$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150994.roa File: AS150994.roa (raw, json) Hash identifier: 0VS88wk+XiIUySJdgNtJqhWDjRMABbQ1CqD6m3hblXc= Subject key identifier: 7C:6F:CD:91:16:28:52:0B:B1:D9:9A:0B:52:C0:EE:7E:C4:A7:6D:31 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 19548B951BB948764FFAF8DC96009778D8444ED5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150994.roa Signing time: Tue 04 Jul 2023 04:13:55 +0000 ROA not before: Tue 04 Jul 2023 04:08:55 +0000 ROA not after: Tue 02 Jul 2024 04:13:55 +0000 asID: 150994 IP address blocks: 103.182.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:54:8b:95:1b:b9:48:76:4f:fa:f8:dc:96:00:97:78:d8:44:4e:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 4 04:08:55 2023 GMT Not After : Jul 2 04:13:55 2024 GMT Subject: CN=7C6FCD911628520BB1D99A0B52C0EE7EC4A76D31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a0:b0:b7:3c:e9:86:c1:a3:87:4b:57:53:92: 07:90:9d:8d:e3:53:40:d1:a2:01:73:50:dc:1e:f0: 50:00:00:21:90:1f:9a:91:09:3c:33:73:01:0e:14: a7:51:ef:34:ab:17:d4:4f:cc:e7:f8:3e:61:af:fe: a3:82:d5:04:01:8c:90:54:db:c6:8c:c3:95:90:e3: d0:5e:7d:7b:73:c2:df:30:fd:9c:ba:0c:af:4a:36: a5:39:77:7f:f1:98:a6:39:42:59:35:6c:b6:ad:43: 14:7b:b3:19:18:a0:3f:f3:50:64:d0:04:f0:d0:3f: 9a:2f:5b:88:14:48:66:94:98:6a:45:21:97:a0:70: 80:64:c4:33:f9:01:5a:bd:21:1c:d4:2f:01:c8:18: 25:ad:28:e9:6d:f1:92:b2:95:d6:5b:53:87:a9:33: e0:a6:fb:9e:76:53:8c:53:64:b7:12:32:b0:a3:82: 22:b5:38:03:69:30:2a:66:71:72:56:19:3b:0a:88: d6:1f:20:87:25:bb:d9:1a:82:b3:f1:d5:56:01:1c: 85:37:a1:39:4a:c3:9b:a1:54:5e:b5:c2:af:44:86: 53:39:ab:7b:6a:fc:1f:ac:15:59:51:c3:04:df:06: 6f:b5:ec:c0:58:c5:b7:b4:eb:ec:da:60:39:ad:7b: 88:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:6F:CD:91:16:28:52:0B:B1:D9:9A:0B:52:C0:EE:7E:C4:A7:6D:31 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150994.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.182.248.0/24 Signature Algorithm: sha256WithRSAEncryption 88:d6:7c:79:9f:5d:7e:b8:67:39:7c:cc:be:63:ae:9d:b4:8f: e8:5d:7c:4f:b4:73:88:ca:fa:e7:9d:b5:0e:c1:99:8b:73:a6: 30:ca:eb:ea:bf:14:c2:7d:d0:18:7c:fb:1d:c2:84:89:6e:99: a3:61:dd:37:0e:8f:e1:06:ee:36:a8:0c:9a:0b:d0:50:ed:a5: fc:10:ac:2b:de:73:db:94:50:dc:05:ca:b0:f3:b1:46:69:8d: cb:d9:e9:12:86:a4:e9:fe:50:3e:01:76:17:38:e7:b2:3d:9b: a3:e6:69:74:2a:c3:2a:98:cd:42:1e:7c:23:ab:f5:6f:92:67: 6c:2b:e0:e3:62:f6:d7:3d:fd:9b:4d:ad:ac:f1:0f:ad:ec:b3: 3f:62:fe:2e:fd:52:b9:7a:2c:1b:57:7b:2c:c3:27:02:e4:e1: 9d:d4:e6:07:4a:aa:78:af:64:2f:f2:8a:45:64:06:3f:e2:e4: ef:6f:cc:50:94:9f:84:2d:9f:9a:48:6f:3e:3e:f6:68:db:9c: a2:fa:04:6f:d7:16:3b:fe:c2:77:e1:d4:54:32:52:7f:c0:18: fd:ee:2c:02:9b:eb:84:27:9f:89:bf:fc:ba:ba:81:23:83:b1: 34:51:5c:fc:b7:5e:11:fd:a1:c0:91:2a:5b:f7:66:47:56:a1: a6:a3:9a:88 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUGVSLlRu5SHZP+vjclgCXeNhETtUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcwNDA0MDg1NVoX DTI0MDcwMjA0MTM1NVowMzExMC8GA1UEAxMoN0M2RkNEOTExNjI4NTIwQkIxRDk5 QTBCNTJDMEVFN0VDNEE3NkQzMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALigsLc86YbBo4dLV1OSB5CdjeNTQNGiAXNQ3B7wUAAAIZAfmpEJPDNzAQ4U p1HvNKsX1E/M5/g+Ya/+o4LVBAGMkFTbxozDlZDj0F59e3PC3zD9nLoMr0o2pTl3 f/GYpjlCWTVstq1DFHuzGRigP/NQZNAE8NA/mi9biBRIZpSYakUhl6BwgGTEM/kB Wr0hHNQvAcgYJa0o6W3xkrKV1ltTh6kz4Kb7nnZTjFNktxIysKOCIrU4A2kwKmZx clYZOwqI1h8ghyW72RqCs/HVVgEchTehOUrDm6FUXrXCr0SGUzmre2r8H6wVWVHD BN8Gb7XswFjFt7Tr7NpgOa17iJ8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR8b82R FihSC7HZmgtSwO5+xKdtMTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk5NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGe2+DANBgkqhkiG9w0BAQsFAAOCAQEAiNZ8eZ9dfrhnOXzMvmOu nbSP6F18T7RziMr65521DsGZi3OmMMrr6r8Uwn3QGHz7HcKEiW6Zo2HdNw6P4Qbu NqgMmgvQUO2l/BCsK95z25RQ3AXKsPOxRmmNy9npEoak6f5QPgF2Fzjnsj2bo+Zp dCrDKpjNQh58I6v1b5JnbCvg42L21z39m02trPEPreyzP2L+Lv1SuXosG1d7LMMn AuThndTmB0qqeK9kL/KKRWQGP+Lk72/MUJSfhC2fmkhvPj72aNucovoEb9cWO/7C d+HUVDJSf8AY/e4sApvrhCefib/8urqBI4OxNFFc/LdeEf2hwJEqW/dmR1ahpqOa iA== -----END CERTIFICATE-----Generated at Wed May 8 04:37:58 2024 by rpki-client on console-fra.rpki-client.org