$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150994.roa File: AS150994.roa (raw, json) Hash identifier: 0SqzizH3jfBhvbwTxk0uYtHfAVJTTgsXPCQ81SN0VnQ= Subject key identifier: 6A:FF:65:9D:FD:71:3D:DB:7C:6E:B1:47:EE:6C:13:C0:83:53:7C:B9 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 078B6B7B97E8AD20A1D2DDF7A3C9DD92B63BB25B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150994.roa Signing time: Tue 04 Jun 2024 05:00:00 +0000 ROA not before: Tue 04 Jun 2024 04:55:00 +0000 ROA not after: Tue 03 Jun 2025 05:00:00 +0000 asID: 150994 IP address blocks: 103.182.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:8b:6b:7b:97:e8:ad:20:a1:d2:dd:f7:a3:c9:dd:92:b6:3b:b2:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 4 04:55:00 2024 GMT Not After : Jun 3 05:00:00 2025 GMT Subject: CN=6AFF659DFD713DDB7C6EB147EE6C13C083537CB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4f:9b:b4:54:1a:a1:8e:c2:84:37:5b:57:04: bc:de:25:a1:dc:57:1a:74:08:68:3c:f7:18:1d:64: f3:db:36:75:00:65:be:80:46:48:e5:89:ec:96:f1: f7:8f:f7:4d:6f:f2:7a:73:aa:d1:f4:a5:e8:23:b5: d1:4d:8c:29:f3:19:3c:f5:99:04:46:a6:3f:48:96: a6:bb:9f:6c:97:36:28:e5:de:ff:5e:af:45:f0:2e: 53:6d:2d:11:2f:87:95:32:21:86:f7:88:1e:2c:6b: 32:03:f7:8b:dd:06:07:dc:b2:5b:b2:e7:f3:ed:77: b5:fb:91:cc:ce:72:fb:a5:fa:28:6f:88:a3:81:69: cf:9f:f8:81:17:46:cf:cb:ce:de:a0:01:14:dc:40: 0b:5f:3f:f9:6b:8a:cf:23:1e:6c:47:86:ac:ee:88: 9e:75:10:cb:69:67:25:81:5c:f1:98:f8:c7:5e:aa: 1f:78:18:97:8b:7e:e1:4d:a9:0f:5e:95:35:f1:9a: 5e:96:f5:15:2d:ac:8b:08:46:ed:cd:f4:05:65:4d: c0:fc:6a:a3:8d:0d:de:78:41:c3:09:53:af:fc:10: 0d:4d:15:7c:a8:6f:7b:ce:72:38:86:76:10:e2:f3: cf:5d:bb:4e:4c:04:c6:5c:3a:05:b1:66:62:44:2a: 18:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:FF:65:9D:FD:71:3D:DB:7C:6E:B1:47:EE:6C:13:C0:83:53:7C:B9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150994.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.182.248.0/24 Signature Algorithm: sha256WithRSAEncryption 67:4e:30:1c:f0:e9:dd:56:bf:35:9d:b2:7f:de:86:91:52:9e: 4c:0e:c8:b8:9d:f6:94:8b:48:b8:68:48:af:df:4d:cc:66:6a: 06:b4:01:be:f6:b8:c7:bb:99:1b:7b:8b:c4:71:c9:e9:9c:b7: 04:99:17:6b:71:fc:2c:7a:0d:79:01:8d:cc:ba:d0:e6:07:d9: 62:34:e9:81:c7:fe:97:eb:2b:5c:cd:19:a0:76:b0:dd:cb:13: 90:70:f6:79:e9:bf:64:bc:64:5e:75:70:cf:1c:fc:bb:5f:52: 0b:60:fe:62:36:ee:85:e9:3d:c3:d8:2f:e0:58:f0:12:45:aa: 9e:dc:42:4a:ef:f0:16:1f:9e:46:84:be:ae:9a:71:3a:7e:46: 56:e9:0f:ee:5b:2f:3a:10:ed:d7:cd:65:3a:b1:39:46:24:0b: 32:cb:f0:ea:62:95:bb:50:cb:bb:24:39:ed:47:c7:16:1b:44: b9:b0:4a:03:9b:49:44:8d:b7:44:d5:81:77:3c:dd:60:d4:05: b5:5e:05:ab:bf:70:a3:80:05:4d:f5:fd:25:80:43:36:c7:94: fd:ab:13:19:ba:58:5a:48:2c:9e:61:1c:d8:55:99:22:f1:2a: f5:89:55:e6:a1:d3:ac:77:a0:8a:15:e0:a3:74:77:fd:bf:47: 8c:1e:c3:b8 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUB4tre5forSCh0t33o8ndkrY7slswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYwNDA0NTUwMFoX DTI1MDYwMzA1MDAwMFowMzExMC8GA1UEAxMoNkFGRjY1OURGRDcxM0REQjdDNkVC MTQ3RUU2QzEzQzA4MzUzN0NCOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMFPm7RUGqGOwoQ3W1cEvN4lodxXGnQIaDz3GB1k89s2dQBlvoBGSOWJ7Jbx 94/3TW/yenOq0fSl6CO10U2MKfMZPPWZBEamP0iWprufbJc2KOXe/16vRfAuU20t ES+HlTIhhveIHixrMgP3i90GB9yyW7Ln8+13tfuRzM5y+6X6KG+Io4Fpz5/4gRdG z8vO3qABFNxAC18/+WuKzyMebEeGrO6InnUQy2lnJYFc8Zj4x16qH3gYl4t+4U2p D16VNfGaXpb1FS2siwhG7c30BWVNwPxqo40N3nhBwwlTr/wQDU0VfKhve85yOIZ2 EOLzz127TkwExlw6BbFmYkQqGBsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRq/2Wd /XE923xusUfubBPAg1N8uTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk5NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGe2+DANBgkqhkiG9w0BAQsFAAOCAQEAZ04wHPDp3Va/NZ2yf96G kVKeTA7IuJ32lItIuGhIr99NzGZqBrQBvva4x7uZG3uLxHHJ6Zy3BJkXa3H8LHoN eQGNzLrQ5gfZYjTpgcf+l+srXM0ZoHaw3csTkHD2eem/ZLxkXnVwzxz8u19SC2D+ Yjbuhek9w9gv4FjwEkWqntxCSu/wFh+eRoS+rppxOn5GVukP7lsvOhDt181lOrE5 RiQLMsvw6mKVu1DLuyQ57UfHFhtEubBKA5tJRI23RNWBdzzdYNQFtV4Fq79wo4AF TfX9JYBDNseU/asTGbpYWkgsnmEc2FWZIvEq9YlV5qHTrHegihXgo3R3/b9HjB7D uA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:49 2024 by rpki-client on console-ams.rpki-client.org