$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150990.roa File: AS150990.roa (raw, json) Hash identifier: Gp8VU+dDUCWV/WAakbKJFSu/l6SOpj73Is01lONypwQ= Subject key identifier: 24:91:E2:50:56:0F:68:EE:1C:07:9F:00:8E:66:9C:E6:02:7C:1C:2A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6C7D50271331CA55F2AA809F99F63DE2B237791F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150990.roa Signing time: Wed 13 Mar 2024 04:43:25 +0000 ROA not before: Wed 13 Mar 2024 04:38:25 +0000 ROA not after: Wed 12 Mar 2025 04:43:25 +0000 asID: 150990 IP address blocks: 103.196.178.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:7d:50:27:13:31:ca:55:f2:aa:80:9f:99:f6:3d:e2:b2:37:79:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 13 04:38:25 2024 GMT Not After : Mar 12 04:43:25 2025 GMT Subject: CN=2491E250560F68EE1C079F008E669CE6027C1C2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:df:93:c1:00:d2:bf:cb:ef:d6:f4:c0:90:e7: 34:d9:20:cf:44:f7:f4:6f:9b:33:f1:07:a0:da:bf: eb:c9:99:5d:2d:08:2f:93:96:9e:a4:9a:0f:c2:d4: 21:a6:15:86:7f:e4:ce:04:8f:69:95:78:03:60:3b: 44:bc:46:88:89:c3:b3:7d:e9:bc:3c:98:b9:14:d4: 90:e2:48:04:96:99:aa:da:03:88:0a:fd:61:3f:e4: f7:1a:18:7a:c0:fa:ba:8e:5f:5f:7d:c0:ee:b3:e3: a4:fb:61:e5:03:c1:82:c0:e7:1a:ad:dd:9f:2a:56: 9c:3b:69:c2:e6:76:ed:70:a1:a5:6b:9d:99:90:71: 08:7c:e8:60:f0:16:ca:0f:b6:4a:6b:5f:a9:89:ce: 43:e5:f8:da:93:de:8b:e4:14:fa:0d:37:ee:5c:a9: ca:64:64:e5:ce:7b:64:8c:60:73:30:39:61:18:5c: 17:ce:5c:ac:81:0f:00:f4:96:77:d0:2a:36:76:fa: c6:02:b0:4f:4a:e2:d1:49:bc:b6:69:0a:a0:be:43: d1:62:bf:8c:d3:76:31:3b:a0:87:95:bb:d0:72:9b: eb:f4:94:3d:3d:11:74:79:0c:67:57:8a:3b:2c:c1: 79:0d:d8:c7:58:58:96:ac:b3:75:cc:fa:73:c0:94: 2c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:91:E2:50:56:0F:68:EE:1C:07:9F:00:8E:66:9C:E6:02:7C:1C:2A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150990.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.196.178.0/23 Signature Algorithm: sha256WithRSAEncryption 46:26:38:b6:1b:06:38:c3:13:cc:c1:24:ea:87:f1:10:7f:f2: 96:30:b7:5e:53:8d:b1:e9:60:23:99:35:48:bb:f9:69:11:34: d3:f0:0c:bb:b1:bd:60:43:5d:72:8b:c2:39:b4:3a:2d:b1:b6: a5:4c:45:9d:02:0f:78:f3:18:32:b0:2e:89:6e:2c:4e:7a:86: 82:49:10:58:0a:98:d3:7f:df:d5:7a:87:19:d4:79:33:f2:b7: 5d:6d:f7:ce:18:2d:81:82:fb:c6:bf:4b:3d:66:14:6e:20:12: 35:e1:38:2b:bf:c3:49:b3:95:d4:a5:01:29:bd:29:be:7a:61: d0:2c:e3:c3:64:ac:80:a0:10:94:f5:7e:eb:8d:22:d4:f7:c3: e1:57:17:71:d4:28:64:02:21:55:42:e0:2a:ca:ea:55:b6:97: e1:32:01:2c:1e:29:17:cf:b6:51:eb:14:8c:7e:01:01:ab:db: 16:c3:bb:c6:bb:5f:3c:86:5c:4f:59:2e:a5:74:fe:50:96:a2: 42:88:66:f5:eb:b8:2b:e9:ff:56:8f:23:7f:f4:9e:b0:46:4b: ec:81:23:38:e4:da:ca:57:f2:de:f5:ea:b7:e5:52:af:95:b3: 72:02:54:7f:16:b1:34:dc:c8:df:6a:c5:15:33:61:f9:fa:63: 82:6f:17:1d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUbH1QJxMxylXyqoCfmfY94rI3eR8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMxMzA0MzgyNVoX DTI1MDMxMjA0NDMyNVowMzExMC8GA1UEAxMoMjQ5MUUyNTA1NjBGNjhFRTFDMDc5 RjAwOEU2NjlDRTYwMjdDMUMyQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMPfk8EA0r/L79b0wJDnNNkgz0T39G+bM/EHoNq/68mZXS0IL5OWnqSaD8LU IaYVhn/kzgSPaZV4A2A7RLxGiInDs33pvDyYuRTUkOJIBJaZqtoDiAr9YT/k9xoY esD6uo5fX33A7rPjpPth5QPBgsDnGq3dnypWnDtpwuZ27XChpWudmZBxCHzoYPAW yg+2SmtfqYnOQ+X42pPei+QU+g037lypymRk5c57ZIxgczA5YRhcF85crIEPAPSW d9AqNnb6xgKwT0ri0Um8tmkKoL5D0WK/jNN2MTugh5W70HKb6/SUPT0RdHkMZ1eK OyzBeQ3Yx1hYlqyzdcz6c8CULFkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQkkeJQ Vg9o7hwHnwCOZpzmAnwcKjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk5MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfEsjANBgkqhkiG9w0BAQsFAAOCAQEARiY4thsGOMMTzMEk6ofx EH/yljC3XlONselgI5k1SLv5aRE00/AMu7G9YENdcovCObQ6LbG2pUxFnQIPePMY MrAuiW4sTnqGgkkQWAqY03/f1XqHGdR5M/K3XW33zhgtgYL7xr9LPWYUbiASNeE4 K7/DSbOV1KUBKb0pvnph0Czjw2SsgKAQlPV+640i1PfD4VcXcdQoZAIhVULgKsrq VbaX4TIBLB4pF8+2UesUjH4BAavbFsO7xrtfPIZcT1kupXT+UJaiQohm9eu4K+n/ Vo8jf/SesEZL7IEjOOTaylfy3vXqt+VSr5WzcgJUfxaxNNzI32rFFTNh+fpjgm8X HQ== -----END CERTIFICATE-----Generated at Thu May 9 00:37:07 2024 by rpki-client on console-fra.rpki-client.org