$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150480.roa File: AS150480.roa (raw, json) Hash identifier: yCyox5gX7n1f1mpcWOTurSlYBDgQ5orEjGG8H+vgut8= Subject key identifier: B1:43:1A:90:C2:04:A6:4A:2F:44:A2:E3:31:FB:FD:B3:6C:F9:CA:AE Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 371BC7A9BA7D64AE7B1BE7D895A13DDBF360A0D2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150480.roa Signing time: Mon 13 Nov 2023 03:10:20 +0000 ROA not before: Mon 13 Nov 2023 03:05:20 +0000 ROA not after: Mon 11 Nov 2024 03:10:20 +0000 asID: 150480 IP address blocks: 2001:df3:1040::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:1b:c7:a9:ba:7d:64:ae:7b:1b:e7:d8:95:a1:3d:db:f3:60:a0:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 13 03:05:20 2023 GMT Not After : Nov 11 03:10:20 2024 GMT Subject: CN=B1431A90C204A64A2F44A2E331FBFDB36CF9CAAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:5e:6f:d8:31:e6:69:bd:39:0b:f2:c4:f1:f0: ce:6c:1e:99:25:7d:05:5d:1d:23:09:11:06:30:96: 93:c7:65:73:26:43:40:16:61:63:aa:30:51:cd:c4: 39:a1:2a:57:f7:a5:77:7d:24:35:5e:cd:0a:aa:7e: ab:5d:b6:a8:1c:5d:31:08:73:c7:67:67:0a:1b:dc: 8c:c5:6f:fe:9f:20:06:ec:04:e8:56:49:60:6a:dc: 19:26:98:3e:35:c8:8d:7d:68:51:20:a2:fa:47:c8: f5:85:d0:63:3b:6a:18:3f:fa:59:70:92:c0:a5:50: ad:3c:a6:e9:92:04:18:06:6b:0c:8f:ff:5a:3c:ee: e0:9b:be:3b:be:d5:3f:32:3a:13:7e:e0:23:c4:b1: c1:b0:e6:3d:5d:4e:0c:c3:ff:e1:48:3c:88:0d:ac: 29:3e:91:d0:b3:cc:2b:c4:9c:09:e8:f1:c8:f0:42: 5d:2c:b6:1c:44:27:5b:4e:49:da:02:59:24:ed:0d: ae:f2:ef:f0:76:eb:03:7a:b3:4d:da:17:2a:0b:da: ac:46:00:77:bc:18:2f:fc:27:bb:d0:8f:57:fb:f3: be:c5:c7:64:d7:2e:65:4e:ec:10:8e:04:7f:48:1d: dc:f8:45:e7:06:5a:51:ec:ff:c0:44:d9:fa:bb:56: 90:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:43:1A:90:C2:04:A6:4A:2F:44:A2:E3:31:FB:FD:B3:6C:F9:CA:AE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150480.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:1040::/48 Signature Algorithm: sha256WithRSAEncryption 55:32:72:c4:77:0c:3d:68:35:44:ac:a2:e7:1b:2d:78:93:77: 3c:42:ec:93:0c:a7:66:70:80:44:ba:05:f2:3c:02:b3:a2:f2: 45:f0:67:43:c2:3e:db:e5:2f:ab:43:6c:52:d3:e2:ff:4c:07: c0:f8:4c:22:3a:b8:a5:e7:4d:98:ab:a3:13:7b:75:8a:1e:14: 75:07:5f:ad:68:e0:9c:0c:85:47:75:14:97:69:94:41:f6:4b: e5:78:ab:d4:61:75:55:3a:0e:84:55:ce:65:50:1a:10:41:65: a4:6e:7c:bc:54:63:90:d6:da:c1:73:74:89:da:7c:c6:18:b1: 0c:42:2f:46:9d:fb:2a:88:23:25:18:fc:6c:fd:8a:3f:b1:19: 56:21:76:4a:91:41:89:49:bb:03:d3:bd:0e:58:26:b3:a2:2b: ea:2a:70:be:66:96:e5:79:57:f2:6d:ad:64:63:e4:af:cb:b5: f0:b4:e0:fb:c5:47:80:19:48:72:46:ac:a7:57:78:ab:c1:16: 8b:b7:24:1e:8f:4d:5e:da:33:20:e9:b2:1c:86:e3:9f:dd:ec: 04:fc:ff:20:c3:43:82:3d:38:e8:1d:74:f4:0e:56:b7:24:2d: 01:09:e2:5d:dd:4c:e4:1c:91:e5:b7:4f:17:22:ba:af:0c:bf: bc:b7:f9:33 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUNxvHqbp9ZK57G+fYlaE92/NgoNIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTExMzAzMDUyMFoX DTI0MTExMTAzMTAyMFowMzExMC8GA1UEAxMoQjE0MzFBOTBDMjA0QTY0QTJGNDRB MkUzMzFGQkZEQjM2Q0Y5Q0FBRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANpeb9gx5mm9OQvyxPHwzmwemSV9BV0dIwkRBjCWk8dlcyZDQBZhY6owUc3E OaEqV/eld30kNV7NCqp+q122qBxdMQhzx2dnChvcjMVv/p8gBuwE6FZJYGrcGSaY PjXIjX1oUSCi+kfI9YXQYztqGD/6WXCSwKVQrTym6ZIEGAZrDI//Wjzu4Ju+O77V PzI6E37gI8SxwbDmPV1ODMP/4Ug8iA2sKT6R0LPMK8ScCejxyPBCXSy2HEQnW05J 2gJZJO0NrvLv8HbrA3qzTdoXKgvarEYAd7wYL/wnu9CPV/vzvsXHZNcuZU7sEI4E f0gd3PhF5wZaUez/wETZ+rtWkIsCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSxQxqQ wgSmSi9EouMx+/2zbPnKrjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDQ4MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfMQQDANBgkqhkiG9w0BAQsFAAOCAQEAVTJyxHcMPWg1RKyi 5xsteJN3PELskwynZnCARLoF8jwCs6LyRfBnQ8I+2+Uvq0NsUtPi/0wHwPhMIjq4 pedNmKujE3t1ih4UdQdfrWjgnAyFR3UUl2mUQfZL5Xir1GF1VToOhFXOZVAaEEFl pG58vFRjkNbawXN0idp8xhixDEIvRp37KogjJRj8bP2KP7EZViF2SpFBiUm7A9O9 Dlgms6Ir6ipwvmaW5XlX8m2tZGPkr8u18LTg+8VHgBlIckasp1d4q8EWi7ckHo9N XtozIOmyHIbjn93sBPz/IMNDgj046B109A5WtyQtAQniXd1M5ByR5bdPFyK6rwy/ vLf5Mw== -----END CERTIFICATE-----Generated at Wed May 8 10:06:54 2024 by rpki-client on console-ams.rpki-client.org