$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150937.roa File: AS150937.roa (raw, json) Hash identifier: jItdfJ6CmOUE21/S0xuSOR3NcW4LNyzQKlChZYUYHAE= Subject key identifier: 43:4D:5D:72:14:67:96:0D:C3:0F:02:86:56:8A:C4:7D:0C:E8:CF:5B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4A175912BBF43B3BF7095A4C9FAED09315FE5118 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150937.roa Signing time: Tue 19 Nov 2024 06:45:46 +0000 ROA not before: Tue 19 Nov 2024 06:40:46 +0000 ROA not after: Tue 18 Nov 2025 06:45:46 +0000 asID: 150937 IP address blocks: 103.110.100.0/23 maxlen: 24 103.225.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:17:59:12:bb:f4:3b:3b:f7:09:5a:4c:9f:ae:d0:93:15:fe:51:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 19 06:40:46 2024 GMT Not After : Nov 18 06:45:46 2025 GMT Subject: CN=434D5D721467960DC30F0286568AC47D0CE8CF5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5c:3f:ab:12:c7:14:37:ab:ff:2e:fc:6c:81: d9:c5:ed:bc:5b:fd:a6:a4:53:16:e3:9d:1c:19:e9: 13:b4:ed:56:6f:22:50:78:ba:eb:21:c4:fa:fe:d8: 37:74:d5:6b:a3:4f:f3:84:78:20:2f:25:6d:89:2c: 8e:bc:8d:a0:d8:2c:04:c3:b8:6f:a9:2f:04:21:b2: 9c:df:0b:56:25:ad:10:04:b2:ba:83:60:a7:36:8e: cc:9d:e6:bc:3c:39:07:f6:8a:ba:8d:a5:29:ee:c6: f8:fe:ad:da:74:d1:e6:14:51:65:8c:5c:3d:67:12: bc:99:6f:b8:11:53:13:c1:63:c3:64:9f:73:da:f4: f1:4b:f6:c0:21:9f:8f:16:fb:fe:20:27:73:9d:f3: b0:b0:61:f8:fa:1c:17:a4:14:e7:8c:22:80:9f:27: 84:ac:7e:a0:c8:75:53:eb:13:35:b9:66:49:2a:e4: ee:d7:75:e0:12:d9:c0:f3:5a:39:1d:c3:f8:f7:45: c6:e8:70:ce:34:a5:18:46:fb:3b:73:34:40:55:d5: 4f:3e:b5:c8:f2:8d:e6:c1:67:d2:63:20:bd:8c:a7: 81:43:6a:87:0e:63:97:0a:d5:2a:14:12:7f:d7:0d: 50:52:d8:3d:90:e5:7c:ad:2e:45:9b:bd:c8:25:de: d0:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:4D:5D:72:14:67:96:0D:C3:0F:02:86:56:8A:C4:7D:0C:E8:CF:5B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.110.100.0/23 103.225.46.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:05:ba:d8:6a:48:af:29:2a:cc:b4:e8:f2:f4:db:d5:2f:e9: f3:1d:0d:c2:e3:55:3f:30:2d:06:48:20:5c:e3:05:bb:b2:fe: ef:f6:09:f3:06:e1:5c:22:8f:8c:8c:76:a2:07:65:99:02:d4: 41:63:f7:be:e0:14:8c:1a:f8:93:0f:fd:b9:9c:8d:84:e5:44: f5:d0:44:81:f6:bf:91:4f:e0:e9:1e:c1:f3:b6:94:59:2a:cd: 67:9f:9b:a4:97:8c:16:16:24:c5:e4:13:f0:25:34:9a:d2:af: 86:8b:e5:14:d7:85:ba:57:f7:36:b1:c3:f2:4e:18:d2:e9:76: 94:8c:3f:b3:8a:8f:29:62:a3:4d:f0:10:05:b4:8e:e0:94:77: 96:81:3a:1e:02:b1:ed:51:37:87:24:09:31:aa:9d:e3:9e:69: e1:a1:c9:ab:3f:9d:38:78:5c:85:50:5e:b2:1d:a9:79:b5:05: 3f:7a:ff:16:1f:63:dc:81:2f:6f:18:97:9e:e0:c9:e8:95:12: 64:f0:15:6b:60:ec:39:b0:5e:69:c7:09:36:ae:dd:7f:f3:c4: 17:7d:35:59:a4:e0:4b:69:dc:68:14:2f:4a:52:3f:b1:76:e9: 14:15:50:40:03:d0:d7:c7:41:02:8b:76:82:c2:eb:c0:77:77: 5e:f2:79:56 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUShdZErv0Ozv3CVpMn67QkxX+URgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTExOTA2NDA0NloX DTI1MTExODA2NDU0NlowMzExMC8GA1UEAxMoNDM0RDVENzIxNDY3OTYwREMzMEYw Mjg2NTY4QUM0N0QwQ0U4Q0Y1QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1cP6sSxxQ3q/8u/GyB2cXtvFv9pqRTFuOdHBnpE7TtVm8iUHi66yHE+v7Y N3TVa6NP84R4IC8lbYksjryNoNgsBMO4b6kvBCGynN8LViWtEASyuoNgpzaOzJ3m vDw5B/aKuo2lKe7G+P6t2nTR5hRRZYxcPWcSvJlvuBFTE8Fjw2Sfc9r08Uv2wCGf jxb7/iAnc53zsLBh+PocF6QU54wigJ8nhKx+oMh1U+sTNblmSSrk7td14BLZwPNa OR3D+PdFxuhwzjSlGEb7O3M0QFXVTz61yPKN5sFn0mMgvYyngUNqhw5jlwrVKhQS f9cNUFLYPZDlfK0uRZu9yCXe0HsCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBRDTV1y FGeWDcMPAoZWisR9DOjPWzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDkzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAWduZAMEAGfhLjANBgkqhkiG9w0BAQsFAAOCAQEAOwW62GpIrykq zLTo8vTb1S/p8x0NwuNVPzAtBkggXOMFu7L+7/YJ8wbhXCKPjIx2ogdlmQLUQWP3 vuAUjBr4kw/9uZyNhOVE9dBEgfa/kU/g6R7B87aUWSrNZ5+bpJeMFhYkxeQT8CU0 mtKvhovlFNeFulf3NrHD8k4Y0ul2lIw/s4qPKWKjTfAQBbSO4JR3loE6HgKx7VE3 hyQJMaqd455p4aHJqz+dOHhchVBesh2pebUFP3r/Fh9j3IEvbxiXnuDJ6JUSZPAV a2DsObBeaccJNq7df/PEF301WaTgS2ncaBQvSlI/sXbpFBVQQAPQ18dBAot2gsLr wHd3XvJ5Vg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org