$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150931.roa File: AS150931.roa (raw, json) Hash identifier: n8bNAQwSsoxKtYuFAsN4cKqCqEBIGPqUf9uWPj7APeg= Subject key identifier: 2E:B7:8F:16:E2:B6:75:7A:0C:0E:68:C7:EE:48:22:5B:A5:D5:62:4D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5D75AFE103F4B95FE0D333A387BDF08DF8356EA9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150931.roa Signing time: Fri 08 Sep 2023 03:52:31 +0000 ROA not before: Fri 08 Sep 2023 03:47:31 +0000 ROA not after: Fri 06 Sep 2024 03:52:31 +0000 asID: 150931 IP address blocks: 2001:df2:e540::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:75:af:e1:03:f4:b9:5f:e0:d3:33:a3:87:bd:f0:8d:f8:35:6e:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 8 03:47:31 2023 GMT Not After : Sep 6 03:52:31 2024 GMT Subject: CN=2EB78F16E2B6757A0C0E68C7EE48225BA5D5624D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:a5:46:aa:e2:7a:bc:b9:79:1a:c0:24:e6:72: 52:27:bb:d7:71:7c:b2:f9:7a:57:f1:a1:ee:27:56: 3b:2e:ea:73:04:ce:84:a0:24:01:4a:1d:e5:3f:95: b8:78:fc:a9:72:9e:12:78:3b:87:f4:8e:c7:e0:29: 2d:fe:f7:62:23:0d:23:ce:26:ac:e3:0c:ad:d4:31: 01:3d:af:f2:99:0e:7c:a1:2a:d4:be:72:92:e3:8a: 45:86:b6:d1:1c:45:69:88:f9:b7:b6:ba:5f:8b:8d: 59:6e:cd:ba:b8:a4:4f:d6:10:ab:7c:c8:9a:30:dc: ea:f9:07:96:85:14:ca:60:d3:86:85:27:93:51:87: 4f:a7:ec:90:e9:78:ef:45:72:2f:c0:0c:b4:1d:df: 43:cc:8b:3a:75:e8:0a:1a:94:d5:c0:2a:91:44:cc: 02:57:09:ec:33:52:91:58:4d:28:24:10:60:11:b0: b3:22:b5:2b:05:c5:30:8e:d8:51:73:1d:cb:07:dd: 7a:ff:ed:2a:ac:5f:c6:91:9d:07:42:94:2d:91:30: a0:7e:8f:5d:a2:36:43:5c:ef:44:0e:d6:02:f8:2f: 84:67:2b:e1:77:9f:c4:39:80:3b:dc:5c:76:2b:fd: 71:31:c8:f5:3b:6c:86:5f:06:1a:af:39:15:07:d3: 4d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:B7:8F:16:E2:B6:75:7A:0C:0E:68:C7:EE:48:22:5B:A5:D5:62:4D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:e540::/48 Signature Algorithm: sha256WithRSAEncryption 3d:1e:84:73:47:43:7d:21:40:09:2b:68:eb:3f:2c:ca:70:66: 98:8d:f8:11:8e:57:b0:d9:74:fd:6c:7d:ad:59:cf:96:81:9c: ad:a8:2b:21:7b:4a:3a:f2:0b:94:3c:a3:73:6d:56:37:4a:7d: c4:46:9b:d3:8e:69:37:a8:55:3d:28:14:19:55:3a:b8:d3:a4: 51:ad:16:97:d1:6b:a6:72:3b:fa:74:81:cf:2e:3a:b8:4a:90: 27:12:3f:bd:7d:53:a7:78:9a:44:67:cb:4f:b5:7e:fe:dd:05: c8:e5:b6:94:09:27:5b:67:a7:26:50:6f:16:b8:b1:f9:a0:76: 57:d3:27:58:8a:e0:04:71:ec:d4:2b:ac:1d:6b:25:39:b1:f5: 43:9e:32:43:e2:a7:c2:c2:e4:17:e7:6a:65:d7:80:ba:f1:f6: ef:dc:c8:24:05:59:38:7f:d6:f8:bc:4c:e3:97:2b:aa:b6:3c: 41:0c:bf:5f:56:10:58:a2:81:8c:7d:64:95:5c:a8:5f:69:72: 26:92:70:14:7c:10:ad:e9:f6:43:23:4d:4c:c7:57:09:f5:46: b3:db:d9:fb:1d:17:9f:eb:0b:10:d3:6b:eb:7b:0c:8b:01:50: ef:6e:9d:06:47:3f:c6:6f:51:36:8a:d9:9d:88:bd:cd:74:16: 5a:fb:cb:e5 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUXXWv4QP0uV/g0zOjh73wjfg1bqkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkwODAzNDczMVoX DTI0MDkwNjAzNTIzMVowMzExMC8GA1UEAxMoMkVCNzhGMTZFMkI2NzU3QTBDMEU2 OEM3RUU0ODIyNUJBNUQ1NjI0RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOKlRqriery5eRrAJOZyUie713F8svl6V/Gh7idWOy7qcwTOhKAkAUod5T+V uHj8qXKeEng7h/SOx+ApLf73YiMNI84mrOMMrdQxAT2v8pkOfKEq1L5ykuOKRYa2 0RxFaYj5t7a6X4uNWW7NurikT9YQq3zImjDc6vkHloUUymDThoUnk1GHT6fskOl4 70VyL8AMtB3fQ8yLOnXoChqU1cAqkUTMAlcJ7DNSkVhNKCQQYBGwsyK1KwXFMI7Y UXMdywfdev/tKqxfxpGdB0KULZEwoH6PXaI2Q1zvRA7WAvgvhGcr4XefxDmAO9xc div9cTHI9Ttshl8GGq85FQfTTeMCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQut48W 4rZ1egwOaMfuSCJbpdViTTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDkzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfLlQDANBgkqhkiG9w0BAQsFAAOCAQEAPR6Ec0dDfSFACSto 6z8synBmmI34EY5XsNl0/Wx9rVnPloGcragrIXtKOvILlDyjc21WN0p9xEab045p N6hVPSgUGVU6uNOkUa0Wl9FrpnI7+nSBzy46uEqQJxI/vX1Tp3iaRGfLT7V+/t0F yOW2lAknW2enJlBvFrix+aB2V9MnWIrgBHHs1CusHWslObH1Q54yQ+KnwsLkF+dq ZdeAuvH279zIJAVZOH/W+LxM45crqrY8QQy/X1YQWKKBjH1klVyoX2lyJpJwFHwQ ren2QyNNTMdXCfVGs9vZ+x0Xn+sLENNr63sMiwFQ726dBkc/xm9RNorZnYi9zXQW WvvL5Q== -----END CERTIFICATE-----Generated at Wed May 8 22:46:43 2024 by rpki-client on console-ams.rpki-client.org