$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150467.roa File: AS150467.roa (raw, json) Hash identifier: 5+mWDoBX0S0ZVjY2DF0rqcjDGK//zsA50lHdti+18H8= Subject key identifier: 02:E5:22:EB:E6:65:EF:65:0C:D3:A6:DC:53:A8:FB:3C:0F:17:CD:38 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 34415C34230D9C740D8996F4BD0D46EB65B9C66C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150467.roa Signing time: Thu 21 Nov 2024 03:00:00 +0000 ROA not before: Thu 21 Nov 2024 02:55:00 +0000 ROA not after: Thu 20 Nov 2025 03:00:00 +0000 asID: 150467 IP address blocks: 103.103.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:41:5c:34:23:0d:9c:74:0d:89:96:f4:bd:0d:46:eb:65:b9:c6:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 21 02:55:00 2024 GMT Not After : Nov 20 03:00:00 2025 GMT Subject: CN=02E522EBE665EF650CD3A6DC53A8FB3C0F17CD38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0d:a2:cf:bb:9b:0e:96:bc:8d:e3:c6:1c:be: e7:fb:be:14:f8:10:61:c7:99:62:05:16:33:52:c9: 64:16:1c:cd:7a:7e:e4:68:76:cb:10:85:bb:18:b8: 8c:0f:33:0d:b6:c8:ce:52:6c:52:6d:17:17:39:f5: b8:38:22:c0:b7:83:8e:b0:e1:6b:6f:dd:4e:ad:9d: 49:f9:fd:ef:6e:db:24:4d:19:dd:62:16:fa:a4:40: f0:54:39:17:aa:01:22:b8:80:2d:8b:ad:a4:58:16: 0a:9f:9a:af:cc:66:c9:8c:25:a4:db:02:7f:d5:66: 4b:13:85:be:98:cc:4f:2c:cd:c0:f9:fb:1b:e3:9a: cf:2f:ea:61:a0:65:dc:3c:9f:cb:46:72:3a:e0:06: 1b:f2:30:f4:a4:10:21:1d:28:27:7b:28:09:e7:e9: 60:e3:6b:46:23:f3:53:23:d9:f0:12:af:de:3a:54: 61:bb:ed:db:dc:de:af:64:8e:5a:01:78:fc:66:f1: 49:a0:07:05:27:e4:e7:79:33:4b:12:98:75:42:d6: ba:e4:43:89:b4:a0:88:b3:3e:c4:68:f6:c7:73:4f: 92:d7:5e:24:32:ef:65:c6:60:2a:40:e1:1a:92:be: 82:96:04:c1:09:cd:72:e4:6d:85:ab:2d:45:13:6c: 34:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:E5:22:EB:E6:65:EF:65:0C:D3:A6:DC:53:A8:FB:3C:0F:17:CD:38 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150467.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.103.115.0/24 Signature Algorithm: sha256WithRSAEncryption 75:1b:4b:49:c1:a5:d7:1a:7a:1f:ca:3d:0c:c7:4e:11:4b:be: af:13:ed:ac:df:73:be:58:bc:33:9c:79:e2:8b:07:ae:2d:6f: 35:e4:70:69:8a:e4:5d:7d:09:60:aa:c1:9d:5e:5c:9f:64:da: 95:a1:e1:aa:4d:9b:92:3e:8c:78:47:84:39:8d:36:88:b8:ca: 7c:9b:dc:85:74:0e:bf:97:ab:38:c7:4b:30:07:f7:0f:d3:fe: c2:53:d5:fb:82:b6:f5:cf:42:63:66:7d:58:e8:7a:9d:b0:30: 78:83:49:f9:cd:bd:75:db:1c:ea:df:52:7f:d6:b4:f3:88:39: 94:11:e9:f4:0e:d6:cc:87:56:5b:46:11:76:bd:de:19:41:fb: 38:8a:20:2a:44:3d:c8:5f:6b:4f:88:6d:39:83:86:73:e2:90: bc:53:ba:9e:23:5b:27:16:e2:c3:e8:46:fc:7d:a6:a1:dd:b9: cc:98:42:f0:5c:e8:e3:8a:03:31:d0:8f:4c:97:dd:eb:26:9e: c0:04:19:4b:08:dc:f9:52:eb:9f:36:cc:0f:ca:fd:68:c1:29: 2a:36:0d:0f:e7:4b:91:f8:f0:19:36:b8:6b:24:70:8e:aa:66: d8:90:0f:b6:ea:fc:fd:15:ab:c6:c7:8c:31:30:5c:ce:2a:5d: c0:fd:6e:18 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUNEFcNCMNnHQNiZb0vQ1G62W5xmwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEyMTAyNTUwMFoX DTI1MTEyMDAzMDAwMFowMzExMC8GA1UEAxMoMDJFNTIyRUJFNjY1RUY2NTBDRDNB NkRDNTNBOEZCM0MwRjE3Q0QzODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANENos+7mw6WvI3jxhy+5/u+FPgQYceZYgUWM1LJZBYczXp+5Gh2yxCFuxi4 jA8zDbbIzlJsUm0XFzn1uDgiwLeDjrDha2/dTq2dSfn9727bJE0Z3WIW+qRA8FQ5 F6oBIriALYutpFgWCp+ar8xmyYwlpNsCf9VmSxOFvpjMTyzNwPn7G+Oazy/qYaBl 3Dyfy0ZyOuAGG/Iw9KQQIR0oJ3soCefpYONrRiPzUyPZ8BKv3jpUYbvt29zer2SO WgF4/GbxSaAHBSfk53kzSxKYdULWuuRDibSgiLM+xGj2x3NPktdeJDLvZcZgKkDh GpK+gpYEwQnNcuRthastRRNsNKkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQC5SLr 5mXvZQzTptxTqPs8DxfNODAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDQ2Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGdnczANBgkqhkiG9w0BAQsFAAOCAQEAdRtLScGl1xp6H8o9DMdO EUu+rxPtrN9zvli8M5x54osHri1vNeRwaYrkXX0JYKrBnV5cn2TalaHhqk2bkj6M eEeEOY02iLjKfJvchXQOv5erOMdLMAf3D9P+wlPV+4K29c9CY2Z9WOh6nbAweINJ +c29ddsc6t9Sf9a084g5lBHp9A7WzIdWW0YRdr3eGUH7OIogKkQ9yF9rT4htOYOG c+KQvFO6niNbJxbiw+hG/H2mod25zJhC8Fzo44oDMdCPTJfd6yaewAQZSwjc+VLr nzbMD8r9aMEpKjYND+dLkfjwGTa4ayRwjqpm2JAPtur8/RWrxseMMTBczipdwP1u GA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:49 2024 by rpki-client on console-ams.rpki-client.org