$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150968.roa File: AS150968.roa (raw, json) Hash identifier: W8Tbogh8QakMQiJnoDUB6eQkpYibrnaAAR27Azf7pmM= Subject key identifier: B4:AB:05:F9:1D:08:0A:ED:06:EB:F2:A4:FC:34:84:35:95:E2:41:1A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1E98A97568C232BC0355BD321E11B5658B5B2367 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150968.roa Signing time: Mon 12 Aug 2024 04:00:00 +0000 ROA not before: Mon 12 Aug 2024 03:55:00 +0000 ROA not after: Mon 11 Aug 2025 04:00:00 +0000 asID: 150968 IP address blocks: 103.178.14.0/23 maxlen: 24 2001:df2:e340::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:98:a9:75:68:c2:32:bc:03:55:bd:32:1e:11:b5:65:8b:5b:23:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 12 03:55:00 2024 GMT Not After : Aug 11 04:00:00 2025 GMT Subject: CN=B4AB05F91D080AED06EBF2A4FC34843595E2411A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ac:4d:d1:6f:bf:6f:1d:97:35:f8:00:f7:f1: 36:a5:5f:56:b7:5e:5c:e0:9d:e7:9f:13:28:36:89: 7a:ad:e7:b3:c8:79:e5:4b:f6:ba:fd:b9:75:2b:b4: 97:a1:79:21:23:9a:58:b5:5b:17:80:38:2d:a1:6e: 1d:00:7d:e5:3e:e5:b1:74:82:7c:10:f7:0b:18:e4: 0b:de:34:77:5f:6b:65:55:c1:ac:2d:be:bf:3d:70: cd:a0:57:24:60:ac:b9:3c:ae:66:d2:10:eb:55:48: 54:ea:3f:17:85:17:b2:e8:e4:c6:c2:33:28:74:23: 02:ad:d8:47:df:70:2e:ab:d6:72:34:cd:86:ee:93: 63:0c:39:90:a6:47:7d:85:f4:ce:66:b0:a7:6e:34: 0e:99:ec:41:a3:ff:c6:2a:ce:67:77:c7:bf:9d:b8: f6:f2:c3:6c:1e:e0:36:99:0f:96:80:30:b9:f2:d6: 4e:9e:11:12:6b:db:ea:00:10:ea:7d:42:8f:59:a0: 66:14:cc:07:12:4f:04:fd:93:d0:f4:b1:af:e3:a9: 46:58:c9:ac:97:7e:ca:67:5f:86:1d:c5:f5:67:04: ab:d6:b6:9c:6d:dc:21:92:04:52:4b:9c:c1:b9:05: 77:34:40:7c:77:bd:8f:43:31:d1:bb:ec:64:c9:49: 9d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:AB:05:F9:1D:08:0A:ED:06:EB:F2:A4:FC:34:84:35:95:E2:41:1A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150968.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.14.0/23 IPv6: 2001:df2:e340::/48 Signature Algorithm: sha256WithRSAEncryption 15:39:76:4b:9a:46:d3:02:f6:5b:95:1d:48:7f:c2:8d:c1:51: d8:57:5b:53:79:2b:03:06:92:c8:70:b3:f6:af:22:2d:11:34: 2f:b9:f4:6e:89:bb:30:c3:5e:a8:c4:23:35:1e:7d:94:a8:51: ee:3c:b3:10:29:dd:8d:03:4a:b0:47:1a:c4:d1:4e:88:8a:d2: ee:c1:03:da:cb:a0:c5:10:1f:18:68:91:f8:be:f5:72:fc:9b: b6:43:45:86:b6:f2:9f:08:fb:38:a6:17:13:73:ca:e3:49:a9: c5:28:d4:57:fd:e9:75:e6:2d:7c:ff:6c:ef:0d:1f:1f:43:87: af:db:f3:68:f8:03:93:26:6e:53:81:b0:c6:54:50:ce:6f:bc: f4:c8:15:85:f4:d4:0c:db:57:65:7c:31:39:e2:61:6f:d4:25: 76:52:27:94:b6:f4:41:01:bb:d6:62:fa:b9:64:ee:fc:28:c5: 4f:11:8b:ea:67:a7:e5:0a:b2:97:64:4e:d9:53:e2:82:43:c0: 00:fc:60:42:7f:c2:00:76:3d:f9:a9:85:92:f3:73:0f:7e:f9: a3:49:63:2b:8b:8f:23:7d:c1:24:23:cc:6c:60:e0:d1:f7:cc: 7b:0e:b4:4a:e5:e1:88:21:b5:f8:cd:6f:50:14:67:03:ac:a6: 22:9f:e7:5e -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUHpipdWjCMrwDVb0yHhG1ZYtbI2cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxMjAzNTUwMFoX DTI1MDgxMTA0MDAwMFowMzExMC8GA1UEAxMoQjRBQjA1RjkxRDA4MEFFRDA2RUJG MkE0RkMzNDg0MzU5NUUyNDExQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOqsTdFvv28dlzX4APfxNqVfVrdeXOCd558TKDaJeq3ns8h55Uv2uv25dSu0 l6F5ISOaWLVbF4A4LaFuHQB95T7lsXSCfBD3CxjkC940d19rZVXBrC2+vz1wzaBX JGCsuTyuZtIQ61VIVOo/F4UXsujkxsIzKHQjAq3YR99wLqvWcjTNhu6TYww5kKZH fYX0zmawp240DpnsQaP/xirOZ3fHv5249vLDbB7gNpkPloAwufLWTp4REmvb6gAQ 6n1Cj1mgZhTMBxJPBP2T0PSxr+OpRljJrJd+ymdfhh3F9WcEq9a2nG3cIZIEUkuc wbkFdzRAfHe9j0Mx0bvsZMlJncUCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBS0qwX5 HQgK7Qbr8qT8NIQ1leJBGjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk2OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWeyDjAPBAIAAjAJAwcAIAEN8uNAMA0GCSqGSIb3DQEBCwUAA4IB AQAVOXZLmkbTAvZblR1If8KNwVHYV1tTeSsDBpLIcLP2ryItETQvufRuibsww16o xCM1Hn2UqFHuPLMQKd2NA0qwRxrE0U6IitLuwQPay6DFEB8YaJH4vvVy/Ju2Q0WG tvKfCPs4phcTc8rjSanFKNRX/el15i18/2zvDR8fQ4ev2/No+AOTJm5TgbDGVFDO b7z0yBWF9NQM21dlfDE54mFv1CV2UieUtvRBAbvWYvq5ZO78KMVPEYvqZ6flCrKX ZE7ZU+KCQ8AA/GBCf8IAdj35qYWS83MPfvmjSWMri48jfcEkI8xsYODR98x7DrRK 5eGIIbX4zW9QFGcDrKYin+de -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org