$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150938.roa File: AS150938.roa (raw, json) Hash identifier: 96+H1jQPhdb3QNCG23OgXDu87j6MGCGAufRGFPc1qkY= Subject key identifier: CA:71:4D:44:52:26:B8:E3:AF:3A:29:B5:A6:0A:A4:52:B6:CC:B8:F9 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3ADE4BB58818355823F29B92ACD9FDAC0240D193 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150938.roa Signing time: Mon 26 Jun 2023 02:37:28 +0000 ROA not before: Mon 26 Jun 2023 02:32:28 +0000 ROA not after: Mon 24 Jun 2024 02:37:28 +0000 asID: 150938 IP address blocks: 103.212.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:de:4b:b5:88:18:35:58:23:f2:9b:92:ac:d9:fd:ac:02:40:d1:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 26 02:32:28 2023 GMT Not After : Jun 24 02:37:28 2024 GMT Subject: CN=CA714D445226B8E3AF3A29B5A60AA452B6CCB8F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:70:32:64:da:8a:2f:d1:44:51:cc:b5:21:13: 68:4f:90:73:29:77:82:d7:df:8c:4c:34:f3:16:a3: af:a8:70:c1:ae:58:3c:c0:3c:d8:6a:35:07:78:10: a1:b4:1e:43:e2:36:dc:2f:98:fa:36:57:03:97:9b: 94:e8:a3:df:04:c9:c7:72:1a:38:cf:fb:70:66:d2: 7f:8d:17:52:8a:c7:13:00:c6:ed:cd:da:a9:c1:ab: 1b:b3:81:4b:02:90:64:7c:77:91:dd:63:a3:72:08: e8:ad:28:84:76:fb:56:f7:d4:04:35:8e:f2:90:dd: bb:97:b8:78:a9:76:59:9f:3b:de:74:3e:35:bd:f2: 82:10:df:21:ca:a9:a7:6a:a7:d1:c7:91:54:fd:73: a7:07:4e:1e:49:d1:fe:e7:4e:f9:8e:6c:ba:b5:11: c2:07:87:e7:8f:5f:e9:65:7c:21:e7:db:36:0a:a9: 76:6b:98:6c:a3:fe:c4:f2:c3:de:88:2f:ee:a7:96: 84:50:e9:08:f4:11:e4:cb:f7:12:58:7a:1e:39:07: cd:46:f6:fd:61:c2:7e:0f:e1:c4:9c:da:0e:6d:4d: 10:29:c1:a5:e1:87:a5:bc:78:e6:cc:3d:6e:38:e7: b6:b6:3c:da:a0:41:1f:66:2d:bf:55:d4:12:8b:52: b8:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:71:4D:44:52:26:B8:E3:AF:3A:29:B5:A6:0A:A4:52:B6:CC:B8:F9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.212.177.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:39:53:0e:12:2d:a0:96:67:c8:65:fa:ab:69:9b:25:18:23: df:77:58:9a:44:f2:eb:9d:b9:a6:ff:ae:b6:fc:c5:e0:a9:ee: 15:af:ee:85:4c:8c:13:db:80:3d:84:5e:8e:97:70:dc:72:3f: 43:ea:e3:7f:74:c4:4a:10:ca:15:41:66:4b:53:20:c3:cf:84: f9:4e:99:0f:53:58:56:32:a4:55:2c:98:e5:1b:f5:54:6b:89: 78:08:03:fa:e4:73:f1:55:fd:be:7b:5a:5c:a8:18:e5:34:c7: 48:9e:ef:95:42:cc:3e:9e:3e:90:c1:b6:6a:d6:5a:e5:6d:96: d6:b1:ab:39:c7:7a:36:e2:7c:cf:ae:28:d5:da:8a:b2:f4:af: 1f:41:83:70:12:a4:74:46:7b:a7:b3:2b:7e:ce:40:ba:ed:51: dc:98:04:1a:b1:55:88:2f:4d:1a:66:8c:f6:b2:52:40:c3:51: 3c:26:0c:5e:4b:bc:f9:9d:30:c8:1b:24:30:e1:95:eb:4c:51: b5:39:b2:fd:b2:62:69:8a:de:1b:20:ac:52:fe:a6:64:fc:1f: cb:33:81:34:3f:3d:cc:c9:f3:12:29:a7:06:c6:6c:7f:13:7b: 1b:b7:93:d4:e3:09:58:b6:2f:88:ef:53:14:07:61:34:f6:19: 12:00:23:a7 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOt5LtYgYNVgj8puSrNn9rAJA0ZMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDYyNjAyMzIyOFoX DTI0MDYyNDAyMzcyOFowMzExMC8GA1UEAxMoQ0E3MTRENDQ1MjI2QjhFM0FGM0Ey OUI1QTYwQUE0NTJCNkNDQjhGOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJlwMmTaii/RRFHMtSETaE+Qcyl3gtffjEw08xajr6hwwa5YPMA82Go1B3gQ obQeQ+I23C+Y+jZXA5eblOij3wTJx3IaOM/7cGbSf40XUorHEwDG7c3aqcGrG7OB SwKQZHx3kd1jo3II6K0ohHb7VvfUBDWO8pDdu5e4eKl2WZ873nQ+Nb3yghDfIcqp p2qn0ceRVP1zpwdOHknR/udO+Y5surURwgeH549f6WV8IefbNgqpdmuYbKP+xPLD 3ogv7qeWhFDpCPQR5Mv3Elh6HjkHzUb2/WHCfg/hxJzaDm1NECnBpeGHpbx45sw9 bjjntrY82qBBH2Ytv1XUEotSuFUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTKcU1E Uia44686KbWmCqRStsy4+TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDkzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfUsTANBgkqhkiG9w0BAQsFAAOCAQEAfzlTDhItoJZnyGX6q2mb JRgj33dYmkTy6525pv+utvzF4KnuFa/uhUyME9uAPYRejpdw3HI/Q+rjf3TEShDK FUFmS1Mgw8+E+U6ZD1NYVjKkVSyY5Rv1VGuJeAgD+uRz8VX9vntaXKgY5TTHSJ7v lULMPp4+kMG2atZa5W2W1rGrOcd6NuJ8z64o1dqKsvSvH0GDcBKkdEZ7p7Mrfs5A uu1R3JgEGrFViC9NGmaM9rJSQMNRPCYMXku8+Z0wyBskMOGV60xRtTmy/bJiaYre GyCsUv6mZPwfyzOBND89zMnzEimnBsZsfxN7G7eT1OMJWLYviO9TFAdhNPYZEgAj pw== -----END CERTIFICATE-----Generated at Wed May 8 21:02:24 2024 by rpki-client on console-fra.rpki-client.org