$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150996.roa File: AS150996.roa (raw, json) Hash identifier: KQGEKrFmFBdTOr/3cO0y7Pykhk2DwYXVKJaMF+IE5lE= Subject key identifier: 77:1A:EC:86:90:A2:33:6A:F7:BB:6F:28:8B:81:75:4F:89:C0:89:91 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 33F7485C738CB7C362DD2EB2D0F854205E7816FF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150996.roa Signing time: Wed 13 Mar 2024 06:04:12 +0000 ROA not before: Wed 13 Mar 2024 05:59:12 +0000 ROA not after: Wed 12 Mar 2025 06:04:12 +0000 asID: 150996 IP address blocks: 103.210.70.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:f7:48:5c:73:8c:b7:c3:62:dd:2e:b2:d0:f8:54:20:5e:78:16:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 13 05:59:12 2024 GMT Not After : Mar 12 06:04:12 2025 GMT Subject: CN=771AEC8690A2336AF7BB6F288B81754F89C08991 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:3e:3d:76:aa:1c:18:51:d8:16:36:f4:c5:c1: 21:0b:d5:f3:eb:9d:47:12:10:9e:27:31:d6:ab:24: d2:af:a3:b2:8a:7f:6b:d1:54:ed:94:d6:0c:f4:a3: 5b:cc:5a:e5:05:dc:f7:43:8c:73:e8:28:cd:f0:10: 17:29:52:2d:33:d8:be:2a:ab:76:64:4c:17:26:06: 1e:6f:0b:64:6d:db:80:ef:fc:88:a4:19:b3:f8:c1: ea:31:0a:13:4a:fb:04:a4:8d:ac:1b:3f:7b:92:28: 3b:31:23:78:67:04:ca:f1:53:d2:05:50:89:05:ac: b5:3b:3b:91:19:9a:80:e7:30:e2:92:fd:74:59:0d: dd:c3:2b:e9:eb:9f:d6:f3:33:f9:cd:a5:a2:d4:60: da:84:ce:53:b8:81:1a:a5:44:b7:a3:d6:53:01:0c: d2:7d:8c:e2:19:d1:37:c8:34:e6:71:db:c4:13:1b: bd:2f:4c:5b:3b:fa:fe:f8:0f:cf:f6:98:13:52:5e: d0:6a:a0:d2:bf:2f:2b:d7:d5:60:d7:5e:b6:18:3b: b8:62:17:11:6a:fa:70:dc:ec:9b:76:d4:8b:4d:82: 50:0f:81:7d:d9:e0:da:28:c9:20:d3:d8:fc:6b:52: 8e:8b:91:fc:c4:82:cd:89:02:41:1f:90:8b:45:f4: 50:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:1A:EC:86:90:A2:33:6A:F7:BB:6F:28:8B:81:75:4F:89:C0:89:91 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150996.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.70.0/23 Signature Algorithm: sha256WithRSAEncryption 51:0e:be:3f:14:cd:93:e6:06:2e:ad:2d:ab:66:6f:5c:75:5c: 3c:5b:bb:59:2c:78:99:a4:04:fb:17:3e:0b:1d:a8:7f:5b:fc: 76:3d:69:80:2b:b1:65:3f:c7:84:ed:ff:d1:bb:3f:79:50:0a: a5:2e:4f:35:2d:35:cc:25:3d:1c:51:f1:86:d0:6f:5a:f1:34: 7a:8c:da:ec:85:e9:4d:8e:26:54:5c:b2:9d:88:a8:19:03:76: 6e:04:9a:36:de:70:1a:59:66:0a:4e:39:82:4a:a2:a6:52:86: 43:65:85:64:bf:2e:c9:07:c1:da:46:4c:82:3e:af:05:5e:9c: f2:b2:7e:08:77:7d:3c:10:9d:ed:f2:12:96:4d:25:e1:0d:bb: 8d:7c:98:b8:89:cf:e1:f3:c2:fe:28:67:2a:d8:33:3c:31:8d: 2d:56:12:4e:b8:03:d0:57:03:da:77:c1:8f:f3:d7:27:ba:99: 6e:18:7b:3c:77:6e:47:0c:b8:74:64:9d:cf:70:39:bf:4a:bd: 7f:11:45:4c:1a:e8:b5:09:f6:55:ef:54:21:ac:c3:fb:b8:19: 39:2d:f6:5d:ad:7f:34:b4:88:fb:20:62:5b:d7:61:d3:75:3f: 38:2a:41:c7:bf:a3:45:09:9c:29:ea:2b:13:ce:94:26:39:45: 96:c6:e4:60 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUM/dIXHOMt8Ni3S6y0PhUIF54Fv8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMxMzA1NTkxMloX DTI1MDMxMjA2MDQxMlowMzExMC8GA1UEAxMoNzcxQUVDODY5MEEyMzM2QUY3QkI2 RjI4OEI4MTc1NEY4OUMwODk5MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMs+PXaqHBhR2BY29MXBIQvV8+udRxIQnicx1qsk0q+jsop/a9FU7ZTWDPSj W8xa5QXc90OMc+gozfAQFylSLTPYviqrdmRMFyYGHm8LZG3bgO/8iKQZs/jB6jEK E0r7BKSNrBs/e5IoOzEjeGcEyvFT0gVQiQWstTs7kRmagOcw4pL9dFkN3cMr6euf 1vMz+c2lotRg2oTOU7iBGqVEt6PWUwEM0n2M4hnRN8g05nHbxBMbvS9MWzv6/vgP z/aYE1Je0Gqg0r8vK9fVYNdethg7uGIXEWr6cNzsm3bUi02CUA+Bfdng2ijJINPY /GtSjouR/MSCzYkCQR+Qi0X0UEcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR3GuyG kKIzave7byiLgXVPicCJkTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk5Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfSRjANBgkqhkiG9w0BAQsFAAOCAQEAUQ6+PxTNk+YGLq0tq2Zv XHVcPFu7WSx4maQE+xc+Cx2of1v8dj1pgCuxZT/HhO3/0bs/eVAKpS5PNS01zCU9 HFHxhtBvWvE0eoza7IXpTY4mVFyynYioGQN2bgSaNt5wGllmCk45gkqiplKGQ2WF ZL8uyQfB2kZMgj6vBV6c8rJ+CHd9PBCd7fISlk0l4Q27jXyYuInP4fPC/ihnKtgz PDGNLVYSTrgD0FcD2nfBj/PXJ7qZbhh7PHduRwy4dGSdz3A5v0q9fxFFTBrotQn2 Ve9UIazD+7gZOS32Xa1/NLSI+yBiW9dh03U/OCpBx7+jRQmcKeorE86UJjlFlsbk YA== -----END CERTIFICATE-----Generated at Wed May 8 21:02:24 2024 by rpki-client on console-fra.rpki-client.org