$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150924.roa File: AS150924.roa (raw, json) Hash identifier: s2CKGzBvmP5+KTr36XG2baW3ic21Qx79e0avcIgARuY= Subject key identifier: 8B:7C:39:5E:99:23:E6:74:5E:CB:94:91:DE:93:B4:0B:4E:ED:F3:9C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2707F1F48741694E3ACD5C7E5EFE9EF57B363118 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150924.roa Signing time: Fri 13 Jun 2025 07:00:00 +0000 ROA not before: Fri 13 Jun 2025 06:55:00 +0000 ROA not after: Fri 12 Jun 2026 07:00:00 +0000 asID: 150924 IP address blocks: 2001:df2:1ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 08:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:07:f1:f4:87:41:69:4e:3a:cd:5c:7e:5e:fe:9e:f5:7b:36:31:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 13 06:55:00 2025 GMT Not After : Jun 12 07:00:00 2026 GMT Subject: CN=8B7C395E9923E6745ECB9491DE93B40B4EEDF39C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1c:4f:f7:23:0b:1a:64:a4:05:1c:74:fe:c1: 87:5b:32:53:10:3c:e7:22:1a:ce:c3:bc:d8:ed:bf: 39:53:21:d4:c1:59:c5:bb:2c:32:ca:40:00:19:34: 50:44:d2:71:62:f3:2f:15:31:4d:27:ba:00:c6:82: ca:ab:0a:5f:13:7e:5e:b8:bf:35:e6:03:c9:1f:fa: 0f:ae:e3:0e:5a:b6:fa:d6:26:8e:78:14:02:7d:74: 06:1c:98:b9:b9:4d:a1:37:44:49:f6:ef:56:02:07: 26:06:3e:cd:55:0c:50:ed:1e:db:19:58:c8:9a:6b: 95:15:96:fa:70:5b:97:50:c1:26:24:85:f4:0d:eb: ba:44:23:86:61:30:a4:86:ff:d9:d4:29:c0:08:9e: f5:0c:d2:92:22:94:9d:73:de:b3:4b:df:aa:c7:ee: 21:3c:d2:3d:9d:c0:84:6f:3c:bb:e7:18:89:4d:3b: af:4d:c3:6f:bc:0f:29:d6:11:63:5d:7f:af:cb:61: 89:75:e1:1a:43:94:11:31:06:34:c4:16:cc:5f:2f: 48:b5:d5:f9:3f:03:e8:24:48:fb:f9:03:57:0a:30: a8:74:e0:c5:9e:d3:9a:d8:f6:00:92:10:3e:27:79: af:3d:15:ca:33:72:3f:d3:a9:9d:a7:7a:22:ea:04: e1:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:7C:39:5E:99:23:E6:74:5E:CB:94:91:DE:93:B4:0B:4E:ED:F3:9C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150924.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:1ec0::/48 Signature Algorithm: sha256WithRSAEncryption 7f:17:2e:d8:34:a0:81:f9:36:e7:e2:89:ae:94:f4:f0:62:a8: 44:d6:92:94:bd:27:53:71:56:47:48:b5:ab:c4:f7:db:81:c2: 34:6e:d6:c0:13:cf:2d:cd:8a:cd:3b:47:e8:6a:29:96:d3:d1: 12:d5:4d:59:38:e8:c5:d6:f8:88:63:4b:76:df:ed:ab:2f:32: 4f:e5:5f:67:b6:29:8e:6b:8c:a2:cc:b0:85:b9:dc:36:84:8b: 80:6a:93:ce:5a:84:a5:b8:10:5a:02:46:e1:13:6f:6c:b0:6c: f7:85:66:b7:a9:35:12:2a:a6:6a:40:50:4a:b1:1d:87:58:3f: 76:0a:a1:68:e3:7f:95:38:94:07:6c:89:2d:f3:d2:06:e0:72: 33:68:c9:a0:54:7f:c0:93:5e:6f:7f:f9:dd:77:2e:e2:5a:ab: 98:4b:72:ea:0e:c9:e3:5a:22:26:17:26:fc:52:4c:fa:2a:00: d4:c1:27:d7:6a:7c:b1:f7:d4:e1:04:cd:4d:71:35:f4:01:2c: 80:bd:38:8d:df:d1:7f:e8:b1:52:a0:7e:a1:6e:c8:36:bd:ab: 66:cd:15:63:a9:b6:f6:52:b9:7b:ed:9d:3c:28:6e:b5:85:ac: ac:17:f9:ce:6a:f1:22:2c:a0:06:d0:77:93:fd:e1:b1:b9:39: c9:80:c8:69 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUJwfx9IdBaU46zVx+Xv6e9Xs2MRgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYxMzA2NTUwMFoX DTI2MDYxMjA3MDAwMFowMzExMC8GA1UEAxMoOEI3QzM5NUU5OTIzRTY3NDVFQ0I5 NDkxREU5M0I0MEI0RUVERjM5QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMccT/cjCxpkpAUcdP7Bh1syUxA85yIazsO82O2/OVMh1MFZxbssMspAABk0 UETScWLzLxUxTSe6AMaCyqsKXxN+Xri/NeYDyR/6D67jDlq2+tYmjngUAn10BhyY ublNoTdESfbvVgIHJgY+zVUMUO0e2xlYyJprlRWW+nBbl1DBJiSF9A3rukQjhmEw pIb/2dQpwAie9QzSkiKUnXPes0vfqsfuITzSPZ3AhG88u+cYiU07r03Db7wPKdYR Y11/r8thiXXhGkOUETEGNMQWzF8vSLXV+T8D6CRI+/kDVwowqHTgxZ7Tmtj2AJIQ Pid5rz0VyjNyP9Opnad6IuoE4ckCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSLfDle mSPmdF7LlJHek7QLTu3znDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDkyNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfIewDANBgkqhkiG9w0BAQsFAAOCAQEAfxcu2DSggfk25+KJ rpT08GKoRNaSlL0nU3FWR0i1q8T324HCNG7WwBPPLc2KzTtH6GopltPREtVNWTjo xdb4iGNLdt/tqy8yT+VfZ7YpjmuMosywhbncNoSLgGqTzlqEpbgQWgJG4RNvbLBs 94Vmt6k1EiqmakBQSrEdh1g/dgqhaON/lTiUB2yJLfPSBuByM2jJoFR/wJNeb3/5 3Xcu4lqrmEty6g7J41oiJhcm/FJM+ioA1MEn12p8sffU4QTNTXE19AEsgL04jd/R f+ixUqB+oW7INr2rZs0VY6m29lK5e+2dPChutYWsrBf5zmrxIiygBtB3k/3hsbk5 yYDIaQ== -----END CERTIFICATE-----Generated at Mon Jun 16 04:28:05 2025 by rpki-client