$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150535.roa File: AS150535.roa (raw, json) Hash identifier: Oo5ODJ8+BPL19AlxedRaA1iTuldAptrXSHX1Qa1Z9no= Subject key identifier: D0:A6:32:B5:EF:18:B5:A0:1F:E3:E3:D3:1D:79:93:BF:A2:EC:A6:DB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5F05F28692E9258E08A414E86736BD7CBCD615B1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150535.roa Signing time: Wed 23 Aug 2023 05:13:41 +0000 ROA not before: Wed 23 Aug 2023 05:08:41 +0000 ROA not after: Wed 21 Aug 2024 05:13:41 +0000 asID: 150535 IP address blocks: 103.150.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:05:f2:86:92:e9:25:8e:08:a4:14:e8:67:36:bd:7c:bc:d6:15:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 23 05:08:41 2023 GMT Not After : Aug 21 05:13:41 2024 GMT Subject: CN=D0A632B5EF18B5A01FE3E3D31D7993BFA2ECA6DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8c:ad:ed:9d:c2:b7:99:f8:eb:34:42:d2:06: f6:28:3f:c1:de:f5:88:77:8e:f4:5e:ed:ba:53:5e: 2f:50:61:5f:59:ac:36:f0:07:13:59:09:d1:3c:a7: 3a:56:63:04:4d:3a:68:4d:7f:8f:21:aa:ba:a0:bb: 15:b7:26:2f:70:a1:7e:09:fc:62:78:5d:aa:91:38: 59:e4:05:d6:84:ee:3a:b2:2c:ae:9f:e7:30:92:a2: fa:1c:64:3e:76:22:36:e6:46:fe:5d:17:ca:4b:fd: 3a:fc:69:8e:a3:82:75:f5:b7:ee:b6:cb:65:f3:8b: 2f:7e:b8:66:cd:93:e6:d5:fc:83:8b:d1:a9:a5:eb: bb:c6:9d:1e:65:24:75:02:df:31:53:4c:64:23:30: 8e:47:70:8f:b3:82:f6:a7:32:3e:6a:28:03:ba:24: dd:a5:9a:8e:02:51:81:1f:6f:53:60:9d:c4:cb:ec: a7:77:2f:7f:66:29:ca:f3:9c:89:c0:cb:de:f8:88: c0:7c:a5:92:1b:b2:cd:af:77:5c:82:f1:19:9f:21: d9:e8:5b:45:d5:aa:74:f0:0a:d0:4b:0e:93:dd:fe: 04:e4:14:7a:03:e8:9f:a7:6e:0f:43:e6:e0:f2:6d: ba:df:cd:cc:10:cc:e6:fd:ac:af:ea:96:ce:2d:62: e1:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:A6:32:B5:EF:18:B5:A0:1F:E3:E3:D3:1D:79:93:BF:A2:EC:A6:DB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.3.0/24 Signature Algorithm: sha256WithRSAEncryption 56:d8:93:01:02:90:bf:e9:8b:e5:49:06:67:fa:9a:59:40:3d: 27:22:7e:cd:b8:b4:7a:4f:04:c0:9d:2f:8d:01:0d:d2:19:6a: 8c:0d:89:1c:fe:61:72:bb:02:1e:a7:1d:cb:33:24:8c:3b:47: f4:fe:36:07:06:64:5e:f6:e3:2e:c9:ab:da:3e:0f:18:14:41: 28:cf:66:03:a0:9b:dc:14:aa:95:93:d0:c7:f8:be:b0:0a:e9: 47:af:b6:0f:05:5f:fb:fe:7a:2d:9c:d7:52:0a:cc:74:cb:1b: 4b:8d:0d:8c:4a:41:c8:07:da:9e:eb:7e:a0:33:5a:87:97:4e: 7f:dd:3c:0b:12:b6:c0:40:55:57:2f:34:e0:8c:ca:42:20:8c: cd:71:8c:3d:dc:b2:6a:80:da:3c:59:22:e3:68:cb:53:7a:a5: 37:46:2e:55:ed:f7:4f:fe:b0:ea:1c:00:4b:93:f2:97:74:9e: ee:01:46:11:a7:0d:ca:52:da:b9:ea:1e:a8:dd:6a:15:d7:aa: 45:22:99:8f:88:30:15:ec:b9:cd:07:7e:48:72:e1:88:c9:c1: aa:29:bf:0f:1d:3d:5f:d1:a6:ce:41:9f:a1:b8:ef:1f:41:44: 54:4e:b7:3d:3b:05:4e:8b:5a:9e:1d:07:22:11:64:1c:a1:56: d8:61:df:1c -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUXwXyhpLpJY4IpBToZza9fLzWFbEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgyMzA1MDg0MVoX DTI0MDgyMTA1MTM0MVowMzExMC8GA1UEAxMoRDBBNjMyQjVFRjE4QjVBMDFGRTNF M0QzMUQ3OTkzQkZBMkVDQTZEQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL+Mre2dwreZ+Os0QtIG9ig/wd71iHeO9F7tulNeL1BhX1msNvAHE1kJ0Tyn OlZjBE06aE1/jyGquqC7FbcmL3Chfgn8YnhdqpE4WeQF1oTuOrIsrp/nMJKi+hxk PnYiNuZG/l0Xykv9OvxpjqOCdfW37rbLZfOLL364Zs2T5tX8g4vRqaXru8adHmUk dQLfMVNMZCMwjkdwj7OC9qcyPmooA7ok3aWajgJRgR9vU2CdxMvsp3cvf2YpyvOc icDL3viIwHylkhuyza93XILxGZ8h2ehbRdWqdPAK0EsOk93+BOQUegPon6duD0Pm 4PJtut/NzBDM5v2sr+qWzi1i4RMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTQpjK1 7xi1oB/j49MdeZO/ouym2zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDUzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeWAzANBgkqhkiG9w0BAQsFAAOCAQEAVtiTAQKQv+mL5UkGZ/qa WUA9JyJ+zbi0ek8EwJ0vjQEN0hlqjA2JHP5hcrsCHqcdyzMkjDtH9P42BwZkXvbj Lsmr2j4PGBRBKM9mA6Cb3BSqlZPQx/i+sArpR6+2DwVf+/56LZzXUgrMdMsbS40N jEpByAfanut+oDNah5dOf908CxK2wEBVVy804IzKQiCMzXGMPdyyaoDaPFki42jL U3qlN0YuVe33T/6w6hwAS5Pyl3Se7gFGEacNylLaueoeqN1qFdeqRSKZj4gwFey5 zQd+SHLhiMnBqim/Dx09X9GmzkGfobjvH0FEVE63PTsFTotanh0HIhFkHKFW2GHf HA== -----END CERTIFICATE-----Generated at Thu May 9 00:37:07 2024 by rpki-client on console-fra.rpki-client.org