$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150980.roa File: AS150980.roa (raw, json) Hash identifier: iyXryvGTXj7w2wOLHTCkbt+KNTIS8kTLX8WL+7zsXCY= Subject key identifier: 13:0C:24:41:6B:92:94:51:44:AA:2E:D3:0A:2E:8B:87:B2:AF:55:04 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4B133BB12BF21F95C7F9E002B02D486BAF2D2C05 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150980.roa Signing time: Fri 06 Dec 2024 06:00:00 +0000 ROA not before: Fri 06 Dec 2024 05:55:00 +0000 ROA not after: Fri 05 Dec 2025 06:00:00 +0000 asID: 150980 IP address blocks: 103.70.122.0/23 maxlen: 24 103.138.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:13:3b:b1:2b:f2:1f:95:c7:f9:e0:02:b0:2d:48:6b:af:2d:2c:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 6 05:55:00 2024 GMT Not After : Dec 5 06:00:00 2025 GMT Subject: CN=130C24416B92945144AA2ED30A2E8B87B2AF5504 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:10:3e:08:be:19:9b:a6:b4:62:f9:b3:0f:88: 09:8a:d0:94:ef:56:5f:20:eb:3e:9e:e9:ea:66:7b: 06:72:03:07:81:43:68:75:09:b6:46:4f:7f:db:27: ec:47:54:74:45:17:c8:fe:70:5c:67:39:a8:dc:50: 38:05:01:ac:0f:69:1e:98:85:0e:ef:fc:c6:6a:91: 5e:ae:97:7f:02:b0:b7:df:b2:72:4b:4f:c5:0f:7f: c9:15:59:c4:f6:8a:fa:c1:a2:09:9d:2c:72:90:72: fa:b0:ec:f2:c0:00:a0:b1:4f:1c:97:ac:b9:4c:18: 7e:a7:3d:2d:ff:b2:dd:e5:9e:ad:c0:66:a1:c3:e7: 57:1a:fe:a3:4b:e8:84:5c:a3:78:65:25:9b:61:f6: be:11:6b:54:30:41:ea:17:b7:3a:e8:29:29:4f:ab: a3:29:fd:9b:c3:e2:54:e4:bb:01:a4:ce:72:a4:09: 96:7a:2b:71:a5:20:ce:5b:3f:e1:39:33:2a:63:53: e7:99:e7:29:4f:04:90:68:60:be:aa:1c:e8:3e:7d: 41:de:53:80:38:00:b0:65:be:01:45:ea:44:8c:09: 1f:27:d2:ca:44:6f:77:6b:e9:00:8e:2e:35:73:e8: ea:fa:52:a4:b7:5d:9b:19:51:3a:ea:9e:db:d0:b2: 44:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:0C:24:41:6B:92:94:51:44:AA:2E:D3:0A:2E:8B:87:B2:AF:55:04 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150980.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.70.122.0/23 103.138.166.0/23 Signature Algorithm: sha256WithRSAEncryption 32:74:ad:9d:c3:8b:36:24:61:4d:59:4a:7b:43:83:a7:64:f2: d8:20:07:dc:6e:34:8a:1a:9a:52:a4:43:a9:e3:70:cc:2c:84: 68:46:1c:01:41:ea:da:16:05:9f:3a:01:13:14:77:37:46:83: 60:90:8c:66:29:62:26:f3:00:6c:b3:22:74:ea:e2:00:4b:68: f9:99:e5:08:82:6f:93:ed:1c:09:89:ba:31:43:d3:bc:7e:16: 08:c7:24:17:75:29:49:89:46:17:4d:0c:a1:6b:7c:71:bf:c6: 59:8c:58:d2:99:95:b4:b5:88:7b:54:68:a3:e9:d1:ca:f9:d4: 59:6c:ae:eb:92:2d:5e:a6:9b:07:21:93:1d:eb:b0:f9:89:3d: e7:a8:e8:c9:ca:c5:47:53:c6:f8:6c:85:da:72:61:1d:cd:e4: 1f:05:1f:8f:17:9f:52:3a:7f:86:ad:08:6d:fb:26:15:55:43: f2:20:3f:e3:5f:9d:d4:c7:47:d9:c4:40:e4:94:30:a2:aa:14: 62:87:d4:47:68:ef:f0:c0:5d:60:d1:66:0e:ed:ad:78:33:11: ac:f1:10:ae:14:ae:0e:92:d5:3b:7a:71:c2:b0:52:20:d2:e0: 7c:ba:23:fe:99:b1:7b:41:43:60:10:66:bd:47:30:65:8d:4a: 54:d7:26:67 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUSxM7sSvyH5XH+eACsC1Ia68tLAUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIwNjA1NTUwMFoX DTI1MTIwNTA2MDAwMFowMzExMC8GA1UEAxMoMTMwQzI0NDE2QjkyOTQ1MTQ0QUEy RUQzMEEyRThCODdCMkFGNTUwNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALsQPgi+GZumtGL5sw+ICYrQlO9WXyDrPp7p6mZ7BnIDB4FDaHUJtkZPf9sn 7EdUdEUXyP5wXGc5qNxQOAUBrA9pHpiFDu/8xmqRXq6XfwKwt9+ycktPxQ9/yRVZ xPaK+sGiCZ0scpBy+rDs8sAAoLFPHJesuUwYfqc9Lf+y3eWercBmocPnVxr+o0vo hFyjeGUlm2H2vhFrVDBB6he3OugpKU+royn9m8PiVOS7AaTOcqQJlnorcaUgzls/ 4TkzKmNT55nnKU8EkGhgvqoc6D59Qd5TgDgAsGW+AUXqRIwJHyfSykRvd2vpAI4u NXPo6vpSpLddmxlROuqe29CyRFUCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBQTDCRB a5KUUUSqLtMKLouHsq9VBDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk4MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAWdGegMEAWeKpjANBgkqhkiG9w0BAQsFAAOCAQEAMnStncOLNiRh TVlKe0ODp2Ty2CAH3G40ihqaUqRDqeNwzCyEaEYcAUHq2hYFnzoBExR3N0aDYJCM ZiliJvMAbLMidOriAEto+ZnlCIJvk+0cCYm6MUPTvH4WCMckF3UpSYlGF00MoWt8 cb/GWYxY0pmVtLWIe1Roo+nRyvnUWWyu65ItXqabByGTHeuw+Yk956joycrFR1PG +GyF2nJhHc3kHwUfjxefUjp/hq0IbfsmFVVD8iA/41+d1MdH2cRA5JQwoqoUYofU R2jv8MBdYNFmDu2teDMRrPEQrhSuDpLVO3pxwrBSINLgfLoj/pmxe0FDYBBmvUcw ZY1KVNcmZw== -----END CERTIFICATE-----Generated at Sat Apr 5 06:23:59 2025 by rpki-client