$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150997.roa File: AS150997.roa (raw, json) Hash identifier: I6GRGpp/3t8bdK+2p9ka6LEhvuAT1vM8VlEdnKmOOh8= Subject key identifier: 16:7E:8D:8F:C3:AD:53:1E:B3:AF:70:CC:28:9C:1A:30:42:B8:F6:44 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2E7C99994D7250968AA95DFEF1A47337637F30F2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150997.roa Signing time: Mon 03 Jun 2024 10:00:00 +0000 ROA not before: Mon 03 Jun 2024 09:55:00 +0000 ROA not after: Mon 02 Jun 2025 10:00:00 +0000 asID: 150997 IP address blocks: 103.205.220.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:7c:99:99:4d:72:50:96:8a:a9:5d:fe:f1:a4:73:37:63:7f:30:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jun 3 09:55:00 2024 GMT Not After : Jun 2 10:00:00 2025 GMT Subject: CN=167E8D8FC3AD531EB3AF70CC289C1A3042B8F644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:13:9f:c1:6f:c1:cc:6d:6f:0d:8b:14:be:e0: a5:c1:6c:dc:b7:78:63:36:7d:ba:da:70:24:cb:1a: e3:1e:d3:37:8b:9f:e9:72:53:90:12:dd:81:48:d5: e9:d7:e6:2f:fa:7d:86:33:15:80:cc:6a:db:26:dc: a4:81:5b:63:9c:9d:88:b3:43:85:3e:cf:8c:25:0f: 73:48:0c:4d:7c:51:18:7e:0b:80:52:4b:6f:0d:48: 69:d5:33:c1:c0:ba:ca:07:a9:c0:4d:96:33:00:27: 60:9d:d6:56:36:b2:10:18:15:c5:9e:3d:93:22:ff: 13:15:5e:c8:63:6e:57:d1:7f:64:98:db:ca:6b:1e: 37:a0:51:68:b6:99:1b:5e:1c:41:34:38:07:fa:c6: be:b7:c3:cf:23:43:f8:ff:af:b0:15:2e:09:f9:e9: ed:0c:e5:ff:43:f5:c0:21:2a:94:74:2e:61:80:d8: 31:ff:d2:ea:84:87:9f:05:9d:5b:c0:10:2d:e0:64: bb:25:dd:db:ca:37:e5:9a:c8:4a:d0:f5:8f:21:bc: 0b:00:4b:c5:03:df:04:bc:92:81:41:5f:ab:81:26: b5:70:48:a2:68:a6:ad:ed:d0:a2:23:74:e0:b6:d7: e8:cd:16:28:c9:e3:c7:7d:de:bb:df:63:bc:bb:0a: d9:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:7E:8D:8F:C3:AD:53:1E:B3:AF:70:CC:28:9C:1A:30:42:B8:F6:44 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150997.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.205.220.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:26:8b:33:6e:da:e0:35:63:da:c7:a5:c1:56:13:73:57:6e: f0:2b:76:4d:b9:a3:46:d3:db:6a:85:7d:ca:bb:ef:ac:e0:d3: ba:ca:6c:f5:cb:2c:ea:b1:3d:93:ec:5d:6b:02:ca:5f:07:c4: 16:f6:8f:c8:bd:79:2d:7e:24:e2:ef:35:c4:77:1b:65:e8:4a: 05:29:bf:fb:73:82:4d:0d:5f:79:bb:60:78:26:e7:3d:76:f0: be:af:10:16:ee:84:ae:0c:6e:3f:96:23:4c:a0:51:be:8e:e4: 2b:81:b9:c2:83:0c:64:23:f8:d9:07:0e:b6:57:7b:ab:cc:fd: 32:c2:14:d9:24:bc:f8:79:18:20:05:bc:a6:e5:a4:63:bb:db: 1b:ed:16:fa:77:11:85:97:fd:11:24:2d:58:b4:af:df:aa:b9: a8:cb:8d:6c:49:4d:10:8f:be:b7:be:7d:eb:2d:c0:bc:90:de: 4f:f4:45:49:8c:f3:17:5b:35:e1:10:c3:f7:4e:4d:95:ad:99: 14:bd:8d:34:b6:7a:28:2d:66:48:5b:f2:cb:ec:ed:4f:53:f9: 76:d1:4a:b1:34:aa:d1:37:b2:ab:fd:75:e9:82:e6:64:fe:07: 9b:3a:dc:1c:da:48:9c:b5:d9:ae:b2:59:07:24:01:90:ac:52: 98:9b:78:0b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIULnyZmU1yUJaKqV3+8aRzN2N/MPIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYwMzA5NTUwMFoX DTI1MDYwMjEwMDAwMFowMzExMC8GA1UEAxMoMTY3RThEOEZDM0FENTMxRUIzQUY3 MENDMjg5QzFBMzA0MkI4RjY0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANITn8Fvwcxtbw2LFL7gpcFs3Ld4YzZ9utpwJMsa4x7TN4uf6XJTkBLdgUjV 6dfmL/p9hjMVgMxq2ybcpIFbY5ydiLNDhT7PjCUPc0gMTXxRGH4LgFJLbw1IadUz wcC6ygepwE2WMwAnYJ3WVjayEBgVxZ49kyL/ExVeyGNuV9F/ZJjbymseN6BRaLaZ G14cQTQ4B/rGvrfDzyND+P+vsBUuCfnp7Qzl/0P1wCEqlHQuYYDYMf/S6oSHnwWd W8AQLeBkuyXd28o35ZrIStD1jyG8CwBLxQPfBLySgUFfq4EmtXBIomimre3QoiN0 4LbX6M0WKMnjx33eu99jvLsK2bUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQWfo2P w61THrOvcMwonBowQrj2RDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk5Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfN3DANBgkqhkiG9w0BAQsFAAOCAQEAPCaLM27a4DVj2selwVYT c1du8Ct2TbmjRtPbaoV9yrvvrODTusps9css6rE9k+xdawLKXwfEFvaPyL15LX4k 4u81xHcbZehKBSm/+3OCTQ1febtgeCbnPXbwvq8QFu6ErgxuP5YjTKBRvo7kK4G5 woMMZCP42QcOtld7q8z9MsIU2SS8+HkYIAW8puWkY7vbG+0W+ncRhZf9ESQtWLSv 36q5qMuNbElNEI++t7596y3AvJDeT/RFSYzzF1s14RDD905Nla2ZFL2NNLZ6KC1m SFvyy+ztT1P5dtFKsTSq0Teyq/116YLmZP4HmzrcHNpInLXZrrJZByQBkKxSmJt4 Cw== -----END CERTIFICATE-----Generated at Sun Feb 16 20:46:22 2025 by rpki-client