$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150549.roa File: AS150549.roa (raw, json) Hash identifier: atedOZUPTJIqG75HyRVFG0n31ftlSRK+9gpqYqvyLbU= Subject key identifier: 42:48:A0:8A:E3:0F:7A:4C:42:08:F3:3B:7C:45:B5:D2:B6:A7:DD:62 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 21501BA2A5DC81AFC7B39DC0EB4DC08E1E0195DC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150549.roa Signing time: Tue 08 Apr 2025 07:00:00 +0000 ROA not before: Tue 08 Apr 2025 06:55:00 +0000 ROA not after: Tue 07 Apr 2026 07:00:00 +0000 asID: 150549 IP address blocks: 2001:df2:24c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:50:1b:a2:a5:dc:81:af:c7:b3:9d:c0:eb:4d:c0:8e:1e:01:95:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 8 06:55:00 2025 GMT Not After : Apr 7 07:00:00 2026 GMT Subject: CN=4248A08AE30F7A4C4208F33B7C45B5D2B6A7DD62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:26:4f:af:55:7e:db:ce:58:89:ac:62:11:a4: a9:06:ad:23:06:4d:0a:21:25:ab:7c:bd:78:e0:c2: 3a:37:8b:4d:c8:7e:a8:a1:f2:76:aa:0e:ed:ee:aa: 55:e0:86:a0:dd:30:10:61:15:7f:26:9c:e3:27:35: 34:a2:57:80:11:01:fb:22:7b:67:33:a0:04:ce:e6: c1:e4:9a:30:b7:3b:1e:c1:28:07:00:54:f5:6d:da: 0c:36:94:6b:bd:ea:53:97:32:7b:eb:31:c4:a6:9f: 25:59:b0:73:21:01:09:73:c5:09:6e:ce:73:d7:79: 0f:ba:ff:ff:7c:b8:a8:3b:07:fe:54:d0:74:82:d2: ff:bc:70:f3:af:a0:cc:16:9c:20:4a:03:54:59:02: cb:98:3f:8f:85:8f:7f:4b:90:04:80:5b:3d:59:1f: 7a:4c:70:48:5c:88:55:0e:14:e0:64:6d:e0:ce:93: 73:55:08:ac:8c:49:63:a7:3b:f3:a3:58:84:47:b2: 63:14:7e:c6:16:18:0d:a4:37:14:b4:01:3e:10:cd: 2e:9f:e8:75:e3:32:17:7b:fa:71:cd:86:0f:f0:96: e8:33:bf:4c:8a:5e:58:78:95:72:4f:d1:a5:5b:41: 38:e2:f5:bb:6f:61:35:1d:a8:e9:27:89:0c:09:85: 76:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:48:A0:8A:E3:0F:7A:4C:42:08:F3:3B:7C:45:B5:D2:B6:A7:DD:62 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150549.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:24c0::/48 Signature Algorithm: sha256WithRSAEncryption 2b:c5:68:8c:59:27:1e:91:30:8f:a1:0d:ec:7e:d2:08:57:e3: 50:96:f4:40:c6:b3:7c:fc:66:29:14:a3:55:a2:d3:ca:d7:e3: 20:2a:51:50:3c:9f:eb:17:23:8a:c3:25:e5:7e:ba:8d:4c:f4: e0:ad:a6:70:d3:83:05:e7:0f:a6:d1:91:f2:81:40:e1:80:01: 21:8f:36:14:40:65:07:92:9b:2e:46:ba:51:43:b6:6a:c4:d2: 76:67:41:9e:ba:79:cb:42:38:99:37:6c:07:f4:01:dd:22:98: 09:42:56:f7:8d:fe:a3:04:b6:9e:fd:8d:bc:39:e8:46:fa:d1: cc:3a:7f:b0:94:c0:3a:de:7b:f5:66:28:fb:3c:3b:91:38:df: cf:eb:96:b8:82:00:2f:97:66:e2:eb:7d:b6:9f:75:6b:2f:7b: 25:fa:af:68:7a:47:63:2b:f8:d1:f5:bb:b4:19:cd:f3:b4:ee: 4a:6d:96:2a:23:29:e3:f7:c1:b9:73:27:16:f2:bc:40:2d:ad: 0d:bd:60:dd:ae:e1:72:4b:d2:c9:2e:23:ba:67:5e:58:79:1c: 1d:f0:7d:e8:f3:4d:b5:af:86:a2:b8:4e:93:36:2c:5a:6a:45: 79:78:81:32:60:1e:c7:72:39:b0:af:53:29:8a:6f:08:0f:15: 26:a4:44:af -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUIVAboqXcga/Hs53A603Ajh4BldwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQwODA2NTUwMFoX DTI2MDQwNzA3MDAwMFowMzExMC8GA1UEAxMoNDI0OEEwOEFFMzBGN0E0QzQyMDhG MzNCN0M0NUI1RDJCNkE3REQ2MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMQmT69VftvOWImsYhGkqQatIwZNCiElq3y9eODCOjeLTch+qKHydqoO7e6q VeCGoN0wEGEVfyac4yc1NKJXgBEB+yJ7ZzOgBM7mweSaMLc7HsEoBwBU9W3aDDaU a73qU5cye+sxxKafJVmwcyEBCXPFCW7Oc9d5D7r//3y4qDsH/lTQdILS/7xw86+g zBacIEoDVFkCy5g/j4WPf0uQBIBbPVkfekxwSFyIVQ4U4GRt4M6Tc1UIrIxJY6c7 86NYhEeyYxR+xhYYDaQ3FLQBPhDNLp/odeMyF3v6cc2GD/CW6DO/TIpeWHiVck/R pVtBOOL1u29hNR2o6SeJDAmFdo0CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRCSKCK 4w96TEII8zt8RbXStqfdYjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDU0OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfIkwDANBgkqhkiG9w0BAQsFAAOCAQEAK8VojFknHpEwj6EN 7H7SCFfjUJb0QMazfPxmKRSjVaLTytfjICpRUDyf6xcjisMl5X66jUz04K2mcNOD BecPptGR8oFA4YABIY82FEBlB5KbLka6UUO2asTSdmdBnrp5y0I4mTdsB/QB3SKY CUJW943+owS2nv2NvDnoRvrRzDp/sJTAOt579WYo+zw7kTjfz+uWuIIAL5dm4ut9 tp91ay97JfqvaHpHYyv40fW7tBnN87TuSm2WKiMp4/fBuXMnFvK8QC2tDb1g3a7h ckvSyS4jumdeWHkcHfB96PNNta+GorhOkzYsWmpFeXiBMmAex3I5sK9TKYpvCA8V JqRErw== -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:19 2025 by rpki-client on console.sobornost.net