$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150482.roa File: AS150482.roa (raw, json) Hash identifier: Q8yGBXNfOQRjDJIWlA23TE1uTpFsuCsxio614FzOnos= Subject key identifier: F2:82:C8:47:11:EE:4B:91:0C:08:A9:21:9E:06:9B:79:C2:F4:4F:7B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5094BC526521166FA4BF96E8A4039378B84C7D13 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150482.roa Signing time: Wed 29 Nov 2023 03:00:00 +0000 ROA not before: Wed 29 Nov 2023 02:55:00 +0000 ROA not after: Wed 27 Nov 2024 03:00:00 +0000 asID: 150482 IP address blocks: 2001:df1:b740::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:94:bc:52:65:21:16:6f:a4:bf:96:e8:a4:03:93:78:b8:4c:7d:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 29 02:55:00 2023 GMT Not After : Nov 27 03:00:00 2024 GMT Subject: CN=F282C84711EE4B910C08A9219E069B79C2F44F7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f2:29:50:bf:b4:2f:65:30:fa:19:a8:a6:f4: 84:42:a5:f1:69:fc:91:14:1d:a7:6f:e7:09:3c:35: c6:56:f5:18:2f:b8:67:76:f2:83:fb:36:04:54:ba: ff:96:99:7f:52:b5:8e:69:f4:ca:30:8a:41:a8:50: be:2b:47:66:45:a6:e4:a6:7e:28:38:0e:82:0f:e6: de:cb:a7:14:89:47:0e:f1:06:8e:c3:bf:1b:9b:0b: de:ee:94:c8:7b:c4:4d:e0:fe:a6:82:09:18:19:ee: 2f:be:b7:54:fa:55:7f:e6:84:57:4a:cd:23:11:4e: 1e:89:86:ee:b7:ce:05:28:a3:87:53:82:8a:95:4f: ce:7d:2b:06:90:e3:f8:ce:30:9c:e6:e2:32:2e:91: 12:d4:a2:b6:82:3e:db:5e:a2:a3:38:81:0d:3d:32: bc:61:36:82:81:de:1b:c6:cb:da:bc:f8:e7:e2:5a: 16:5b:aa:90:97:07:2e:51:cf:86:a9:4c:63:97:5f: 4f:98:7d:b2:02:62:26:ca:4d:21:a0:55:47:4f:d9: 73:22:95:41:5d:a0:b5:91:f5:09:a2:4d:a1:54:34: 9d:69:c8:47:12:e8:91:53:48:7e:bd:8a:0c:90:99: 9a:ab:ca:44:be:d1:52:73:41:4c:5f:05:fd:2d:3a: dd:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:82:C8:47:11:EE:4B:91:0C:08:A9:21:9E:06:9B:79:C2:F4:4F:7B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150482.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:b740::/48 Signature Algorithm: sha256WithRSAEncryption 5f:70:1c:d7:b4:06:5f:e9:4c:d8:e6:c7:02:a9:68:4d:2d:e3: 83:24:7e:b7:a9:64:e7:38:d7:ec:96:89:28:f4:af:a4:c6:d7: 1a:2f:c9:d1:ca:67:33:86:ff:9d:23:c8:f9:cc:6f:e0:70:cb: 98:25:81:9d:20:e8:64:62:17:94:54:17:2a:14:5f:d8:50:71: bd:59:fb:1b:05:af:f5:ad:02:f7:c5:a1:31:71:10:8c:db:4b: 39:dc:53:13:d4:19:bf:2b:4a:ec:29:04:47:25:58:2e:02:a1: b8:8f:70:c0:12:d6:17:29:9e:6c:48:2e:ba:ab:77:88:9c:bb: 36:2d:db:56:30:31:28:44:a5:55:1a:42:f0:eb:6e:35:ad:20: ea:db:24:6a:fe:9d:b5:64:1d:15:2c:db:43:f7:37:ce:15:a5: 06:b2:c4:81:6d:51:a6:60:d7:39:c5:f2:c7:aa:33:1e:8f:0c: da:f0:13:c1:66:e1:71:f1:72:9a:f2:8b:07:b0:4d:2c:df:f2: 98:8c:b4:72:62:12:5d:d7:37:1a:52:f0:27:97:b2:a3:88:77: 15:ec:df:26:d3:11:c9:d3:fa:37:a9:89:5f:d1:fb:1b:ee:e2: 74:6d:92:91:01:3f:78:57:40:0f:e9:b7:3e:f5:f5:16:bb:77: 7c:8d:36:95 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUUJS8UmUhFm+kv5bopAOTeLhMfRMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEyOTAyNTUwMFoX DTI0MTEyNzAzMDAwMFowMzExMC8GA1UEAxMoRjI4MkM4NDcxMUVFNEI5MTBDMDhB OTIxOUUwNjlCNzlDMkY0NEY3QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMryKVC/tC9lMPoZqKb0hEKl8Wn8kRQdp2/nCTw1xlb1GC+4Z3byg/s2BFS6 /5aZf1K1jmn0yjCKQahQvitHZkWm5KZ+KDgOgg/m3sunFIlHDvEGjsO/G5sL3u6U yHvETeD+poIJGBnuL763VPpVf+aEV0rNIxFOHomG7rfOBSijh1OCipVPzn0rBpDj +M4wnObiMi6REtSitoI+216ioziBDT0yvGE2goHeG8bL2rz45+JaFluqkJcHLlHP hqlMY5dfT5h9sgJiJspNIaBVR0/ZcyKVQV2gtZH1CaJNoVQ0nWnIRxLokVNIfr2K DJCZmqvKRL7RUnNBTF8F/S063bkCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTygshH Ee5LkQwIqSGeBpt5wvRPezAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDQ4Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfG3QDANBgkqhkiG9w0BAQsFAAOCAQEAX3Ac17QGX+lM2ObH AqloTS3jgyR+t6lk5zjX7JaJKPSvpMbXGi/J0cpnM4b/nSPI+cxv4HDLmCWBnSDo ZGIXlFQXKhRf2FBxvVn7GwWv9a0C98WhMXEQjNtLOdxTE9QZvytK7CkERyVYLgKh uI9wwBLWFymebEguuqt3iJy7Ni3bVjAxKESlVRpC8OtuNa0g6tskav6dtWQdFSzb Q/c3zhWlBrLEgW1RpmDXOcXyx6ozHo8M2vATwWbhcfFymvKLB7BNLN/ymIy0cmIS Xdc3GlLwJ5eyo4h3FezfJtMRydP6N6mJX9H7G+7idG2SkQE/eFdAD+m3PvX1Frt3 fI02lQ== -----END CERTIFICATE-----Generated at Wed May 8 14:59:57 2024 by rpki-client on console-ams.rpki-client.org