$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151007.roa File: AS151007.roa (raw, json) Hash identifier: PVed8H9USuPmr3jVXlPfNiH/bvHLpIluyIQ2VowtLbc= Subject key identifier: 8D:35:7D:12:13:FF:0F:EA:80:DD:E5:93:9B:9F:B1:88:AB:41:33:5E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 650BA8FF9FEA02CC259A4623FFA9BC6393A4DB5F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151007.roa Signing time: Mon 27 May 2024 03:00:00 +0000 ROA not before: Mon 27 May 2024 02:55:00 +0000 ROA not after: Mon 26 May 2025 03:00:00 +0000 asID: 151007 IP address blocks: 103.68.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:0b:a8:ff:9f:ea:02:cc:25:9a:46:23:ff:a9:bc:63:93:a4:db:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 27 02:55:00 2024 GMT Not After : May 26 03:00:00 2025 GMT Subject: CN=8D357D1213FF0FEA80DDE5939B9FB188AB41335E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:13:95:cf:c9:35:fd:04:78:5e:ab:47:e9:56: 59:99:30:6d:0d:cb:30:fa:99:54:65:98:33:d6:ee: bc:f9:ee:d0:81:9c:96:2d:82:ba:98:57:5d:aa:b4: 35:c7:d8:f2:24:d5:ec:da:1b:c1:4c:1d:bf:ed:40: 11:46:3b:9c:eb:cc:29:24:58:80:ed:3e:c5:9c:0c: c2:1b:ee:57:d8:8a:3c:e6:34:be:ec:15:ba:25:59: ce:4a:f1:bd:7c:86:75:82:84:bc:86:15:57:cd:68: 07:22:5c:ec:9e:ed:70:20:fb:95:06:8f:0d:ae:0f: 8d:3e:69:b1:1b:38:76:12:37:15:67:ec:f4:78:ef: 60:db:8b:0c:28:f7:21:06:37:d0:17:0d:2e:2a:3b: c0:3d:c7:ac:e7:c6:1f:10:ad:4d:06:d1:e7:4a:4f: 21:82:6e:d5:bb:85:05:b5:82:d3:85:90:79:07:36: 1c:aa:0a:1c:50:b8:ca:32:9b:84:30:e8:99:83:02: ae:ba:06:6e:d5:34:23:ed:ac:8d:bc:32:ae:36:96: 21:54:0d:4e:f7:5e:5c:d4:e5:fe:f7:41:bd:7a:8d: c1:26:87:df:97:02:af:36:38:29:d9:0c:ae:72:a5: 68:df:07:ea:fe:cd:e6:e6:24:69:a4:5c:b8:b5:12: cc:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:35:7D:12:13:FF:0F:EA:80:DD:E5:93:9B:9F:B1:88:AB:41:33:5E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151007.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.68.198.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:3b:47:cb:a6:0d:f9:57:79:1b:fc:07:dc:d4:83:55:a5:42: 2c:49:4d:39:7c:c2:3c:d2:e0:b8:77:b6:cc:e9:4b:54:49:41: a7:e7:c5:79:15:22:5e:71:23:ae:87:4e:11:e7:74:f9:0a:13: d1:9b:b9:50:48:44:ca:4f:62:e9:72:0a:e1:44:f4:54:d3:d7: 64:19:f3:77:fd:cf:61:d3:c0:e6:7e:89:a4:4f:8d:ee:89:d4: 7b:3b:3b:68:99:33:1d:6b:b5:59:50:bd:cd:e7:50:aa:da:f0: 08:e8:50:ca:ec:60:f4:0c:22:79:32:0c:1f:bd:c3:14:02:8c: ef:2f:12:d8:72:76:f3:ce:0f:47:32:77:55:c4:8d:e7:2b:fc: 02:ed:12:d8:92:ee:c6:e3:ab:c3:32:07:e9:20:e7:48:2d:7f: 9c:eb:14:17:fe:56:ca:74:a1:ba:07:d5:0a:12:6a:a6:e1:da: 21:f8:e9:92:c9:1f:b3:fa:e2:21:d2:63:82:67:7a:06:06:f8: f7:61:44:e5:97:7f:bd:8d:77:85:b5:d9:16:96:f5:c1:f8:1e: 79:ae:86:65:43:71:f6:a8:5f:c1:be:01:5f:fe:fd:c5:22:ed: 5e:08:08:91:9f:c1:10:bc:02:e1:a2:32:97:ef:a4:24:2a:60: b6:74:4a:8e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUZQuo/5/qAswlmkYj/6m8Y5Ok218wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUyNzAyNTUwMFoX DTI1MDUyNjAzMDAwMFowMzExMC8GA1UEAxMoOEQzNTdEMTIxM0ZGMEZFQTgwRERF NTkzOUI5RkIxODhBQjQxMzM1RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMYTlc/JNf0EeF6rR+lWWZkwbQ3LMPqZVGWYM9buvPnu0IGcli2CuphXXaq0 NcfY8iTV7NobwUwdv+1AEUY7nOvMKSRYgO0+xZwMwhvuV9iKPOY0vuwVuiVZzkrx vXyGdYKEvIYVV81oByJc7J7tcCD7lQaPDa4PjT5psRs4dhI3FWfs9HjvYNuLDCj3 IQY30BcNLio7wD3HrOfGHxCtTQbR50pPIYJu1buFBbWC04WQeQc2HKoKHFC4yjKb hDDomYMCrroGbtU0I+2sjbwyrjaWIVQNTvdeXNTl/vdBvXqNwSaH35cCrzY4KdkM rnKlaN8H6v7N5uYkaaRcuLUSzMUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSNNX0S E/8P6oDd5ZObn7GIq0EzXjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTAwNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGdExjANBgkqhkiG9w0BAQsFAAOCAQEACjtHy6YN+Vd5G/wH3NSD VaVCLElNOXzCPNLguHe2zOlLVElBp+fFeRUiXnEjrodOEed0+QoT0Zu5UEhEyk9i 6XIK4UT0VNPXZBnzd/3PYdPA5n6JpE+N7onUezs7aJkzHWu1WVC9zedQqtrwCOhQ yuxg9AwieTIMH73DFAKM7y8S2HJ2884PRzJ3VcSN5yv8Au0S2JLuxuOrwzIH6SDn SC1/nOsUF/5WynShugfVChJqpuHaIfjpkskfs/riIdJjgmd6Bgb492FE5Zd/vY13 hbXZFpb1wfgeea6GZUNx9qhfwb4BX/79xSLtXggIkZ/BELwC4aIyl++kJCpgtnRK jg== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:29 2024 by rpki-client on console-ams.rpki-client.org