$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150937.roa File: AS150937.roa (raw, json) Hash identifier: D97vmgWlj9nZJdyLDl+BOxx5EQEwsTxnkGo09FnpCYI= Subject key identifier: 37:F1:02:E5:16:9E:95:43:37:04:F2:F7:74:FF:22:0C:EA:8E:0F:96 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 10040DA15AC29A0D84AFD2686C523382CC5AD6B5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150937.roa Signing time: Tue 07 May 2024 04:00:00 +0000 ROA not before: Tue 07 May 2024 03:55:00 +0000 ROA not after: Tue 06 May 2025 04:00:00 +0000 asID: 150937 IP address blocks: 103.110.100.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:04:0d:a1:5a:c2:9a:0d:84:af:d2:68:6c:52:33:82:cc:5a:d6:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 7 03:55:00 2024 GMT Not After : May 6 04:00:00 2025 GMT Subject: CN=37F102E5169E95433704F2F774FF220CEA8E0F96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:13:e9:ee:1d:6b:b4:f7:7e:c7:53:8b:e1:6b: be:39:f4:ea:2a:93:9c:79:e9:a7:e5:55:60:58:de: d7:2b:86:d6:b8:3c:cd:9e:27:55:3e:b9:aa:af:f1: b4:8c:30:e5:e7:63:84:9b:0f:80:da:56:09:66:d8: 79:ad:b3:e9:84:7a:2f:2a:46:41:03:5a:df:d8:c7: 84:98:fe:0c:1e:bb:80:08:8d:5a:c9:84:23:b3:2a: 97:91:d5:89:f8:0c:4d:e8:a2:d3:79:64:1e:29:78: 56:8a:2e:ab:d4:98:27:ad:2d:90:5e:e4:fd:21:55: 31:12:03:e4:8f:14:b4:6b:5c:f7:0c:98:d6:a3:f6: fc:90:85:5b:41:c3:e4:85:34:47:4c:76:f0:48:ce: 08:85:3c:e4:26:10:5a:3f:43:57:63:1a:30:6b:93: 92:4b:0a:38:1d:26:58:0c:ee:02:a7:4b:24:92:4a: 20:87:ce:ca:fe:b1:0f:1b:ca:e6:b6:cd:0f:44:f7: f7:18:4b:f4:46:16:77:1c:42:79:ad:15:69:34:18: 28:c4:20:e4:38:35:9b:34:6e:0d:ee:c4:89:c4:56: 03:bb:d6:d9:63:d7:38:7e:a6:05:fb:85:a0:d9:5d: 34:99:b4:3d:db:99:1e:52:15:85:0e:06:21:14:15: fd:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:F1:02:E5:16:9E:95:43:37:04:F2:F7:74:FF:22:0C:EA:8E:0F:96 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.110.100.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:80:31:a5:1b:c2:46:dc:a6:c3:d9:d9:f6:b9:85:73:91:4d: 49:7d:2c:57:6d:51:6e:1a:4f:2b:6d:f4:ba:58:7d:2a:70:8c: f7:92:41:ee:9b:04:94:43:9e:fa:87:a5:6f:1c:b0:75:5d:9d: 7c:3e:f7:b1:43:99:87:3b:57:64:27:cc:5c:52:dd:de:2f:ce: fd:27:aa:71:a8:8e:70:14:9b:36:69:bc:4a:a6:6c:ea:44:c1: b1:5f:09:5c:c3:83:cb:84:14:97:2c:33:45:5f:c9:2a:e9:b3: 70:fd:86:f4:73:2c:e4:ac:fd:32:bd:dc:7f:ae:e3:9a:b1:02: b4:7e:82:56:08:9a:00:f9:8c:27:fe:91:60:11:7d:7c:b1:47: 79:d3:36:cb:2b:6e:1d:af:62:07:f3:2b:ca:98:31:db:16:88: 4f:d3:6e:c4:96:c5:4e:71:da:34:4a:04:e5:dd:83:b3:9b:c6: 06:29:10:94:f5:a5:16:e4:9c:7e:ac:5b:89:54:f9:87:3b:15: 6d:73:f0:48:79:a5:36:fb:a5:81:ce:c6:41:9c:7c:cb:4d:88: 55:c8:12:a2:43:a6:e4:b1:5d:20:1c:41:74:82:6f:82:66:c3: f2:a6:00:8d:80:72:92:e4:dd:23:76:51:f0:86:d9:1c:c4:c0: d8:e3:1e:dc -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUEAQNoVrCmg2Er9JobFIzgsxa1rUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUwNzAzNTUwMFoX DTI1MDUwNjA0MDAwMFowMzExMC8GA1UEAxMoMzdGMTAyRTUxNjlFOTU0MzM3MDRG MkY3NzRGRjIyMENFQThFMEY5NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALQT6e4da7T3fsdTi+Frvjn06iqTnHnpp+VVYFje1yuG1rg8zZ4nVT65qq/x tIww5edjhJsPgNpWCWbYea2z6YR6LypGQQNa39jHhJj+DB67gAiNWsmEI7Mql5HV ifgMTeii03lkHil4Voouq9SYJ60tkF7k/SFVMRID5I8UtGtc9wyY1qP2/JCFW0HD 5IU0R0x28EjOCIU85CYQWj9DV2MaMGuTkksKOB0mWAzuAqdLJJJKIIfOyv6xDxvK 5rbND0T39xhL9EYWdxxCea0VaTQYKMQg5Dg1mzRuDe7EicRWA7vW2WPXOH6mBfuF oNldNJm0PduZHlIVhQ4GIRQV/aUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ38QLl Fp6VQzcE8vd0/yIM6o4PljAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDkzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWduZDANBgkqhkiG9w0BAQsFAAOCAQEAXoAxpRvCRtymw9nZ9rmF c5FNSX0sV21RbhpPK230ulh9KnCM95JB7psElEOe+oelbxywdV2dfD73sUOZhztX ZCfMXFLd3i/O/SeqcaiOcBSbNmm8SqZs6kTBsV8JXMODy4QUlywzRV/JKumzcP2G 9HMs5Kz9Mr3cf67jmrECtH6CVgiaAPmMJ/6RYBF9fLFHedM2yytuHa9iB/Mrypgx 2xaIT9NuxJbFTnHaNEoE5d2Ds5vGBikQlPWlFuScfqxbiVT5hzsVbXPwSHmlNvul gc7GQZx8y02IVcgSokOm5LFdIBxBdIJvgmbD8qYAjYBykuTdI3ZR8IbZHMTA2OMe 3A== -----END CERTIFICATE-----Generated at Wed May 8 15:17:44 2024 by rpki-client on console-fra.rpki-client.org