$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150924.roa File: AS150924.roa (raw, json) Hash identifier: 1swUDrgr9Sm+4e7CMnOvdJHXCPpCx7I3dvH4d1Yf70I= Subject key identifier: 15:72:58:50:7F:7B:4C:96:B8:6B:74:D5:9B:EB:EC:82:2B:9C:E1:BA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6372E17D506C523ABE83E31723FCEACD0444E05C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150924.roa Signing time: Fri 12 Jul 2024 07:00:00 +0000 ROA not before: Fri 12 Jul 2024 06:55:00 +0000 ROA not after: Fri 11 Jul 2025 07:00:00 +0000 asID: 150924 IP address blocks: 2001:df2:1ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:72:e1:7d:50:6c:52:3a:be:83:e3:17:23:fc:ea:cd:04:44:e0:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 12 06:55:00 2024 GMT Not After : Jul 11 07:00:00 2025 GMT Subject: CN=157258507F7B4C96B86B74D59BEBEC822B9CE1BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:fc:f3:57:50:c6:a4:6f:c2:43:12:80:ee:12: e0:67:31:19:2a:5d:25:91:45:a5:56:ce:c6:41:f1: 98:2a:2e:f8:aa:ff:75:9d:25:54:ea:ae:69:5f:29: 19:62:af:14:5f:73:d3:a2:2d:37:43:e5:17:ce:29: 82:05:94:96:00:b3:3d:38:d7:ef:2c:88:bc:61:c7: 7a:da:84:fa:34:a8:8f:99:66:4e:91:54:e3:81:b1: d6:3a:c4:27:ad:5b:45:2e:d3:86:38:74:16:b6:08: ac:3a:79:4c:71:ca:f0:25:0b:d0:79:6f:d1:df:c3: 5e:df:18:b7:7a:7f:5c:f3:9c:85:c1:77:ba:72:70: 47:36:0d:39:29:98:ef:e9:dd:49:ab:61:b4:87:7b: d3:5d:5d:c6:a3:bf:92:cb:f7:03:8e:a8:ac:f5:95: da:f5:05:a2:c5:f2:3a:50:00:69:25:1a:4e:77:ba: f4:4a:93:b1:7b:aa:d6:2d:ef:23:31:a3:7e:30:04: f1:10:45:44:6b:bb:78:51:52:8f:29:20:57:96:c5: bf:7f:02:19:ee:b2:9e:6e:61:ec:1b:ed:cd:c4:d1: e6:b5:3b:4e:90:1a:70:72:fa:34:d3:42:4d:39:bc: b3:d5:0e:4b:eb:71:0d:3d:29:e6:f5:9e:ce:10:b6: 85:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:72:58:50:7F:7B:4C:96:B8:6B:74:D5:9B:EB:EC:82:2B:9C:E1:BA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150924.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:1ec0::/48 Signature Algorithm: sha256WithRSAEncryption 1e:50:df:e3:fd:1e:a1:e5:0c:2a:67:6a:e8:d3:b5:4c:36:af: cc:2b:14:22:3e:13:42:a5:40:77:47:fe:c4:90:92:98:b6:7b: 31:d0:89:6f:77:99:6c:e2:82:d5:39:63:07:53:9e:4d:91:a0: 77:39:79:f9:ed:33:92:f2:70:57:df:35:c8:04:5f:67:65:32: fd:7f:36:ca:49:6b:6a:2e:a7:c0:37:8b:d2:79:75:16:a6:6b: b9:1b:b4:dc:3d:d1:bb:9a:a7:fb:af:20:16:e2:f9:37:fb:a3: a5:99:43:a9:d6:d0:06:68:e5:3f:de:a4:22:dc:46:16:40:9f: 87:bf:c7:77:04:0b:f9:0b:f3:63:26:e3:51:f8:64:d9:a5:9a: 59:a8:37:8b:e2:16:8c:51:a5:ae:02:b3:70:c5:29:99:95:27: d2:20:0b:2d:47:ed:06:c3:29:ac:8d:66:d2:29:e8:df:a7:d2: b7:12:74:a3:2e:df:65:5f:2a:1b:94:a4:9b:44:20:30:61:8e: 52:2a:db:41:1c:0e:27:95:7e:fe:ea:57:08:4d:19:4d:dd:00: ec:b2:e9:50:93:9d:20:12:75:56:f6:ca:b0:c7:32:ae:ee:68: 36:2a:44:7b:b7:99:41:cc:f1:49:65:82:a4:b4:04:c7:34:7f: 46:37:5c:f6 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUY3LhfVBsUjq+g+MXI/zqzQRE4FwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcxMjA2NTUwMFoX DTI1MDcxMTA3MDAwMFowMzExMC8GA1UEAxMoMTU3MjU4NTA3RjdCNEM5NkI4NkI3 NEQ1OUJFQkVDODIyQjlDRTFCQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMP881dQxqRvwkMSgO4S4GcxGSpdJZFFpVbOxkHxmCou+Kr/dZ0lVOquaV8p GWKvFF9z06ItN0PlF84pggWUlgCzPTjX7yyIvGHHetqE+jSoj5lmTpFU44Gx1jrE J61bRS7Thjh0FrYIrDp5THHK8CUL0Hlv0d/DXt8Yt3p/XPOchcF3unJwRzYNOSmY 7+ndSathtId7011dxqO/ksv3A46orPWV2vUFosXyOlAAaSUaTne69EqTsXuq1i3v IzGjfjAE8RBFRGu7eFFSjykgV5bFv38CGe6ynm5h7BvtzcTR5rU7TpAacHL6NNNC TTm8s9UOS+txDT0p5vWezhC2hTcCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQVclhQ f3tMlrhrdNWb6+yCK5zhujAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDkyNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfIewDANBgkqhkiG9w0BAQsFAAOCAQEAHlDf4/0eoeUMKmdq 6NO1TDavzCsUIj4TQqVAd0f+xJCSmLZ7MdCJb3eZbOKC1TljB1OeTZGgdzl5+e0z kvJwV981yARfZ2Uy/X82yklrai6nwDeL0nl1FqZruRu03D3Ru5qn+68gFuL5N/uj pZlDqdbQBmjlP96kItxGFkCfh7/HdwQL+QvzYybjUfhk2aWaWag3i+IWjFGlrgKz cMUpmZUn0iALLUftBsMprI1m0ino36fStxJ0oy7fZV8qG5Skm0QgMGGOUirbQRwO J5V+/upXCE0ZTd0A7LLpUJOdIBJ1VvbKsMcyru5oNipEe7eZQczxSWWCpLQExzR/ Rjdc9g== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org