$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150540.roa File: AS150540.roa (raw, json) Hash identifier: RFrsmpJDZ+CyomoKAGfVYFOlPmm0RXrj24NBK/OTRLI= Subject key identifier: EC:00:48:E4:1A:78:44:14:37:2B:0A:F7:2F:FA:24:21:4A:1A:52:9F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5B3D3D9CADF9798B20CAD9481B1F8CCE57028E84 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150540.roa Signing time: Thu 14 Dec 2023 04:19:10 +0000 ROA not before: Thu 14 Dec 2023 04:14:10 +0000 ROA not after: Thu 12 Dec 2024 04:19:10 +0000 asID: 150540 IP address blocks: 103.83.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:3d:3d:9c:ad:f9:79:8b:20:ca:d9:48:1b:1f:8c:ce:57:02:8e:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 14 04:14:10 2023 GMT Not After : Dec 12 04:19:10 2024 GMT Subject: CN=EC0048E41A784414372B0AF72FFA24214A1A529F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:47:69:f2:8d:24:f0:af:a1:2b:21:99:94:f5: b4:be:74:be:43:ec:32:83:0e:4d:e3:9f:10:55:1a: ed:dc:73:fd:d3:ee:d4:da:e2:a0:ac:9c:5c:d1:68: bb:00:91:58:8e:eb:ac:57:ae:2d:05:96:4d:7a:ab: a5:51:16:0e:6d:e5:67:e9:68:a6:6c:57:92:8b:25: ab:b2:bc:19:e8:60:27:a4:bc:12:4d:8a:78:69:bc: 4a:b8:48:93:79:7c:d2:f3:ed:f2:ab:b5:17:46:11: 87:b0:c1:fe:6a:f7:c9:ad:db:62:30:2a:9e:b0:ae: af:8c:98:2f:8a:a1:8c:e6:28:b8:87:54:c0:2e:a4: 10:41:2d:23:3f:6b:7b:1c:58:18:a1:f9:c6:57:73: f8:3d:42:31:08:f7:a7:fd:ad:7d:2d:f5:d7:ec:8c: 9c:fe:5c:53:97:5f:a9:47:88:0f:9f:d0:b5:26:3c: 4d:ba:7f:a9:a5:5d:28:a9:19:3f:60:19:5c:3b:4c: 21:df:fd:15:62:18:cb:08:6b:ad:3f:c3:84:c5:77: bb:15:d4:40:1c:fb:a6:15:93:62:2f:cb:82:30:e9: 68:75:64:eb:ad:7f:56:e4:34:cf:61:2f:f1:4a:8f: 91:9a:ab:00:c1:16:86:84:37:aa:e0:9c:26:a8:39: 4f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:00:48:E4:1A:78:44:14:37:2B:0A:F7:2F:FA:24:21:4A:1A:52:9F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150540.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.83.236.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:35:a4:3f:99:93:8c:49:8f:19:c0:a7:ae:99:c3:3f:f0:52: 92:d9:d2:7b:84:c0:43:20:85:68:12:4b:c7:63:f7:f0:6d:c8: 3a:e3:78:1b:48:bb:5f:6e:e6:64:92:92:b6:13:71:fa:ff:da: 39:2a:b1:1a:a8:5e:73:6f:09:bf:e3:2e:70:5d:c8:59:36:58: 33:66:69:54:78:0a:00:c4:92:40:60:b7:97:5a:4f:8e:bd:1b: c6:e3:be:ea:e1:d9:e4:5a:e3:ee:04:4d:b9:8e:28:b7:f7:bf: 77:47:56:38:42:74:ac:92:2e:5b:3f:9a:09:7e:0c:a8:d0:56: e3:91:ea:e1:28:0c:fa:f2:05:24:48:b5:17:a3:fa:fb:34:43: 0f:91:21:e4:92:05:0f:b8:8f:9e:83:66:8c:39:06:24:86:4d: bd:8d:7f:b2:c5:e9:8a:7b:a6:2d:51:93:1c:b0:30:d4:39:20: d1:05:11:0f:c7:08:4f:cc:0b:bf:38:78:c8:1e:a9:ec:d5:9a: 84:fd:98:70:71:a8:75:2d:ee:e4:e6:6c:b6:0d:bb:ae:c2:6a: bf:f8:98:58:9b:52:30:09:f2:d4:13:09:6a:f9:c3:0a:bb:3a: 51:e0:f9:aa:aa:ef:3b:4e:76:57:15:1a:2d:72:07:d5:3f:55: 88:a3:92:82 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUWz09nK35eYsgytlIGx+MzlcCjoQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIxNDA0MTQxMFoX DTI0MTIxMjA0MTkxMFowMzExMC8GA1UEAxMoRUMwMDQ4RTQxQTc4NDQxNDM3MkIw QUY3MkZGQTI0MjE0QTFBNTI5RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMdHafKNJPCvoSshmZT1tL50vkPsMoMOTeOfEFUa7dxz/dPu1NrioKycXNFo uwCRWI7rrFeuLQWWTXqrpVEWDm3lZ+lopmxXkoslq7K8GehgJ6S8Ek2KeGm8SrhI k3l80vPt8qu1F0YRh7DB/mr3ya3bYjAqnrCur4yYL4qhjOYouIdUwC6kEEEtIz9r exxYGKH5xldz+D1CMQj3p/2tfS311+yMnP5cU5dfqUeID5/QtSY8Tbp/qaVdKKkZ P2AZXDtMId/9FWIYywhrrT/DhMV3uxXUQBz7phWTYi/LgjDpaHVk661/VuQ0z2Ev 8UqPkZqrAMEWhoQ3quCcJqg5T18CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTsAEjk GnhEFDcrCvcv+iQhShpSnzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDU0MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWdT7DANBgkqhkiG9w0BAQsFAAOCAQEATDWkP5mTjEmPGcCnrpnD P/BSktnSe4TAQyCFaBJLx2P38G3IOuN4G0i7X27mZJKSthNx+v/aOSqxGqhec28J v+MucF3IWTZYM2ZpVHgKAMSSQGC3l1pPjr0bxuO+6uHZ5Frj7gRNuY4ot/e/d0dW OEJ0rJIuWz+aCX4MqNBW45Hq4SgM+vIFJEi1F6P6+zRDD5Eh5JIFD7iPnoNmjDkG JIZNvY1/ssXpinumLVGTHLAw1Dkg0QURD8cIT8wLvzh4yB6p7NWahP2YcHGodS3u 5OZstg27rsJqv/iYWJtSMAny1BMJavnDCrs6UeD5qqrvO052VxUaLXIH1T9ViKOS gg== -----END CERTIFICATE-----Generated at Tue May 7 16:42:41 2024 by rpki-client on console-ams.rpki-client.org