$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150966.roa File: AS150966.roa (raw, json) Hash identifier: OY+jXBnA5+kKSWEP8PT/B3XunnQ8WPMd7f4enk/98Vc= Subject key identifier: A0:2C:D1:09:D8:7A:97:B7:8D:B9:6A:BF:32:F6:A3:D5:17:F6:65:15 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1DF8A7F1E75294272C840F6E1205EBE8FE4FF6E2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150966.roa Signing time: Thu 04 Jul 2024 05:00:00 +0000 ROA not before: Thu 04 Jul 2024 04:55:00 +0000 ROA not after: Thu 03 Jul 2025 05:00:00 +0000 asID: 150966 IP address blocks: 2001:df2:56c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:f8:a7:f1:e7:52:94:27:2c:84:0f:6e:12:05:eb:e8:fe:4f:f6:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jul 4 04:55:00 2024 GMT Not After : Jul 3 05:00:00 2025 GMT Subject: CN=A02CD109D87A97B78DB96ABF32F6A3D517F66515 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:f6:96:e7:28:76:29:41:30:11:04:67:61:12: a3:04:98:9b:09:ac:49:fb:65:61:46:ba:ef:46:15: 43:21:eb:38:8f:2c:2e:6a:6a:ef:c2:ff:30:e0:b7: 5b:6f:53:11:b6:01:26:a1:ee:62:7a:be:44:77:c4: 80:54:fe:bb:88:d6:72:0c:81:52:b9:bc:f5:30:0c: f4:12:07:cc:31:79:48:dd:1d:bb:e3:91:06:ea:24: 2c:bf:bc:4f:24:15:94:8b:75:d0:ec:b5:d1:2f:90: 1f:b0:39:45:e3:b3:eb:c2:d1:13:76:58:d1:d1:0f: 5b:ba:7d:14:03:36:8f:48:f5:70:1d:88:e2:a5:17: db:f1:e2:c0:05:4a:45:e2:fc:6f:fc:b9:04:63:0a: 6d:b7:43:77:86:1b:96:28:24:e8:a5:e7:72:86:0b: 85:1e:a8:a3:10:1d:b0:ad:33:c5:25:ed:13:57:92: ee:7d:9c:5f:a0:fb:5c:1b:3b:57:65:69:bd:62:9c: f6:f7:a6:a8:cd:82:61:af:df:7b:24:b8:d1:b8:74: e9:84:12:e8:a2:e8:23:22:8c:22:c4:cb:73:1d:f2: 26:ac:a5:57:45:ec:0b:af:d4:cd:ec:5c:cd:36:1b: 8b:93:ce:b1:87:05:b0:76:5f:77:5d:c3:76:c5:76: 84:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:2C:D1:09:D8:7A:97:B7:8D:B9:6A:BF:32:F6:A3:D5:17:F6:65:15 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150966.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:56c0::/48 Signature Algorithm: sha256WithRSAEncryption 46:6e:7b:dd:1d:3f:a1:33:8f:fd:a5:6f:f7:7b:c5:27:ab:51: fe:ce:be:17:1d:8b:d7:81:2e:83:04:af:cf:ef:89:06:10:7f: b0:09:48:42:8b:cb:64:5f:b1:45:20:53:a8:c7:ef:2b:27:8d: 2b:48:ec:f8:77:4c:2d:79:0e:81:fa:0f:9c:1f:90:b3:51:7a: 91:71:9f:aa:d5:19:7f:c6:a7:4c:7b:00:cd:2b:a4:29:77:5a: cb:4f:70:a1:72:90:73:f3:08:d1:6f:db:00:c7:49:e7:05:b7: 9a:b0:98:fb:2c:3f:00:70:7b:7a:ae:36:49:15:e5:1f:c9:35: 00:51:95:b0:3d:33:3b:ba:71:17:ec:e8:e3:cf:9c:bc:c4:97: 91:56:d5:0c:ea:24:3f:de:17:32:7e:6a:9f:0f:fc:18:56:81: 9a:ca:2e:64:c6:5c:31:c4:73:3e:04:6b:30:7d:8a:82:c8:4c: bd:16:0a:e2:56:62:2f:bb:77:71:8c:16:5f:3e:82:f1:b8:85: a8:75:02:c0:4f:d1:c5:ea:79:81:78:86:79:ca:e5:1e:e1:02: a2:7e:5c:3d:62:53:1a:56:3c:d9:7f:e7:0d:80:f7:eb:8e:29: 6b:b4:f3:9e:a4:6e:64:84:3e:38:90:bf:88:9e:2a:a0:ec:ee: d6:fa:07:29 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUHfin8edSlCcshA9uEgXr6P5P9uIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwNDA0NTUwMFoX DTI1MDcwMzA1MDAwMFowMzExMC8GA1UEAxMoQTAyQ0QxMDlEODdBOTdCNzhEQjk2 QUJGMzJGNkEzRDUxN0Y2NjUxNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOv2lucodilBMBEEZ2ESowSYmwmsSftlYUa670YVQyHrOI8sLmpq78L/MOC3 W29TEbYBJqHuYnq+RHfEgFT+u4jWcgyBUrm89TAM9BIHzDF5SN0du+ORBuokLL+8 TyQVlIt10Oy10S+QH7A5ReOz68LRE3ZY0dEPW7p9FAM2j0j1cB2I4qUX2/HiwAVK ReL8b/y5BGMKbbdDd4Ybligk6KXncoYLhR6ooxAdsK0zxSXtE1eS7n2cX6D7XBs7 V2VpvWKc9vemqM2CYa/feyS40bh06YQS6KLoIyKMIsTLcx3yJqylV0XsC6/Uzexc zTYbi5POsYcFsHZfd13DdsV2hFUCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSgLNEJ 2HqXt425ar8y9qPVF/ZlFTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk2Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfJWwDANBgkqhkiG9w0BAQsFAAOCAQEARm573R0/oTOP/aVv 93vFJ6tR/s6+Fx2L14EugwSvz++JBhB/sAlIQovLZF+xRSBTqMfvKyeNK0js+HdM LXkOgfoPnB+Qs1F6kXGfqtUZf8anTHsAzSukKXday09woXKQc/MI0W/bAMdJ5wW3 mrCY+yw/AHB7eq42SRXlH8k1AFGVsD0zO7pxF+zo48+cvMSXkVbVDOokP94XMn5q nw/8GFaBmsouZMZcMcRzPgRrMH2KgshMvRYK4lZiL7t3cYwWXz6C8biFqHUCwE/R xep5gXiGecrlHuECon5cPWJTGlY82X/nDYD3644pa7TznqRuZIQ+OJC/iJ4qoOzu 1voHKQ== -----END CERTIFICATE-----Generated at Sun Feb 16 21:09:06 2025 by rpki-client