$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150504.roa File: AS150504.roa (raw, json) Hash identifier: T3QTn7JjrUwohcFboNOmFC/T7w/hmaWcuWEeR+kasnM= Subject key identifier: 55:DF:CF:CE:BC:44:48:CE:F6:8A:E6:80:53:E5:D2:5E:E7:A4:9A:9F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2FD693DFD7661B05AB2CDD639AD652FE1FA5DE50 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150504.roa Signing time: Thu 08 Feb 2024 08:00:00 +0000 ROA not before: Thu 08 Feb 2024 07:55:00 +0000 ROA not after: Thu 06 Feb 2025 08:00:00 +0000 asID: 150504 IP address blocks: 2001:df1:ccc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:d6:93:df:d7:66:1b:05:ab:2c:dd:63:9a:d6:52:fe:1f:a5:de:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 8 07:55:00 2024 GMT Not After : Feb 6 08:00:00 2025 GMT Subject: CN=55DFCFCEBC4448CEF68AE68053E5D25EE7A49A9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8c:b7:90:2d:51:ba:a6:5c:ce:9b:cd:7d:dd: 30:1f:25:3b:98:f9:18:9b:19:2f:b4:f6:bd:4d:89: e3:9d:09:d0:c7:35:45:5c:f8:80:14:ae:c2:b2:71: b4:8d:b8:9a:37:56:94:b1:e0:c4:d0:d9:cf:bc:91: 26:33:2d:c0:15:39:96:c8:07:a0:bc:5d:c9:39:bb: 6f:05:16:d8:76:52:1f:60:62:94:fd:e5:08:0f:72: 45:5e:61:28:f9:4c:6c:75:98:48:12:c8:01:ba:ab: 41:cd:3c:b5:47:6b:c5:9b:0c:1d:08:8b:b1:f7:7d: 3a:01:b6:25:68:1f:4f:35:01:43:fa:0b:69:d0:30: 26:31:e9:e0:b7:3f:22:97:2d:84:38:b1:68:29:d2: 3a:1e:14:dd:1f:a3:87:0e:5f:31:37:50:43:96:a8: 48:f3:b6:0d:43:68:29:4f:92:0d:0d:fc:8a:f4:48: 53:1b:3a:0f:e4:56:c5:1a:90:b1:7b:4f:49:20:58: 97:02:b4:63:1a:72:f5:6d:a3:59:72:37:4b:e8:07: 59:30:c6:14:9c:9a:d5:82:4c:22:6c:f3:2c:60:37: 2e:ad:52:83:2f:4f:5a:cc:55:32:37:3b:b2:f0:e8: 2c:28:ae:bf:09:6b:55:7c:6a:8e:8e:f9:87:92:60: 3e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:DF:CF:CE:BC:44:48:CE:F6:8A:E6:80:53:E5:D2:5E:E7:A4:9A:9F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150504.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:ccc0::/48 Signature Algorithm: sha256WithRSAEncryption 05:02:fb:47:14:d9:39:d6:1f:fe:7c:9c:9c:04:47:e9:bf:b6: 60:1d:f6:90:62:c5:a2:1b:7a:30:56:bf:08:2c:07:cf:f7:21: 51:e7:22:38:e0:62:0c:b8:47:7b:f2:3e:04:57:40:e8:c5:5d: 26:60:b7:60:b3:31:58:d5:eb:6a:6b:2a:08:60:33:e8:94:d0: 81:a5:31:78:16:7e:3b:54:af:25:6c:a3:e3:25:f5:44:7e:ca: 30:92:cd:2c:8b:ca:d3:98:56:6b:95:a3:a5:cb:ef:ae:d0:28: 3e:1d:88:b6:80:82:64:e2:d6:0a:a8:0a:81:0b:b5:70:b0:59: df:53:91:80:ed:c6:dd:97:44:22:9d:a9:4c:1c:c5:8a:db:d0: 42:80:52:0c:8c:c1:b2:57:13:4c:64:58:30:e9:8a:c7:8c:46: 51:c4:93:b9:f3:7c:fe:d8:66:6a:ee:04:b9:f4:a2:e3:28:9f: 57:ea:3f:08:7a:cb:6e:da:97:a8:c6:23:ba:44:a8:fd:37:5b: fe:b9:34:bf:de:87:b6:4f:28:3e:72:cc:98:8d:39:6f:43:86: 58:c9:fa:e3:c5:d7:8a:6b:73:aa:e5:a4:8b:5b:37:fe:15:41: 52:5b:1a:2e:97:54:2a:20:a6:19:c4:c5:72:79:32:dd:cf:e1: 2d:00:ee:8a -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUL9aT39dmGwWrLN1jmtZS/h+l3lAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIwODA3NTUwMFoX DTI1MDIwNjA4MDAwMFowMzExMC8GA1UEAxMoNTVERkNGQ0VCQzQ0NDhDRUY2OEFF NjgwNTNFNUQyNUVFN0E0OUE5RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMaMt5AtUbqmXM6bzX3dMB8lO5j5GJsZL7T2vU2J450J0Mc1RVz4gBSuwrJx tI24mjdWlLHgxNDZz7yRJjMtwBU5lsgHoLxdyTm7bwUW2HZSH2BilP3lCA9yRV5h KPlMbHWYSBLIAbqrQc08tUdrxZsMHQiLsfd9OgG2JWgfTzUBQ/oLadAwJjHp4Lc/ IpcthDixaCnSOh4U3R+jhw5fMTdQQ5aoSPO2DUNoKU+SDQ38ivRIUxs6D+RWxRqQ sXtPSSBYlwK0Yxpy9W2jWXI3S+gHWTDGFJya1YJMImzzLGA3Lq1Sgy9PWsxVMjc7 svDoLCiuvwlrVXxqjo75h5JgPkcCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRV38/O vERIzvaK5oBT5dJe56SanzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDUwNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfHMwDANBgkqhkiG9w0BAQsFAAOCAQEABQL7RxTZOdYf/nyc nARH6b+2YB32kGLFoht6MFa/CCwHz/chUeciOOBiDLhHe/I+BFdA6MVdJmC3YLMx WNXramsqCGAz6JTQgaUxeBZ+O1SvJWyj4yX1RH7KMJLNLIvK05hWa5WjpcvvrtAo Ph2ItoCCZOLWCqgKgQu1cLBZ31ORgO3G3ZdEIp2pTBzFitvQQoBSDIzBslcTTGRY MOmKx4xGUcSTufN8/thmau4EufSi4yifV+o/CHrLbtqXqMYjukSo/Tdb/rk0v96H tk8oPnLMmI05b0OGWMn648XXimtzquWki1s3/hVBUlsaLpdUKiCmGcTFcnky3c/h LQDuig== -----END CERTIFICATE-----Generated at Wed May 8 17:45:23 2024 by rpki-client on console-ams.rpki-client.org