$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150480.roa File: AS150480.roa (raw, json) Hash identifier: CnFaFi4lTKWYgVx+WGm0J3PgjEYaphdRav0B7JhPr3c= Subject key identifier: 3D:15:96:E9:CB:D9:E9:82:65:4E:FA:A3:F2:44:CE:9B:8E:64:37:FF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 30D848C3665DDC096F062349EB45A02774D5F6A2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150480.roa Signing time: Mon 14 Oct 2024 04:00:00 +0000 ROA not before: Mon 14 Oct 2024 03:55:00 +0000 ROA not after: Mon 13 Oct 2025 04:00:00 +0000 asID: 150480 IP address blocks: 2001:df3:1040::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:d8:48:c3:66:5d:dc:09:6f:06:23:49:eb:45:a0:27:74:d5:f6:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Oct 14 03:55:00 2024 GMT Not After : Oct 13 04:00:00 2025 GMT Subject: CN=3D1596E9CBD9E982654EFAA3F244CE9B8E6437FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ca:54:bb:a9:ca:47:2e:10:57:de:3e:ac:d5: ef:6f:01:9f:1d:a7:05:d5:38:cd:56:82:77:fc:13: 3f:d4:28:5a:7a:e5:cf:99:56:33:37:d1:67:2c:5a: 32:11:ca:5c:66:f2:d0:56:99:01:df:e3:60:1a:b4: 5d:09:69:43:61:75:be:da:21:fd:22:0a:08:e0:da: af:a8:74:7d:8b:35:36:95:9b:c3:7d:b8:43:47:16: 3d:38:11:05:6a:2b:c6:4e:85:e3:9c:6e:12:b2:8e: 05:b8:ee:3f:33:4e:54:cd:dd:ae:57:ec:50:05:95: 37:f7:61:4c:05:b7:7c:6f:03:4b:35:56:53:7c:cf: 9e:d8:39:09:d4:12:ba:63:e8:50:6a:9f:83:31:85: 9e:c7:e7:48:ff:23:3b:95:2e:01:4d:f0:22:8a:6f: e2:15:3c:2d:e3:a9:a4:cd:a4:79:7b:6a:69:81:d6: 67:aa:15:82:e9:75:f0:14:c3:71:69:59:55:09:fb: 10:e1:0c:05:9a:0f:0e:9d:64:c9:dc:cf:e7:3b:28: c4:ea:ce:d8:eb:b2:a7:06:11:4c:49:19:03:fc:f7: 86:18:4d:8a:4c:7a:bc:35:60:f5:d8:4e:a7:37:06: 38:6e:a3:fa:77:ca:9e:81:4e:16:1b:7b:44:e5:21: 12:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:15:96:E9:CB:D9:E9:82:65:4E:FA:A3:F2:44:CE:9B:8E:64:37:FF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150480.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:1040::/48 Signature Algorithm: sha256WithRSAEncryption 17:0e:e0:f7:c1:be:1d:17:89:34:68:4c:1a:42:c3:64:26:c1: 9c:dc:ca:8d:0c:f7:ad:bc:ab:61:a7:1a:60:5e:b7:86:98:78: 50:99:5f:36:08:d4:c5:f0:a1:ee:b9:0e:07:43:bf:ac:97:bb: 0f:77:ea:46:04:b4:8e:25:13:46:57:14:bd:9d:93:cc:c6:cc: 4d:ff:b7:d0:cd:4a:08:02:24:05:8a:91:fb:e1:ef:19:7b:24: 86:17:4a:ae:3b:80:eb:5d:bf:5c:a9:59:ae:7c:44:93:59:cf: 7d:75:80:00:44:22:f7:82:25:d7:0b:1f:f4:a3:13:0e:6b:d7: 24:c6:4c:19:4d:29:95:2a:4a:bd:20:b9:df:2d:c6:e2:7a:6e: 71:f9:ea:9c:fd:6e:c7:6d:df:92:fa:dc:e5:7e:e2:82:36:a5: 2e:98:bb:0b:5a:c6:ca:6e:04:e7:43:2b:7d:44:43:d8:2a:57: ce:dc:cc:e5:70:a5:5b:a4:cd:28:66:53:fb:10:7b:1f:4d:14: 4b:83:73:3a:e8:85:c3:fd:e6:13:8c:b8:6a:d5:3d:ca:b4:2b: f6:f9:3d:79:b5:5b:45:a5:8c:2e:05:a0:5c:64:d2:a1:78:86: cd:74:a8:d1:01:7a:0d:15:b1:00:68:62:b3:01:e3:14:ae:37: d3:54:d4:e1 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUMNhIw2Zd3AlvBiNJ60WgJ3TV9qIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxNDAzNTUwMFoX DTI1MTAxMzA0MDAwMFowMzExMC8GA1UEAxMoM0QxNTk2RTlDQkQ5RTk4MjY1NEVG QUEzRjI0NENFOUI4RTY0MzdGRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK7KVLupykcuEFfePqzV728Bnx2nBdU4zVaCd/wTP9QoWnrlz5lWMzfRZyxa MhHKXGby0FaZAd/jYBq0XQlpQ2F1vtoh/SIKCODar6h0fYs1NpWbw324Q0cWPTgR BWorxk6F45xuErKOBbjuPzNOVM3drlfsUAWVN/dhTAW3fG8DSzVWU3zPntg5CdQS umPoUGqfgzGFnsfnSP8jO5UuAU3wIopv4hU8LeOppM2keXtqaYHWZ6oVgul18BTD cWlZVQn7EOEMBZoPDp1kydzP5zsoxOrO2OuypwYRTEkZA/z3hhhNikx6vDVg9dhO pzcGOG6j+nfKnoFOFht7ROUhEmUCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQ9FZbp y9npgmVO+qPyRM6bjmQ3/zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDQ4MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfMQQDANBgkqhkiG9w0BAQsFAAOCAQEAFw7g98G+HReJNGhM GkLDZCbBnNzKjQz3rbyrYacaYF63hph4UJlfNgjUxfCh7rkOB0O/rJe7D3fqRgS0 jiUTRlcUvZ2TzMbMTf+30M1KCAIkBYqR++HvGXskhhdKrjuA612/XKlZrnxEk1nP fXWAAEQi94Il1wsf9KMTDmvXJMZMGU0plSpKvSC53y3G4npucfnqnP1ux23fkvrc 5X7igjalLpi7C1rGym4E50MrfURD2CpXztzM5XClW6TNKGZT+xB7H00US4NzOuiF w/3mE4y4atU9yrQr9vk9ebVbRaWMLgWgXGTSoXiGzXSo0QF6DRWxAGhiswHjFK43 01TU4Q== -----END CERTIFICATE-----Generated at Sun Feb 16 20:42:35 2025 by rpki-client