$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150484.roa File: AS150484.roa (raw, json) Hash identifier: R/DX03/b/rROslw74aIn6YqyHm0U/ahefIIjEBs85Ls= Subject key identifier: D4:C4:03:42:12:F0:33:47:68:17:D7:2B:7B:23:7D:EE:01:E6:F1:7C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 257DB16224A8E3147C08385BD49A915F8AEE0D82 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150484.roa Signing time: Thu 30 Nov 2023 03:00:00 +0000 ROA not before: Thu 30 Nov 2023 02:55:00 +0000 ROA not after: Thu 28 Nov 2024 03:00:00 +0000 asID: 150484 IP address blocks: 103.55.30.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:7d:b1:62:24:a8:e3:14:7c:08:38:5b:d4:9a:91:5f:8a:ee:0d:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 30 02:55:00 2023 GMT Not After : Nov 28 03:00:00 2024 GMT Subject: CN=D4C4034212F033476817D72B7B237DEE01E6F17C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:eb:a1:d3:04:54:de:59:b3:89:23:b2:19:d2: 71:1f:f9:c1:39:db:ae:5f:12:9c:12:1d:77:9e:6f: d9:88:7b:10:b9:8f:79:5b:85:2b:f8:b5:c9:d1:cb: a1:6f:c3:3a:e6:71:e4:e1:c6:66:15:6e:34:7c:d9: 3b:e0:28:7c:a9:79:c4:9e:41:23:bf:d2:a2:bd:53: 31:4e:6b:c1:11:e5:14:0d:07:71:19:42:57:04:18: 99:20:b1:0a:c8:75:69:d7:bc:5d:d1:8d:d6:d2:80: 1a:d0:57:75:c1:5e:a8:d7:d8:f9:a0:8a:45:ba:42: 97:54:72:2a:89:ea:07:ae:9a:92:78:17:22:1a:5f: 10:6a:60:5d:05:bf:7c:76:7f:34:26:5b:29:6a:2e: d9:59:2b:5b:14:91:28:68:aa:fa:fc:c9:e4:d1:38: ca:69:5c:0e:dc:e1:12:a1:7b:a6:ee:3c:d5:ea:fe: b7:41:a3:7f:aa:f3:68:00:ff:b9:31:59:e4:49:e8: de:6b:89:9f:67:2b:87:20:bf:18:6f:9d:33:48:45: 66:cb:7c:a2:b0:9d:5a:65:db:53:bf:ff:59:07:66: 78:83:92:86:a5:5c:b7:c6:12:7e:1c:c3:6c:d2:24: 1e:37:b7:a5:10:c6:ca:80:e0:ca:dd:c5:0a:39:a0: ed:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:C4:03:42:12:F0:33:47:68:17:D7:2B:7B:23:7D:EE:01:E6:F1:7C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150484.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.30.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:74:f4:b9:ee:8d:1c:99:46:65:2a:d5:e7:2e:dd:ad:70:80: ee:3d:f5:56:58:86:01:9f:a9:8a:0f:81:34:21:23:73:fc:e7: 70:7a:8b:be:33:fe:cf:8a:69:c0:28:92:ad:88:9b:cf:63:cf: dc:51:e5:3f:76:d9:77:32:a5:6f:a8:75:64:cf:27:38:17:19: 02:6a:5e:b6:42:f6:fe:92:52:f2:ca:31:7f:83:75:ee:e2:df: fd:ed:f5:d9:f9:ee:c7:cf:8c:3f:7b:3c:dd:19:9b:a1:af:c6: b6:03:3f:60:12:8b:96:00:b7:d1:62:34:36:0c:03:99:c1:90: 18:ae:d9:ac:08:de:48:67:ea:f4:df:df:9a:db:74:2f:26:4f: 07:89:c8:70:68:71:39:04:ce:c1:a4:07:83:25:10:e4:3b:bf: 4a:88:e7:6f:d0:95:73:de:ca:42:5f:91:34:03:e5:a0:90:0f: fd:65:87:cf:dd:56:25:37:4b:a3:9e:38:90:af:d4:b2:e7:26: 5f:c1:d6:f4:72:19:3a:25:cf:0f:a5:21:61:96:7f:00:54:a9: 8d:0f:c7:18:c5:ad:61:f4:70:1a:b6:f7:f1:61:63:08:ee:9a: 64:36:22:42:d5:9c:cc:66:d3:fa:e0:3b:70:03:4f:55:73:0c: 8e:26:7e:d3 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUJX2xYiSo4xR8CDhb1JqRX4ruDYIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEzMDAyNTUwMFoX DTI0MTEyODAzMDAwMFowMzExMC8GA1UEAxMoRDRDNDAzNDIxMkYwMzM0NzY4MTdE NzJCN0IyMzdERUUwMUU2RjE3QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMfrodMEVN5Zs4kjshnScR/5wTnbrl8SnBIdd55v2Yh7ELmPeVuFK/i1ydHL oW/DOuZx5OHGZhVuNHzZO+AofKl5xJ5BI7/Sor1TMU5rwRHlFA0HcRlCVwQYmSCx Csh1ade8XdGN1tKAGtBXdcFeqNfY+aCKRbpCl1RyKonqB66akngXIhpfEGpgXQW/ fHZ/NCZbKWou2VkrWxSRKGiq+vzJ5NE4ymlcDtzhEqF7pu481er+t0Gjf6rzaAD/ uTFZ5Eno3muJn2crhyC/GG+dM0hFZst8orCdWmXbU7//WQdmeIOShqVct8YSfhzD bNIkHje3pRDGyoDgyt3FCjmg7R0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTUxANC EvAzR2gX1yt7I33uAebxfDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDQ4NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWc3HjANBgkqhkiG9w0BAQsFAAOCAQEAbnT0ue6NHJlGZSrV5y7d rXCA7j31VliGAZ+pig+BNCEjc/zncHqLvjP+z4ppwCiSrYibz2PP3FHlP3bZdzKl b6h1ZM8nOBcZAmpetkL2/pJS8soxf4N17uLf/e312fnux8+MP3s83Rmboa/GtgM/ YBKLlgC30WI0NgwDmcGQGK7ZrAjeSGfq9N/fmtt0LyZPB4nIcGhxOQTOwaQHgyUQ 5Du/Sojnb9CVc97KQl+RNAPloJAP/WWHz91WJTdLo544kK/UsucmX8HW9HIZOiXP D6UhYZZ/AFSpjQ/HGMWtYfRwGrb38WFjCO6aZDYiQtWczGbT+uA7cANPVXMMjiZ+ 0w== -----END CERTIFICATE-----Generated at Wed May 8 05:33:21 2024 by rpki-client on console-ams.rpki-client.org