$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151005.roa File: AS151005.roa (raw, json) Hash identifier: agjKR8v6lifwKNJhrSmF5DJY1wvzdKv4tG8vU9r9Hh8= Subject key identifier: C4:F0:6D:74:80:81:48:61:BB:BD:F8:F0:CB:53:7D:18:2A:58:55:B6 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 08A760A0D0B504BE3A04F6EC7CD4A501D7289702 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151005.roa Signing time: Wed 15 Nov 2023 08:51:34 +0000 ROA not before: Wed 15 Nov 2023 08:46:34 +0000 ROA not after: Wed 13 Nov 2024 08:51:34 +0000 asID: 151005 IP address blocks: 103.124.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:a7:60:a0:d0:b5:04:be:3a:04:f6:ec:7c:d4:a5:01:d7:28:97:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 15 08:46:34 2023 GMT Not After : Nov 13 08:51:34 2024 GMT Subject: CN=C4F06D7480814861BBBDF8F0CB537D182A5855B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7b:d3:0a:10:00:c0:d9:98:b5:08:2e:18:b4: 2b:87:02:62:88:99:21:6d:53:dd:8e:14:96:6d:25: 9e:28:05:de:ef:49:33:98:d9:05:34:2b:30:e1:02: a7:25:60:74:6a:91:71:43:8e:61:f1:99:71:72:2c: 3f:20:72:2f:39:86:4c:22:1d:3a:c5:77:7a:67:65: 96:81:45:af:51:d0:ab:d5:a9:84:da:fc:39:73:8c: f6:37:39:85:68:3f:28:18:b3:6b:59:f4:99:7c:cc: 98:9b:ad:19:e6:3b:5f:e6:a4:d1:dc:48:dc:73:c3: b3:19:af:2c:cb:db:58:48:70:23:0f:3b:b4:0d:c0: b7:c0:8b:ef:e6:53:c1:7e:b5:5b:61:57:a2:23:7b: dc:83:70:8b:32:2d:c0:04:d1:5d:55:c0:c5:98:11: 85:18:7e:87:96:ff:a2:cc:37:0e:67:a8:4b:ca:d1: 5f:9c:c4:7c:c5:22:a1:5a:a4:45:34:30:42:49:bd: c4:e1:e9:69:f4:c6:4d:b7:93:37:63:ce:7e:49:23: fb:15:cd:c8:cc:54:34:1e:ef:66:62:00:d6:e1:9d: 80:30:5a:90:43:20:5f:b6:f2:0a:05:c4:7e:71:7e: 60:54:ce:af:f3:a9:93:bd:f7:da:ab:d7:db:7a:a5: de:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:F0:6D:74:80:81:48:61:BB:BD:F8:F0:CB:53:7D:18:2A:58:55:B6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151005.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.20.0/23 Signature Algorithm: sha256WithRSAEncryption 85:a1:90:df:a6:85:1e:34:7a:56:08:9c:1a:00:fd:7c:78:1b: 01:b8:8b:fb:88:c7:ec:c5:7e:e2:0f:b6:db:fc:e7:4a:b0:70: c2:7c:25:a1:5d:c0:5f:87:25:c8:c8:89:ca:1c:83:65:5c:6d: a8:a0:78:4d:f1:80:ed:1f:6f:5d:de:e2:54:87:1c:da:9d:7f: 86:24:f2:e1:ef:9e:db:c7:12:9d:11:ce:ca:49:2c:83:37:6c: 89:1a:62:a9:ac:17:53:8f:57:8c:18:d5:db:a4:e8:d4:ce:4a: 16:43:73:71:a8:92:bb:35:fc:41:2c:c6:69:51:c8:3f:83:1c: b4:e0:48:71:03:c1:a6:ac:12:ff:9b:23:d1:0a:a1:51:a4:77: ca:60:ac:a7:fc:19:f1:48:98:2f:a2:b2:b9:ac:26:40:ce:0d: 67:42:05:07:21:a8:f0:48:7f:6c:ce:0d:ed:1a:b7:a4:33:ab: 04:74:77:26:f2:66:d5:f0:57:d1:20:f5:54:12:4e:2d:1a:f1: ec:09:da:f3:b7:6a:11:c7:a6:38:ee:01:48:54:2d:e4:02:d6: 45:a4:a6:99:f5:9e:23:02:da:32:d8:96:4d:88:1f:4e:73:d4: 1c:18:a7:c1:91:b3:7b:58:38:4f:cb:c0:0f:b0:34:38:9d:cf: 87:e2:df:54 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUCKdgoNC1BL46BPbsfNSlAdcolwIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTExNTA4NDYzNFoX DTI0MTExMzA4NTEzNFowMzExMC8GA1UEAxMoQzRGMDZENzQ4MDgxNDg2MUJCQkRG OEYwQ0I1MzdEMTgyQTU4NTVCNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK970woQAMDZmLUILhi0K4cCYoiZIW1T3Y4Ulm0lnigF3u9JM5jZBTQrMOEC pyVgdGqRcUOOYfGZcXIsPyByLzmGTCIdOsV3emdlloFFr1HQq9WphNr8OXOM9jc5 hWg/KBiza1n0mXzMmJutGeY7X+ak0dxI3HPDsxmvLMvbWEhwIw87tA3At8CL7+ZT wX61W2FXoiN73INwizItwATRXVXAxZgRhRh+h5b/osw3DmeoS8rRX5zEfMUioVqk RTQwQkm9xOHpafTGTbeTN2POfkkj+xXNyMxUNB7vZmIA1uGdgDBakEMgX7byCgXE fnF+YFTOr/Opk7332qvX23ql3qcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTE8G10 gIFIYbu9+PDLU30YKlhVtjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTAwNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWd8FDANBgkqhkiG9w0BAQsFAAOCAQEAhaGQ36aFHjR6VgicGgD9 fHgbAbiL+4jH7MV+4g+22/znSrBwwnwloV3AX4clyMiJyhyDZVxtqKB4TfGA7R9v Xd7iVIcc2p1/hiTy4e+e28cSnRHOykksgzdsiRpiqawXU49XjBjV26To1M5KFkNz caiSuzX8QSzGaVHIP4MctOBIcQPBpqwS/5sj0QqhUaR3ymCsp/wZ8UiYL6Kyuawm QM4NZ0IFByGo8Eh/bM4N7Rq3pDOrBHR3JvJm1fBX0SD1VBJOLRrx7Ana87dqEcem OO4BSFQt5ALWRaSmmfWeIwLaMtiWTYgfTnPUHBinwZGze1g4T8vAD7A0OJ3Ph+Lf VA== -----END CERTIFICATE-----Generated at Wed May 8 22:46:43 2024 by rpki-client on console-ams.rpki-client.org