Hash identifier: KIh6m5ctFGFSI3lEE3UQpFlEpOBENeJ8vV8kCYrSN+M= Subject key identifier: 26:0C:11:18:1D:F5:64:7A:AB:08:A6:57:60:4D:0D:31:1B:0F:C4:C2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1CDA47823BBEB553D064DF72A0A18D01657C3EA3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150279.roa Signing time: Mon 23 Dec 2024 08:00:00 +0000 ROA not before: Mon 23 Dec 2024 07:55:00 +0000 ROA not after: Mon 22 Dec 2025 08:00:00 +0000 asID: 150279 IP address blocks: 2001:df1:fcc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:da:47:82:3b:be:b5:53:d0:64:df:72:a0:a1:8d:01:65:7c:3e:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 23 07:55:00 2024 GMT Not After : Dec 22 08:00:00 2025 GMT Subject: CN=260C11181DF5647AAB08A657604D0D311B0FC4C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d7:db:5c:19:31:b1:05:71:a6:a9:9d:f8:c0: 3f:65:75:e6:71:21:1c:e0:21:56:e9:9b:13:47:f7: 19:46:44:74:18:51:0c:82:2f:e5:db:90:3b:4a:67: fe:25:59:ce:eb:13:d4:49:16:0d:bc:6d:3e:19:76: 64:40:f1:84:05:4b:e7:f6:3e:1d:87:36:3b:cf:f2: 35:8e:20:0f:e0:29:96:79:93:30:f1:c2:a4:92:d9: 3a:71:ce:53:24:f8:a4:41:74:20:ec:d8:08:58:78: 55:ea:9d:23:e8:37:6f:b1:dc:34:e1:7a:44:2d:94: 2d:95:d3:67:ba:4d:03:05:36:14:32:0c:85:92:e1: c0:b9:a1:3d:01:a0:d4:f8:65:21:89:07:51:2a:bd: 08:1b:3d:1a:ba:14:0c:ea:39:f2:bb:62:7d:f1:40: 93:49:61:85:aa:77:93:69:6a:5b:bc:6b:65:01:63: 74:79:71:43:44:90:2f:84:dc:23:37:85:48:27:82: ac:bc:b3:62:cd:7c:92:d8:a9:fb:28:15:8b:67:56: 70:3d:f9:fb:d7:bd:2c:89:7e:df:18:5a:f2:e2:0a: 75:c3:ad:95:84:0b:8c:ba:ea:f6:2c:55:e9:91:c7: f7:36:80:ec:a4:cb:b0:e7:d4:4c:20:af:7c:5c:37: 98:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:0C:11:18:1D:F5:64:7A:AB:08:A6:57:60:4D:0D:31:1B:0F:C4:C2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150279.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:fcc0::/48 Signature Algorithm: sha256WithRSAEncryption 34:52:13:c4:dd:ca:2f:f1:f3:c0:e5:cb:7c:c2:30:07:db:b3: 67:83:96:b1:0e:43:ef:04:0b:b9:ba:bf:83:5d:ea:06:05:4f: 78:74:b4:4f:36:f5:82:3d:b1:d3:5b:20:35:bb:c5:b9:b7:cf: 8c:9f:ed:4e:0c:1a:e2:4c:45:a2:f7:5a:89:e4:5d:c0:ed:15: 08:df:ea:3a:32:85:68:98:70:80:6b:04:02:b8:78:8a:39:c5: 45:29:0d:f0:88:d9:b4:04:2a:0f:55:a6:5f:c9:28:57:da:7d: 11:c7:3b:02:36:b3:18:5a:25:4f:92:65:f6:e0:4c:3e:a1:95: e6:1d:d8:01:fd:2a:77:f4:86:da:6c:cf:10:ac:2b:d2:0e:88: 02:4a:a6:2d:d7:7c:a2:2c:61:67:0b:bd:81:35:fe:f6:2f:0e: 1f:09:33:c2:e7:a8:75:d3:59:26:21:30:24:df:8b:46:d1:7b: 98:0a:c2:4a:03:eb:36:76:53:d9:65:a0:07:0b:cf:d7:e6:3e: ed:e6:5b:81:11:21:f5:ae:51:d4:a9:db:59:0c:ca:2f:5c:21: 07:d5:36:de:8e:fb:a6:ce:79:97:27:6c:46:da:19:cd:41:ca: 3c:7e:18:be:a4:76:8e:c2:47:99:b4:83:a4:ef:dd:73:0d:60: 41:6d:19:4c -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUHNpHgju+tVPQZN9yoKGNAWV8PqMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIyMzA3NTUwMFoX DTI1MTIyMjA4MDAwMFowMzExMC8GA1UEAxMoMjYwQzExMTgxREY1NjQ3QUFCMDhB NjU3NjA0RDBEMzExQjBGQzRDMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL3X21wZMbEFcaapnfjAP2V15nEhHOAhVumbE0f3GUZEdBhRDIIv5duQO0pn /iVZzusT1EkWDbxtPhl2ZEDxhAVL5/Y+HYc2O8/yNY4gD+AplnmTMPHCpJLZOnHO UyT4pEF0IOzYCFh4VeqdI+g3b7HcNOF6RC2ULZXTZ7pNAwU2FDIMhZLhwLmhPQGg 1PhlIYkHUSq9CBs9GroUDOo58rtiffFAk0lhhap3k2lqW7xrZQFjdHlxQ0SQL4Tc IzeFSCeCrLyzYs18ktip+ygVi2dWcD35+9e9LIl+3xha8uIKdcOtlYQLjLrq9ixV 6ZHH9zaA7KTLsOfUTCCvfFw3mH0CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQmDBEY HfVkeqsIpldgTQ0xGw/EwjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDI3OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfH8wDANBgkqhkiG9w0BAQsFAAOCAQEANFITxN3KL/HzwOXL fMIwB9uzZ4OWsQ5D7wQLubq/g13qBgVPeHS0Tzb1gj2x01sgNbvFubfPjJ/tTgwa 4kxFovdaieRdwO0VCN/qOjKFaJhwgGsEArh4ijnFRSkN8IjZtAQqD1WmX8koV9p9 Ecc7AjazGFolT5Jl9uBMPqGV5h3YAf0qd/SG2mzPEKwr0g6IAkqmLdd8oixhZwu9 gTX+9i8OHwkzwueoddNZJiEwJN+LRtF7mArCSgPrNnZT2WWgBwvP1+Y+7eZbgREh 9a5R1KnbWQzKL1whB9U23o77ps55lydsRtoZzUHKPH4YvqR2jsJHmbSDpO/dcw1g QW0ZTA== -----END CERTIFICATE-----Generated at Sun Feb 16 21:02:20 2025 by rpki-client