$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150968.roa File: AS150968.roa (raw, json) Hash identifier: GXXiR7OGeXwuxzLcjbXjM0a3VDi5mccc/1ZMZ1uAjV8= Subject key identifier: AD:D6:17:7A:F3:69:65:0C:19:24:BD:22:FE:63:CB:B7:26:95:7B:DC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 685ED7B462F74DF07B1531E85E00BC0112C6C2F6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150968.roa Signing time: Mon 11 Sep 2023 03:57:53 +0000 ROA not before: Mon 11 Sep 2023 03:52:53 +0000 ROA not after: Mon 09 Sep 2024 03:57:53 +0000 asID: 150968 IP address blocks: 103.178.14.0/23 maxlen: 24 2001:df2:e340::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:5e:d7:b4:62:f7:4d:f0:7b:15:31:e8:5e:00:bc:01:12:c6:c2:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 11 03:52:53 2023 GMT Not After : Sep 9 03:57:53 2024 GMT Subject: CN=ADD6177AF369650C1924BD22FE63CBB726957BDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:60:58:5a:23:82:32:00:16:31:1f:49:23:3e: 44:53:fe:c8:c3:7e:44:eb:bd:38:77:7b:c0:7e:38: 2a:49:c0:67:42:a9:d8:d7:b8:0e:62:9a:c3:86:52: 4a:82:98:5c:51:7e:df:c5:1b:60:63:99:26:ff:1a: 30:83:dd:05:65:26:93:a8:d3:3c:f9:96:57:c5:bd: 9e:2f:32:e2:26:1e:9c:41:c6:b7:19:68:ed:5a:2f: 0c:50:15:96:12:a6:5d:94:42:17:9f:91:39:6e:6e: ce:79:aa:f6:75:31:86:97:6b:cc:6c:22:57:a2:9d: 28:6e:32:65:33:e7:7b:d3:5b:ef:3f:5f:ea:88:45: e5:d6:a6:9d:4d:16:d2:8a:74:0d:76:b9:99:3c:2f: 9e:a1:b8:21:69:78:78:54:65:01:71:83:fa:48:2e: 63:80:2b:21:dd:0d:e8:10:c1:2a:4d:4e:7e:30:58: 12:da:bd:51:a8:6d:29:3c:45:a9:cf:e6:71:ea:79: ee:59:6f:ef:7e:d6:c6:70:02:ab:4e:1f:ba:5d:af: ba:e0:56:be:c9:9f:97:60:aa:2f:39:e7:7e:30:b7: f4:8d:93:fa:7b:71:e5:cd:c5:1c:2b:e2:c3:c1:25: 8f:83:91:dc:71:4a:13:13:b6:df:90:f0:84:f8:a6: a2:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:D6:17:7A:F3:69:65:0C:19:24:BD:22:FE:63:CB:B7:26:95:7B:DC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150968.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.14.0/23 IPv6: 2001:df2:e340::/48 Signature Algorithm: sha256WithRSAEncryption 2f:1d:d4:78:28:8c:21:c6:43:c6:5d:11:11:53:0b:e8:af:a8: 59:4c:78:4e:9e:79:dc:f0:2c:a1:a6:45:fa:b9:1a:07:c8:bd: 5c:8a:63:85:e9:3c:51:b9:a9:6e:a6:fd:a5:25:74:49:81:dc: a2:0b:55:00:56:f7:2f:5b:45:a9:9c:94:bb:cd:e8:5f:36:2d: 6e:9f:ce:fa:fa:85:ab:08:37:24:1a:9d:e6:09:50:9f:e1:d8: ad:d3:26:e9:6d:c7:c9:78:ff:d7:3e:47:eb:49:0d:c2:f1:a0: c5:81:55:26:5e:9a:d5:77:93:cf:d2:79:f9:07:1f:f4:4b:29: 5e:43:38:d7:42:ca:aa:a8:62:6e:f9:0b:88:2e:f7:61:1e:66: 1b:b6:5b:bd:9e:cc:34:6f:de:51:08:21:4b:7d:c7:c0:70:a2: 36:33:a4:88:79:f3:fb:82:32:d1:fe:45:3c:b1:37:30:ed:1d: a7:23:31:48:5e:56:60:36:0c:57:8b:fb:b6:1f:0f:8b:5f:82: ca:e8:60:3e:ac:fc:00:3a:0f:2f:eb:d8:de:a1:d7:f4:e9:5c: 18:68:97:4f:74:e7:3d:76:69:f2:a0:ca:12:ae:c2:c9:46:17: 16:f0:de:d4:9a:65:52:89:ae:67:55:0f:70:55:27:7b:94:9f: 3e:a1:23:87 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUaF7XtGL3TfB7FTHoXgC8ARLGwvYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkxMTAzNTI1M1oX DTI0MDkwOTAzNTc1M1owMzExMC8GA1UEAxMoQURENjE3N0FGMzY5NjUwQzE5MjRC RDIyRkU2M0NCQjcyNjk1N0JEQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALlgWFojgjIAFjEfSSM+RFP+yMN+ROu9OHd7wH44KknAZ0Kp2Ne4DmKaw4ZS SoKYXFF+38UbYGOZJv8aMIPdBWUmk6jTPPmWV8W9ni8y4iYenEHGtxlo7VovDFAV lhKmXZRCF5+ROW5uznmq9nUxhpdrzGwiV6KdKG4yZTPne9Nb7z9f6ohF5damnU0W 0op0DXa5mTwvnqG4IWl4eFRlAXGD+kguY4ArId0N6BDBKk1OfjBYEtq9UahtKTxF qc/mcep57llv737WxnACq04ful2vuuBWvsmfl2CqLznnfjC39I2T+ntx5c3FHCvi w8Elj4OR3HFKExO235DwhPimonsCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBSt1hd6 82llDBkkvSL+Y8u3JpV73DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk2OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWeyDjAPBAIAAjAJAwcAIAEN8uNAMA0GCSqGSIb3DQEBCwUAA4IB AQAvHdR4KIwhxkPGXRERUwvor6hZTHhOnnnc8CyhpkX6uRoHyL1cimOF6TxRualu pv2lJXRJgdyiC1UAVvcvW0WpnJS7zehfNi1un876+oWrCDckGp3mCVCf4dit0ybp bcfJeP/XPkfrSQ3C8aDFgVUmXprVd5PP0nn5Bx/0SyleQzjXQsqqqGJu+QuILvdh HmYbtlu9nsw0b95RCCFLfcfAcKI2M6SIefP7gjLR/kU8sTcw7R2nIzFIXlZgNgxX i/u2Hw+LX4LK6GA+rPwAOg8v69jeodf06VwYaJdPdOc9dmnyoMoSrsLJRhcW8N7U mmVSia5nVQ9wVSd7lJ8+oSOH -----END CERTIFICATE-----Generated at Thu May 9 00:29:16 2024 by rpki-client on console-ams.rpki-client.org