$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150535.roa File: AS150535.roa (raw, json) Hash identifier: uQCRv4uymcIACmHYw1QqvfA+ZPxUY6KAzH03Z8/gSg4= Subject key identifier: DB:46:4B:02:6F:4D:E1:7A:5C:8E:4F:97:9A:8D:4A:20:77:3B:04:BD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 19BB5D2A3517F1A541F6B0CDB2C944C1E1B23144 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150535.roa Signing time: Wed 24 Jul 2024 06:00:00 +0000 ROA not before: Wed 24 Jul 2024 05:55:00 +0000 ROA not after: Wed 23 Jul 2025 06:00:00 +0000 asID: 150535 IP address blocks: 103.150.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:bb:5d:2a:35:17:f1:a5:41:f6:b0:cd:b2:c9:44:c1:e1:b2:31:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 24 05:55:00 2024 GMT Not After : Jul 23 06:00:00 2025 GMT Subject: CN=DB464B026F4DE17A5C8E4F979A8D4A20773B04BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:b8:33:d2:d7:54:fe:fb:f0:da:c5:c3:7e:f1: ed:ce:70:f3:1c:9b:47:d6:aa:df:c7:72:27:93:a3: 32:56:04:10:cf:66:1f:df:7e:1a:58:09:42:7e:75: e3:c9:07:9b:1d:2d:56:fc:ca:c4:9f:11:2d:6a:97: 1a:bf:45:77:77:b2:3c:55:9d:ae:5c:62:a5:9b:4c: fe:6f:d2:cd:6a:2e:9b:c7:64:7a:8c:29:64:2f:3a: c6:6c:31:c0:92:e1:27:ad:4a:af:db:64:86:46:12: 92:fe:a8:5a:14:20:4a:6e:ac:c9:4b:ca:16:48:db: 09:36:ba:2a:b7:0e:25:c5:84:19:7d:b2:17:34:22: 3a:72:04:20:71:70:bd:32:2a:0c:a5:cb:29:ee:af: 5b:7a:8a:24:45:d3:fc:a7:e1:87:0a:5c:8a:7c:c1: c6:c2:a7:19:48:59:15:54:0a:fa:ca:41:8a:fc:fd: e1:95:40:8c:0a:26:a2:a9:82:78:32:fb:47:0d:99: 43:f9:2c:55:c1:b6:27:93:da:8e:3d:0d:9b:23:e9: 6a:85:77:29:e3:b5:f2:ec:5d:8c:2a:f8:36:0b:25: 75:bd:a5:57:38:00:49:b2:fe:ac:c9:71:ff:f6:f9: a4:7d:0f:22:57:0c:ee:31:4b:5a:42:97:16:e5:10: 13:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:46:4B:02:6F:4D:E1:7A:5C:8E:4F:97:9A:8D:4A:20:77:3B:04:BD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.3.0/24 Signature Algorithm: sha256WithRSAEncryption 29:3e:a2:c6:e1:e7:ba:aa:e8:f0:dc:44:49:45:e5:3f:fb:8b: 2f:43:c6:d4:ce:69:37:b8:a5:cf:4f:b2:ca:e6:2a:de:e5:8e: af:24:83:c7:c1:97:49:8f:aa:2f:4a:5b:67:44:40:d2:67:2f: 29:8c:a6:37:1e:2f:8c:38:39:91:40:a3:96:01:d1:16:25:4a: bd:b1:3e:57:5a:c3:fc:82:37:07:ff:e9:3a:ce:a4:5d:f7:00: 25:dc:5b:36:c0:cf:da:93:2b:dc:a0:4d:6b:5b:59:3d:c7:97: 6f:3b:48:5d:09:97:92:f5:f7:e6:d6:d6:2a:3d:b4:4d:8d:32: 57:c6:7a:72:07:f7:0a:8b:fa:9e:9a:1b:3d:df:3b:2a:0b:94: 52:08:39:00:56:7a:68:6b:00:f2:b9:7c:b4:dc:00:52:9f:0a: 15:fb:6b:4b:34:b0:1f:dc:f4:29:53:3f:f8:40:dc:5c:65:ba: 2d:6b:ec:35:32:62:54:1e:f8:a1:2b:c1:a9:5c:e0:92:12:28: d8:1c:97:a0:89:d5:a0:64:4c:b9:5b:60:05:d6:09:06:f1:95: 86:d7:90:fa:4e:8a:cd:67:d3:a9:89:da:4d:e9:5c:0e:29:42: f1:9b:52:f7:a6:21:ac:7f:45:85:ea:fd:49:a4:84:f0:73:c9: 08:2a:9d:bf -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUGbtdKjUX8aVB9rDNsslEweGyMUQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcyNDA1NTUwMFoX DTI1MDcyMzA2MDAwMFowMzExMC8GA1UEAxMoREI0NjRCMDI2RjRERTE3QTVDOEU0 Rjk3OUE4RDRBMjA3NzNCMDRCRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOe4M9LXVP778NrFw37x7c5w8xybR9aq38dyJ5OjMlYEEM9mH99+GlgJQn51 48kHmx0tVvzKxJ8RLWqXGr9Fd3eyPFWdrlxipZtM/m/SzWoum8dkeowpZC86xmwx wJLhJ61Kr9tkhkYSkv6oWhQgSm6syUvKFkjbCTa6KrcOJcWEGX2yFzQiOnIEIHFw vTIqDKXLKe6vW3qKJEXT/KfhhwpcinzBxsKnGUhZFVQK+spBivz94ZVAjAomoqmC eDL7Rw2ZQ/ksVcG2J5Pajj0NmyPpaoV3KeO18uxdjCr4Ngsldb2lVzgASbL+rMlx //b5pH0PIlcM7jFLWkKXFuUQE+0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTbRksC b03helyOT5eajUogdzsEvTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDUzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeWAzANBgkqhkiG9w0BAQsFAAOCAQEAKT6ixuHnuqro8NxESUXl P/uLL0PG1M5pN7ilz0+yyuYq3uWOrySDx8GXSY+qL0pbZ0RA0mcvKYymNx4vjDg5 kUCjlgHRFiVKvbE+V1rD/II3B//pOs6kXfcAJdxbNsDP2pMr3KBNa1tZPceXbztI XQmXkvX35tbWKj20TY0yV8Z6cgf3Cov6npobPd87KguUUgg5AFZ6aGsA8rl8tNwA Up8KFftrSzSwH9z0KVM/+EDcXGW6LWvsNTJiVB74oSvBqVzgkhIo2ByXoInVoGRM uVtgBdYJBvGVhteQ+k6KzWfTqYnaTelcDilC8ZtS96YhrH9Fher9SaSE8HPJCCqd vw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org