$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150938.roa File: AS150938.roa (raw, json) Hash identifier: EpqsCid7OT5+sqSeCc+IZXixeGvJpxvtR65EyP4F6F8= Subject key identifier: 97:78:A4:42:7B:CB:D5:DE:BC:68:FF:67:E4:F5:7E:3B:14:B0:A2:26 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1264FF2FD00000DABCA916C210C7353FD3F3E6A3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150938.roa Signing time: Mon 27 May 2024 03:00:00 +0000 ROA not before: Mon 27 May 2024 02:55:00 +0000 ROA not after: Mon 26 May 2025 03:00:00 +0000 asID: 150938 IP address blocks: 103.212.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:64:ff:2f:d0:00:00:da:bc:a9:16:c2:10:c7:35:3f:d3:f3:e6:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 27 02:55:00 2024 GMT Not After : May 26 03:00:00 2025 GMT Subject: CN=9778A4427BCBD5DEBC68FF67E4F57E3B14B0A226 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e6:60:f7:96:ae:3c:7b:2f:ff:7f:6f:56:50: 81:4d:a3:c4:88:a3:7e:17:c4:7e:78:65:b9:4d:58: e7:c7:76:22:cc:72:65:ca:02:c0:d3:0e:bf:37:75: c5:35:56:c9:9f:86:a9:2b:ef:b8:22:38:99:e1:47: 43:15:93:ed:fe:38:a6:b3:ff:1c:12:e7:a1:a4:08: f9:97:0b:39:ae:00:64:73:d9:f0:bf:6a:1e:b5:ca: d4:0a:ff:21:57:81:64:7d:a6:2c:61:16:4b:39:65: 07:55:23:c7:89:b1:b1:51:d8:46:02:1f:9d:7d:77: ba:f7:5b:39:09:55:31:19:67:9c:d0:ca:63:0e:97: fe:dd:3b:fa:ee:71:2d:f6:f2:67:26:1c:14:2e:95: 8f:7c:2c:52:8e:97:10:24:82:72:3b:6e:8c:4f:50: 1e:58:1b:48:fb:b0:3f:5c:50:f8:34:c9:2d:4a:98: 3f:4e:a1:4e:9f:e1:90:02:3d:22:33:55:ec:23:54: 0f:0b:c7:94:90:bc:d5:65:88:70:9f:13:c2:d0:fc: 02:4f:0f:35:e5:01:db:df:d7:23:be:61:2a:16:de: b7:ab:22:3b:79:26:00:cf:e0:d1:1a:b6:a4:34:54: e3:b2:02:f6:f9:f8:67:c1:9a:89:8f:8e:20:34:90: 5d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:78:A4:42:7B:CB:D5:DE:BC:68:FF:67:E4:F5:7E:3B:14:B0:A2:26 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.212.177.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:63:88:46:e2:e8:e5:cc:2e:83:08:c6:61:c0:db:c9:80:af: 07:35:20:97:51:8e:fa:11:cb:b6:2c:43:42:7d:fd:e4:d6:d9: f1:0f:20:5d:60:73:ea:69:7d:60:d6:fc:b0:94:36:4f:e3:9c: 84:a3:bd:97:15:74:d1:8d:c8:63:fb:be:cf:2e:e6:b6:77:f3: f3:73:f1:10:f0:5a:99:e9:07:2b:d9:38:f0:0a:54:df:c7:ec: e4:04:17:d1:89:b0:31:e9:cd:18:0e:50:b9:29:9c:b1:a7:7d: fa:48:16:dc:4a:c1:cb:36:08:95:be:b5:b3:d4:08:4d:0c:4d: e5:7c:7b:6c:42:89:4f:8a:8e:c6:ef:98:56:72:6a:86:63:4e: 40:7f:cc:83:bd:60:63:62:ff:7e:68:20:19:70:ef:9b:75:d5: 88:8e:6e:bb:fb:85:53:c5:c3:d7:32:e3:b5:37:0b:9c:14:ca: a5:fc:f6:c6:42:ad:c7:63:bf:e5:44:9c:6c:13:89:fe:42:5c: 40:a3:30:91:f1:16:e4:a0:41:52:36:8a:87:1f:d0:5c:ad:c7: c1:80:7e:07:93:2f:d8:74:b5:2d:ec:7c:46:d6:ac:af:b1:06: 60:a4:aa:ca:c8:80:60:66:3d:ff:e6:b0:ff:ab:a8:c4:d2:ac: a2:02:74:9c -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUEmT/L9AAANq8qRbCEMc1P9Pz5qMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUyNzAyNTUwMFoX DTI1MDUyNjAzMDAwMFowMzExMC8GA1UEAxMoOTc3OEE0NDI3QkNCRDVERUJDNjhG RjY3RTRGNTdFM0IxNEIwQTIyNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALjmYPeWrjx7L/9/b1ZQgU2jxIijfhfEfnhluU1Y58d2IsxyZcoCwNMOvzd1 xTVWyZ+GqSvvuCI4meFHQxWT7f44prP/HBLnoaQI+ZcLOa4AZHPZ8L9qHrXK1Ar/ IVeBZH2mLGEWSzllB1Ujx4mxsVHYRgIfnX13uvdbOQlVMRlnnNDKYw6X/t07+u5x LfbyZyYcFC6Vj3wsUo6XECSCcjtujE9QHlgbSPuwP1xQ+DTJLUqYP06hTp/hkAI9 IjNV7CNUDwvHlJC81WWIcJ8TwtD8Ak8PNeUB29/XI75hKhbet6siO3kmAM/g0Rq2 pDRU47IC9vn4Z8GaiY+OIDSQXRUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSXeKRC e8vV3rxo/2fk9X47FLCiJjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDkzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfUsTANBgkqhkiG9w0BAQsFAAOCAQEAO2OIRuLo5cwugwjGYcDb yYCvBzUgl1GO+hHLtixDQn395NbZ8Q8gXWBz6ml9YNb8sJQ2T+OchKO9lxV00Y3I Y/u+zy7mtnfz83PxEPBamekHK9k48ApU38fs5AQX0YmwMenNGA5QuSmcsad9+kgW 3ErByzYIlb61s9QITQxN5Xx7bEKJT4qOxu+YVnJqhmNOQH/Mg71gY2L/fmggGXDv m3XViI5uu/uFU8XD1zLjtTcLnBTKpfz2xkKtx2O/5UScbBOJ/kJcQKMwkfEW5KBB UjaKhx/QXK3HwYB+B5Mv2HS1Lex8Rtasr7EGYKSqysiAYGY9/+aw/6uoxNKsogJ0 nA== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:57 2024 by rpki-client on console-fra.rpki-client.org