$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150999.roa File: AS150999.roa (raw, json) Hash identifier: xKSHBF2BGJX5y3WU5CTzQ8u5DzjyAEfbZdT0UvZd4CU= Subject key identifier: 07:7D:22:51:DA:EA:62:0E:55:DA:66:B9:5C:9A:A8:8C:84:28:15:A2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4C42CEFBE2EE46B6843A19BC00B6B5F168765F25 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150999.roa Signing time: Thu 13 Jun 2024 09:00:00 +0000 ROA not before: Thu 13 Jun 2024 08:55:00 +0000 ROA not after: Thu 12 Jun 2025 09:00:00 +0000 asID: 150999 IP address blocks: 103.205.222.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:42:ce:fb:e2:ee:46:b6:84:3a:19:bc:00:b6:b5:f1:68:76:5f:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 13 08:55:00 2024 GMT Not After : Jun 12 09:00:00 2025 GMT Subject: CN=077D2251DAEA620E55DA66B95C9AA88C842815A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6e:c7:98:ff:b3:87:49:b3:64:9c:65:29:b1: 74:27:29:97:e6:b1:4c:6e:f7:34:05:2c:59:2f:8f: 8d:b0:86:d3:33:74:49:f3:dc:4d:ad:ae:b5:61:d9: 8e:58:fa:ee:e5:49:5b:c3:43:93:13:3e:e9:cb:3a: 88:b0:e2:01:7d:4e:f8:09:b2:fc:d7:59:a2:16:89: fa:4f:4d:a2:0a:f4:ef:2a:b2:d3:c5:af:a5:fd:a9: 07:13:56:e8:3a:2c:6f:93:0c:3c:fe:26:92:18:e1: 9d:09:5a:df:3e:ee:f8:c6:d5:d6:84:f9:da:59:5a: e3:3d:7f:66:da:98:d4:e4:c4:b1:62:af:25:58:8b: 21:08:1e:0f:aa:8d:07:fe:57:67:a1:8a:4a:75:c7: 31:f3:92:64:08:f5:1f:04:4b:86:8c:cc:33:50:0d: e2:b6:7f:03:cc:3a:cf:03:a2:e8:37:08:cf:f0:25: 68:92:5d:67:4b:bd:7c:1a:44:5e:e3:f8:55:27:85: 4f:e9:e3:02:76:ac:b3:78:95:c4:79:d0:bf:72:fb: a4:9c:8a:c4:8f:e2:14:85:df:27:14:d9:ca:cb:e1: c5:d2:d9:49:7f:c8:3c:a4:8f:80:f2:2f:dc:8d:7d: 2e:29:2a:6f:09:a3:30:c3:d3:5c:24:b7:36:c6:97: 34:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:7D:22:51:DA:EA:62:0E:55:DA:66:B9:5C:9A:A8:8C:84:28:15:A2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150999.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.205.222.0/23 Signature Algorithm: sha256WithRSAEncryption 08:64:10:0c:b9:11:18:1f:4b:6f:25:bf:86:d2:27:43:24:21: bf:b0:bb:96:f1:db:3c:15:af:ba:4f:50:12:ef:fe:39:42:98: 62:37:43:90:70:24:69:18:9e:b7:25:a2:d0:16:67:b3:c1:3d: 22:cf:19:7f:1f:44:5c:d1:68:f6:1a:7e:50:08:0e:af:36:18: 88:8e:d3:32:dc:dc:6f:81:5b:89:7a:03:26:26:4c:10:ef:24: 2f:69:2d:1f:38:94:e2:09:d3:09:26:b3:ad:65:41:90:98:1c: f9:be:5e:07:00:1e:72:0a:f3:85:6d:02:2d:d0:66:49:eb:da: e7:72:35:c2:cb:2c:23:9b:a3:2a:c7:41:de:44:a8:01:86:16: 3d:80:af:ff:1a:97:79:b0:5c:ea:00:06:9c:1b:e1:77:b6:cc: 48:07:ca:a9:95:31:6a:12:4f:e7:c9:16:80:95:f0:63:47:76: d7:1a:0a:ab:db:13:c9:a3:8c:d2:7b:93:d7:66:66:49:a4:d5: c0:46:6c:87:e5:0b:29:e6:71:76:37:7a:14:59:d9:66:8c:36: a8:ed:fe:c2:1c:b9:e5:2a:30:7e:d2:52:2d:22:42:2f:6c:13: 39:f7:54:b0:4c:31:30:d5:d0:c3:95:77:15:fc:f6:0e:b9:bd: 84:a2:e5:57 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUTELO++LuRraEOhm8ALa18Wh2XyUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYxMzA4NTUwMFoX DTI1MDYxMjA5MDAwMFowMzExMC8GA1UEAxMoMDc3RDIyNTFEQUVBNjIwRTU1REE2 NkI5NUM5QUE4OEM4NDI4MTVBMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMVux5j/s4dJs2ScZSmxdCcpl+axTG73NAUsWS+PjbCG0zN0SfPcTa2utWHZ jlj67uVJW8NDkxM+6cs6iLDiAX1O+Amy/NdZohaJ+k9Nogr07yqy08Wvpf2pBxNW 6Dosb5MMPP4mkhjhnQla3z7u+MbV1oT52lla4z1/ZtqY1OTEsWKvJViLIQgeD6qN B/5XZ6GKSnXHMfOSZAj1HwRLhozMM1AN4rZ/A8w6zwOi6DcIz/AlaJJdZ0u9fBpE XuP4VSeFT+njAnass3iVxHnQv3L7pJyKxI/iFIXfJxTZysvhxdLZSX/IPKSPgPIv 3I19LikqbwmjMMPTXCS3NsaXNC0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQHfSJR 2upiDlXaZrlcmqiMhCgVojAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk5OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfN3jANBgkqhkiG9w0BAQsFAAOCAQEACGQQDLkRGB9LbyW/htIn QyQhv7C7lvHbPBWvuk9QEu/+OUKYYjdDkHAkaRietyWi0BZns8E9Is8Zfx9EXNFo 9hp+UAgOrzYYiI7TMtzcb4FbiXoDJiZMEO8kL2ktHziU4gnTCSazrWVBkJgc+b5e BwAecgrzhW0CLdBmSeva53I1wsssI5ujKsdB3kSoAYYWPYCv/xqXebBc6gAGnBvh d7bMSAfKqZUxahJP58kWgJXwY0d21xoKq9sTyaOM0nuT12ZmSaTVwEZsh+ULKeZx djd6FFnZZow2qO3+why55SowftJSLSJCL2wTOfdUsEwxMNXQw5V3Ffz2Drm9hKLl Vw== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:29 2024 by rpki-client on console-ams.rpki-client.org