$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150530.roa File: AS150530.roa (raw, json) Hash identifier: 5zNvoDwShiJMG/ARHK3QCTJLm/4OM52rjPhnGGPUbnc= Subject key identifier: A6:76:78:39:F0:53:36:27:0A:EE:08:6C:6C:E6:51:5B:27:AC:CC:50 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 49950C75F3915C1E5C58C82A752E021C0B33BD65 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150530.roa Signing time: Thu 21 Nov 2024 08:11:19 +0000 ROA not before: Thu 21 Nov 2024 08:06:19 +0000 ROA not after: Thu 20 Nov 2025 08:11:19 +0000 asID: 150530 IP address blocks: 2001:df2:440::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:95:0c:75:f3:91:5c:1e:5c:58:c8:2a:75:2e:02:1c:0b:33:bd:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 21 08:06:19 2024 GMT Not After : Nov 20 08:11:19 2025 GMT Subject: CN=A6767839F05336270AEE086C6CE6515B27ACCC50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:66:bf:28:f3:b5:b7:06:bf:00:f1:12:22:99: d2:e6:92:bd:50:20:f4:ea:9e:a9:f7:3a:c7:18:f2: 33:ec:d4:92:14:b5:25:6d:d8:a7:cc:e0:d4:6e:82: 12:26:8b:48:0d:29:3f:aa:28:31:05:69:76:26:fa: 58:bd:ac:69:48:cf:08:ed:92:d3:61:98:92:d9:b2: fd:30:67:bf:ad:c3:ff:27:75:d9:8f:38:39:94:e4: e1:b0:d1:8b:97:81:68:dd:25:35:70:6b:86:48:46: a6:43:5b:d5:07:dc:e7:88:e9:8a:49:0b:44:e4:ae: ff:fd:a8:6a:ad:09:a7:77:71:b0:f0:96:46:39:f5: bb:9a:5c:87:fa:2b:a9:89:43:f4:43:90:60:b4:86: b0:04:d3:f4:d6:bd:b7:86:4c:de:06:ff:77:55:08: c3:25:f1:ee:be:bb:cc:06:4d:f4:1a:7f:cc:76:9c: 2f:a4:ce:c3:67:a0:72:57:ba:a7:db:52:b0:ef:34: 68:67:18:bb:c6:0d:47:3a:86:97:9b:0b:9a:76:cf: a0:62:18:42:f0:56:f8:94:25:f8:3b:83:10:13:9d: d1:98:43:81:d3:14:47:de:d1:73:2c:f5:ee:ee:41: ab:84:50:3a:0e:5e:f3:2c:61:7f:86:d4:9e:e3:da: ba:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:76:78:39:F0:53:36:27:0A:EE:08:6C:6C:E6:51:5B:27:AC:CC:50 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:440::/48 Signature Algorithm: sha256WithRSAEncryption 10:15:e1:6b:d2:19:da:f0:b0:4d:6d:ef:46:ad:03:4f:e0:4a: 20:87:21:6d:c4:34:a0:7b:d8:19:d9:10:d1:4b:94:74:9c:4a: dd:04:3f:79:d0:49:a7:90:6b:b7:6e:f7:d7:99:7a:dc:74:03: e7:3a:16:23:70:9c:d4:94:e2:f3:ea:c5:88:50:75:0e:c3:17: 1f:f2:80:d4:04:a6:65:38:d5:4d:aa:68:42:2b:95:c2:66:0b: 94:cf:e8:82:cd:b2:b6:6f:90:d3:bc:ed:82:6c:cc:ee:ee:f3: 02:34:18:52:52:76:93:34:18:04:dd:b5:e6:13:9d:ed:88:03: cc:ef:7d:ad:54:8a:2f:fe:1c:c2:c1:2e:e2:ea:91:3c:45:e2: 38:fd:ca:ba:a7:9e:5e:79:8b:cd:c1:34:9e:33:f4:66:32:b7: cf:ba:b3:98:92:d2:cb:7c:d9:c4:9b:7f:b3:a8:96:84:3b:f3: 52:81:7e:54:9b:b6:83:f7:ca:52:f0:b0:2d:0f:9e:ae:ff:a5: 43:e2:13:87:63:f0:e5:88:31:d5:40:52:91:53:b8:44:58:33: e9:b8:11:4a:fd:bc:d4:d2:fa:4c:2d:6f:a9:85:d9:06:78:16: 05:35:9c:2c:00:bc:10:c5:1c:64:f8:92:26:68:8e:ae:22:87: 2d:5a:74:6a -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUSZUMdfORXB5cWMgqdS4CHAszvWUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEyMTA4MDYxOVoX DTI1MTEyMDA4MTExOVowMzExMC8GA1UEAxMoQTY3Njc4MzlGMDUzMzYyNzBBRUUw ODZDNkNFNjUxNUIyN0FDQ0M1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOlmvyjztbcGvwDxEiKZ0uaSvVAg9Oqeqfc6xxjyM+zUkhS1JW3Yp8zg1G6C EiaLSA0pP6ooMQVpdib6WL2saUjPCO2S02GYktmy/TBnv63D/yd12Y84OZTk4bDR i5eBaN0lNXBrhkhGpkNb1Qfc54jpikkLROSu//2oaq0Jp3dxsPCWRjn1u5pch/or qYlD9EOQYLSGsATT9Na9t4ZM3gb/d1UIwyXx7r67zAZN9Bp/zHacL6TOw2egcle6 p9tSsO80aGcYu8YNRzqGl5sLmnbPoGIYQvBW+JQl+DuDEBOd0ZhDgdMUR97Rcyz1 7u5Bq4RQOg5e8yxhf4bUnuPauqUCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSmdng5 8FM2JwruCGxs5lFbJ6zMUDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDUzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfIEQDANBgkqhkiG9w0BAQsFAAOCAQEAEBXha9IZ2vCwTW3v Rq0DT+BKIIchbcQ0oHvYGdkQ0UuUdJxK3QQ/edBJp5Brt27315l63HQD5zoWI3Cc 1JTi8+rFiFB1DsMXH/KA1ASmZTjVTapoQiuVwmYLlM/ogs2ytm+Q07ztgmzM7u7z AjQYUlJ2kzQYBN215hOd7YgDzO99rVSKL/4cwsEu4uqRPEXiOP3KuqeeXnmLzcE0 njP0ZjK3z7qzmJLSy3zZxJt/s6iWhDvzUoF+VJu2g/fKUvCwLQ+erv+lQ+ITh2Pw 5Ygx1UBSkVO4RFgz6bgRSv281NL6TC1vqYXZBngWBTWcLAC8EMUcZPiSJmiOriKH LVp0ag== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org