$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150496.roa File: AS150496.roa (raw, json) Hash identifier: cod1D6qdZwfpG7JjxLW6bYsYuEoZLE9mqgfpIDSNmeo= Subject key identifier: A4:45:4C:C1:5C:B3:A2:F1:52:CF:C3:D0:3D:DB:B9:55:03:F0:A4:E5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 062AAC00D3D7F4A7EF1D31DBBBA2FEC376B50413 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150496.roa Signing time: Fri 12 Jan 2024 08:00:00 +0000 ROA not before: Fri 12 Jan 2024 07:55:00 +0000 ROA not after: Fri 10 Jan 2025 08:00:00 +0000 asID: 150496 IP address blocks: 103.58.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:2a:ac:00:d3:d7:f4:a7:ef:1d:31:db:bb:a2:fe:c3:76:b5:04:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 12 07:55:00 2024 GMT Not After : Jan 10 08:00:00 2025 GMT Subject: CN=A4454CC15CB3A2F152CFC3D03DDBB95503F0A4E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:83:96:45:c6:40:f4:5e:39:d5:9a:57:d0:bf: c3:9e:93:22:38:ba:c8:d8:30:3c:c9:c9:9c:71:fe: d1:84:bc:fd:ca:31:d0:92:77:b5:de:6c:cd:b0:13: 71:c7:cb:69:eb:1f:b0:d9:ad:66:db:2d:59:a1:f6: fd:e5:c9:e4:ca:b7:af:a4:66:2a:17:27:72:b1:c5: cc:84:65:d1:54:6b:88:af:dd:6d:b2:8b:10:29:f3: 74:ce:dc:5a:58:e5:f8:c1:d2:75:f9:6c:d0:ea:9b: 4f:0f:c4:dd:84:68:71:10:f5:9f:d0:3c:01:1c:ac: 97:48:f2:fc:69:d6:04:2d:a0:b0:06:af:af:55:c3: 0b:c1:e3:6e:1b:ac:d3:0f:62:55:03:72:75:5f:7c: 3b:e1:7e:4b:1d:75:5f:7f:3a:41:a5:28:49:ed:12: 2e:24:27:5b:e9:6b:ea:85:38:b1:de:ba:50:c2:3d: b3:2d:1e:38:87:71:4b:12:cb:84:5c:1b:c6:4f:61: ef:dd:1e:5c:26:a4:65:42:0f:ff:a0:58:c3:0c:ca: 29:90:71:0f:d4:df:92:bd:52:fb:07:6c:b3:51:fd: c5:f9:c0:29:59:5f:b4:82:7d:05:6f:07:c1:0c:23: 28:8e:89:48:31:c7:36:30:5f:55:89:73:54:82:14: 50:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:45:4C:C1:5C:B3:A2:F1:52:CF:C3:D0:3D:DB:B9:55:03:F0:A4:E5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150496.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.58.196.0/23 Signature Algorithm: sha256WithRSAEncryption 85:c0:c6:4d:84:bf:a0:7e:a6:da:15:27:04:91:53:a5:7d:9a: d9:e8:26:75:51:fb:ed:0d:d2:1b:ba:2b:10:10:ba:8d:f2:79: 68:9b:b4:ec:35:e4:2c:60:8e:e3:da:94:07:ac:71:37:80:1b: c0:6d:b7:3c:8e:4d:f3:e2:3e:b2:ee:42:eb:f4:d5:cf:f8:d1: fb:b6:67:78:63:87:b7:82:ea:2d:30:64:9c:ed:e2:8a:ea:41: f7:d4:f8:a3:3f:d1:bc:d4:ab:31:79:63:c3:61:30:01:05:73: 36:b2:99:01:30:11:fd:c3:15:9c:4d:fd:47:fc:e3:54:32:cb: ed:2a:56:30:d4:c3:29:86:30:2b:1e:eb:e6:97:06:1e:45:63: 64:12:f9:05:9b:2d:3b:de:0a:1c:a5:96:c6:a3:c0:75:84:32: b5:35:33:29:c5:28:c5:ae:ce:46:a8:e2:42:e5:51:68:88:ac: 94:52:5b:da:04:5b:c5:c3:d1:3f:70:c0:57:5c:66:6b:45:d8: 11:fd:9e:e9:02:4c:7b:fd:7f:65:34:45:56:69:9c:eb:43:c0: 2d:44:fb:e5:f2:78:74:f8:e5:6a:03:6a:1d:7f:b7:24:85:3d: 6a:1f:80:a6:d2:32:9f:52:c8:1f:1f:bd:6a:92:e7:74:83:c8: 66:c1:e6:66 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUBiqsANPX9KfvHTHbu6L+w3a1BBMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExMjA3NTUwMFoX DTI1MDExMDA4MDAwMFowMzExMC8GA1UEAxMoQTQ0NTRDQzE1Q0IzQTJGMTUyQ0ZD M0QwM0REQkI5NTUwM0YwQTRFNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMqDlkXGQPReOdWaV9C/w56TIji6yNgwPMnJnHH+0YS8/cox0JJ3td5szbAT ccfLaesfsNmtZtstWaH2/eXJ5Mq3r6RmKhcncrHFzIRl0VRriK/dbbKLECnzdM7c Wljl+MHSdfls0OqbTw/E3YRocRD1n9A8ARysl0jy/GnWBC2gsAavr1XDC8Hjbhus 0w9iVQNydV98O+F+Sx11X386QaUoSe0SLiQnW+lr6oU4sd66UMI9sy0eOIdxSxLL hFwbxk9h790eXCakZUIP/6BYwwzKKZBxD9Tfkr1S+wdss1H9xfnAKVlftIJ9BW8H wQwjKI6JSDHHNjBfVYlzVIIUUBMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSkRUzB XLOi8VLPw9A927lVA/Ck5TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDQ5Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWc6xDANBgkqhkiG9w0BAQsFAAOCAQEAhcDGTYS/oH6m2hUnBJFT pX2a2egmdVH77Q3SG7orEBC6jfJ5aJu07DXkLGCO49qUB6xxN4AbwG23PI5N8+I+ su5C6/TVz/jR+7ZneGOHt4LqLTBknO3iiupB99T4oz/RvNSrMXljw2EwAQVzNrKZ ATAR/cMVnE39R/zjVDLL7SpWMNTDKYYwKx7r5pcGHkVjZBL5BZstO94KHKWWxqPA dYQytTUzKcUoxa7ORqjiQuVRaIislFJb2gRbxcPRP3DAV1xma0XYEf2e6QJMe/1/ ZTRFVmmc60PALUT75fJ4dPjlagNqHX+3JIU9ah+AptIyn1LIHx+9apLndIPIZsHm Zg== -----END CERTIFICATE-----Generated at Wed May 8 04:37:58 2024 by rpki-client on console-fra.rpki-client.org