$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151009.roa File: AS151009.roa (raw, json) Hash identifier: a7O9j/YbqQcqO/+rZsky+6osWFBJZ757cFs2ZjkMMDY= Subject key identifier: A6:4F:D7:B7:61:45:B7:E6:F3:B9:16:D7:C1:B5:2C:CB:EA:5B:D9:AE Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 399888DA10BB01FE5B6AE1369D0741F43A485ABD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151009.roa Signing time: Fri 04 Aug 2023 08:07:35 +0000 ROA not before: Fri 04 Aug 2023 08:02:35 +0000 ROA not after: Fri 02 Aug 2024 08:07:35 +0000 asID: 151009 IP address blocks: 103.214.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:98:88:da:10:bb:01:fe:5b:6a:e1:36:9d:07:41:f4:3a:48:5a:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 4 08:02:35 2023 GMT Not After : Aug 2 08:07:35 2024 GMT Subject: CN=A64FD7B76145B7E6F3B916D7C1B52CCBEA5BD9AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:8d:21:5c:a6:78:0b:dd:ad:87:b0:df:bd:a5: ae:20:0f:45:ab:42:48:6e:51:d9:03:7f:55:de:2b: 68:e0:ed:57:12:89:53:4b:03:2c:f0:e8:7a:3a:d2: 65:ed:6a:2d:d5:9e:71:15:cd:5b:29:e9:2c:43:c3: 4b:46:13:18:fc:5d:31:a9:6a:98:87:f6:58:1e:27: f6:d3:7e:56:8f:a5:33:ee:e6:69:a2:dd:2f:8c:0a: 7b:c9:6e:17:a6:e2:3d:87:01:d4:89:49:3a:8a:a0: aa:5e:2d:32:94:2f:73:49:b1:7d:0e:01:96:8d:78: 5d:35:34:59:41:28:86:f1:35:3d:cb:a9:36:be:1d: 24:3c:0e:32:8e:f9:02:68:c5:2b:cb:f0:81:eb:8b: 57:12:7d:2c:ac:84:db:83:5a:b3:88:e6:89:bf:19: 55:39:27:c6:4a:b9:58:73:1e:12:c0:7a:35:b1:ea: 46:71:66:f7:6e:25:3c:cf:b9:d0:dd:c2:55:f3:54: e1:29:2c:af:5c:ed:f2:87:e1:ad:31:4b:bb:f8:e8: 18:f9:e4:05:18:53:9e:5f:c8:bb:82:e7:ad:3b:12: 5c:a1:ba:21:de:87:b3:c0:a6:ab:a9:8c:ff:0d:3d: bf:ca:c0:08:ea:4d:56:36:a1:02:19:b8:a0:f4:bd: 9c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:4F:D7:B7:61:45:B7:E6:F3:B9:16:D7:C1:B5:2C:CB:EA:5B:D9:AE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151009.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.251.0/24 Signature Algorithm: sha256WithRSAEncryption 30:8a:43:4c:ed:39:31:19:3e:ea:bc:b0:c9:e8:9f:e6:6b:91: 96:1d:9e:0e:19:78:d9:25:eb:a7:61:74:68:c7:a6:e4:86:b9: 58:9d:a2:7b:91:e1:5d:8a:72:da:40:d6:27:ef:57:70:b5:a2: 2b:69:49:86:04:d1:8a:d4:a8:16:12:16:c4:d2:40:1e:45:49: 4a:40:c2:73:47:75:8e:f8:5c:28:f2:4f:f3:3b:55:e8:41:bf: 48:27:38:c0:59:6b:5d:ee:20:57:1e:a5:e0:f9:79:89:0a:cb: 0f:56:78:6c:9b:38:df:47:ba:93:8a:35:0d:a0:9f:50:c8:2e: 23:e6:a0:55:a5:5b:61:1b:65:79:a4:26:0c:8b:9d:14:d6:e8: 5e:6d:7e:4c:09:25:91:9b:69:81:72:d5:5d:98:2d:ab:dd:5c: d7:93:37:d7:99:ac:d4:f8:12:55:75:e8:1b:a2:f9:6e:84:99: b8:89:a3:c8:3c:de:23:1b:a2:f7:66:44:51:66:15:fc:2f:b9: 02:f5:a6:26:ea:4d:14:c4:6e:18:a9:c0:c9:99:96:ba:3f:60: 04:ac:17:48:37:10:cb:f7:6b:13:96:b2:bf:89:0f:ab:3c:89: 6b:4f:42:3b:71:86:6d:a2:5a:9d:05:ac:67:1e:25:d8:c9:18: 2a:70:09:54 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOZiI2hC7Af5bauE2nQdB9DpIWr0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgwNDA4MDIzNVoX DTI0MDgwMjA4MDczNVowMzExMC8GA1UEAxMoQTY0RkQ3Qjc2MTQ1QjdFNkYzQjkx NkQ3QzFCNTJDQ0JFQTVCRDlBRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMeNIVymeAvdrYew372lriAPRatCSG5R2QN/Vd4raODtVxKJU0sDLPDoejrS Ze1qLdWecRXNWynpLEPDS0YTGPxdMalqmIf2WB4n9tN+Vo+lM+7maaLdL4wKe8lu F6biPYcB1IlJOoqgql4tMpQvc0mxfQ4Blo14XTU0WUEohvE1PcupNr4dJDwOMo75 AmjFK8vwgeuLVxJ9LKyE24Nas4jmib8ZVTknxkq5WHMeEsB6NbHqRnFm924lPM+5 0N3CVfNU4Sksr1zt8ofhrTFLu/joGPnkBRhTnl/Iu4LnrTsSXKG6Id6Hs8Cmq6mM /w09v8rACOpNVjahAhm4oPS9nLECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSmT9e3 YUW35vO5FtfBtSzL6lvZrjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTAwOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfW+zANBgkqhkiG9w0BAQsFAAOCAQEAMIpDTO05MRk+6rywyeif 5muRlh2eDhl42SXrp2F0aMem5Ia5WJ2ie5HhXYpy2kDWJ+9XcLWiK2lJhgTRitSo FhIWxNJAHkVJSkDCc0d1jvhcKPJP8ztV6EG/SCc4wFlrXe4gVx6l4Pl5iQrLD1Z4 bJs430e6k4o1DaCfUMguI+agVaVbYRtleaQmDIudFNboXm1+TAklkZtpgXLVXZgt q91c15M315ms1PgSVXXoG6L5boSZuImjyDzeIxui92ZEUWYV/C+5AvWmJupNFMRu GKnAyZmWuj9gBKwXSDcQy/drE5ayv4kPqzyJa09CO3GGbaJanQWsZx4l2MkYKnAJ VA== -----END CERTIFICATE-----Generated at Wed May 8 10:06:54 2024 by rpki-client on console-ams.rpki-client.org