$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151006.roa File: AS151006.roa (raw, json) Hash identifier: rTieAJ6TIdhNNeItzB6sW8pq7yPG/LY0hZVzNlw0gRY= Subject key identifier: 01:94:4B:34:6A:DE:65:8D:08:C9:F3:6D:65:35:3E:DA:5A:AA:45:BF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6D258E65A24601A1E3EE533B7E4FA3F3D7EDAF1C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151006.roa Signing time: Thu 27 Jun 2024 08:32:13 +0000 ROA not before: Thu 27 Jun 2024 08:27:13 +0000 ROA not after: Thu 26 Jun 2025 08:32:13 +0000 asID: 151006 IP address blocks: 103.203.234.0/24 maxlen: 24 2001:df3:a40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:25:8e:65:a2:46:01:a1:e3:ee:53:3b:7e:4f:a3:f3:d7:ed:af:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 27 08:27:13 2024 GMT Not After : Jun 26 08:32:13 2025 GMT Subject: CN=01944B346ADE658D08C9F36D65353EDA5AAA45BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b0:f6:0d:5e:44:0b:9a:a0:db:6e:99:43:ce: e6:4e:4b:cd:0b:eb:16:18:b8:0e:ab:db:c6:b3:60: 52:c8:94:85:b5:7b:a9:7f:7b:4b:37:dd:2f:50:34: b9:fb:64:22:c0:92:63:5e:0b:ec:44:d7:c8:15:05: ba:46:c6:fc:f5:a3:94:c5:52:37:4f:ab:22:d2:c9: ee:9d:4e:f1:fb:79:04:9e:c3:59:9c:61:c7:47:ef: 0a:bb:48:59:c0:90:9b:7d:a5:67:63:be:43:43:e4: c3:53:88:ba:44:ac:83:b5:71:3e:5c:29:dc:94:d0: 38:23:dd:1b:84:fb:3a:78:a3:ea:5c:ee:42:79:b0: 88:be:b8:c2:1d:b5:27:19:98:80:04:78:64:17:8d: e6:b2:b6:54:2a:5d:4a:e2:9f:7d:50:e1:bc:a6:90: 42:76:8c:c4:62:c4:60:8c:0b:1e:62:0b:91:98:b0: cd:e3:b8:1c:6c:71:fc:2d:43:d5:06:35:6b:8d:af: 4b:e7:da:d3:3e:06:28:8f:53:7b:05:76:2d:3c:d0: 7f:c0:16:e3:0f:0f:89:e1:2c:f4:32:b3:ff:b4:67: 1c:1b:f3:9d:56:0e:7f:a0:d1:cb:ea:35:cd:08:9a: 65:6a:a3:7b:96:dd:94:68:d1:32:5f:d9:89:07:c0: 51:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:94:4B:34:6A:DE:65:8D:08:C9:F3:6D:65:35:3E:DA:5A:AA:45:BF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151006.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.203.234.0/24 IPv6: 2001:df3:a40::/48 Signature Algorithm: sha256WithRSAEncryption 43:30:b8:4b:3a:ed:88:20:fb:11:a0:2f:86:b9:a3:d5:7d:e1: 9f:21:e5:50:d2:5a:47:79:21:b0:5c:7a:d7:2e:4f:2d:4f:62: 48:14:21:1d:1e:8c:47:0a:c8:20:3c:0b:99:3e:ce:a0:64:11: b9:99:92:ae:28:ce:76:0b:04:b6:7c:f4:86:ab:d3:bb:51:e3: c7:af:a6:c0:b6:09:a1:74:bd:cc:7e:43:f2:e7:7c:6d:b5:fc: 8b:50:39:a7:85:cc:80:cb:b5:b6:43:a2:c1:ba:f2:5e:dc:b5: c0:60:fa:8b:63:a9:3c:69:4c:9e:72:e0:7a:f8:46:32:f9:d6: ed:85:f8:f6:16:dc:97:1a:bd:35:1d:20:36:ee:2b:c6:ec:f4: ed:bd:83:e4:6b:d8:6c:fb:92:d2:90:4c:39:d8:36:18:e3:f9: c8:e2:e8:99:2c:b7:74:94:06:fa:cb:80:d0:66:b9:a2:96:ad: ec:dc:49:5f:27:69:26:2a:6d:fa:6a:37:82:6c:23:1f:9d:fd: ac:25:37:f1:bd:f0:14:05:81:c1:a0:90:25:90:b2:98:02:a8: 9d:68:97:bd:ac:56:b3:4e:96:ed:d5:62:f1:04:75:37:93:51: 85:35:88:08:20:a9:34:df:3c:75:46:f3:21:2a:79:7c:d7:c6: 48:bd:15:2d -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUbSWOZaJGAaHj7lM7fk+j89ftrxwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYyNzA4MjcxM1oX DTI1MDYyNjA4MzIxM1owMzExMC8GA1UEAxMoMDE5NDRCMzQ2QURFNjU4RDA4QzlG MzZENjUzNTNFREE1QUFBNDVCRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMaw9g1eRAuaoNtumUPO5k5LzQvrFhi4DqvbxrNgUsiUhbV7qX97SzfdL1A0 uftkIsCSY14L7ETXyBUFukbG/PWjlMVSN0+rItLJ7p1O8ft5BJ7DWZxhx0fvCrtI WcCQm32lZ2O+Q0Pkw1OIukSsg7VxPlwp3JTQOCPdG4T7Onij6lzuQnmwiL64wh21 JxmYgAR4ZBeN5rK2VCpdSuKffVDhvKaQQnaMxGLEYIwLHmILkZiwzeO4HGxx/C1D 1QY1a42vS+fa0z4GKI9TewV2LTzQf8AW4w8PieEs9DKz/7RnHBvznVYOf6DRy+o1 zQiaZWqje5bdlGjRMl/ZiQfAUTcCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBQBlEs0 at5ljQjJ821lNT7aWqpFvzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTAwNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGfL6jAPBAIAAjAJAwcAIAEN8wpAMA0GCSqGSIb3DQEBCwUAA4IB AQBDMLhLOu2IIPsRoC+GuaPVfeGfIeVQ0lpHeSGwXHrXLk8tT2JIFCEdHoxHCsgg PAuZPs6gZBG5mZKuKM52CwS2fPSGq9O7UePHr6bAtgmhdL3MfkPy53xttfyLUDmn hcyAy7W2Q6LBuvJe3LXAYPqLY6k8aUyecuB6+EYy+dbthfj2FtyXGr01HSA27ivG 7PTtvYPka9hs+5LSkEw52DYY4/nI4uiZLLd0lAb6y4DQZrmilq3s3ElfJ2kmKm36 ajeCbCMfnf2sJTfxvfAUBYHBoJAlkLKYAqidaJe9rFazTpbt1WLxBHU3k1GFNYgI IKk03zx1RvMhKnl818ZIvRUt -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:57 2024 by rpki-client on console-fra.rpki-client.org