$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151005.roa File: AS151005.roa (raw, json) Hash identifier: hoX/cLfAr0faB1u0mEoh9p0f9c/IswQ7SXQjXl1RWvg= Subject key identifier: EC:EA:03:01:BC:CD:4D:2A:06:69:A2:E8:4D:A3:DF:7A:51:E4:F8:D5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0C02F4DA40ACAB73C672EEF1E1B57AC1BC530CD9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151005.roa Signing time: Wed 16 Oct 2024 09:00:00 +0000 ROA not before: Wed 16 Oct 2024 08:55:00 +0000 ROA not after: Wed 15 Oct 2025 09:00:00 +0000 asID: 151005 IP address blocks: 103.124.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:02:f4:da:40:ac:ab:73:c6:72:ee:f1:e1:b5:7a:c1:bc:53:0c:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 16 08:55:00 2024 GMT Not After : Oct 15 09:00:00 2025 GMT Subject: CN=ECEA0301BCCD4D2A0669A2E84DA3DF7A51E4F8D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c7:a6:2b:4d:49:ef:29:37:a3:46:51:63:30: a1:f0:60:f0:bb:ec:58:4c:45:0b:e3:4b:57:28:6c: 8e:1f:1c:89:69:3d:e3:78:37:28:8f:24:76:c9:ce: 58:83:e1:25:8d:53:f3:7f:b8:1b:1c:89:30:cd:ed: 58:cb:1b:47:82:fb:ef:a3:3e:d9:d1:42:3b:29:af: ae:3a:2a:1a:b6:e0:49:c2:05:fe:6b:61:c1:e4:8f: a5:1c:53:23:97:18:6b:f0:7a:b4:93:4a:a1:14:c7: 19:4b:2f:11:18:e8:a2:e4:9b:20:7e:34:04:0b:58: 27:46:95:a3:23:c1:f0:03:bb:72:8b:46:91:3c:dc: 12:d7:43:04:35:57:f4:fb:16:9e:5a:c4:18:29:57: d6:a8:f1:24:53:57:ff:e6:67:a0:6b:ae:44:72:9c: 6d:7b:c3:0b:6d:ce:ec:10:c8:b0:fa:49:da:a2:50: 6f:83:bf:8c:8f:74:42:31:cc:ad:39:0f:fa:c2:98: 4d:19:62:23:f9:8a:77:01:ca:04:1c:15:f8:8d:f4: 5e:70:b2:76:68:c9:9c:22:e1:4a:7d:1f:43:09:1d: 47:ae:d0:3d:e4:3c:25:6a:e7:f7:9e:fd:63:da:44: 7a:5b:91:85:e7:e3:ef:2c:51:5a:db:91:f7:7f:b9: db:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:EA:03:01:BC:CD:4D:2A:06:69:A2:E8:4D:A3:DF:7A:51:E4:F8:D5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151005.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.20.0/23 Signature Algorithm: sha256WithRSAEncryption 96:c3:66:29:7b:64:c4:6b:fd:98:0b:78:29:cb:9e:d0:e0:1b: 6e:02:33:25:c3:e4:c0:96:d0:74:85:dd:30:44:83:4d:c6:30: 10:85:6d:b5:56:4d:0a:3a:23:21:fd:d9:e7:77:01:3a:be:d8: 8f:ae:0b:d2:46:8a:07:d6:a0:10:62:4b:46:f4:73:f4:c4:bf: 8d:a8:e5:88:e8:b6:44:c4:72:4b:2e:ed:55:0c:ca:91:e7:f5: 32:6b:84:0a:ab:5f:62:49:33:84:ba:ac:f1:55:5c:ca:0f:f6: 80:9c:1f:30:8a:10:1a:90:af:74:b1:cf:ec:a9:a7:e3:3e:85: 46:7a:b1:15:3f:9e:5b:69:94:ab:44:a4:17:f4:68:e4:13:e0: 92:77:d7:75:82:6a:d9:e7:09:24:cc:32:e3:ea:38:d0:6c:38: 1f:19:43:4b:0c:90:5d:d9:ef:13:48:a8:ca:da:38:80:a9:fc: a0:4a:f7:05:04:73:51:df:e3:22:85:38:61:64:44:a8:26:75: 0d:bc:01:d6:86:9c:2b:69:07:9a:a0:f4:21:72:e9:0f:e7:fb: 10:ea:a7:f1:fc:ae:fe:44:4f:aa:13:10:78:04:97:90:a9:8d: f5:43:bb:4c:85:10:4b:a9:5d:12:da:a4:5b:c5:40:16:38:b7: a9:a4:38:6f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUDAL02kCsq3PGcu7x4bV6wbxTDNkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxNjA4NTUwMFoX DTI1MTAxNTA5MDAwMFowMzExMC8GA1UEAxMoRUNFQTAzMDFCQ0NENEQyQTA2NjlB MkU4NERBM0RGN0E1MUU0RjhENTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALbHpitNSe8pN6NGUWMwofBg8LvsWExFC+NLVyhsjh8ciWk943g3KI8kdsnO WIPhJY1T83+4GxyJMM3tWMsbR4L776M+2dFCOymvrjoqGrbgScIF/mthweSPpRxT I5cYa/B6tJNKoRTHGUsvERjoouSbIH40BAtYJ0aVoyPB8AO7cotGkTzcEtdDBDVX 9PsWnlrEGClX1qjxJFNX/+ZnoGuuRHKcbXvDC23O7BDIsPpJ2qJQb4O/jI90QjHM rTkP+sKYTRliI/mKdwHKBBwV+I30XnCydmjJnCLhSn0fQwkdR67QPeQ8JWrn9579 Y9pEeluRhefj7yxRWtuR93+52/cCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTs6gMB vM1NKgZpouhNo996UeT41TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTAwNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWd8FDANBgkqhkiG9w0BAQsFAAOCAQEAlsNmKXtkxGv9mAt4Kcue 0OAbbgIzJcPkwJbQdIXdMESDTcYwEIVttVZNCjojIf3Z53cBOr7Yj64L0kaKB9ag EGJLRvRz9MS/jajliOi2RMRySy7tVQzKkef1MmuECqtfYkkzhLqs8VVcyg/2gJwf MIoQGpCvdLHP7Kmn4z6FRnqxFT+eW2mUq0SkF/Ro5BPgknfXdYJq2ecJJMwy4+o4 0Gw4HxlDSwyQXdnvE0ioyto4gKn8oEr3BQRzUd/jIoU4YWREqCZ1DbwB1oacK2kH mqD0IXLpD+f7EOqn8fyu/kRPqhMQeASXkKmN9UO7TIUQS6ldEtqkW8VAFji3qaQ4 bw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:49 2024 by rpki-client on console-ams.rpki-client.org