$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150467.roa File: AS150467.roa (raw, json) Hash identifier: w2tcK6XjTlyuDG97Mi1MRgB6hdK4LsIj3pw0x0u+ca4= Subject key identifier: C5:95:61:64:2B:78:3E:55:FE:19:FB:2C:F9:D3:61:BE:E9:AD:31:7D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7B4F221EED082401186DDC3A60E7CD21C5292493 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150467.roa Signing time: Thu 21 Dec 2023 03:00:00 +0000 ROA not before: Thu 21 Dec 2023 02:55:00 +0000 ROA not after: Thu 19 Dec 2024 03:00:00 +0000 asID: 150467 IP address blocks: 103.103.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:4f:22:1e:ed:08:24:01:18:6d:dc:3a:60:e7:cd:21:c5:29:24:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 21 02:55:00 2023 GMT Not After : Dec 19 03:00:00 2024 GMT Subject: CN=C59561642B783E55FE19FB2CF9D361BEE9AD317D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0b:27:6b:fc:1c:b2:54:f3:ce:fd:cb:27:50: 9f:59:1f:2c:a0:79:f3:6d:1d:97:42:a1:ee:9f:23: 4b:d6:db:5c:14:2b:9e:71:e9:b7:2a:dc:01:cc:ec: da:dd:12:c0:b9:94:6f:ae:fd:9c:2b:c3:37:7a:d0: ac:e5:f9:53:11:f2:7d:8f:6d:2d:6c:c8:fc:2a:6a: a3:ad:5b:80:20:a1:ec:76:95:2a:cf:c4:10:91:70: 3b:ad:6f:88:d9:05:2d:14:38:6b:e0:34:33:88:a9: 43:36:cb:59:1a:9e:24:c1:bb:1c:5d:51:7e:0a:e0: f1:c0:d2:54:81:10:de:eb:a7:6b:28:2f:48:81:e1: 5a:f5:f6:d6:48:ff:3d:25:12:45:2c:fe:ce:37:0f: 1e:69:9b:8f:9d:d8:44:34:88:fc:ad:3c:62:f5:0d: a3:b3:25:56:f7:9d:83:0d:0e:5c:1b:1c:1f:b6:7e: 2f:1f:09:c5:9b:08:c1:ef:48:d4:f5:9f:cb:a7:e6: 46:28:92:30:f2:20:2c:93:d3:f9:e7:4b:f8:11:e2: 23:4a:9b:8d:d0:95:6a:a3:4f:75:ea:ef:bc:f2:fa: fa:d8:dc:47:5a:ac:df:31:e3:bd:31:07:83:fe:23: 42:94:ce:87:b7:06:47:57:d9:98:f2:ce:f1:fc:fd: f8:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:95:61:64:2B:78:3E:55:FE:19:FB:2C:F9:D3:61:BE:E9:AD:31:7D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150467.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.103.115.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:e4:83:92:7c:68:84:65:a9:0c:d9:03:41:92:ca:77:72:b3: 0a:c2:45:39:af:1c:b1:d4:f3:cf:59:b0:40:4f:d7:77:71:8a: 7f:cf:77:34:d7:f3:b0:de:89:54:10:80:d0:3d:ab:75:94:41: ed:0c:ba:92:f5:bb:de:3d:0f:33:64:78:3e:0a:57:af:eb:2c: 4c:62:65:79:8d:24:67:69:c8:99:57:78:e6:a4:ef:bd:8a:4c: 62:c1:8d:a2:c7:2f:ed:46:91:c2:f9:e7:90:50:47:87:3a:c2: b6:96:74:2c:76:41:a7:ec:01:4a:6c:c3:b0:d9:1e:76:a7:6b: d2:f9:27:51:83:24:77:34:86:67:2b:e5:2c:bd:be:8d:91:e9: f0:44:3a:e5:7d:cc:3d:97:8f:9e:e2:a3:9b:02:b4:2b:6e:46: 79:cb:b0:b7:70:c0:3a:23:8d:ed:93:2f:f5:82:61:8e:bf:ca: a4:d4:b7:d5:ea:9d:ff:96:d3:46:11:8e:51:79:48:4a:78:54: c4:4d:51:fb:a6:72:02:dd:a5:ff:2c:66:8f:4c:0b:56:d1:48: 78:59:4c:16:58:90:2b:cb:aa:82:ed:f0:c2:7c:63:1d:04:2a: 62:68:82:8b:0c:e2:6e:5d:46:0e:a6:11:0d:e4:fe:23:7a:6d: cb:ac:03:b4 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUe08iHu0IJAEYbdw6YOfNIcUpJJMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIyMTAyNTUwMFoX DTI0MTIxOTAzMDAwMFowMzExMC8GA1UEAxMoQzU5NTYxNjQyQjc4M0U1NUZFMTlG QjJDRjlEMzYxQkVFOUFEMzE3RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALELJ2v8HLJU8879yydQn1kfLKB5820dl0Kh7p8jS9bbXBQrnnHptyrcAczs 2t0SwLmUb679nCvDN3rQrOX5UxHyfY9tLWzI/Cpqo61bgCCh7HaVKs/EEJFwO61v iNkFLRQ4a+A0M4ipQzbLWRqeJMG7HF1Rfgrg8cDSVIEQ3uunaygvSIHhWvX21kj/ PSUSRSz+zjcPHmmbj53YRDSI/K08YvUNo7MlVvedgw0OXBscH7Z+Lx8JxZsIwe9I 1PWfy6fmRiiSMPIgLJPT+edL+BHiI0qbjdCVaqNPdervvPL6+tjcR1qs3zHjvTEH g/4jQpTOh7cGR1fZmPLO8fz9+I0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTFlWFk K3g+Vf4Z+yz502G+6a0xfTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDQ2Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGdnczANBgkqhkiG9w0BAQsFAAOCAQEADOSDknxohGWpDNkDQZLK d3KzCsJFOa8csdTzz1mwQE/Xd3GKf893NNfzsN6JVBCA0D2rdZRB7Qy6kvW73j0P M2R4PgpXr+ssTGJleY0kZ2nImVd45qTvvYpMYsGNoscv7UaRwvnnkFBHhzrCtpZ0 LHZBp+wBSmzDsNkedqdr0vknUYMkdzSGZyvlLL2+jZHp8EQ65X3MPZePnuKjmwK0 K25Gecuwt3DAOiON7ZMv9YJhjr/KpNS31eqd/5bTRhGOUXlISnhUxE1R+6ZyAt2l /yxmj0wLVtFIeFlMFliQK8uqgu3wwnxjHQQqYmiCiwzibl1GDqYRDeT+I3pty6wD tA== -----END CERTIFICATE-----Generated at Wed May 8 21:02:23 2024 by rpki-client on console-fra.rpki-client.org