$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150948.roa File: AS150948.roa (raw, json) Hash identifier: N5eeo0LtFSSmvxoyYgmp81idtr7ZsYKTv0ZvSXP2xzk= Subject key identifier: 0E:79:12:6D:84:A2:AB:3A:A1:3B:16:9D:07:03:1C:4A:CC:4E:A0:AA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5065795626048F56DE5C5B109CB8CDBF212DA840 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150948.roa Signing time: Wed 31 Jul 2024 08:00:00 +0000 ROA not before: Wed 31 Jul 2024 07:55:00 +0000 ROA not after: Wed 30 Jul 2025 08:00:00 +0000 asID: 150948 IP address blocks: 103.107.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:65:79:56:26:04:8f:56:de:5c:5b:10:9c:b8:cd:bf:21:2d:a8:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jul 31 07:55:00 2024 GMT Not After : Jul 30 08:00:00 2025 GMT Subject: CN=0E79126D84A2AB3AA13B169D07031C4ACC4EA0AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:62:02:d6:6e:45:bd:44:2f:c5:7c:37:ab:7d: 35:52:4b:64:da:3b:cb:f5:2e:12:fb:df:cd:9a:62: 62:17:48:21:93:d3:22:5c:d6:d4:df:1e:a6:7f:20: cc:de:eb:3f:45:88:41:3c:d1:9f:7c:39:b8:23:54: 33:c1:38:71:a9:5b:df:00:6f:d3:21:d3:f6:09:4e: 74:f1:16:ea:bd:04:42:de:cc:42:ee:dd:1e:2d:29: 28:5d:ab:f4:32:87:ee:b4:8b:bf:64:40:51:ca:b8: 15:be:9c:4f:67:f7:b4:1a:9f:9a:bc:4b:c8:a3:72: 3a:a5:93:85:4c:ad:fc:93:bf:eb:17:27:cc:7d:52: 38:e6:2f:42:67:26:cf:db:8a:9a:09:37:bd:61:56: 71:0b:46:6d:32:07:09:0a:5f:1c:dc:de:72:c9:88: 8e:4d:62:8c:57:6b:e6:df:2b:34:10:9f:f3:8a:eb: 2b:d4:83:d7:2d:93:8b:f4:09:02:49:a9:cd:0c:64: af:fc:53:65:f0:81:3c:53:e9:63:1f:06:4a:34:48: 0d:c0:1d:ae:b6:26:19:1f:89:64:16:1b:fd:6f:95: 0a:27:49:92:76:70:b9:30:d0:f6:70:28:51:6c:00: a5:cd:06:4a:b5:13:58:64:5c:27:04:e7:80:b0:f4: 3f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:79:12:6D:84:A2:AB:3A:A1:3B:16:9D:07:03:1C:4A:CC:4E:A0:AA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150948.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.138.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:1d:f2:8f:6d:2a:5b:dc:61:fa:ce:3d:33:75:a1:b2:cb:72: 46:d9:91:07:56:7b:62:8b:af:33:be:e7:33:04:ee:91:cb:57: 9e:88:0d:23:7e:aa:94:61:f1:eb:51:ff:42:d8:49:f1:e6:3c: 0f:57:90:9a:8a:c8:f5:e2:97:75:50:91:d6:e7:59:b0:e4:2b: 6e:14:84:9f:31:f8:44:5c:ff:59:f8:0a:69:f4:c0:12:d5:7a: 54:c9:57:3b:82:84:5a:e6:57:96:2b:c6:bb:19:ab:9b:8a:0a: 47:af:97:f4:56:05:62:dc:af:77:3e:93:15:47:0a:7b:82:d3: 85:a4:d4:4a:86:e5:2c:83:e5:df:c2:7d:5d:85:69:59:f6:d2: ed:14:75:29:37:c5:e5:75:26:9f:38:18:5f:9c:d3:24:3a:71: e3:cb:a4:67:1e:ca:2a:d4:10:b1:98:e6:47:6c:d6:cf:6c:73: a9:6f:31:e9:b2:81:47:7a:20:31:30:a4:d3:27:a3:14:41:82: bf:ba:f1:73:0a:7b:51:e2:fe:62:d4:f1:01:e0:e5:1d:31:c3: 35:2d:40:1b:39:ff:83:11:8b:c0:fa:10:0e:92:2b:ed:9b:15: 59:13:6a:9c:08:ac:a0:0c:49:45:77:d8:67:9d:5e:2a:4a:22: 40:1f:96:96 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUUGV5ViYEj1beXFsQnLjNvyEtqEAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDczMTA3NTUwMFoX DTI1MDczMDA4MDAwMFowMzExMC8GA1UEAxMoMEU3OTEyNkQ4NEEyQUIzQUExM0Ix NjlEMDcwMzFDNEFDQzRFQTBBQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK9iAtZuRb1EL8V8N6t9NVJLZNo7y/UuEvvfzZpiYhdIIZPTIlzW1N8epn8g zN7rP0WIQTzRn3w5uCNUM8E4calb3wBv0yHT9glOdPEW6r0EQt7MQu7dHi0pKF2r 9DKH7rSLv2RAUcq4Fb6cT2f3tBqfmrxLyKNyOqWThUyt/JO/6xcnzH1SOOYvQmcm z9uKmgk3vWFWcQtGbTIHCQpfHNzecsmIjk1ijFdr5t8rNBCf84rrK9SD1y2Ti/QJ AkmpzQxkr/xTZfCBPFPpYx8GSjRIDcAdrrYmGR+JZBYb/W+VCidJknZwuTDQ9nAo UWwApc0GSrUTWGRcJwTngLD0P00CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQOeRJt hKKrOqE7Fp0HAxxKzE6gqjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk0OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWdrijANBgkqhkiG9w0BAQsFAAOCAQEAjh3yj20qW9xh+s49M3Wh sstyRtmRB1Z7YouvM77nMwTukctXnogNI36qlGHx61H/QthJ8eY8D1eQmorI9eKX dVCR1udZsOQrbhSEnzH4RFz/WfgKafTAEtV6VMlXO4KEWuZXlivGuxmrm4oKR6+X 9FYFYtyvdz6TFUcKe4LThaTUSoblLIPl38J9XYVpWfbS7RR1KTfF5XUmnzgYX5zT JDpx48ukZx7KKtQQsZjmR2zWz2xzqW8x6bKBR3ogMTCk0yejFEGCv7rxcwp7UeL+ YtTxAeDlHTHDNS1AGzn/gxGLwPoQDpIr7ZsVWRNqnAisoAxJRXfYZ51eKkoiQB+W lg== -----END CERTIFICATE-----Generated at Sun Feb 16 20:42:07 2025 by rpki-client