$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150504.roa File: AS150504.roa (raw, json) Hash identifier: 7pcMBfgfjH3z+zGqfstaAyjL3vu4R0Thb/o3/wlqlt4= Subject key identifier: 6F:B9:B4:A6:1A:E2:38:C3:46:91:DF:22:BA:6C:9F:96:55:63:A8:68 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 78C130D2582BE68B1F9C7ADF3B1568CD35A33768 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150504.roa Signing time: Thu 09 Jan 2025 08:00:00 +0000 ROA not before: Thu 09 Jan 2025 07:55:00 +0000 ROA not after: Thu 08 Jan 2026 08:00:00 +0000 asID: 150504 IP address blocks: 2001:df1:ccc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:c1:30:d2:58:2b:e6:8b:1f:9c:7a:df:3b:15:68:cd:35:a3:37:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jan 9 07:55:00 2025 GMT Not After : Jan 8 08:00:00 2026 GMT Subject: CN=6FB9B4A61AE238C34691DF22BA6C9F965563A868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:71:03:27:fc:39:ea:fc:d3:1e:79:f6:74:f8: a7:9a:ad:7c:f2:05:66:9a:0c:19:30:c3:6c:73:66: 20:7d:a5:c3:07:66:5f:23:65:3e:17:0e:34:63:ec: 2f:71:14:71:d8:99:05:ee:88:c2:9e:e6:3f:56:09: 3b:14:87:10:1f:cd:5d:68:e7:3e:e1:0a:cd:06:bb: a5:82:d7:a1:f0:eb:2e:2c:63:ce:2e:0f:43:5f:c1: fd:55:f2:1f:7b:ac:23:b9:1a:54:f3:19:48:f9:7f: e3:29:7c:d6:f9:c2:9b:72:35:9d:52:44:6f:f1:65: d4:0c:95:00:2a:ba:32:9e:50:ba:f6:00:ea:e5:5f: 9b:d9:c5:10:ac:7e:2b:85:03:3b:df:e4:b0:94:3a: d3:9f:43:58:dc:ab:7e:e3:36:60:27:d9:bf:34:32: 94:ed:5a:15:73:a6:f3:02:4f:39:b8:22:f1:42:5a: 67:94:17:ec:71:28:8c:3c:e8:91:13:8d:d0:20:44: 95:70:ee:b6:0a:e7:1c:b7:3c:c7:05:bc:50:bc:31: 5b:f0:95:32:de:fa:68:19:73:64:f9:95:10:19:6c: 5f:5b:73:60:88:98:a0:0f:76:94:da:c8:ef:1c:f7: 00:14:29:c7:65:82:53:dd:51:6e:c8:10:f8:69:18: de:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:B9:B4:A6:1A:E2:38:C3:46:91:DF:22:BA:6C:9F:96:55:63:A8:68 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150504.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:ccc0::/48 Signature Algorithm: sha256WithRSAEncryption 73:d1:0c:e6:c2:82:7a:37:e6:cf:43:ff:1b:e4:87:06:fe:5d: 4b:2b:8c:f5:c1:e9:8a:8d:bb:40:a2:0e:15:f9:db:89:ba:c1: 3a:8c:48:80:5b:9b:3e:44:2e:25:80:e9:60:7a:e9:7e:15:ee: 7b:88:74:52:15:0e:83:88:e5:9f:40:86:35:a8:00:8a:b9:4e: ff:f1:0a:ba:80:a8:68:e8:04:a1:17:e9:0d:19:d7:5d:c7:b8: 33:10:14:28:ab:25:4b:b9:73:2e:09:09:d0:0a:64:15:f3:b9: 14:b6:d3:b6:e4:d4:cd:9c:66:78:4b:63:e2:5e:cc:dc:5b:07: 65:ad:cd:4e:80:5b:d2:5d:de:4c:b2:58:c7:0b:c9:b2:da:77: f3:71:85:07:f9:4d:94:89:b3:5c:9d:0e:b2:ae:59:15:25:15: 00:56:3a:46:7e:b5:58:33:1a:ea:60:ca:38:a3:53:62:6a:30: 4b:53:77:46:cc:71:3d:ee:8e:1c:99:e6:76:25:cd:e7:59:56: 3f:a6:92:ec:fe:39:ad:4d:af:24:7a:01:45:6a:17:aa:73:69: 0b:d0:b7:34:b3:04:86:93:5a:7e:5a:8c:50:9d:b2:27:1b:a6: d8:b7:33:2a:31:f4:f2:b8:1c:cb:68:76:38:55:1a:cc:a0:bf: d7:e6:8e:f6 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUeMEw0lgr5osfnHrfOxVozTWjN2gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDEwOTA3NTUwMFoX DTI2MDEwODA4MDAwMFowMzExMC8GA1UEAxMoNkZCOUI0QTYxQUUyMzhDMzQ2OTFE RjIyQkE2QzlGOTY1NTYzQTg2ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALxxAyf8Oer80x559nT4p5qtfPIFZpoMGTDDbHNmIH2lwwdmXyNlPhcONGPs L3EUcdiZBe6Iwp7mP1YJOxSHEB/NXWjnPuEKzQa7pYLXofDrLixjzi4PQ1/B/VXy H3usI7kaVPMZSPl/4yl81vnCm3I1nVJEb/Fl1AyVACq6Mp5QuvYA6uVfm9nFEKx+ K4UDO9/ksJQ6059DWNyrfuM2YCfZvzQylO1aFXOm8wJPObgi8UJaZ5QX7HEojDzo kRON0CBElXDutgrnHLc8xwW8ULwxW/CVMt76aBlzZPmVEBlsX1tzYIiYoA92lNrI 7xz3ABQpx2WCU91RbsgQ+GkY3jkCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRvubSm GuI4w0aR3yK6bJ+WVWOoaDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDUwNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfHMwDANBgkqhkiG9w0BAQsFAAOCAQEAc9EM5sKCejfmz0P/ G+SHBv5dSyuM9cHpio27QKIOFfnbibrBOoxIgFubPkQuJYDpYHrpfhXue4h0UhUO g4jln0CGNagAirlO//EKuoCoaOgEoRfpDRnXXce4MxAUKKslS7lzLgkJ0ApkFfO5 FLbTtuTUzZxmeEtj4l7M3FsHZa3NToBb0l3eTLJYxwvJstp383GFB/lNlImzXJ0O sq5ZFSUVAFY6Rn61WDMa6mDKOKNTYmowS1N3RsxxPe6OHJnmdiXN51lWP6aS7P45 rU2vJHoBRWoXqnNpC9C3NLMEhpNaflqMUJ2yJxum2LczKjH08rgcy2h2OFUazKC/ 1+aO9g== -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:29 2025 by rpki-client