$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150540.roa File: AS150540.roa (raw, json) Hash identifier: Eh8rQEgb+FuXRVsu/nU9L/MQsF5PoRHb/lUvIGS8Gdw= Subject key identifier: C6:EC:24:00:D5:D5:6E:A0:9F:6B:3A:98:A4:63:D9:2E:8A:4A:AE:63 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2F79EE97C1B7DFEF83A45E6AB46FA7A94B5519B5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150540.roa Signing time: Thu 14 Nov 2024 05:00:00 +0000 ROA not before: Thu 14 Nov 2024 04:55:00 +0000 ROA not after: Thu 13 Nov 2025 05:00:00 +0000 asID: 150540 IP address blocks: 103.83.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:79:ee:97:c1:b7:df:ef:83:a4:5e:6a:b4:6f:a7:a9:4b:55:19:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 14 04:55:00 2024 GMT Not After : Nov 13 05:00:00 2025 GMT Subject: CN=C6EC2400D5D56EA09F6B3A98A463D92E8A4AAE63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:14:77:16:a7:05:03:9b:2a:7c:92:88:ae:b5: 14:c0:86:89:be:f8:c7:d6:46:3a:45:a2:3e:f8:dd: b4:b2:e5:af:08:c1:17:de:01:ad:52:4b:fb:1a:bb: cf:f4:35:0b:f4:72:b9:ff:32:67:d4:38:9e:e4:a9: 6d:fc:7f:c8:6c:33:4e:39:f4:ad:9c:76:d3:dd:0b: 5f:14:9c:ea:c9:df:e7:fd:6b:b6:d2:a1:e7:aa:2c: 59:9d:eb:fe:75:84:10:22:9c:8a:76:7c:2f:c1:fa: 5b:27:63:3e:2a:b2:90:f6:52:b6:6e:d6:4a:3e:4b: 9b:7c:20:3a:0a:ab:9d:e6:57:d8:72:d2:b1:b8:28: 38:15:35:86:74:12:3e:34:54:b7:bf:de:22:d3:41: fc:42:76:c6:30:90:e0:aa:49:e6:47:ae:7d:07:99: 77:ab:41:3d:58:ca:d3:7f:fe:c2:99:47:2d:34:27: 38:a2:de:cb:cb:fd:0b:0e:ab:7d:f5:40:a9:e2:8e: e7:9f:bc:2c:1d:a7:47:17:05:43:4c:14:c5:7b:96: 0f:ff:6b:eb:92:cc:0a:2b:64:31:33:3f:b5:29:b5: f5:25:b0:95:08:43:89:c6:8b:1c:60:74:2f:77:2e: 60:25:d7:22:54:9c:97:5b:af:98:95:cd:8e:f5:7c: 44:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:EC:24:00:D5:D5:6E:A0:9F:6B:3A:98:A4:63:D9:2E:8A:4A:AE:63 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150540.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.83.236.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:ef:6b:e9:2c:bd:44:c2:b3:ea:f8:3d:d4:b9:ae:0b:77:60: 6a:4b:68:73:bf:13:dc:cd:bb:5d:70:d6:be:ab:99:70:0d:e0: b2:4f:95:dd:e2:67:bd:76:43:71:9f:66:3a:81:51:4c:ba:7b: 40:10:50:a5:6b:82:97:32:0b:42:b0:ad:55:fb:5a:06:9b:22: dc:02:3d:eb:06:e2:17:ea:78:d6:08:f2:d1:85:aa:d4:a5:94: 2e:30:3c:2c:55:a8:4b:1b:82:a0:53:1c:a6:dc:cf:97:37:2b: ad:9d:fa:4e:7d:76:89:9a:04:c8:cd:18:d6:9a:c0:71:d1:a1: 0e:bb:51:3a:64:2c:b9:4a:b9:ac:07:9d:16:eb:8d:a0:27:c4: 02:5f:6e:36:d7:f3:dc:e2:4b:cc:11:c3:b0:cb:b6:21:61:0f: db:65:15:79:e5:86:38:b8:f1:c6:60:1f:74:9e:84:c7:ec:d6: b3:1a:d3:68:9b:a2:50:8f:5e:6e:e5:54:08:a3:40:5d:e0:5c: 48:70:d7:a2:8a:eb:38:d8:7b:e1:77:ac:39:07:7e:cc:86:e3: d4:6d:95:c7:81:11:cb:66:37:64:2c:b3:95:dd:59:2d:e4:9c: 7b:36:b2:5a:1b:dc:60:67:78:50:85:e1:30:35:34:af:c0:3e: 12:97:88:17 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUL3nul8G33++DpF5qtG+nqUtVGbUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTExNDA0NTUwMFoX DTI1MTExMzA1MDAwMFowMzExMC8GA1UEAxMoQzZFQzI0MDBENUQ1NkVBMDlGNkIz QTk4QTQ2M0Q5MkU4QTRBQUU2MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMUUdxanBQObKnySiK61FMCGib74x9ZGOkWiPvjdtLLlrwjBF94BrVJL+xq7 z/Q1C/Ryuf8yZ9Q4nuSpbfx/yGwzTjn0rZx2090LXxSc6snf5/1rttKh56osWZ3r /nWEECKcinZ8L8H6WydjPiqykPZStm7WSj5Lm3wgOgqrneZX2HLSsbgoOBU1hnQS PjRUt7/eItNB/EJ2xjCQ4KpJ5keufQeZd6tBPVjK03/+wplHLTQnOKLey8v9Cw6r ffVAqeKO55+8LB2nRxcFQ0wUxXuWD/9r65LMCitkMTM/tSm19SWwlQhDicaLHGB0 L3cuYCXXIlScl1uvmJXNjvV8RFkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTG7CQA 1dVuoJ9rOpikY9kuikquYzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDU0MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWdT7DANBgkqhkiG9w0BAQsFAAOCAQEAbu9r6Sy9RMKz6vg91Lmu C3dgaktoc78T3M27XXDWvquZcA3gsk+V3eJnvXZDcZ9mOoFRTLp7QBBQpWuClzIL QrCtVftaBpsi3AI96wbiF+p41gjy0YWq1KWULjA8LFWoSxuCoFMcptzPlzcrrZ36 Tn12iZoEyM0Y1prAcdGhDrtROmQsuUq5rAedFuuNoCfEAl9uNtfz3OJLzBHDsMu2 IWEP22UVeeWGOLjxxmAfdJ6Ex+zWsxrTaJuiUI9ebuVUCKNAXeBcSHDXoorrONh7 4XesOQd+zIbj1G2Vx4ERy2Y3ZCyzld1ZLeScezayWhvcYGd4UIXhMDU0r8A+EpeI Fw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:49 2024 by rpki-client on console-ams.rpki-client.org