$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151007.roa File: AS151007.roa (raw, json) Hash identifier: mlD5nBOg5OLUxE2WE9KK3bc8cOKpnoVIjLpqwXmOU1M= Subject key identifier: 62:2F:D6:67:63:C3:06:0A:9A:14:C7:9D:F9:31:DF:6C:92:49:8D:AC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2B31E6EEA687196D35152F4161B519C9FC3E8E58 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151007.roa Signing time: Mon 26 Jun 2023 02:27:42 +0000 ROA not before: Mon 26 Jun 2023 02:22:42 +0000 ROA not after: Mon 24 Jun 2024 02:27:42 +0000 asID: 151007 IP address blocks: 103.68.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:31:e6:ee:a6:87:19:6d:35:15:2f:41:61:b5:19:c9:fc:3e:8e:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 26 02:22:42 2023 GMT Not After : Jun 24 02:27:42 2024 GMT Subject: CN=622FD66763C3060A9A14C79DF931DF6C92498DAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:23:a0:73:09:09:f7:9c:14:a6:8f:f8:10:db: d9:3c:0d:74:9b:a0:ac:1d:9a:3b:23:82:94:18:df: bd:30:3b:7a:8b:b7:12:62:df:90:2e:17:f6:a9:8c: f2:83:9c:24:82:c0:bc:72:ae:a7:9c:ab:6b:c7:f8: f1:95:3a:70:ec:85:d7:af:92:6b:d9:da:ae:e7:24: 8b:81:5d:bb:e2:52:7d:55:e0:fc:2b:9a:60:a0:44: 22:f5:23:af:be:65:3a:3c:59:24:16:d2:9f:e4:18: 6e:9e:b4:f8:3f:33:b6:0e:b3:d0:b5:cd:3b:11:8c: bd:a1:89:e7:94:29:8b:37:38:47:30:2e:4e:c2:4c: 8a:b9:aa:f2:c1:ce:0f:7d:5c:32:73:97:43:30:b9: d6:62:d7:e5:d9:e6:d8:97:4b:30:f9:84:32:6c:1c: 02:b4:d3:c5:42:31:a2:81:b5:4e:d8:de:05:b6:8e: 41:39:46:d0:9b:f0:b4:8d:a0:97:08:4f:af:3a:ed: 98:03:c4:2f:65:c3:4a:7f:02:55:39:45:81:b9:0a: 86:84:8c:13:40:2f:81:6f:50:43:47:11:a1:8a:d8: d3:3a:ef:4b:d2:f8:e8:fe:74:c9:93:76:d3:19:d7: d9:98:3d:83:e4:84:9d:21:6b:81:20:c6:49:84:3d: 6d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:2F:D6:67:63:C3:06:0A:9A:14:C7:9D:F9:31:DF:6C:92:49:8D:AC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151007.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.68.198.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:11:6d:0b:0a:1e:15:cd:05:9c:e3:3e:6b:74:65:84:0e:e5: c9:65:a3:7e:d5:cb:ee:da:13:09:c4:a9:e3:9c:83:0a:5b:99: a6:37:93:13:6c:2d:92:f7:7a:21:9a:3f:d3:e0:0f:cb:ab:d9: a5:22:7d:57:98:56:d9:9a:91:bf:27:6b:7a:03:67:85:58:f5: 79:f9:2a:1e:3d:79:b7:31:cc:df:84:25:29:08:59:26:da:20: a2:35:4b:f2:65:46:4c:22:fb:04:93:87:76:d6:96:e6:32:9c: 6b:d4:d8:5d:a2:93:55:dc:da:14:a7:a3:f3:4d:63:9b:5d:97: f6:25:51:bb:80:57:b0:c3:c3:35:c0:62:42:e1:5f:f0:7d:98: 06:fb:fe:6a:22:f2:f3:78:73:63:fb:2e:3b:19:9a:ec:77:2a: 3a:e6:83:9c:8f:59:c5:d3:52:3e:89:bf:99:1b:20:ce:ce:e7: e3:1f:83:0f:0c:4c:f1:21:63:d3:b6:9f:fe:36:4b:ee:d8:41: 35:32:01:9b:c4:ac:49:ed:af:ae:bb:27:70:f5:b7:2a:97:d9: 3c:3a:c8:a6:d3:7a:5d:eb:de:df:e6:b1:7a:c4:04:2b:cd:7c: 65:78:ae:1a:1d:00:d2:ce:d6:43:61:4c:4d:19:08:94:05:ab: e7:02:cc:14 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUKzHm7qaHGW01FS9BYbUZyfw+jlgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDYyNjAyMjI0MloX DTI0MDYyNDAyMjc0MlowMzExMC8GA1UEAxMoNjIyRkQ2Njc2M0MzMDYwQTlBMTRD NzlERjkzMURGNkM5MjQ5OERBQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALwjoHMJCfecFKaP+BDb2TwNdJugrB2aOyOClBjfvTA7eou3EmLfkC4X9qmM 8oOcJILAvHKup5yra8f48ZU6cOyF16+Sa9narucki4Fdu+JSfVXg/CuaYKBEIvUj r75lOjxZJBbSn+QYbp60+D8ztg6z0LXNOxGMvaGJ55Qpizc4RzAuTsJMirmq8sHO D31cMnOXQzC51mLX5dnm2JdLMPmEMmwcArTTxUIxooG1TtjeBbaOQTlG0JvwtI2g lwhPrzrtmAPEL2XDSn8CVTlFgbkKhoSME0AvgW9QQ0cRoYrY0zrvS9L46P50yZN2 0xnX2Zg9g+SEnSFrgSDGSYQ9bVcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRiL9Zn Y8MGCpoUx535Md9skkmNrDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTAwNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGdExjANBgkqhkiG9w0BAQsFAAOCAQEAPhFtCwoeFc0FnOM+a3Rl hA7lyWWjftXL7toTCcSp45yDCluZpjeTE2wtkvd6IZo/0+APy6vZpSJ9V5hW2ZqR vydregNnhVj1efkqHj15tzHM34QlKQhZJtogojVL8mVGTCL7BJOHdtaW5jKca9TY XaKTVdzaFKej801jm12X9iVRu4BXsMPDNcBiQuFf8H2YBvv+aiLy83hzY/suOxma 7HcqOuaDnI9ZxdNSPom/mRsgzs7n4x+DDwxM8SFj07af/jZL7thBNTIBm8SsSe2v rrsncPW3KpfZPDrIptN6Xeve3+axesQEK818ZXiuGh0A0s7WQ2FMTRkIlAWr5wLM FA== -----END CERTIFICATE-----Generated at Wed May 8 17:45:23 2024 by rpki-client on console-ams.rpki-client.org