$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150552.roa File: AS150552.roa (raw, json) Hash identifier: X2Mb+v7Nmv2sgI69ccjx9iAnUN4t4v6h5imp4F9DDfM= Subject key identifier: 47:69:E2:ED:82:92:12:05:5D:50:C8:E3:9C:70:52:10:7A:55:90:5E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3D0DCAF267D639F764DAA74D80B0DE4A79E8FA0C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150552.roa Signing time: Mon 29 Jul 2024 04:00:00 +0000 ROA not before: Mon 29 Jul 2024 03:55:00 +0000 ROA not after: Mon 28 Jul 2025 04:00:00 +0000 asID: 150552 IP address blocks: 2001:df2:84c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:0d:ca:f2:67:d6:39:f7:64:da:a7:4d:80:b0:de:4a:79:e8:fa:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 29 03:55:00 2024 GMT Not After : Jul 28 04:00:00 2025 GMT Subject: CN=4769E2ED829212055D50C8E39C7052107A55905E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:67:99:90:1d:37:bd:a5:f6:6f:10:a2:68:90: 22:58:b1:53:7f:ea:1b:61:c9:2e:d6:43:e4:a3:61: e7:b4:5d:3c:c2:fe:dd:73:3d:08:95:2e:ea:be:1e: 40:ea:9e:f7:63:d4:91:9c:7a:2d:1b:e6:08:99:49: cd:17:46:1d:a4:39:55:40:09:c3:bf:42:e2:3d:b7: 36:a0:62:27:29:6e:e1:58:a9:00:21:b4:52:82:b3: ae:01:94:db:a4:73:87:a1:9e:b3:65:82:8d:c8:08: e0:c1:3a:7e:c5:69:15:6b:ee:a5:5b:3d:01:f7:db: 98:24:84:e5:8c:76:4a:a6:8b:20:58:e7:fc:ad:ad: 5a:33:17:13:20:4b:b6:c4:52:f9:b5:bf:d9:f4:b5: 7e:45:3d:d8:d7:4d:0d:18:12:30:76:49:a6:34:36: 56:55:39:e5:dc:6e:3b:45:1b:1c:b8:1e:51:5d:4f: ac:32:93:2e:3c:83:d3:ce:18:e2:fd:0d:a2:96:c2: 00:e9:88:54:b1:b8:61:63:39:3c:e3:aa:d4:75:34: 06:4f:c8:4c:44:89:d0:03:51:68:4d:79:0c:fd:29: c0:15:c3:ac:51:fa:08:a1:dd:74:fe:0a:28:30:e6: b0:b1:c2:ae:4e:d8:ec:40:b3:6f:1b:01:d1:6a:3f: ce:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:69:E2:ED:82:92:12:05:5D:50:C8:E3:9C:70:52:10:7A:55:90:5E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150552.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:84c0::/48 Signature Algorithm: sha256WithRSAEncryption 93:c8:01:f2:7d:2d:dc:1f:34:f8:09:a9:2b:72:fb:86:2b:30: f2:fd:72:ca:c3:cf:a8:44:a7:0e:d0:3c:8c:f2:58:ad:7f:82: d8:fa:25:a3:08:e0:23:60:44:fa:4b:d5:a3:b8:b9:c7:ac:ab: 82:2a:d1:44:3e:20:c6:7e:5d:d8:52:a9:bf:ae:74:d7:da:33: ac:b1:54:1d:b6:94:8d:bc:c2:c9:34:01:00:51:94:5e:8b:a7: 7b:ce:a5:3f:b1:61:70:6a:63:bb:1c:8d:c7:85:0d:c4:f0:20: 45:25:42:48:2e:a6:16:b5:fb:bf:c5:cb:29:85:64:a6:3a:28: 21:78:e4:ad:f8:62:ce:d4:97:6c:c3:e5:78:0a:cd:9f:20:ba: 78:cc:d1:ce:10:46:4e:23:0e:c9:8b:01:be:52:cc:00:d3:60: cf:c8:63:7d:ce:29:71:7a:cd:0a:a6:b6:f1:67:18:d1:71:dc: 51:4a:91:20:6b:47:a6:90:6c:f1:5f:23:74:43:16:91:80:4b: f7:cc:3c:16:6d:7e:06:45:b2:a2:88:c8:80:c9:1f:01:ba:f6: f1:03:17:cc:d3:07:e8:83:1d:7e:28:23:be:ae:53:7d:6d:a1: 76:c8:00:ae:df:43:b9:9c:d1:fa:9c:60:bb:47:09:dc:ad:30: f7:8c:8d:c7 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUPQ3K8mfWOfdk2qdNgLDeSnno+gwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcyOTAzNTUwMFoX DTI1MDcyODA0MDAwMFowMzExMC8GA1UEAxMoNDc2OUUyRUQ4MjkyMTIwNTVENTBD OEUzOUM3MDUyMTA3QTU1OTA1RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9nmZAdN72l9m8QomiQIlixU3/qG2HJLtZD5KNh57RdPML+3XM9CJUu6r4e QOqe92PUkZx6LRvmCJlJzRdGHaQ5VUAJw79C4j23NqBiJylu4VipACG0UoKzrgGU 26Rzh6Ges2WCjcgI4ME6fsVpFWvupVs9AffbmCSE5Yx2SqaLIFjn/K2tWjMXEyBL tsRS+bW/2fS1fkU92NdNDRgSMHZJpjQ2VlU55dxuO0UbHLgeUV1PrDKTLjyD084Y 4v0NopbCAOmIVLG4YWM5POOq1HU0Bk/ITESJ0ANRaE15DP0pwBXDrFH6CKHddP4K KDDmsLHCrk7Y7ECzbxsB0Wo/zn8CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRHaeLt gpISBV1QyOOccFIQelWQXjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDU1Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfKEwDANBgkqhkiG9w0BAQsFAAOCAQEAk8gB8n0t3B80+Amp K3L7hisw8v1yysPPqESnDtA8jPJYrX+C2PolowjgI2BE+kvVo7i5x6yrgirRRD4g xn5d2FKpv65019ozrLFUHbaUjbzCyTQBAFGUXoune86lP7FhcGpjuxyNx4UNxPAg RSVCSC6mFrX7v8XLKYVkpjooIXjkrfhiztSXbMPleArNnyC6eMzRzhBGTiMOyYsB vlLMANNgz8hjfc4pcXrNCqa28WcY0XHcUUqRIGtHppBs8V8jdEMWkYBL98w8Fm1+ BkWyoojIgMkfAbr28QMXzNMH6IMdfigjvq5TfW2hdsgArt9DuZzR+pxgu0cJ3K0w 94yNxw== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:29 2024 by rpki-client on console-ams.rpki-client.org