$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150462.roa File: AS150462.roa (raw, json) Hash identifier: bc6GrpNJERp9Ntlz4aWh9zKgckbbExsAkE7Wxc0UZ48= Subject key identifier: 19:FD:A8:49:8B:8A:65:D1:25:E7:8D:AD:13:07:64:73:E3:64:52:A0 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6D807FFE27FCDAF4C3EAB966F9BD0837DC141B6E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150462.roa Signing time: Tue 27 Aug 2024 03:39:51 +0000 ROA not before: Tue 27 Aug 2024 03:34:51 +0000 ROA not after: Tue 26 Aug 2025 03:39:51 +0000 asID: 150462 IP address blocks: 2001:df2:bfc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:80:7f:fe:27:fc:da:f4:c3:ea:b9:66:f9:bd:08:37:dc:14:1b:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 27 03:34:51 2024 GMT Not After : Aug 26 03:39:51 2025 GMT Subject: CN=19FDA8498B8A65D125E78DAD13076473E36452A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:57:14:c9:df:5d:fc:49:14:37:51:ae:48:24: b1:23:e2:b0:b1:68:f7:73:80:33:c5:89:1a:99:a7: d1:c2:53:38:bf:39:27:74:dc:a0:f2:48:64:09:6c: 1f:d4:5e:cc:16:9d:1a:f0:d7:d4:2b:3a:26:a5:01: 1f:4a:74:06:a6:1d:c8:1c:75:c9:f1:44:fe:f1:ac: a4:0d:6a:c8:67:00:4b:31:52:e6:f3:e4:78:88:f6: d2:88:c8:d7:a5:cb:30:4c:dd:07:11:e1:50:1f:1f: 75:79:8b:09:d3:59:35:31:15:a5:fd:53:8b:f7:bc: f7:cb:a4:01:8e:93:41:ce:e6:9c:a4:59:17:e0:08: 90:21:46:98:dd:74:89:c0:5e:8e:38:c2:5f:e4:52: b2:79:f9:91:ef:29:31:2e:56:64:4a:60:a9:b0:31: e6:da:36:20:3b:79:a7:b0:f0:94:0e:69:7c:e1:6f: a0:d6:71:62:61:91:99:81:7c:72:94:72:59:c0:0c: d1:18:35:bf:58:23:a7:b5:34:20:26:4d:d7:e2:14: b0:da:aa:64:f8:e1:3d:9d:cf:ee:2f:e3:79:9b:4d: e8:65:99:7f:aa:8b:bc:b1:60:66:6b:f0:69:45:dc: e6:38:18:87:10:b1:f7:4c:17:63:5f:ff:48:15:9a: 94:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:FD:A8:49:8B:8A:65:D1:25:E7:8D:AD:13:07:64:73:E3:64:52:A0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150462.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:bfc0::/48 Signature Algorithm: sha256WithRSAEncryption 19:4b:3e:e2:ad:2e:0a:d2:21:a1:52:03:99:f2:73:92:9d:0a: 16:9c:8f:ba:77:c8:65:6e:cc:4e:a3:5d:c1:78:b7:44:1b:9e: 89:2b:53:dd:cc:11:24:b2:a3:44:32:81:11:a6:4a:6c:c3:94: 24:da:2c:ac:72:ed:ca:7a:7e:10:7a:16:fd:a1:fb:76:fa:71: ba:21:c5:4a:35:a1:22:c0:fc:d5:56:5c:72:05:75:02:16:3e: 86:3c:aa:e9:67:34:ca:3c:c0:ec:61:39:0d:8f:6c:7d:4c:e5: c0:49:dd:41:80:ea:64:93:eb:57:f6:5a:65:63:3c:85:8e:80: 64:38:ba:02:03:97:6e:9c:91:2f:06:bd:78:8f:ef:34:2b:01: 4f:46:71:20:85:33:0f:4d:12:e1:d7:1d:fa:00:38:cc:61:83: 4d:fb:8e:6d:56:fb:09:31:00:14:fb:1c:7d:75:95:25:c4:01: 30:78:11:0a:77:44:01:dc:6e:53:e4:ed:18:52:fa:2b:83:13: f2:55:d0:43:ce:03:1b:ea:5c:fc:4a:9d:ec:ae:30:8e:5c:41: 51:61:d3:b6:e7:15:6a:9d:bd:67:5c:5f:f9:65:ab:1a:35:8f: aa:2b:fe:c8:61:e2:9c:14:95:ad:4c:8b:55:bb:ed:69:9a:0b: 42:b3:81:5f -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUbYB//if82vTD6rlm+b0IN9wUG24wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgyNzAzMzQ1MVoX DTI1MDgyNjAzMzk1MVowMzExMC8GA1UEAxMoMTlGREE4NDk4QjhBNjVEMTI1RTc4 REFEMTMwNzY0NzNFMzY0NTJBMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMFXFMnfXfxJFDdRrkgksSPisLFo93OAM8WJGpmn0cJTOL85J3TcoPJIZAls H9RezBadGvDX1Cs6JqUBH0p0BqYdyBx1yfFE/vGspA1qyGcASzFS5vPkeIj20ojI 16XLMEzdBxHhUB8fdXmLCdNZNTEVpf1Ti/e898ukAY6TQc7mnKRZF+AIkCFGmN10 icBejjjCX+RSsnn5ke8pMS5WZEpgqbAx5to2IDt5p7DwlA5pfOFvoNZxYmGRmYF8 cpRyWcAM0Rg1v1gjp7U0ICZN1+IUsNqqZPjhPZ3P7i/jeZtN6GWZf6qLvLFgZmvw aUXc5jgYhxCx90wXY1//SBWalPsCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQZ/ahJ i4pl0SXnja0TB2Rz42RSoDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDQ2Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfK/wDANBgkqhkiG9w0BAQsFAAOCAQEAGUs+4q0uCtIhoVID mfJzkp0KFpyPunfIZW7MTqNdwXi3RBueiStT3cwRJLKjRDKBEaZKbMOUJNosrHLt ynp+EHoW/aH7dvpxuiHFSjWhIsD81VZccgV1AhY+hjyq6Wc0yjzA7GE5DY9sfUzl wEndQYDqZJPrV/ZaZWM8hY6AZDi6AgOXbpyRLwa9eI/vNCsBT0ZxIIUzD00S4dcd +gA4zGGDTfuObVb7CTEAFPscfXWVJcQBMHgRCndEAdxuU+TtGFL6K4MT8lXQQ84D G+pc/Eqd7K4wjlxBUWHTtucVap29Z1xf+WWrGjWPqiv+yGHinBSVrUyLVbvtaZoL QrOBXw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org