$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150482.roa File: AS150482.roa (raw, json) Hash identifier: oMAhRPbD4Kf3Ry6IUj24JJj9McI/VTu2sDnoERF7JQ4= Subject key identifier: A3:A8:E8:5C:3E:BF:DA:AD:14:E9:4F:23:0E:47:4D:8A:2F:71:3F:47 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5E1AA02C756AD0ED14CEA250287341C20FBF7A77 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150482.roa Signing time: Wed 30 Oct 2024 03:00:36 +0000 ROA not before: Wed 30 Oct 2024 02:55:36 +0000 ROA not after: Wed 29 Oct 2025 03:00:36 +0000 asID: 150482 IP address blocks: 2001:df1:b740::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:1a:a0:2c:75:6a:d0:ed:14:ce:a2:50:28:73:41:c2:0f:bf:7a:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 30 02:55:36 2024 GMT Not After : Oct 29 03:00:36 2025 GMT Subject: CN=A3A8E85C3EBFDAAD14E94F230E474D8A2F713F47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:53:86:b0:d1:7e:c0:b0:4b:bb:ff:99:2d:a1: 97:e3:32:3a:ac:b5:d7:84:54:dd:db:3f:5d:bd:07: 5b:01:7d:da:86:dc:28:53:b2:ae:7d:83:20:af:83: 24:21:97:56:3a:6f:3c:31:2f:12:83:1c:ec:53:bf: 38:85:a5:af:17:32:11:ca:39:3e:1e:cb:27:44:3f: 7a:0b:b1:20:d1:b2:d3:12:7a:b9:5b:86:39:70:50: 04:e0:69:4c:1b:ad:f7:03:59:24:df:c4:20:2e:4f: 98:6a:2c:7d:6c:32:f1:17:3b:93:b9:bc:bc:44:3d: f7:04:15:b3:b3:9b:cb:56:5a:fa:28:a0:c0:1f:81: cb:8c:bd:0f:84:e1:8d:64:68:b4:47:88:1d:6e:d6: fc:18:d4:0c:c3:6f:d0:4c:ee:b6:92:df:d6:c5:bd: d3:8f:21:c1:18:2e:70:2e:48:c3:0b:0b:6c:9e:c4: 89:f0:76:8b:21:58:7c:17:2c:5a:bf:72:09:2e:52: b3:2f:23:b4:7f:19:f9:f6:21:8a:6b:2c:25:90:d4: b2:57:e7:77:8a:93:82:be:5d:dc:e5:2a:9e:33:d4: 75:c8:c2:39:e1:cb:ec:41:21:6d:8d:d5:9f:7e:6e: 2f:b6:46:86:e7:99:2d:92:b1:98:59:71:7d:9d:57: a9:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:A8:E8:5C:3E:BF:DA:AD:14:E9:4F:23:0E:47:4D:8A:2F:71:3F:47 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150482.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:b740::/48 Signature Algorithm: sha256WithRSAEncryption 4b:24:b9:90:ae:20:1e:d2:64:94:ae:63:52:d2:fd:fd:58:2c: 6d:52:35:8e:5f:1f:ba:2f:50:0a:39:74:52:e4:25:a7:fd:cf: 84:00:0e:67:4e:25:4b:2d:02:3b:7f:29:72:05:27:cc:7d:4e: ff:52:c7:65:98:2f:6a:9d:80:ec:a1:09:ac:54:85:51:38:ba: 85:bc:5f:5b:6f:c0:94:f0:ac:5f:fb:03:b7:8d:50:5d:da:63: a2:0f:22:f4:0f:e8:95:12:79:17:b6:bd:89:2a:1b:48:d7:0f: b6:7e:90:82:cd:b1:cc:fa:91:77:00:2c:da:ec:d6:15:ca:1f: 6c:1e:99:a7:4e:e1:de:f3:0e:49:00:b8:26:bf:0d:f1:d6:74: 49:c5:e8:62:db:d5:3f:71:7c:e0:7e:2c:fd:7a:51:63:b0:73: c6:5d:fb:2e:6f:3b:32:ac:6d:f3:72:2b:50:a0:bb:77:a7:aa: 33:1a:40:5f:5e:a2:d8:03:e5:0e:43:25:1a:18:71:f5:4e:7c: c2:65:d3:e8:12:f7:da:aa:5e:99:45:af:03:64:e7:fc:37:a8: b7:d7:59:e4:73:5d:f3:12:db:d4:bf:56:c2:32:d0:e2:e8:d3: 5b:fb:f1:c3:3e:ad:d7:d7:7c:47:f9:4c:9f:a8:3d:4d:6e:62: ad:b4:25:c1 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUXhqgLHVq0O0UzqJQKHNBwg+/encwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAzMDAyNTUzNloX DTI1MTAyOTAzMDAzNlowMzExMC8GA1UEAxMoQTNBOEU4NUMzRUJGREFBRDE0RTk0 RjIzMEU0NzREOEEyRjcxM0Y0NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALxThrDRfsCwS7v/mS2hl+MyOqy114RU3ds/Xb0HWwF92obcKFOyrn2DIK+D JCGXVjpvPDEvEoMc7FO/OIWlrxcyEco5Ph7LJ0Q/eguxINGy0xJ6uVuGOXBQBOBp TBut9wNZJN/EIC5PmGosfWwy8Rc7k7m8vEQ99wQVs7Oby1Za+iigwB+By4y9D4Th jWRotEeIHW7W/BjUDMNv0EzutpLf1sW9048hwRgucC5IwwsLbJ7EifB2iyFYfBcs Wr9yCS5Ssy8jtH8Z+fYhimssJZDUslfnd4qTgr5d3OUqnjPUdcjCOeHL7EEhbY3V n35uL7ZGhueZLZKxmFlxfZ1XqTkCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSjqOhc Pr/arRTpTyMOR02KL3E/RzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDQ4Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfG3QDANBgkqhkiG9w0BAQsFAAOCAQEASyS5kK4gHtJklK5j UtL9/VgsbVI1jl8fui9QCjl0UuQlp/3PhAAOZ04lSy0CO38pcgUnzH1O/1LHZZgv ap2A7KEJrFSFUTi6hbxfW2/AlPCsX/sDt41QXdpjog8i9A/olRJ5F7a9iSobSNcP tn6Qgs2xzPqRdwAs2uzWFcofbB6Zp07h3vMOSQC4Jr8N8dZ0ScXoYtvVP3F84H4s /XpRY7Bzxl37Lm87Mqxt83IrUKC7d6eqMxpAX16i2APlDkMlGhhx9U58wmXT6BL3 2qpemUWvA2Tn/Deot9dZ5HNd8xLb1L9WwjLQ4ujTW/vxwz6t19d8R/lMn6g9TW5i rbQlwQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:29 2024 by rpki-client on console-ams.rpki-client.org