$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150923.roa File: AS150923.roa (raw, json) Hash identifier: jAXfjwNjcFS0mBAtXh0G6K4iAzEQaUU0pMU8PZj/1NM= Subject key identifier: 91:E9:D1:A3:D9:67:A3:69:5D:88:E4:29:E7:AA:46:A4:DB:26:FA:EB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6045D3D355AFE4B7ED238463BC01AA17B9FF812A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150923.roa Signing time: Tue 24 Oct 2023 06:06:49 +0000 ROA not before: Tue 24 Oct 2023 06:01:49 +0000 ROA not after: Tue 22 Oct 2024 06:06:49 +0000 asID: 150923 IP address blocks: 2001:df2:ffc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:45:d3:d3:55:af:e4:b7:ed:23:84:63:bc:01:aa:17:b9:ff:81:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 24 06:01:49 2023 GMT Not After : Oct 22 06:06:49 2024 GMT Subject: CN=91E9D1A3D967A3695D88E429E7AA46A4DB26FAEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:14:dd:39:13:c5:0b:8b:04:83:c6:4d:9e:f5: 63:82:e4:c3:a4:2f:7f:1f:ff:fe:a1:55:51:55:32: 62:ae:56:dc:a7:10:17:df:08:c4:ac:34:5a:00:e0: da:e8:30:87:8f:5c:95:41:e7:d5:8c:f6:cd:2b:b1: a0:b1:53:00:32:77:03:60:2d:6d:6e:9d:85:25:6a: b0:69:d0:3c:47:82:e5:c9:50:3e:8f:0d:e3:32:db: 4a:cd:f0:8b:60:37:6f:33:5b:82:6d:43:3c:68:ab: 3e:69:7a:48:96:0e:00:ee:3e:c5:e4:8c:fb:de:48: b9:03:15:22:ee:db:0b:a2:03:67:12:22:2f:e4:93: ff:ad:ea:58:a8:74:99:44:42:88:01:fc:e8:66:64: 5c:bb:e7:e2:1b:8f:32:a6:06:df:73:aa:78:df:03: e3:b5:9d:6b:88:2e:6d:1a:9c:44:ef:a7:d2:9f:69: a7:d8:d7:52:0d:ce:77:97:2b:85:f8:ee:83:ba:fa: 10:ee:d7:61:5e:09:37:77:0d:3d:2f:11:d8:33:0a: 1e:5d:db:2f:7e:e3:36:28:ee:b2:c3:61:63:47:88: 22:34:8f:9a:5d:b7:fa:de:f7:62:ed:38:12:95:37: 2b:13:a3:ec:2c:d7:6c:3e:c5:c8:20:dd:60:d3:38: 2b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:E9:D1:A3:D9:67:A3:69:5D:88:E4:29:E7:AA:46:A4:DB:26:FA:EB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150923.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:ffc0::/48 Signature Algorithm: sha256WithRSAEncryption 5b:5f:8b:14:f5:1e:a7:7e:b9:fa:12:a4:fb:7a:44:5b:8d:6f: 05:f8:fb:f3:62:13:e0:e1:58:a9:3d:b4:e1:8b:1e:4a:06:dc: 5a:6d:d5:f6:3f:c5:98:be:7c:40:a8:d9:67:8e:29:99:ee:ce: 5e:ae:6b:f0:6d:c5:e3:f2:7e:38:17:b6:41:67:e0:2c:69:0e: d3:83:b5:83:3a:67:ee:37:bb:27:75:8e:96:d4:c5:ed:06:6b: b4:30:17:6a:f1:27:76:bc:db:99:c8:6a:cd:a8:71:23:39:ba: f4:0c:86:2b:f0:55:24:c6:c2:8f:17:06:3c:72:2e:db:d0:1b: 4e:56:a3:28:77:18:8c:18:0e:12:08:e2:ea:e3:48:7b:f3:eb: 68:3d:4a:b9:03:af:bc:d6:77:1c:4f:80:69:bf:8f:46:82:91: f1:22:b4:77:81:c8:28:4e:c4:87:d8:02:20:dd:18:cf:0c:9f: 53:08:09:2a:b9:6f:f1:14:ec:75:03:af:2c:6a:82:9e:2f:db: 77:61:0e:bd:8f:c5:f7:9f:3b:8d:c3:0b:f5:93:ed:25:2d:8a: fe:ed:e2:3b:90:e4:cd:76:bf:81:42:ad:30:c0:5c:db:a5:ae: 91:17:17:be:33:34:f6:31:fb:58:80:31:37:ee:c0:dc:d6:5e: 01:31:3d:b7 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUYEXT01Wv5LftI4RjvAGqF7n/gSowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAyNDA2MDE0OVoX DTI0MTAyMjA2MDY0OVowMzExMC8GA1UEAxMoOTFFOUQxQTNEOTY3QTM2OTVEODhF NDI5RTdBQTQ2QTREQjI2RkFFQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK0U3TkTxQuLBIPGTZ71Y4Lkw6Qvfx///qFVUVUyYq5W3KcQF98IxKw0WgDg 2ugwh49clUHn1Yz2zSuxoLFTADJ3A2AtbW6dhSVqsGnQPEeC5clQPo8N4zLbSs3w i2A3bzNbgm1DPGirPml6SJYOAO4+xeSM+95IuQMVIu7bC6IDZxIiL+ST/63qWKh0 mURCiAH86GZkXLvn4huPMqYG33OqeN8D47Wda4gubRqcRO+n0p9pp9jXUg3Od5cr hfjug7r6EO7XYV4JN3cNPS8R2DMKHl3bL37jNijussNhY0eIIjSPml23+t73Yu04 EpU3KxOj7CzXbD7FyCDdYNM4K8kCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSR6dGj 2WejaV2I5Cnnqkak2yb66zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDkyMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfL/wDANBgkqhkiG9w0BAQsFAAOCAQEAW1+LFPUep365+hKk +3pEW41vBfj782IT4OFYqT204YseSgbcWm3V9j/FmL58QKjZZ44pme7OXq5r8G3F 4/J+OBe2QWfgLGkO04O1gzpn7je7J3WOltTF7QZrtDAXavEndrzbmchqzahxIzm6 9AyGK/BVJMbCjxcGPHIu29AbTlajKHcYjBgOEgji6uNIe/PraD1KuQOvvNZ3HE+A ab+PRoKR8SK0d4HIKE7Eh9gCIN0YzwyfUwgJKrlv8RTsdQOvLGqCni/bd2EOvY/F 9587jcML9ZPtJS2K/u3iO5DkzXa/gUKtMMBc26WukRcXvjM09jH7WIAxN+7A3NZe ATE9tw== -----END CERTIFICATE-----Generated at Wed May 8 10:06:54 2024 by rpki-client on console-ams.rpki-client.org