$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150948.roa File: AS150948.roa (raw, json) Hash identifier: L9iEoOl0rD6ks0ITl7u6mj1xat8jvKjlCiyQa+x5iYM= Subject key identifier: C4:92:30:6E:8F:B1:07:91:BD:5B:A1:7C:4D:09:58:C4:FD:DF:D1:7F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 644361AAB7417B318F598FE28AD9AD6FE2291E99 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150948.roa Signing time: Wed 30 Aug 2023 07:42:45 +0000 ROA not before: Wed 30 Aug 2023 07:37:45 +0000 ROA not after: Wed 28 Aug 2024 07:42:45 +0000 asID: 150948 IP address blocks: 103.107.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:43:61:aa:b7:41:7b:31:8f:59:8f:e2:8a:d9:ad:6f:e2:29:1e:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 30 07:37:45 2023 GMT Not After : Aug 28 07:42:45 2024 GMT Subject: CN=C492306E8FB10791BD5BA17C4D0958C4FDDFD17F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b3:00:2f:a7:4a:3c:ec:2b:b6:0a:da:30:c2: f5:41:2f:90:c7:e2:36:d6:cb:d3:9a:bb:90:e3:60: 86:a1:58:d1:0e:25:91:b4:68:b9:ac:7e:cd:a1:77: 33:1e:e5:31:9f:1d:c9:1c:02:da:34:40:19:c2:cf: 95:68:19:32:63:c8:58:17:46:f9:0a:b2:b4:66:5a: 16:00:3a:7a:80:6f:20:ee:78:e3:33:72:c9:ed:7e: 63:b0:ce:6e:b4:ee:5d:11:ef:67:1d:b1:2e:7c:18: e5:2d:41:d9:b0:8d:a9:a9:b5:58:c6:93:1c:c3:a2: 7b:52:3d:f8:5d:65:25:45:61:f5:c0:4f:9e:4a:f4: f6:8c:e3:23:12:fc:00:41:f5:f2:c7:dc:66:7a:23: f4:47:7d:10:5d:e9:39:34:05:29:89:e2:1f:0c:ed: 85:86:d3:8c:a7:90:7e:a8:8e:aa:a8:45:a3:10:35: 69:03:8e:cc:b5:7c:bd:47:31:4d:71:96:cf:13:dc: 1c:92:16:c2:af:0d:11:3f:f1:f3:e7:47:f5:87:6b: b8:9c:fa:0f:8b:c5:13:28:6d:60:79:83:a4:db:62: 3a:4e:09:d8:69:c4:17:a5:d0:6a:42:bd:0d:ba:ad: 5c:4d:73:75:ca:1b:44:54:70:1b:3a:e9:9e:53:89: c1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:92:30:6E:8F:B1:07:91:BD:5B:A1:7C:4D:09:58:C4:FD:DF:D1:7F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150948.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.138.0/23 Signature Algorithm: sha256WithRSAEncryption 62:8e:94:b6:71:eb:b1:75:a0:ab:a9:20:e0:2a:13:9c:bc:57: 42:a8:ad:66:68:bb:4a:92:2c:d0:74:7e:cd:23:f9:44:ed:00: 00:db:7c:39:79:e1:79:b9:b2:28:04:a4:0d:70:44:6e:d2:0b: 84:5b:3d:7c:94:ac:f3:3c:ab:cc:3a:1d:7b:9a:88:8c:e0:89: c7:5b:df:df:2b:8f:14:99:6c:d5:1e:d4:d2:0a:eb:3e:7e:e1: b3:a7:e2:b8:bd:33:da:41:94:fa:1c:0c:ae:a8:a6:a3:98:d1: 6d:24:a9:5d:f0:51:46:2c:35:05:dd:32:9c:4a:b3:79:0c:3b: de:0c:8a:86:b5:ed:82:84:1c:52:34:84:ef:90:61:7b:81:fb: e2:5a:07:0b:f7:34:ae:f9:af:96:c0:38:a5:ed:7a:13:65:de: 1d:c0:d0:4b:49:ce:30:5c:15:1b:cd:42:e4:76:bd:e8:46:a3: d9:a1:b1:3b:0b:41:dc:8e:77:c8:b7:6a:52:33:b6:5f:28:95: 3e:41:63:7f:98:87:a5:72:ef:45:df:49:af:db:59:5a:2f:ac: a9:bb:d6:fe:49:73:06:c7:a1:d9:7f:8f:54:14:b6:b6:5e:a6: 56:c8:06:96:47:65:54:f6:41:24:94:4e:5b:90:cb:8e:4f:1e: 9b:0e:a6:55 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUZENhqrdBezGPWY/iitmtb+IpHpkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgzMDA3Mzc0NVoX DTI0MDgyODA3NDI0NVowMzExMC8GA1UEAxMoQzQ5MjMwNkU4RkIxMDc5MUJENUJB MTdDNEQwOTU4QzRGRERGRDE3RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANKzAC+nSjzsK7YK2jDC9UEvkMfiNtbL05q7kONghqFY0Q4lkbRouax+zaF3 Mx7lMZ8dyRwC2jRAGcLPlWgZMmPIWBdG+QqytGZaFgA6eoBvIO544zNyye1+Y7DO brTuXRHvZx2xLnwY5S1B2bCNqam1WMaTHMOie1I9+F1lJUVh9cBPnkr09ozjIxL8 AEH18sfcZnoj9Ed9EF3pOTQFKYniHwzthYbTjKeQfqiOqqhFoxA1aQOOzLV8vUcx TXGWzxPcHJIWwq8NET/x8+dH9YdruJz6D4vFEyhtYHmDpNtiOk4J2GnEF6XQakK9 DbqtXE1zdcobRFRwGzrpnlOJwR0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTEkjBu j7EHkb1boXxNCVjE/d/RfzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk0OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWdrijANBgkqhkiG9w0BAQsFAAOCAQEAYo6UtnHrsXWgq6kg4CoT nLxXQqitZmi7SpIs0HR+zSP5RO0AANt8OXnhebmyKASkDXBEbtILhFs9fJSs8zyr zDode5qIjOCJx1vf3yuPFJls1R7U0grrPn7hs6fiuL0z2kGU+hwMrqimo5jRbSSp XfBRRiw1Bd0ynEqzeQw73gyKhrXtgoQcUjSE75Bhe4H74loHC/c0rvmvlsA4pe16 E2XeHcDQS0nOMFwVG81C5Ha96Eaj2aGxOwtB3I53yLdqUjO2XyiVPkFjf5iHpXLv Rd9Jr9tZWi+sqbvW/klzBseh2X+PVBS2tl6mVsgGlkdlVPZBJJROW5DLjk8emw6m VQ== -----END CERTIFICATE-----Generated at Wed May 8 04:37:58 2024 by rpki-client on console-fra.rpki-client.org