$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150478.roa File: AS150478.roa (raw, json) Hash identifier: WSi9EB+xYk2SaXLuwkzqJLi6rV9dXMUc/sr3xi+HXRs= Subject key identifier: 95:68:FA:2C:F1:62:78:6F:81:A8:E9:7A:93:97:9B:55:78:23:D2:29 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 036441FAA05713BBE466BA7017DEF336CF7B4EC1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150478.roa Signing time: Fri 22 Nov 2024 08:00:00 +0000 ROA not before: Fri 22 Nov 2024 07:55:00 +0000 ROA not after: Fri 21 Nov 2025 08:00:00 +0000 asID: 150478 IP address blocks: 180.131.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:64:41:fa:a0:57:13:bb:e4:66:ba:70:17:de:f3:36:cf:7b:4e:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 22 07:55:00 2024 GMT Not After : Nov 21 08:00:00 2025 GMT Subject: CN=9568FA2CF162786F81A8E97A93979B557823D229 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:23:69:88:36:b2:c3:bb:f6:d7:82:6b:34:c0: b8:d9:00:6c:72:71:57:d2:f3:8d:04:ce:eb:4c:0d: af:c2:cf:91:ca:c0:c5:62:9b:10:cc:87:41:d4:3f: 09:3b:05:97:b4:54:26:3e:0a:1b:83:dd:7a:9c:9e: 33:78:7d:6d:87:94:23:56:e6:fb:ca:aa:f2:b3:00: 0c:24:06:05:a6:1a:63:16:cd:54:48:ea:15:69:9a: ec:2f:f4:be:e5:22:75:de:0e:3d:ce:17:06:8c:90: a3:25:f5:aa:58:2e:e6:96:41:48:2a:90:ea:2a:22: 6b:22:4f:42:08:80:6e:d8:47:07:ee:02:43:84:02: 80:c4:a4:cf:64:cf:2f:7d:7d:c5:25:59:a7:d8:bf: 19:67:c3:dd:94:67:e5:4e:b3:19:6d:23:c4:f6:ec: f8:ad:2b:4d:b5:20:8e:7b:18:c9:6c:76:4c:40:ce: 45:9a:9b:6f:d1:12:c1:b7:62:b7:d8:27:1f:a5:ac: 14:89:ca:87:98:91:6e:34:fd:ea:ea:4f:2f:71:1c: a7:b0:a3:62:a1:35:80:39:a3:ca:a2:ea:a6:72:b4: 35:a5:78:ba:f1:19:8f:fc:03:9f:77:ba:61:53:e9: 27:a7:97:5e:ed:4c:70:35:cc:3f:b5:d7:61:cc:08: 67:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:68:FA:2C:F1:62:78:6F:81:A8:E9:7A:93:97:9B:55:78:23:D2:29 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150478.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.131.131.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:4e:db:70:b3:7d:be:66:c9:f8:fe:38:6e:0f:35:06:07:cd: c5:e5:f1:4d:e1:55:8a:1c:c3:54:ea:ac:13:dc:42:4c:96:e6: 3b:46:9a:12:87:7c:6f:dd:d4:63:60:12:37:9d:ce:86:4a:40: 2f:bc:45:3f:1f:da:02:1e:65:fc:39:89:ff:49:55:2f:54:1b: b0:05:8c:27:63:7e:0a:69:f0:45:57:04:d6:01:e4:61:bb:37: bf:9b:e8:0b:85:5a:66:c3:bd:19:ae:16:44:81:37:97:2e:16: a9:8f:fa:46:d9:c3:bd:70:54:1c:a8:41:2d:e2:7d:72:6d:80: 85:6e:46:05:46:f1:cb:ae:a7:59:3d:4b:d7:9b:57:d0:f1:23: 69:27:cb:c3:f8:99:28:6f:ff:86:39:31:33:54:5f:29:3b:7a: 00:46:d9:05:9d:0c:a6:e9:dc:8f:f4:f9:98:db:c4:4b:17:a2: d0:53:a0:b1:77:4a:d9:7c:58:51:44:68:4c:d0:41:b4:b5:16: 6d:94:51:18:56:30:56:95:06:52:25:91:39:5c:c2:10:2b:7f: 9d:e6:57:00:bd:1a:fa:7b:97:30:10:da:e3:a8:8a:80:b0:51: 0b:4a:cb:48:f1:97:99:81:0a:f8:e9:03:9d:f5:a1:07:1d:96: 54:3f:55:15 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUA2RB+qBXE7vkZrpwF97zNs97TsEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEyMjA3NTUwMFoX DTI1MTEyMTA4MDAwMFowMzExMC8GA1UEAxMoOTU2OEZBMkNGMTYyNzg2RjgxQThF OTdBOTM5NzlCNTU3ODIzRDIyOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKcjaYg2ssO79teCazTAuNkAbHJxV9LzjQTO60wNr8LPkcrAxWKbEMyHQdQ/ CTsFl7RUJj4KG4PdepyeM3h9bYeUI1bm+8qq8rMADCQGBaYaYxbNVEjqFWma7C/0 vuUidd4OPc4XBoyQoyX1qlgu5pZBSCqQ6ioiayJPQgiAbthHB+4CQ4QCgMSkz2TP L319xSVZp9i/GWfD3ZRn5U6zGW0jxPbs+K0rTbUgjnsYyWx2TEDORZqbb9ESwbdi t9gnH6WsFInKh5iRbjT96upPL3Ecp7CjYqE1gDmjyqLqpnK0NaV4uvEZj/wDn3e6 YVPpJ6eXXu1McDXMP7XXYcwIZ08CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSVaPos 8WJ4b4Go6XqTl5tVeCPSKTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDQ3OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEALSDgzANBgkqhkiG9w0BAQsFAAOCAQEAHk7bcLN9vmbJ+P44bg81 BgfNxeXxTeFVihzDVOqsE9xCTJbmO0aaEod8b93UY2ASN53OhkpAL7xFPx/aAh5l /DmJ/0lVL1QbsAWMJ2N+CmnwRVcE1gHkYbs3v5voC4VaZsO9Ga4WRIE3ly4WqY/6 RtnDvXBUHKhBLeJ9cm2AhW5GBUbxy66nWT1L15tX0PEjaSfLw/iZKG//hjkxM1Rf KTt6AEbZBZ0Mpuncj/T5mNvESxei0FOgsXdK2XxYUURoTNBBtLUWbZRRGFYwVpUG UiWROVzCECt/neZXAL0a+nuXMBDa46iKgLBRC0rLSPGXmYEK+OkDnfWhBx2WVD9V FQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org