$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150946.roa File: AS150946.roa (raw, json) Hash identifier: ubW0X41VB6Dec7x05jjBmV/mqgQSud3Gk0sQd/WvmmU= Subject key identifier: 83:43:76:1A:28:26:83:8C:5A:6E:49:72:B8:0F:B9:0D:41:CA:F6:FD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 478D03CF2A5AAAF1B741AB04DA10614F638B05DC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150946.roa Signing time: Tue 08 Apr 2025 03:00:00 +0000 ROA not before: Tue 08 Apr 2025 02:55:00 +0000 ROA not after: Tue 07 Apr 2026 03:00:00 +0000 asID: 150946 IP address blocks: 2001:df2:8ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:8d:03:cf:2a:5a:aa:f1:b7:41:ab:04:da:10:61:4f:63:8b:05:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 8 02:55:00 2025 GMT Not After : Apr 7 03:00:00 2026 GMT Subject: CN=8343761A2826838C5A6E4972B80FB90D41CAF6FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b8:5a:46:97:aa:66:49:77:40:01:1e:35:09: 15:df:60:34:04:86:09:4a:1f:16:c0:7c:6b:c5:be: 27:d9:99:1d:80:e4:6c:6b:d8:ec:7d:73:4d:1d:09: de:80:3d:bb:cc:8e:c7:c7:cb:86:56:97:39:6f:de: be:ac:60:5e:1f:67:80:11:54:e9:03:f0:a6:d0:5c: 9f:9c:cf:8e:f2:17:f9:c7:ce:64:5d:2e:65:a1:c6: ab:e0:27:69:a9:f9:f6:61:bb:ff:e5:46:16:59:4b: 88:03:dd:44:d5:e1:56:31:94:28:54:2a:28:c8:be: db:6e:15:1d:69:eb:4d:ac:63:6a:db:5a:b9:e6:58: 26:7e:8d:45:cc:5d:b7:11:b4:dc:23:e7:f8:5d:e7: ac:6d:ee:2c:49:92:ef:41:b3:6d:92:73:4a:d3:0c: 8a:d4:78:f2:50:54:2e:cd:62:6e:19:c1:d0:c0:04: 69:84:7c:01:ab:e5:78:5a:dd:b5:56:f4:02:7b:27: aa:9d:0b:45:8d:40:dd:04:5c:e0:f4:fa:ae:91:ad: 6c:d5:e6:9d:69:32:ad:91:e8:f0:c5:c7:09:e4:ad: 9f:61:ca:0b:70:80:b3:ab:98:b3:e1:66:7d:b7:88: bf:7f:ef:ea:cf:f7:1a:8b:fa:20:6f:27:5e:d5:a8: 46:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:43:76:1A:28:26:83:8C:5A:6E:49:72:B8:0F:B9:0D:41:CA:F6:FD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150946.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:8ac0::/48 Signature Algorithm: sha256WithRSAEncryption 6b:cb:e6:2f:37:d2:be:56:dd:36:f1:88:ba:d0:46:d6:49:45: a6:81:1c:40:7c:0a:db:8a:08:dc:c2:13:cf:af:c4:2b:51:72: 2f:6f:8e:b0:ae:73:af:f9:b3:a9:00:6a:de:5c:29:d9:c7:32: cd:6c:d4:7b:d5:4e:67:2b:d7:13:2e:d0:4e:83:c5:1c:6e:5d: f9:13:ca:a3:f4:8c:86:0a:fd:df:63:4c:f6:ae:a9:12:d1:b7: 02:a9:79:11:66:b6:37:ea:b4:aa:88:b3:45:0a:45:5d:1d:01: af:7e:f8:58:f6:b9:74:92:f6:30:97:44:54:16:7f:ce:00:23: 2f:62:c4:3c:f0:70:f6:10:96:2c:27:1a:27:b7:e9:f7:7f:10: 0a:1d:88:c4:c2:53:27:0f:68:3d:ac:32:bb:59:fa:5d:2b:73: c2:42:fb:bd:26:89:80:1f:de:4d:c4:0b:ce:68:30:31:8f:f9: 10:f2:d4:85:99:eb:ab:20:dc:f8:8c:3f:d3:49:14:0f:49:87: 4a:bd:e2:90:7a:46:fb:11:ec:cd:cc:4b:3d:ee:12:3d:b2:ff: 18:58:10:92:68:bd:9d:ae:2c:bd:7e:14:de:61:e0:4b:f9:dd: 03:20:03:54:28:33:98:c6:4a:b8:c6:84:98:d0:62:a2:c2:bd: 80:c0:59:aa -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUR40DzypaqvG3QasE2hBhT2OLBdwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQwODAyNTUwMFoX DTI2MDQwNzAzMDAwMFowMzExMC8GA1UEAxMoODM0Mzc2MUEyODI2ODM4QzVBNkU0 OTcyQjgwRkI5MEQ0MUNBRjZGRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALi4WkaXqmZJd0ABHjUJFd9gNASGCUofFsB8a8W+J9mZHYDkbGvY7H1zTR0J 3oA9u8yOx8fLhlaXOW/evqxgXh9ngBFU6QPwptBcn5zPjvIX+cfOZF0uZaHGq+An aan59mG7/+VGFllLiAPdRNXhVjGUKFQqKMi+224VHWnrTaxjattaueZYJn6NRcxd txG03CPn+F3nrG3uLEmS70GzbZJzStMMitR48lBULs1ibhnB0MAEaYR8AavleFrd tVb0Ansnqp0LRY1A3QRc4PT6rpGtbNXmnWkyrZHo8MXHCeStn2HKC3CAs6uYs+Fm fbeIv3/v6s/3Gov6IG8nXtWoRnsCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSDQ3Ya KCaDjFpuSXK4D7kNQcr2/TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk0Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfKKwDANBgkqhkiG9w0BAQsFAAOCAQEAa8vmLzfSvlbdNvGI utBG1klFpoEcQHwK24oI3MITz6/EK1FyL2+OsK5zr/mzqQBq3lwp2ccyzWzUe9VO ZyvXEy7QToPFHG5d+RPKo/SMhgr932NM9q6pEtG3Aql5EWa2N+q0qoizRQpFXR0B r374WPa5dJL2MJdEVBZ/zgAjL2LEPPBw9hCWLCcaJ7fp938QCh2IxMJTJw9oPawy u1n6XStzwkL7vSaJgB/eTcQLzmgwMY/5EPLUhZnrqyDc+Iw/00kUD0mHSr3ikHpG +xHszcxLPe4SPbL/GFgQkmi9na4svX4U3mHgS/ndAyADVCgzmMZKuMaEmNBiosK9 gMBZqg== -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:19 2025 by rpki-client on console.sobornost.net