$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150552.roa File: AS150552.roa (raw, json) Hash identifier: TccvObEzY4f4dOdO0U2MsMlDU9ediHgWgaOVyW/I0Mg= Subject key identifier: E0:A9:9C:BF:D4:64:2B:D7:1C:9A:6C:B7:22:55:EA:B9:E3:F2:A7:2A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 577D9EFD9F74DC216AA5BD731D95FB848C393CCF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150552.roa Signing time: Mon 28 Aug 2023 03:36:48 +0000 ROA not before: Mon 28 Aug 2023 03:31:48 +0000 ROA not after: Mon 26 Aug 2024 03:36:48 +0000 asID: 150552 IP address blocks: 2001:df2:84c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:7d:9e:fd:9f:74:dc:21:6a:a5:bd:73:1d:95:fb:84:8c:39:3c:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 28 03:31:48 2023 GMT Not After : Aug 26 03:36:48 2024 GMT Subject: CN=E0A99CBFD4642BD71C9A6CB72255EAB9E3F2A72A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d8:dd:6c:d2:05:6d:bf:46:86:d5:24:ca:88: e7:f3:03:f0:a8:52:58:f2:fb:98:b6:b4:ad:ac:39: 63:b3:a3:99:9c:58:37:c8:9e:42:ee:c5:ab:43:2a: a2:2d:3f:af:94:24:f3:7f:50:0f:74:ca:cf:8b:78: 95:e9:dc:fc:29:88:6b:7c:dd:43:15:e3:98:e7:32: fc:dc:07:7c:3c:ca:f4:cf:d3:35:a3:10:a3:6d:6c: 2f:31:c0:bd:64:2f:be:40:a6:19:3a:cb:95:41:2a: 47:36:52:ac:14:0c:c1:a5:6e:30:2a:46:0d:ac:e0: 82:97:92:e8:a1:ce:c8:5f:91:45:a4:91:73:10:97: 46:db:42:3c:ec:9d:e0:cd:4e:b0:2a:8c:85:66:64: e7:05:5b:c7:b8:92:91:7c:b4:93:91:20:94:0a:20: 8c:85:96:5b:4e:cd:4b:5c:c6:61:6b:c6:1f:f4:00: 23:2e:5d:58:10:0c:48:96:38:bf:6a:79:d9:17:bc: cb:30:92:91:0a:fe:73:bb:5b:8a:51:30:fd:83:7f: 42:5a:ba:3a:a4:51:36:bd:ef:be:1b:ca:16:c5:ed: ef:ca:02:c7:6f:c3:6b:25:99:18:cc:ca:d0:ad:55: fe:2f:80:00:c0:6a:11:ef:5c:fe:bd:f2:3d:7a:e0: ba:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:A9:9C:BF:D4:64:2B:D7:1C:9A:6C:B7:22:55:EA:B9:E3:F2:A7:2A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150552.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:84c0::/48 Signature Algorithm: sha256WithRSAEncryption 83:d3:82:18:c5:08:59:a9:53:43:e7:e5:1a:df:ba:8f:c2:b6: 5a:d0:53:b1:6f:93:c8:32:42:0d:38:2e:35:b4:45:58:bc:1d: fa:d3:e3:52:f4:1e:78:0a:16:7f:24:37:f7:05:bf:df:80:3f: 28:8d:1c:1f:e4:81:0a:5c:78:af:78:90:73:87:0e:16:9e:13: ad:05:a8:8f:32:82:72:42:1b:d9:86:92:e4:bf:80:a4:e7:7b: 83:ec:de:fc:63:9c:e8:66:b8:fa:7a:b0:49:67:63:96:01:14: 82:09:7b:86:bb:aa:70:d6:cc:c9:bd:c2:30:d8:6c:57:fa:4e: f4:0d:29:48:f4:00:5b:51:66:e3:00:5a:84:82:d8:fa:3f:4d: bf:09:4e:f6:05:36:3b:25:e0:62:e8:f1:38:5d:33:0c:16:02: f7:0e:96:57:41:20:72:61:23:e2:17:53:cb:91:5b:e8:8c:02: aa:9c:dc:7d:25:a8:05:67:93:f1:10:a9:29:aa:9d:9a:e8:6c: 0a:0f:df:6b:61:f7:18:92:cd:c0:70:27:24:85:45:da:c4:03: bb:15:f8:31:55:70:e0:52:f1:e0:be:0f:f6:1d:ac:e1:de:6f: c7:d4:23:73:77:72:e3:d7:4a:e6:ba:84:06:e1:5e:e1:c2:52: 64:52:f0:c3 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUV32e/Z903CFqpb1zHZX7hIw5PM8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgyODAzMzE0OFoX DTI0MDgyNjAzMzY0OFowMzExMC8GA1UEAxMoRTBBOTlDQkZENDY0MkJENzFDOUE2 Q0I3MjI1NUVBQjlFM0YyQTcyQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOXY3WzSBW2/RobVJMqI5/MD8KhSWPL7mLa0raw5Y7OjmZxYN8ieQu7Fq0Mq oi0/r5Qk839QD3TKz4t4lenc/CmIa3zdQxXjmOcy/NwHfDzK9M/TNaMQo21sLzHA vWQvvkCmGTrLlUEqRzZSrBQMwaVuMCpGDazggpeS6KHOyF+RRaSRcxCXRttCPOyd 4M1OsCqMhWZk5wVbx7iSkXy0k5EglAogjIWWW07NS1zGYWvGH/QAIy5dWBAMSJY4 v2p52Re8yzCSkQr+c7tbilEw/YN/Qlq6OqRRNr3vvhvKFsXt78oCx2/DayWZGMzK 0K1V/i+AAMBqEe9c/r3yPXrgursCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTgqZy/ 1GQr1xyabLciVeq54/KnKjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDU1Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfKEwDANBgkqhkiG9w0BAQsFAAOCAQEAg9OCGMUIWalTQ+fl Gt+6j8K2WtBTsW+TyDJCDTguNbRFWLwd+tPjUvQeeAoWfyQ39wW/34A/KI0cH+SB Clx4r3iQc4cOFp4TrQWojzKCckIb2YaS5L+ApOd7g+ze/GOc6Ga4+nqwSWdjlgEU ggl7hruqcNbMyb3CMNhsV/pO9A0pSPQAW1Fm4wBahILY+j9NvwlO9gU2OyXgYujx OF0zDBYC9w6WV0EgcmEj4hdTy5Fb6IwCqpzcfSWoBWeT8RCpKaqdmuhsCg/fa2H3 GJLNwHAnJIVF2sQDuxX4MVVw4FLx4L4P9h2s4d5vx9Qjc3dy49dK5rqEBuFe4cJS ZFLwww== -----END CERTIFICATE-----Generated at Wed May 8 22:46:43 2024 by rpki-client on console-ams.rpki-client.org