$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150484.roa File: AS150484.roa (raw, json) Hash identifier: 9iIWorTn0D8JV2JbZrNPhxYyZVS8pVN+4HLbSIjhaDo= Subject key identifier: 35:A9:A9:23:11:C0:90:71:67:79:6D:19:84:5D:0D:00:37:0A:30:56 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5D41582AB37BCD00BA341D901F773D9DCD42E3B2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150484.roa Signing time: Thu 31 Oct 2024 03:00:00 +0000 ROA not before: Thu 31 Oct 2024 02:55:00 +0000 ROA not after: Thu 30 Oct 2025 03:00:00 +0000 asID: 150484 IP address blocks: 103.55.30.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:41:58:2a:b3:7b:cd:00:ba:34:1d:90:1f:77:3d:9d:cd:42:e3:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 31 02:55:00 2024 GMT Not After : Oct 30 03:00:00 2025 GMT Subject: CN=35A9A92311C0907167796D19845D0D00370A3056 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d1:4a:a9:df:62:13:46:e8:59:9d:83:af:f7: af:0a:b2:14:67:d5:10:88:4d:34:b5:99:cf:a4:26: 38:21:8f:dd:77:a7:1e:bf:f1:a1:77:98:05:94:59: f9:63:53:d8:55:3e:03:44:68:f9:55:14:23:74:e9: fe:18:0e:0f:69:b7:6f:84:72:df:f9:59:4c:b4:b8: fb:98:21:e0:8a:b8:94:b1:c9:86:f8:e3:d2:5b:d8: d2:89:2d:09:ec:73:08:ff:4e:c1:e1:60:12:2f:e2: cb:64:9d:ef:f7:33:a6:c3:c4:92:4d:28:42:84:76: 9e:cb:9f:7f:74:ba:6b:7a:a1:dc:10:1f:c5:f0:74: d0:4c:d7:f9:33:e4:2e:a6:63:d2:1e:1c:5f:1f:f2: 13:2c:51:21:36:1d:d4:41:5e:0c:70:21:ff:1b:47: a1:b0:d2:89:de:67:76:6a:92:aa:ea:37:0f:11:b2: c3:46:ce:2a:99:c5:8d:de:11:c5:aa:b2:7e:31:a2: 42:2f:5e:46:d1:f1:0e:a8:19:ed:b8:32:1d:d0:a9: ae:80:87:8e:5c:ee:86:00:51:cd:6d:b4:1f:99:e0: 00:28:aa:1e:6e:ed:86:25:d1:9c:38:98:42:91:49: 6f:a5:ce:f4:4b:b2:0e:82:0a:b3:bb:c5:e9:5e:b2: 66:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:A9:A9:23:11:C0:90:71:67:79:6D:19:84:5D:0D:00:37:0A:30:56 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150484.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.30.0/23 Signature Algorithm: sha256WithRSAEncryption 88:6a:a0:60:7a:d4:c4:37:a8:f3:65:fd:d5:5b:d6:49:a8:d0: 35:7f:08:24:45:df:ff:b4:7a:c6:78:f6:43:71:e1:81:51:b7: ce:43:44:28:3a:09:9f:9a:70:36:31:6b:8f:a4:9b:4c:14:74: ab:91:4f:33:05:46:14:66:e6:43:45:9a:aa:51:e2:05:99:f9: a1:c2:73:58:46:b4:3d:60:b5:16:63:93:e8:15:ec:86:f5:0d: 5a:55:bc:88:d7:c2:ea:23:71:cf:d0:da:c5:c9:87:44:04:b2: 46:ac:c4:a5:76:b4:cc:76:bf:54:6b:0a:35:48:74:b5:22:fe: 6e:45:1b:0e:cb:8e:84:28:dc:55:11:34:27:f5:c3:ba:1d:97: a3:50:55:3e:51:df:9b:e6:30:10:c1:15:f4:41:da:c2:cd:42: e9:40:b8:4f:a6:68:97:9a:6b:0d:70:52:76:73:d5:20:98:ce: 72:99:4b:b6:b5:aa:c5:e8:5a:fc:e7:e2:4e:69:07:c3:41:fe: 93:6d:f4:b1:0f:6b:1c:28:c1:89:38:d4:19:87:93:a3:b4:f8: db:5d:72:be:1d:25:88:e8:bb:49:28:ad:5f:16:98:70:66:87: 6e:ed:d9:eb:0b:4f:c6:96:28:f2:60:ae:bf:6e:10:e2:be:65: d9:a9:17:74 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUXUFYKrN7zQC6NB2QH3c9nc1C47IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAzMTAyNTUwMFoX DTI1MTAzMDAzMDAwMFowMzExMC8GA1UEAxMoMzVBOUE5MjMxMUMwOTA3MTY3Nzk2 RDE5ODQ1RDBEMDAzNzBBMzA1NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANXRSqnfYhNG6Fmdg6/3rwqyFGfVEIhNNLWZz6QmOCGP3XenHr/xoXeYBZRZ +WNT2FU+A0Ro+VUUI3Tp/hgOD2m3b4Ry3/lZTLS4+5gh4Iq4lLHJhvjj0lvY0okt CexzCP9OweFgEi/iy2Sd7/czpsPEkk0oQoR2nsuff3S6a3qh3BAfxfB00EzX+TPk LqZj0h4cXx/yEyxRITYd1EFeDHAh/xtHobDSid5ndmqSquo3DxGyw0bOKpnFjd4R xaqyfjGiQi9eRtHxDqgZ7bgyHdCproCHjlzuhgBRzW20H5ngACiqHm7thiXRnDiY QpFJb6XO9EuyDoIKs7vF6V6yZvcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ1qakj EcCQcWd5bRmEXQ0ANwowVjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDQ4NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWc3HjANBgkqhkiG9w0BAQsFAAOCAQEAiGqgYHrUxDeo82X91VvW SajQNX8IJEXf/7R6xnj2Q3HhgVG3zkNEKDoJn5pwNjFrj6SbTBR0q5FPMwVGFGbm Q0WaqlHiBZn5ocJzWEa0PWC1FmOT6BXshvUNWlW8iNfC6iNxz9DaxcmHRASyRqzE pXa0zHa/VGsKNUh0tSL+bkUbDsuOhCjcVRE0J/XDuh2Xo1BVPlHfm+YwEMEV9EHa ws1C6UC4T6Zol5prDXBSdnPVIJjOcplLtrWqxeha/OfiTmkHw0H+k230sQ9rHCjB iTjUGYeTo7T4211yvh0liOi7SSitXxaYcGaHbu3Z6wtPxpYo8mCuv24Q4r5l2akX dA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org