$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150924.roa File: AS150924.roa (raw, json) Hash identifier: lyk4xyz9rXlEcuL0GJ3U1ojNpw60IPNVt+hnS2yYYKg= Subject key identifier: 41:84:B6:63:E6:78:C7:6B:C2:3E:ED:8D:AC:25:C0:F0:67:6A:6F:26 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1C4039655264292BD65D1253996DE77EC8F1FD33 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150924.roa Signing time: Fri 11 Aug 2023 06:42:33 +0000 ROA not before: Fri 11 Aug 2023 06:37:33 +0000 ROA not after: Fri 09 Aug 2024 06:42:33 +0000 asID: 150924 IP address blocks: 2001:df2:1ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:40:39:65:52:64:29:2b:d6:5d:12:53:99:6d:e7:7e:c8:f1:fd:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 11 06:37:33 2023 GMT Not After : Aug 9 06:42:33 2024 GMT Subject: CN=4184B663E678C76BC23EED8DAC25C0F0676A6F26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c0:25:6e:d2:da:29:e6:10:72:5f:f0:8d:e3: 1f:fd:eb:71:03:5c:97:29:78:b9:4f:ce:5d:f1:ff: 3b:3f:2c:03:45:7c:25:ff:7c:aa:da:c7:09:13:c0: 31:a7:a0:58:43:60:ae:af:c7:11:c7:6e:3f:83:96: b6:38:f9:50:1c:70:42:a8:ff:77:92:ed:b1:c2:a2: e3:bb:f2:c5:ac:a0:36:c0:35:33:3a:e3:f0:8c:ad: af:5d:a6:1b:a3:36:5e:44:9d:3e:29:01:10:1f:8c: 11:54:56:76:b8:0b:01:38:49:92:eb:a8:c2:99:5c: 99:ef:d4:29:3b:9f:dd:c1:db:b6:80:5e:4c:a2:59: 22:07:1c:5a:ce:0d:63:e1:3d:48:53:c4:3b:5f:28: c7:f6:52:95:f9:f4:ef:d0:10:57:71:2a:dd:47:dc: 9c:92:e9:59:43:f3:8f:ec:24:8e:30:46:77:0a:cd: 87:e0:3e:92:b6:26:4e:42:33:89:f8:98:be:a9:0a: ff:e8:8a:1e:73:f7:07:8e:7e:ff:e0:db:5b:e9:03: 55:df:d4:87:dd:a6:c0:1d:2d:95:f9:03:29:00:02: cc:d5:c5:8c:c5:4c:32:52:af:61:2d:38:28:87:a1: ac:c6:86:c8:af:0e:1b:04:90:5f:ce:a6:ad:01:65: 31:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:84:B6:63:E6:78:C7:6B:C2:3E:ED:8D:AC:25:C0:F0:67:6A:6F:26 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150924.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:1ec0::/48 Signature Algorithm: sha256WithRSAEncryption 84:d1:08:d6:90:27:0c:38:ba:9d:a2:f9:c0:33:b4:b5:80:aa: 43:73:bc:8d:92:5e:12:8a:8c:12:d0:df:7f:f3:07:17:64:c5: d3:c5:c4:07:05:4d:2a:6f:ec:e9:f7:64:ac:5d:50:76:40:c1: 48:b0:0d:12:bc:c8:15:7d:e9:12:a5:66:93:00:93:72:14:cc: fd:09:b6:06:9d:09:dc:3e:f0:96:ba:77:b9:ec:7f:6f:0e:39: e6:48:9a:e2:8e:0b:d9:17:67:71:4b:91:d4:56:e2:3a:3c:f2: d2:46:82:5f:38:11:96:de:49:85:b5:63:6a:8a:79:57:1b:1e: c9:f9:43:dd:af:52:7c:d5:94:e0:b2:38:5c:34:46:ce:8b:f9: 69:81:cf:2c:50:79:87:18:e2:bd:6a:07:a7:94:9f:e0:11:66: b7:4c:ee:5c:d8:25:04:42:38:69:65:d8:2b:ab:14:64:de:e4: 08:1e:64:38:21:b9:9d:df:5a:9f:c9:6e:8a:29:0b:ab:db:a4: cb:7a:75:00:d3:c3:c6:7e:8a:19:c6:17:65:6e:3b:73:7f:6f: 44:d7:4e:f4:08:af:28:a1:26:f2:e9:53:21:29:1b:e1:c2:9e: 4d:56:72:f1:ac:75:f9:55:bd:4d:5d:c1:28:92:d3:73:60:78: 35:65:31:ae -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUHEA5ZVJkKSvWXRJTmW3nfsjx/TMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgxMTA2MzczM1oX DTI0MDgwOTA2NDIzM1owMzExMC8GA1UEAxMoNDE4NEI2NjNFNjc4Qzc2QkMyM0VF RDhEQUMyNUMwRjA2NzZBNkYyNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALDAJW7S2inmEHJf8I3jH/3rcQNclyl4uU/OXfH/Oz8sA0V8Jf98qtrHCRPA MaegWENgrq/HEcduP4OWtjj5UBxwQqj/d5LtscKi47vyxaygNsA1Mzrj8Iytr12m G6M2XkSdPikBEB+MEVRWdrgLAThJkuuowplcme/UKTuf3cHbtoBeTKJZIgccWs4N Y+E9SFPEO18ox/ZSlfn079AQV3Eq3UfcnJLpWUPzj+wkjjBGdwrNh+A+krYmTkIz ifiYvqkK/+iKHnP3B45+/+DbW+kDVd/Uh92mwB0tlfkDKQACzNXFjMVMMlKvYS04 KIehrMaGyK8OGwSQX86mrQFlMV8CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRBhLZj 5njHa8I+7Y2sJcDwZ2pvJjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDkyNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfIewDANBgkqhkiG9w0BAQsFAAOCAQEAhNEI1pAnDDi6naL5 wDO0tYCqQ3O8jZJeEoqMEtDff/MHF2TF08XEBwVNKm/s6fdkrF1QdkDBSLANErzI FX3pEqVmkwCTchTM/Qm2Bp0J3D7wlrp3uex/bw455kia4o4L2RdncUuR1FbiOjzy 0kaCXzgRlt5JhbVjaop5VxseyflD3a9SfNWU4LI4XDRGzov5aYHPLFB5hxjivWoH p5Sf4BFmt0zuXNglBEI4aWXYK6sUZN7kCB5kOCG5nd9an8luiikLq9uky3p1ANPD xn6KGcYXZW47c39vRNdO9AivKKEm8ulTISkb4cKeTVZy8ax1+VW9TV3BKJLTc2B4 NWUxrg== -----END CERTIFICATE-----Generated at Wed May 8 10:06:54 2024 by rpki-client on console-ams.rpki-client.org