$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150980.roa File: AS150980.roa (raw, json) Hash identifier: qciQAqhWmVFgxkVtRr6RRCIf1OaiFxxKjuDX/NPbGDA= Subject key identifier: BC:1B:56:BA:D4:0E:15:07:58:B2:55:E0:4D:C1:35:33:E7:C6:56:72 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3C6703821F9371E7508B568C93066EDDEFBA4FE8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150980.roa Signing time: Fri 05 Jan 2024 05:35:49 +0000 ROA not before: Fri 05 Jan 2024 05:30:49 +0000 ROA not after: Fri 03 Jan 2025 05:35:49 +0000 asID: 150980 IP address blocks: 103.70.122.0/23 maxlen: 24 103.138.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:67:03:82:1f:93:71:e7:50:8b:56:8c:93:06:6e:dd:ef:ba:4f:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 5 05:30:49 2024 GMT Not After : Jan 3 05:35:49 2025 GMT Subject: CN=BC1B56BAD40E150758B255E04DC13533E7C65672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:c8:57:2e:e7:d3:b4:7c:6e:d0:a2:ff:63:cc: 53:30:07:26:7d:1c:0d:75:c5:20:29:e5:a3:05:e7: a6:44:ff:fa:13:af:f5:d0:49:44:97:b8:d0:5b:03: 5c:2f:dc:35:3b:16:f1:d4:9d:35:ee:6d:c8:3d:23: cb:5c:4e:64:1a:e5:a2:3c:a7:cc:c2:99:6b:39:4f: aa:25:4d:0a:d3:12:53:ac:59:0f:1a:68:47:09:73: b3:58:41:d8:a0:16:6b:ba:f4:49:3a:43:db:4a:69: 54:8d:e0:4f:fd:18:b5:8e:96:61:f1:78:a7:74:6e: e7:cf:8b:ed:ac:01:18:22:07:dc:66:ae:9f:8f:3e: 81:31:66:79:c9:81:f2:54:fa:67:c5:bb:50:2d:94: a6:e2:6a:55:a1:29:d0:59:9b:4f:46:1b:b7:5f:bd: ff:0b:52:e2:47:01:a5:34:f5:c2:bf:1c:2c:32:80: dc:6e:74:33:2a:13:52:b8:ce:51:0a:9d:cf:a0:0a: 27:77:19:0c:51:c0:ac:db:86:96:d6:2b:63:12:4e: bb:e5:49:e4:99:83:26:41:08:7d:cf:8e:4e:74:00: 45:fc:df:3f:c8:dd:f6:f4:2e:cd:74:1d:20:9c:19: 35:21:78:60:fe:a0:71:11:e2:ce:53:97:b1:3f:e0: 77:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:1B:56:BA:D4:0E:15:07:58:B2:55:E0:4D:C1:35:33:E7:C6:56:72 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150980.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.70.122.0/23 103.138.166.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:de:64:91:06:8e:f9:b7:d0:e7:c5:e5:fc:ad:09:9a:1b:d1: ad:f1:9f:29:77:7d:55:26:58:20:d0:a1:f9:2a:dc:a1:e5:e7: eb:35:76:1e:36:e5:f3:39:df:a4:cf:50:55:87:69:71:99:93: 36:17:21:4a:ae:2d:38:5d:31:85:3d:f1:95:11:f1:16:e7:a7: 5e:fe:1e:b7:a5:8a:92:25:ea:3b:f4:9d:ee:f0:5e:ea:8a:49: 72:c5:6e:90:40:66:c5:7e:f5:cb:59:c1:26:9c:92:51:16:73: b9:89:b4:bf:2b:5a:1b:1c:f8:d9:28:d2:c2:f7:a8:6e:8e:e7: 1a:13:a3:f3:29:a0:10:96:4c:ec:8f:8c:f6:a5:66:72:ff:fe: d1:67:d3:63:87:8b:28:50:ad:26:e1:13:36:a8:c7:f9:ec:d5: 8b:09:bd:e3:52:da:8d:2c:94:c4:e5:43:8b:fa:e2:3d:e6:8f: bd:d2:7c:f6:a2:59:e8:33:57:7f:10:b9:44:23:22:b9:6b:59: a4:3d:5f:cc:f8:8b:c3:b9:ab:02:66:75:f4:10:ac:8b:3c:56: 14:b8:08:ec:76:51:80:cf:4f:cb:cc:70:73:9d:63:5c:f9:65: 03:a5:8d:86:fe:40:60:c8:b8:73:65:0f:48:c1:57:f0:cb:e5: f9:d2:ea:81 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUPGcDgh+TcedQi1aMkwZu3e+6T+gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwNTA1MzA0OVoX DTI1MDEwMzA1MzU0OVowMzExMC8GA1UEAxMoQkMxQjU2QkFENDBFMTUwNzU4QjI1 NUUwNERDMTM1MzNFN0M2NTY3MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANnIVy7n07R8btCi/2PMUzAHJn0cDXXFICnlowXnpkT/+hOv9dBJRJe40FsD XC/cNTsW8dSdNe5tyD0jy1xOZBrlojynzMKZazlPqiVNCtMSU6xZDxpoRwlzs1hB 2KAWa7r0STpD20ppVI3gT/0YtY6WYfF4p3Ru58+L7awBGCIH3Gaun48+gTFmecmB 8lT6Z8W7UC2UpuJqVaEp0FmbT0Ybt1+9/wtS4kcBpTT1wr8cLDKA3G50MyoTUrjO UQqdz6AKJ3cZDFHArNuGltYrYxJOu+VJ5JmDJkEIfc+OTnQARfzfP8jd9vQuzXQd IJwZNSF4YP6gcRHizlOXsT/gdz8CAwEAAaOCAdYwggHSMB0GA1UdDgQWBBS8G1a6 1A4VB1iyVeBNwTUz58ZWcjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk4MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAWdGegMEAWeKpjANBgkqhkiG9w0BAQsFAAOCAQEAf95kkQaO+bfQ 58Xl/K0JmhvRrfGfKXd9VSZYINCh+SrcoeXn6zV2Hjbl8znfpM9QVYdpcZmTNhch Sq4tOF0xhT3xlRHxFuenXv4et6WKkiXqO/Sd7vBe6opJcsVukEBmxX71y1nBJpyS URZzuYm0vytaGxz42SjSwveobo7nGhOj8ymgEJZM7I+M9qVmcv/+0WfTY4eLKFCt JuETNqjH+ezViwm941LajSyUxOVDi/riPeaPvdJ89qJZ6DNXfxC5RCMiuWtZpD1f zPiLw7mrAmZ19BCsizxWFLgI7HZRgM9Py8xwc51jXPllA6WNhv5AYMi4c2UPSMFX 8Mvl+dLqgQ== -----END CERTIFICATE-----Generated at Wed May 8 09:50:39 2024 by rpki-client on console-fra.rpki-client.org