$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150966.roa File: AS150966.roa (raw, json) Hash identifier: 30H2ROqLFaPZ1H9+aTtCYf4HobDnPyCzwmv4b/+DNOE= Subject key identifier: 72:3C:D7:BD:F6:10:6A:22:58:5F:4D:E4:7C:C5:42:99:B3:28:84:36 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2AFE02D6D2C2FD5DB866103384A20FE1CCED1F5C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150966.roa Signing time: Thu 03 Aug 2023 04:51:37 +0000 ROA not before: Thu 03 Aug 2023 04:46:37 +0000 ROA not after: Thu 01 Aug 2024 04:51:37 +0000 asID: 150966 IP address blocks: 2001:df2:56c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:fe:02:d6:d2:c2:fd:5d:b8:66:10:33:84:a2:0f:e1:cc:ed:1f:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 3 04:46:37 2023 GMT Not After : Aug 1 04:51:37 2024 GMT Subject: CN=723CD7BDF6106A22585F4DE47CC54299B3288436 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5d:76:11:42:68:8e:1f:8a:1b:1e:e5:06:5b: a7:b1:11:d5:07:78:a2:41:1d:99:a7:45:c8:a8:a0: f7:ff:65:e9:bb:64:a6:90:d7:5b:fb:02:cd:9d:b9: 1e:ca:c5:fa:b5:76:73:45:af:1b:0c:3b:80:e5:0c: 85:b8:9c:00:f4:fb:8a:eb:2e:16:77:9e:a1:d6:57: 59:f2:ad:16:6e:46:a4:01:7b:2d:7e:38:73:39:9e: 72:a7:22:3e:70:4d:d2:da:dc:b3:b8:81:00:8a:84: 47:d7:da:d2:48:a3:6b:57:c3:a9:d9:3f:3b:e2:58: 91:7c:c2:0f:25:6b:6b:7d:df:02:78:77:9e:6c:a8: 13:5e:7f:ae:f1:1a:2d:63:51:b0:df:c3:5a:db:36: 3e:56:18:00:b6:52:c4:da:05:7f:2e:eb:a7:1f:e7: c4:98:5b:2d:61:b7:d8:ca:db:58:69:a6:5f:d1:c0: 0b:95:6d:83:d8:58:49:bd:45:ce:bc:bc:7f:27:e6: 2f:25:3e:43:08:e6:c4:5d:b3:55:20:30:bd:06:19: 1d:8a:e2:c0:4e:b5:89:95:28:97:7a:52:d5:ec:8c: b1:70:47:c7:96:51:70:5b:f1:5c:d8:64:b9:56:92: 23:4e:82:32:5b:26:ae:ca:bc:33:cb:5f:7b:a6:de: cf:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:3C:D7:BD:F6:10:6A:22:58:5F:4D:E4:7C:C5:42:99:B3:28:84:36 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150966.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:56c0::/48 Signature Algorithm: sha256WithRSAEncryption 2e:90:c8:5c:3e:bc:e1:cb:83:db:22:dd:a2:ca:bd:b3:39:11: a6:15:5c:03:86:5f:16:5a:4d:34:fe:5b:7e:b2:49:ae:da:cd: 58:9e:1f:9b:4d:e0:34:46:a3:1d:a6:af:30:d7:c2:6f:2c:47: d8:e3:7f:51:02:fc:ab:3f:aa:1f:d4:9e:45:3f:04:9a:f9:2c: b1:db:75:43:97:27:d9:06:3c:73:8f:c0:e2:9f:7d:a3:f0:9c: 7c:e1:54:30:a8:90:35:b6:4d:39:97:aa:68:d0:d2:c3:29:b8: 68:d5:c4:83:65:7d:ef:a4:7f:65:ad:de:ee:79:e0:f2:38:25: 2b:0f:87:3e:14:bf:7e:36:2a:1a:8d:b6:96:12:04:e3:17:d6: c7:8c:5d:27:4f:27:3d:0e:4f:bd:ea:3e:c8:f1:c7:6a:c6:92: 96:fd:02:eb:e1:a9:95:e3:7f:c1:e1:90:6a:b2:9d:04:2f:16: 31:23:24:e4:10:d6:af:10:98:20:ca:c6:7e:b7:1c:b9:89:c0: a3:9d:fc:83:d1:7a:9f:a4:3b:98:43:a7:f3:ff:58:c1:06:93: d6:85:81:db:2b:45:0d:01:72:dd:a6:7e:27:95:f6:c5:b1:e5: 2d:a5:82:5b:b9:61:b2:f8:85:16:1e:7f:48:4c:3e:45:3b:23: 40:75:d1:db -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUKv4C1tLC/V24ZhAzhKIP4cztH1wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgwMzA0NDYzN1oX DTI0MDgwMTA0NTEzN1owMzExMC8GA1UEAxMoNzIzQ0Q3QkRGNjEwNkEyMjU4NUY0 REU0N0NDNTQyOTlCMzI4ODQzNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK5ddhFCaI4fihse5QZbp7ER1Qd4okEdmadFyKig9/9l6btkppDXW/sCzZ25 HsrF+rV2c0WvGww7gOUMhbicAPT7iusuFneeodZXWfKtFm5GpAF7LX44czmecqci PnBN0trcs7iBAIqER9fa0kija1fDqdk/O+JYkXzCDyVra33fAnh3nmyoE15/rvEa LWNRsN/DWts2PlYYALZSxNoFfy7rpx/nxJhbLWG32MrbWGmmX9HAC5Vtg9hYSb1F zry8fyfmLyU+QwjmxF2zVSAwvQYZHYriwE61iZUol3pS1eyMsXBHx5ZRcFvxXNhk uVaSI06CMlsmrsq8M8tfe6bezwcCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRyPNe9 9hBqIlhfTeR8xUKZsyiENjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk2Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfJWwDANBgkqhkiG9w0BAQsFAAOCAQEALpDIXD684cuD2yLd osq9szkRphVcA4ZfFlpNNP5bfrJJrtrNWJ4fm03gNEajHaavMNfCbyxH2ON/UQL8 qz+qH9SeRT8Emvkssdt1Q5cn2QY8c4/A4p99o/CcfOFUMKiQNbZNOZeqaNDSwym4 aNXEg2V976R/Za3e7nng8jglKw+HPhS/fjYqGo22lhIE4xfWx4xdJ08nPQ5Pveo+ yPHHasaSlv0C6+GpleN/weGQarKdBC8WMSMk5BDWrxCYIMrGfrccuYnAo538g9F6 n6Q7mEOn8/9YwQaT1oWB2ytFDQFy3aZ+J5X2xbHlLaWCW7lhsviFFh5/SEw+RTsj QHXR2w== -----END CERTIFICATE-----Generated at Wed May 8 18:12:17 2024 by rpki-client on console-fra.rpki-client.org