$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150496.roa File: AS150496.roa (raw, json) Hash identifier: aHkJ+RSRsrGrrp8TzFY5id1eVm3A2XCy/zA1kp21dvQ= Subject key identifier: A3:3A:DD:9E:CC:6B:40:30:82:46:59:E4:84:B5:E1:39:34:03:51:35 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5A0CBD7366A2ABFB03A131A7D2F5179710FA63E7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150496.roa Signing time: Fri 13 Dec 2024 08:00:00 +0000 ROA not before: Fri 13 Dec 2024 07:55:00 +0000 ROA not after: Fri 12 Dec 2025 08:00:00 +0000 asID: 150496 IP address blocks: 103.58.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:0c:bd:73:66:a2:ab:fb:03:a1:31:a7:d2:f5:17:97:10:fa:63:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 13 07:55:00 2024 GMT Not After : Dec 12 08:00:00 2025 GMT Subject: CN=A33ADD9ECC6B4030824659E484B5E13934035135 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a9:0e:cf:9b:70:4d:d3:6c:48:30:39:84:af: b4:f6:e8:36:38:e1:5b:1c:19:74:d9:b7:a3:7e:40: f4:35:0c:60:13:be:68:8b:c2:97:ec:60:a7:d3:c3: 99:3c:f2:b5:09:bc:ab:eb:eb:e6:6b:72:d2:17:3c: 60:5d:05:9d:5d:4b:00:89:8d:ac:b8:e7:5f:2f:e4: 28:e8:db:8d:04:97:cd:e6:2f:0f:52:1a:28:47:cb: 85:c5:e1:d8:31:03:91:09:04:71:04:94:05:f9:96: fa:1f:e5:db:1c:bd:4f:88:19:a9:54:d2:d2:bd:4a: 06:29:c5:20:1e:20:83:83:1e:a6:ab:6c:55:02:71: 79:d4:30:3f:47:c7:aa:de:37:58:b2:a4:64:2e:bb: 07:b8:a3:24:a7:3f:66:1e:8c:d8:80:de:d2:68:c9: 8a:c8:fc:59:bd:fe:90:20:a6:ec:03:2d:dc:cb:b9: a3:3d:fe:4c:72:8a:00:1d:6c:54:38:1f:ee:0d:fc: 8b:68:1c:9a:42:5e:a3:56:2d:0a:66:ae:53:0c:9b: 7b:96:f5:fb:4f:cc:66:b5:fc:6c:fa:37:f3:28:1e: 4a:af:a3:00:d9:ae:a0:b7:59:8d:20:5a:1d:e8:bc: 8a:3c:8b:9d:de:42:3f:f9:de:e6:6e:10:55:aa:f0: 01:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:3A:DD:9E:CC:6B:40:30:82:46:59:E4:84:B5:E1:39:34:03:51:35 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150496.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.58.196.0/23 Signature Algorithm: sha256WithRSAEncryption 70:73:c8:96:f9:79:c0:4c:2c:7d:2d:b1:3e:a4:2a:59:7b:3c: 26:8b:9e:3b:10:c9:f4:4c:b0:df:6f:24:9c:8d:50:8a:6b:bd: a5:48:db:85:b4:0e:1f:83:7c:1f:f1:f9:8c:04:cc:0f:54:d4: c5:32:db:b2:ef:7a:57:f4:ea:c4:6b:6e:e5:ed:77:c1:bf:ad: 9f:b5:c5:03:67:a1:ef:31:5c:f4:bb:7d:5d:2b:28:92:fa:46: c1:2c:b4:22:b7:a2:98:f2:cf:37:42:17:84:75:ef:b0:9a:65: 09:51:84:49:33:df:59:7f:ef:14:3a:e1:fa:c7:29:a1:4b:02: b0:79:b8:8c:54:40:d7:05:a7:b2:68:fd:ab:f1:07:df:b8:fb: 49:aa:57:56:86:73:21:06:6d:9d:24:43:e2:ec:05:4b:6e:0b: 02:a4:36:99:75:eb:f2:e0:36:6c:7f:33:3f:55:43:7b:ab:f1: 57:ed:de:88:eb:00:0c:06:4e:93:18:d8:fd:91:44:4d:83:e9: 0e:8c:9e:a4:22:60:22:bf:fc:58:fe:47:aa:e6:26:a9:9c:b2: b5:58:56:53:97:3f:4d:a5:ed:15:da:9a:2b:5a:07:51:a4:d1: 4f:1f:76:d5:33:f0:13:8a:6f:fb:87:37:a0:3e:6b:9f:3d:54: e9:1b:05:76 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUWgy9c2aiq/sDoTGn0vUXlxD6Y+cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMzA3NTUwMFoX DTI1MTIxMjA4MDAwMFowMzExMC8GA1UEAxMoQTMzQUREOUVDQzZCNDAzMDgyNDY1 OUU0ODRCNUUxMzkzNDAzNTEzNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2pDs+bcE3TbEgwOYSvtPboNjjhWxwZdNm3o35A9DUMYBO+aIvCl+xgp9PD mTzytQm8q+vr5mty0hc8YF0FnV1LAImNrLjnXy/kKOjbjQSXzeYvD1IaKEfLhcXh 2DEDkQkEcQSUBfmW+h/l2xy9T4gZqVTS0r1KBinFIB4gg4MepqtsVQJxedQwP0fH qt43WLKkZC67B7ijJKc/Zh6M2IDe0mjJisj8Wb3+kCCm7AMt3Mu5oz3+THKKAB1s VDgf7g38i2gcmkJeo1YtCmauUwybe5b1+0/MZrX8bPo38ygeSq+jANmuoLdZjSBa Hei8ijyLnd5CP/ne5m4QVarwATECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSjOt2e zGtAMIJGWeSEteE5NANRNTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDQ5Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWc6xDANBgkqhkiG9w0BAQsFAAOCAQEAcHPIlvl5wEwsfS2xPqQq WXs8JoueOxDJ9Eyw328knI1Qimu9pUjbhbQOH4N8H/H5jATMD1TUxTLbsu96V/Tq xGtu5e13wb+tn7XFA2eh7zFc9Lt9XSsokvpGwSy0IreimPLPN0IXhHXvsJplCVGE STPfWX/vFDrh+scpoUsCsHm4jFRA1wWnsmj9q/EH37j7SapXVoZzIQZtnSRD4uwF S24LAqQ2mXXr8uA2bH8zP1VDe6vxV+3eiOsADAZOkxjY/ZFETYPpDoyepCJgIr/8 WP5HquYmqZyytVhWU5c/TaXtFdqaK1oHUaTRTx921TPwE4pv+4c3oD5rnz1U6RsF dg== -----END CERTIFICATE-----Generated at Sat Apr 5 06:20:09 2025 by rpki-client