$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150999.roa File: AS150999.roa (raw, json) Hash identifier: 2eaqSEpNzoeufF0gXEd8p6FlKM25aeqFgudWDShdbis= Subject key identifier: 50:D3:B4:41:33:32:71:26:79:C5:10:D2:7E:62:BA:78:1A:24:AA:6E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 70FCEE527F7541F192DFCEDA05CD08382313E551 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150999.roa Signing time: Thu 13 Jul 2023 08:07:51 +0000 ROA not before: Thu 13 Jul 2023 08:02:51 +0000 ROA not after: Thu 11 Jul 2024 08:07:51 +0000 asID: 150999 IP address blocks: 103.205.222.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:fc:ee:52:7f:75:41:f1:92:df:ce:da:05:cd:08:38:23:13:e5:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 13 08:02:51 2023 GMT Not After : Jul 11 08:07:51 2024 GMT Subject: CN=50D3B4413332712679C510D27E62BA781A24AA6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d8:84:ea:50:0e:9e:77:1f:a4:29:5e:e5:8e: 77:53:f8:8c:b3:b1:4e:1f:d7:6e:5f:57:c4:66:1f: 59:1f:3a:0a:65:30:62:a3:67:aa:9f:d2:97:68:aa: 33:f8:81:22:38:02:92:44:d0:35:23:be:da:6c:71: 7b:12:f2:52:58:19:46:e8:fb:bc:ed:66:48:15:e1: bc:c7:4a:21:42:a2:ef:0b:09:e2:db:92:51:e3:e9: ed:e2:ee:1a:b9:d2:82:41:19:f2:dc:92:ee:21:31: e0:b1:6a:73:cf:87:76:98:17:9f:9a:b9:47:ef:b6: 1b:75:a8:db:96:56:2d:64:13:90:e0:c7:82:5a:b7: 79:3e:a1:39:1d:b4:d1:0d:d1:25:7a:1b:06:56:58: 48:55:c2:34:30:cc:9e:e1:27:b9:40:a7:b2:b3:2c: b6:8e:36:6f:aa:24:f2:b1:f0:76:cf:66:db:c2:8a: 5b:11:d5:cf:17:2d:6f:59:6f:fc:43:d0:bd:4c:de: eb:92:75:09:11:79:ed:04:50:39:38:b3:81:83:81: d2:e1:0e:95:d2:c3:56:37:71:33:8c:ae:d9:da:cd: f7:ae:21:b0:df:28:1e:b2:85:3f:e6:21:11:16:57: cd:30:24:cd:12:cf:fb:cf:f4:ad:94:ca:68:a9:0b: 53:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:D3:B4:41:33:32:71:26:79:C5:10:D2:7E:62:BA:78:1A:24:AA:6E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150999.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.205.222.0/23 Signature Algorithm: sha256WithRSAEncryption 39:47:36:5b:06:ef:55:0d:4d:7c:a2:4f:5d:b2:c5:99:3d:98: 08:fb:de:a2:80:e5:3b:15:6f:6b:31:48:ad:a1:21:ab:c6:e7: 45:ff:0e:aa:b5:38:3e:7e:bc:0b:40:38:33:52:54:08:ca:7d: 09:fa:a5:48:b0:0a:a1:bd:8d:e6:ae:59:29:c0:79:72:d4:dd: 78:1a:71:7c:bf:f7:24:00:2b:97:39:4b:fb:4a:ac:ba:f3:86: db:70:5b:b5:c4:76:20:b4:52:ff:0f:92:cf:9b:c5:08:ce:eb: 56:d8:8a:63:2b:cf:8f:82:08:a6:48:d7:2e:8b:00:40:ca:16: 33:44:96:8c:59:c0:4b:9f:e7:41:0e:4c:4c:08:33:2f:c5:5b: 40:20:e5:2f:cc:47:ce:39:e3:4b:ef:9b:f5:ae:3e:a0:84:59: 30:d8:f9:74:32:7d:90:bb:ad:e0:42:81:92:67:71:0c:40:55: b1:d8:bc:f1:9f:59:b6:88:4f:2c:db:3f:e7:8d:67:82:e8:0d: c8:db:eb:6f:1e:c7:aa:fd:fe:50:72:0b:61:fa:56:42:44:4c: 5e:46:a2:fc:67:cb:4f:b0:3f:04:0f:04:35:cb:66:44:95:8a: aa:8f:ca:4b:6c:84:59:2a:95:0a:bd:2a:b8:87:91:a7:79:cb: e4:65:17:00 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUcPzuUn91QfGS387aBc0IOCMT5VEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcxMzA4MDI1MVoX DTI0MDcxMTA4MDc1MVowMzExMC8GA1UEAxMoNTBEM0I0NDEzMzMyNzEyNjc5QzUx MEQyN0U2MkJBNzgxQTI0QUE2RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALbYhOpQDp53H6QpXuWOd1P4jLOxTh/Xbl9XxGYfWR86CmUwYqNnqp/Sl2iq M/iBIjgCkkTQNSO+2mxxexLyUlgZRuj7vO1mSBXhvMdKIUKi7wsJ4tuSUePp7eLu GrnSgkEZ8tyS7iEx4LFqc8+HdpgXn5q5R++2G3Wo25ZWLWQTkODHglq3eT6hOR20 0Q3RJXobBlZYSFXCNDDMnuEnuUCnsrMsto42b6ok8rHwds9m28KKWxHVzxctb1lv /EPQvUze65J1CRF57QRQOTizgYOB0uEOldLDVjdxM4yu2drN964hsN8oHrKFP+Yh ERZXzTAkzRLP+8/0rZTKaKkLU0kCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRQ07RB MzJxJnnFENJ+Yrp4GiSqbjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk5OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfN3jANBgkqhkiG9w0BAQsFAAOCAQEAOUc2WwbvVQ1NfKJPXbLF mT2YCPveooDlOxVvazFIraEhq8bnRf8OqrU4Pn68C0A4M1JUCMp9CfqlSLAKob2N 5q5ZKcB5ctTdeBpxfL/3JAArlzlL+0qsuvOG23BbtcR2ILRS/w+Sz5vFCM7rVtiK YyvPj4IIpkjXLosAQMoWM0SWjFnAS5/nQQ5MTAgzL8VbQCDlL8xHzjnjS++b9a4+ oIRZMNj5dDJ9kLut4EKBkmdxDEBVsdi88Z9ZtohPLNs/541ngugNyNvrbx7Hqv3+ UHILYfpWQkRMXkai/GfLT7A/BA8ENctmRJWKqo/KS2yEWSqVCr0quIeRp3nL5GUX AA== -----END CERTIFICATE-----Generated at Wed May 8 14:59:57 2024 by rpki-client on console-ams.rpki-client.org