$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150986.roa File: AS150986.roa (raw, json) Hash identifier: rxQaGRtewciGmWpbjkw3Nba2sSr2h3PvqlsAkgdjGfc= Subject key identifier: 5C:1F:5D:14:54:89:6D:BC:93:60:98:82:2E:88:3E:0A:B1:A2:70:02 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3DD71BB00CE636964663C9CA476AB25398F68176 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150986.roa Signing time: Tue 08 Apr 2025 08:55:16 +0000 ROA not before: Tue 08 Apr 2025 08:50:16 +0000 ROA not after: Tue 07 Apr 2026 08:55:16 +0000 asID: 150986 IP address blocks: 103.193.146.0/23 maxlen: 24 2001:df2:afc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:d7:1b:b0:0c:e6:36:96:46:63:c9:ca:47:6a:b2:53:98:f6:81:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 8 08:50:16 2025 GMT Not After : Apr 7 08:55:16 2026 GMT Subject: CN=5C1F5D1454896DBC936098822E883E0AB1A27002 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ef:4c:98:09:f0:c6:d3:9f:53:e5:3e:0d:4d: e0:3f:9c:08:3c:71:03:1a:8e:d2:0f:56:dc:5b:5d: 84:fb:a2:e0:2d:59:db:67:43:6a:2b:04:50:1c:b9: 75:59:3c:77:29:fe:f9:fe:be:7d:95:d8:f0:2e:1c: 0d:69:b5:40:8c:fb:d3:67:c4:2e:3c:69:f2:97:d0: 6b:20:fa:91:9a:57:05:3e:fe:c4:ed:d0:6d:98:0a: bb:f0:12:70:98:d7:e2:66:6e:9b:9d:88:89:3b:3c: 81:b1:c5:ab:ae:2a:a1:1b:7c:38:f7:eb:ba:58:fc: 37:cf:3f:0d:2d:84:87:28:5f:d9:9a:ae:b2:48:31: cf:0a:67:c7:83:06:12:bd:24:63:71:77:d5:3b:e6: 86:94:eb:8c:53:83:36:7c:11:a1:e0:17:ae:04:83: ae:36:61:7f:2b:86:f4:ad:dd:1d:3a:bd:1b:ff:48: a1:9e:28:e0:59:3e:6d:c2:e8:11:b5:bd:f4:7f:d2: 62:e9:0f:d0:e5:8d:3b:28:f1:3d:f6:b9:97:9a:2e: 28:57:87:e8:95:6b:a7:51:56:98:50:9d:ca:35:8f: 7a:55:7e:e2:80:f7:de:2a:62:a1:65:5b:4a:77:9e: 13:35:4b:9f:a1:51:b1:95:97:6b:db:94:a1:76:04: 95:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:1F:5D:14:54:89:6D:BC:93:60:98:82:2E:88:3E:0A:B1:A2:70:02 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150986.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.193.146.0/23 IPv6: 2001:df2:afc0::/48 Signature Algorithm: sha256WithRSAEncryption 7e:db:8e:8b:cc:ff:d2:e2:c1:3d:1c:e2:a0:f2:eb:b4:89:de: 84:b2:72:2e:26:f9:78:b2:5e:e3:50:53:bc:d7:ac:8b:f1:5a: 45:a6:b8:de:bf:a4:b7:72:35:ba:f9:cf:eb:31:a2:00:d8:73: 4d:4c:70:02:61:00:5d:7e:65:c2:17:0b:15:51:b4:a9:2a:c7: 97:78:5c:c8:c4:10:4a:71:5d:de:7c:ca:de:96:c5:d0:76:2c: 8e:3c:88:b1:eb:ff:2d:55:b2:26:51:37:fd:4a:57:18:02:36: 7e:cc:97:ef:6e:92:b4:99:c0:9c:1d:2b:52:16:19:f1:0c:08: ab:b3:47:31:25:0f:d6:0f:07:da:f3:eb:d0:a5:b4:17:44:4e: 19:6d:17:9a:9a:dd:01:3e:f6:bb:b2:41:f5:9b:7f:50:f9:ae: 74:56:b5:d6:84:75:12:01:99:10:bb:44:f7:8c:8a:23:61:bf: 62:62:a8:ba:ad:61:ff:41:2d:fe:c1:0c:59:69:8b:96:36:10: c4:0b:9d:1c:50:f3:58:f3:8b:29:7f:b8:5b:13:63:39:0b:87: 73:75:35:86:f3:0e:4c:14:3f:37:e2:19:92:f6:9b:e5:e6:2a: 4b:6c:f2:86:13:50:2e:ee:d4:86:a4:86:cd:26:90:d3:1a:ed: d1:a5:a0:23 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUPdcbsAzmNpZGY8nKR2qyU5j2gXYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQwODA4NTAxNloX DTI2MDQwNzA4NTUxNlowMzExMC8GA1UEAxMoNUMxRjVEMTQ1NDg5NkRCQzkzNjA5 ODgyMkU4ODNFMEFCMUEyNzAwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMHvTJgJ8MbTn1PlPg1N4D+cCDxxAxqO0g9W3FtdhPui4C1Z22dDaisEUBy5 dVk8dyn++f6+fZXY8C4cDWm1QIz702fELjxp8pfQayD6kZpXBT7+xO3QbZgKu/AS cJjX4mZum52IiTs8gbHFq64qoRt8OPfrulj8N88/DS2Ehyhf2Zquskgxzwpnx4MG Er0kY3F31TvmhpTrjFODNnwRoeAXrgSDrjZhfyuG9K3dHTq9G/9IoZ4o4Fk+bcLo EbW99H/SYukP0OWNOyjxPfa5l5ouKFeH6JVrp1FWmFCdyjWPelV+4oD33ipioWVb SneeEzVLn6FRsZWXa9uUoXYElRECAwEAAaOCAeEwggHdMB0GA1UdDgQWBBRcH10U VIltvJNgmIIuiD4KsaJwAjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk4Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWfBkjAPBAIAAjAJAwcAIAEN8q/AMA0GCSqGSIb3DQEBCwUAA4IB AQB+246LzP/S4sE9HOKg8uu0id6EsnIuJvl4sl7jUFO816yL8VpFprjev6S3cjW6 +c/rMaIA2HNNTHACYQBdfmXCFwsVUbSpKseXeFzIxBBKcV3efMrelsXQdiyOPIix 6/8tVbImUTf9SlcYAjZ+zJfvbpK0mcCcHStSFhnxDAirs0cxJQ/WDwfa8+vQpbQX RE4ZbReamt0BPva7skH1m39Q+a50VrXWhHUSAZkQu0T3jIojYb9iYqi6rWH/QS3+ wQxZaYuWNhDEC50cUPNY84spf7hbE2M5C4dzdTWG8w5MFD834hmS9pvl5ipLbPKG E1Au7tSGpIbNJpDTGu3RpaAj -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:19 2025 by rpki-client on console.sobornost.net