$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150931.roa File: AS150931.roa (raw, json) Hash identifier: TWJKo/Mdfk9/gg4npQP/XgNOweAfhlEE53fQGSVcMP0= Subject key identifier: C7:A6:A0:A2:4D:1B:CF:BA:20:A5:B9:72:45:DD:BF:F2:70:D3:8A:E8 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0825744C8CD08B146668786AE5F0CE23BB19BDB9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150931.roa Signing time: Fri 09 Aug 2024 04:00:00 +0000 ROA not before: Fri 09 Aug 2024 03:55:00 +0000 ROA not after: Fri 08 Aug 2025 04:00:00 +0000 asID: 150931 IP address blocks: 2001:df2:e540::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:25:74:4c:8c:d0:8b:14:66:68:78:6a:e5:f0:ce:23:bb:19:bd:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 9 03:55:00 2024 GMT Not After : Aug 8 04:00:00 2025 GMT Subject: CN=C7A6A0A24D1BCFBA20A5B97245DDBFF270D38AE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9d:e7:d6:9e:10:f7:76:35:71:48:f9:12:03: a3:18:12:9c:24:92:09:aa:cc:84:7b:d1:7b:be:b5: 19:a8:99:68:6a:59:48:a5:85:d7:f1:25:9b:2b:79: 9a:ff:a3:48:ea:19:bd:7a:27:ea:6f:a0:3a:5a:cd: 45:e9:59:68:e0:31:63:f0:6d:7e:c6:6b:98:10:d2: a8:a3:00:57:1e:6c:8b:7e:cb:5e:50:2a:75:d1:22: 93:1f:22:19:c6:d8:59:f0:b7:71:7d:58:83:17:75: 5c:4e:c1:f8:48:bd:f0:70:75:1d:a6:7c:8d:fb:af: 47:9b:66:21:76:c9:8f:c8:91:ba:61:2d:f2:8e:da: f2:32:fe:d9:1e:c7:fd:2d:fd:d0:76:8f:9c:58:4e: e2:52:dd:85:79:2a:b0:f3:2d:ce:d6:dd:5b:8a:8f: a1:f2:5c:8b:06:b7:09:bf:27:a6:8c:b7:1e:74:b7: af:b3:60:51:ed:2f:fc:e7:ae:2e:e7:85:d3:11:28: 49:34:49:51:48:66:86:16:87:d2:fa:ab:af:07:13: 2e:1d:92:e8:6c:04:3f:c5:bd:9e:35:5f:ba:bf:11: bf:3f:fa:06:94:a9:b5:d7:5c:4e:a3:6b:00:b8:e8: 9e:8d:7c:a4:2d:43:e5:a7:98:e5:e8:6e:4a:c1:3f: eb:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:A6:A0:A2:4D:1B:CF:BA:20:A5:B9:72:45:DD:BF:F2:70:D3:8A:E8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:e540::/48 Signature Algorithm: sha256WithRSAEncryption 55:d0:0c:ad:f5:43:8d:d8:d8:52:da:49:4f:5d:c3:05:d5:aa: fa:01:62:99:d4:6d:60:0b:cc:20:21:3f:9c:e2:35:4b:de:e6: 6b:f0:dd:5a:58:69:cd:38:ff:9a:64:15:e5:a7:f3:a7:74:64: e7:af:14:ba:43:35:54:9e:ca:f7:27:dc:fa:64:02:36:86:f2: 59:a5:56:06:a0:e9:b9:f7:0b:75:a6:a1:12:8e:b4:2f:5c:ba: 1d:c4:ea:2b:3a:38:ad:9c:09:33:b5:8f:ee:d2:79:da:de:39: df:0d:7a:01:d3:7d:84:0e:81:22:35:9f:17:5e:12:87:0d:c1: 1a:68:cd:7e:fd:7f:63:6b:12:93:b8:f5:d0:7e:79:47:a7:ff: 25:ac:5a:36:03:ba:d0:61:9e:49:65:39:48:82:9a:b3:42:ad: b2:69:32:11:1a:56:79:0e:83:40:a9:b4:72:bb:95:cf:8b:b3: 2b:bf:09:87:84:90:11:10:86:b5:21:69:24:41:2e:41:ed:d4: 6b:19:b5:20:de:c7:40:db:c4:4f:8d:76:43:76:4f:44:e6:48: 27:77:d0:cf:cd:2c:c3:37:2d:af:c3:c4:19:85:5e:b4:07:b8: d5:1c:a3:3a:db:fb:46:13:3f:20:21:0f:54:71:df:94:03:ee: de:2f:85:50 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUCCV0TIzQixRmaHhq5fDOI7sZvbkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgwOTAzNTUwMFoX DTI1MDgwODA0MDAwMFowMzExMC8GA1UEAxMoQzdBNkEwQTI0RDFCQ0ZCQTIwQTVC OTcyNDVEREJGRjI3MEQzOEFFODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMWd59aeEPd2NXFI+RIDoxgSnCSSCarMhHvRe761GaiZaGpZSKWF1/Elmyt5 mv+jSOoZvXon6m+gOlrNRelZaOAxY/BtfsZrmBDSqKMAVx5si37LXlAqddEikx8i GcbYWfC3cX1Ygxd1XE7B+Ei98HB1HaZ8jfuvR5tmIXbJj8iRumEt8o7a8jL+2R7H /S390HaPnFhO4lLdhXkqsPMtztbdW4qPofJciwa3Cb8npoy3HnS3r7NgUe0v/Oeu LueF0xEoSTRJUUhmhhaH0vqrrwcTLh2S6GwEP8W9njVfur8Rvz/6BpSptddcTqNr ALjono18pC1D5aeY5ehuSsE/69UCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTHpqCi TRvPuiCluXJF3b/ycNOK6DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDkzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfLlQDANBgkqhkiG9w0BAQsFAAOCAQEAVdAMrfVDjdjYUtpJ T13DBdWq+gFimdRtYAvMICE/nOI1S97ma/DdWlhpzTj/mmQV5afzp3Rk568UukM1 VJ7K9yfc+mQCNobyWaVWBqDpufcLdaahEo60L1y6HcTqKzo4rZwJM7WP7tJ52t45 3w16AdN9hA6BIjWfF14Shw3BGmjNfv1/Y2sSk7j10H55R6f/JaxaNgO60GGeSWU5 SIKas0KtsmkyERpWeQ6DQKm0cruVz4uzK78Jh4SQERCGtSFpJEEuQe3Uaxm1IN7H QNvET412Q3ZPROZIJ3fQz80swzctr8PEGYVetAe41RyjOtv7RhM/ICEPVHHflAPu 3i+FUA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:49 2024 by rpki-client on console-ams.rpki-client.org