$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150989.roa File: AS150989.roa (raw, json) Hash identifier: MlnIYVfWAwkUjNQ7Nqh8cFygAe7UE2hLGHdTB85pXk8= Subject key identifier: C6:E1:E2:82:A4:B9:E5:F8:88:03:8D:8A:91:B5:D9:7B:36:A2:FC:E9 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 663D400FD91987B2E98498CAA2473556A25AC26B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150989.roa Signing time: Wed 31 Jul 2024 03:00:00 +0000 ROA not before: Wed 31 Jul 2024 02:55:00 +0000 ROA not after: Wed 30 Jul 2025 03:00:00 +0000 asID: 150989 IP address blocks: 2001:df2:dcc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:3d:40:0f:d9:19:87:b2:e9:84:98:ca:a2:47:35:56:a2:5a:c2:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 02:55:00 2024 GMT Not After : Jul 30 03:00:00 2025 GMT Subject: CN=C6E1E282A4B9E5F888038D8A91B5D97B36A2FCE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:37:e8:18:cd:7d:e0:3f:b5:5d:13:3a:34:0e: 9b:2a:95:bb:b2:fa:c4:3c:61:d3:9e:00:53:9a:65: 31:99:f8:82:2e:18:14:27:31:9b:e1:8e:b5:55:54: ed:be:3c:f0:a1:f9:c3:44:87:36:28:97:20:20:bd: c8:61:b3:36:f2:9d:5c:3e:65:c3:88:69:1c:23:5b: 30:97:b0:53:db:fc:f0:d2:39:85:c4:81:18:c8:f9: 66:7b:89:ea:c1:d3:06:cb:8b:d2:53:3b:b6:e0:d0: 48:07:e4:1c:29:4e:94:c1:cc:c6:c3:49:cb:65:2f: dc:78:c8:dc:0c:c1:63:e2:7c:8f:4c:ac:19:95:0c: 1c:01:93:e1:79:79:e2:b6:e2:5c:d2:c9:6d:a1:29: 11:e3:87:f1:13:b8:1f:4f:e2:0e:74:f3:14:b3:8e: e7:35:e3:4e:a5:5f:35:68:93:be:67:86:0f:4a:4d: 6d:f0:03:d3:c7:b4:c7:7c:64:30:5b:97:33:84:26: 6d:f5:1f:05:4c:37:27:fd:59:53:fb:7a:5a:bb:67: 92:09:84:ce:01:d8:ad:27:dc:72:47:a9:53:6a:3b: f3:54:72:bc:f9:fa:33:6e:77:6a:a5:e7:79:5f:4c: 02:e4:2d:ef:af:e6:6f:90:09:9b:b7:f3:3f:b7:6e: 7c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:E1:E2:82:A4:B9:E5:F8:88:03:8D:8A:91:B5:D9:7B:36:A2:FC:E9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150989.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:dcc0::/48 Signature Algorithm: sha256WithRSAEncryption 1d:9a:78:9e:ff:7a:63:9c:f7:0c:26:80:c6:12:fb:66:13:5a: e0:13:8b:49:c4:af:2d:71:62:04:51:da:f6:12:4b:9a:d8:31: fd:21:4b:43:28:78:17:be:55:3d:f6:9a:df:fb:fb:fc:d9:32: c3:c1:94:a2:61:32:4f:45:f3:16:2d:8c:4c:25:2f:53:b9:4a: 9e:6d:f8:14:e0:a0:74:01:6e:27:83:02:68:98:bb:5f:98:c7: 49:64:7b:63:a9:bd:eb:97:ef:d0:07:9b:9e:15:bf:2a:7a:17: 5e:71:9e:f9:fe:6a:f8:ac:a8:6c:40:f7:6f:69:2c:15:80:fa: 25:3c:56:82:17:d0:18:79:f4:e8:1f:e1:3b:6d:2b:49:21:3f: be:3f:70:d8:2e:63:1e:63:1e:40:db:b8:10:9f:6f:97:94:d6: 24:98:21:8c:4e:a0:7c:f2:08:1e:4e:51:1d:b0:b7:26:aa:41: 13:3f:20:fb:15:f2:5d:64:0f:22:32:24:47:28:ce:d5:a1:a2: 36:14:55:1b:c4:1d:55:d4:ac:0c:1f:24:98:4f:3a:7b:c7:fd: e5:d9:fc:75:66:c9:e3:bd:88:81:1b:84:12:7f:36:8b:76:a7: da:d2:c9:4a:39:fa:bc:40:09:82:99:12:18:b0:11:89:63:94: ba:4d:43:26 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUZj1AD9kZh7LphJjKokc1VqJawmswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDczMTAyNTUwMFoX DTI1MDczMDAzMDAwMFowMzExMC8GA1UEAxMoQzZFMUUyODJBNEI5RTVGODg4MDM4 RDhBOTFCNUQ5N0IzNkEyRkNFOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL836BjNfeA/tV0TOjQOmyqVu7L6xDxh054AU5plMZn4gi4YFCcxm+GOtVVU 7b488KH5w0SHNiiXICC9yGGzNvKdXD5lw4hpHCNbMJewU9v88NI5hcSBGMj5ZnuJ 6sHTBsuL0lM7tuDQSAfkHClOlMHMxsNJy2Uv3HjI3AzBY+J8j0ysGZUMHAGT4Xl5 4rbiXNLJbaEpEeOH8RO4H0/iDnTzFLOO5zXjTqVfNWiTvmeGD0pNbfAD08e0x3xk MFuXM4QmbfUfBUw3J/1ZU/t6WrtnkgmEzgHYrSfcckepU2o781RyvPn6M253aqXn eV9MAuQt76/mb5AJm7fzP7dufCkCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTG4eKC pLnl+IgDjYqRtdl7NqL86TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk4OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfLcwDANBgkqhkiG9w0BAQsFAAOCAQEAHZp4nv96Y5z3DCaA xhL7ZhNa4BOLScSvLXFiBFHa9hJLmtgx/SFLQyh4F75VPfaa3/v7/Nkyw8GUomEy T0XzFi2MTCUvU7lKnm34FOCgdAFuJ4MCaJi7X5jHSWR7Y6m965fv0AebnhW/KnoX XnGe+f5q+KyobED3b2ksFYD6JTxWghfQGHn06B/hO20rSSE/vj9w2C5jHmMeQNu4 EJ9vl5TWJJghjE6gfPIIHk5RHbC3JqpBEz8g+xXyXWQPIjIkRyjO1aGiNhRVG8Qd VdSsDB8kmE86e8f95dn8dWbJ472IgRuEEn82i3an2tLJSjn6vEAJgpkSGLARiWOU uk1DJg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:49 2024 by rpki-client on console-ams.rpki-client.org