$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150477.roa File: AS150477.roa (raw, json) Hash identifier: QeaZGQcdd2bhnXsoZDXUAivehzHChkqeMpbyl+TVjzY= Subject key identifier: D4:22:9D:08:CF:30:80:60:2D:1D:8F:07:29:6D:0C:57:E2:B5:1D:40 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 21926C2B6686792CFDC17681D55F949F317ED62A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150477.roa Signing time: Tue 10 Oct 2023 06:57:26 +0000 ROA not before: Tue 10 Oct 2023 06:52:26 +0000 ROA not after: Tue 08 Oct 2024 06:57:26 +0000 asID: 150477 IP address blocks: 103.116.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:92:6c:2b:66:86:79:2c:fd:c1:76:81:d5:5f:94:9f:31:7e:d6:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 10 06:52:26 2023 GMT Not After : Oct 8 06:57:26 2024 GMT Subject: CN=D4229D08CF3080602D1D8F07296D0C57E2B51D40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:96:70:60:77:94:32:db:3c:f7:0a:79:ca:a2: b1:3f:42:f0:49:ca:0b:11:07:e7:98:73:b8:3f:6d: 47:76:9a:03:bd:d5:18:d9:ef:5b:1b:f5:85:09:0b: ab:ea:36:e5:e6:b5:45:a2:94:d0:d0:70:84:fd:a0: 8a:e3:91:58:2d:bc:dd:5a:3a:ff:cb:fe:80:5b:5c: e9:65:b7:59:76:bf:2b:9c:3f:66:08:32:6d:2a:fc: 69:f9:50:96:ff:fd:09:61:b8:2d:52:a8:11:f3:1e: 03:42:86:a6:d3:b2:f0:7c:46:a3:97:8e:03:39:f0: ae:f3:f5:73:6f:6d:cc:32:06:d5:91:fc:f1:99:53: 52:0a:24:f6:63:0f:08:1b:ed:ee:2b:f1:17:be:ee: 65:47:03:7b:c3:45:b3:34:ce:ce:28:3a:10:9a:c8: 85:13:05:3e:26:90:9c:20:42:25:88:15:80:48:70: b7:19:f1:4a:80:ad:4d:b6:5c:b6:3c:5f:d8:6a:01: 91:73:e6:28:a9:06:82:0d:bc:32:2e:e3:24:ed:80: 3c:9f:e3:c6:c5:7b:a9:d2:59:c1:64:4c:e9:6e:80: 35:72:f9:1e:53:a7:9d:15:a0:e3:33:70:43:a6:8d: d2:5d:05:64:d7:85:46:63:03:49:d7:0b:28:80:97: f2:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:22:9D:08:CF:30:80:60:2D:1D:8F:07:29:6D:0C:57:E2:B5:1D:40 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150477.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.116.49.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:ce:3c:0e:51:f7:57:4c:98:ac:23:58:43:99:ec:2e:bf:83: ab:77:8c:73:e7:4b:7f:a5:8c:13:ea:df:56:b4:cf:25:1a:c5: 1a:75:44:69:4c:94:60:ab:55:b8:aa:b7:ef:5d:92:ab:f6:b2: bf:de:80:1d:51:16:c0:76:a6:6f:72:23:01:27:e1:17:1f:c7: ac:17:11:11:58:aa:f8:3b:53:b8:cc:2c:1a:63:17:05:a9:b8: 66:82:9e:4f:87:c7:fa:7e:15:73:71:c8:c9:86:5a:76:65:48: 67:dc:9d:81:85:6b:f3:aa:e5:ab:88:86:1e:6a:72:56:56:c9: c0:d6:32:57:4e:69:35:9b:2c:c9:49:71:21:c3:96:e5:94:f6: ba:09:92:02:b0:47:8d:8d:0d:7f:cc:46:17:62:66:01:b1:7c: 98:22:14:d9:32:cc:43:ba:79:5c:ba:66:c1:98:29:be:eb:54: 51:2e:42:50:30:13:0c:32:97:a2:d9:b4:de:03:60:b2:d2:2a: 0f:ce:82:c2:16:80:84:1f:30:62:12:80:7a:61:f3:3d:a9:3d: a5:70:71:86:9d:4b:f9:35:a5:01:1c:76:a2:4e:0c:0e:96:b3: 09:42:ea:ff:8f:f8:c7:1c:68:df:13:ea:c5:74:3d:54:ab:87: 1a:8a:38:57 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUIZJsK2aGeSz9wXaB1V+UnzF+1iowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAxMDA2NTIyNloX DTI0MTAwODA2NTcyNlowMzExMC8GA1UEAxMoRDQyMjlEMDhDRjMwODA2MDJEMUQ4 RjA3Mjk2RDBDNTdFMkI1MUQ0MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALaWcGB3lDLbPPcKecqisT9C8EnKCxEH55hzuD9tR3aaA73VGNnvWxv1hQkL q+o25ea1RaKU0NBwhP2giuORWC283Vo6/8v+gFtc6WW3WXa/K5w/ZggybSr8aflQ lv/9CWG4LVKoEfMeA0KGptOy8HxGo5eOAznwrvP1c29tzDIG1ZH88ZlTUgok9mMP CBvt7ivxF77uZUcDe8NFszTOzig6EJrIhRMFPiaQnCBCJYgVgEhwtxnxSoCtTbZc tjxf2GoBkXPmKKkGgg28Mi7jJO2APJ/jxsV7qdJZwWRM6W6ANXL5HlOnnRWg4zNw Q6aN0l0FZNeFRmMDSdcLKICX8mMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTUIp0I zzCAYC0djwcpbQxX4rUdQDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDQ3Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGd0MTANBgkqhkiG9w0BAQsFAAOCAQEAOs48DlH3V0yYrCNYQ5ns Lr+Dq3eMc+dLf6WME+rfVrTPJRrFGnVEaUyUYKtVuKq3712Sq/ayv96AHVEWwHam b3IjASfhFx/HrBcREViq+DtTuMwsGmMXBam4ZoKeT4fH+n4Vc3HIyYZadmVIZ9yd gYVr86rlq4iGHmpyVlbJwNYyV05pNZssyUlxIcOW5ZT2ugmSArBHjY0Nf8xGF2Jm AbF8mCIU2TLMQ7p5XLpmwZgpvutUUS5CUDATDDKXotm03gNgstIqD86CwhaAhB8w YhKAemHzPak9pXBxhp1L+TWlARx2ok4MDpazCULq/4/4xxxo3xPqxXQ9VKuHGoo4 Vw== -----END CERTIFICATE-----Generated at Wed May 8 09:50:39 2024 by rpki-client on console-fra.rpki-client.org