$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151502.roa File: AS151502.roa (raw, json) Hash identifier: NoB9kGsKcqh++xR9khwOyHVmQ6+4HsRudzCivUbC3IA= Subject key identifier: 7C:5C:1A:50:08:0E:3E:25:51:91:3E:5D:EE:42:E7:E6:CC:FE:F7:C2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2F2978F9D36684F7745B7329D7BB75149B5D3256 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151502.roa Signing time: Fri 21 Jun 2024 04:00:00 +0000 ROA not before: Fri 21 Jun 2024 03:55:00 +0000 ROA not after: Fri 20 Jun 2025 04:00:00 +0000 asID: 151502 IP address blocks: 103.227.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:29:78:f9:d3:66:84:f7:74:5b:73:29:d7:bb:75:14:9b:5d:32:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 21 03:55:00 2024 GMT Not After : Jun 20 04:00:00 2025 GMT Subject: CN=7C5C1A50080E3E2551913E5DEE42E7E6CCFEF7C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4f:8c:c5:5f:38:0c:04:d4:bf:cf:a0:35:d1: 6d:30:6c:e8:e9:14:a2:7c:2d:62:b2:7b:0d:d0:57: 24:33:5d:4e:34:d7:3a:ae:75:44:c0:cc:af:ee:6d: b5:36:7b:ac:97:09:24:ef:96:1f:e0:3f:27:31:7d: 48:06:a6:ea:84:f4:73:7c:31:4c:5b:6b:8b:e6:44: 33:49:6e:65:92:d0:af:42:30:2e:5b:41:e4:34:d2: e6:41:dc:55:e1:a3:1c:23:b1:93:7d:ac:0b:0b:fc: e3:7d:33:2d:3a:ca:9c:29:c4:09:61:17:4e:8d:0a: f7:29:39:5d:aa:66:a8:9f:c2:9d:c6:e4:d0:cf:12: 91:f6:84:a1:02:29:b0:6e:0b:38:b9:4f:a4:c3:b4: b9:57:2d:db:45:e8:74:1b:f1:00:4f:b4:62:f1:60: 48:bc:6e:e5:18:b8:50:5f:1a:56:e1:3f:35:dd:4b: 12:89:a6:3b:43:cb:0d:86:20:88:4c:2a:76:d4:f7: 19:98:47:55:65:8e:fb:95:00:87:c7:36:31:56:01: cf:2f:9d:42:f8:2c:a8:5a:84:e1:ca:ba:35:02:dd: ff:85:36:6c:40:dc:d9:ea:c3:b3:a4:e9:dc:c0:1f: 9b:2b:55:00:0e:a3:8f:ec:52:28:5e:c7:2d:4d:77: 5d:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:5C:1A:50:08:0E:3E:25:51:91:3E:5D:EE:42:E7:E6:CC:FE:F7:C2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151502.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.7.0/24 Signature Algorithm: sha256WithRSAEncryption 31:52:6f:70:7a:1c:ad:09:6e:53:bd:82:d5:a0:96:a9:5c:a1: 7a:74:d4:72:7f:e9:2e:99:68:f3:f6:dd:b4:4b:44:22:f4:3e: 84:e2:d9:26:3d:21:bf:74:b0:f4:87:90:0b:1a:13:fa:74:20: b5:fd:6c:6e:36:7d:0c:c1:02:35:4d:9b:b3:ef:ff:c8:12:40: f6:70:11:20:e7:e3:af:50:fa:c4:4e:be:e3:a1:0d:6c:f3:2f: 24:76:74:a9:8f:58:c7:25:6e:29:2a:3c:74:a1:17:c5:23:4b: b1:a6:4d:f9:2b:b9:86:03:b2:e3:12:a2:4e:65:f8:d7:7c:2a: fc:2b:3a:9a:a6:1a:4f:5a:79:f3:31:bf:0d:4b:c7:66:ae:4c: 2d:1f:04:17:02:2c:38:a7:b6:c5:8f:95:6f:68:20:cf:54:5e: 17:91:3b:5a:0b:07:55:43:5d:86:13:b2:32:37:87:2c:8a:f7: 98:4e:65:b1:ba:c7:dc:89:36:07:84:45:a2:ab:dc:09:7a:07: 3d:08:49:ab:a7:0d:21:8b:86:1d:a8:b0:0e:92:90:39:fb:f1: 8c:3e:4e:e8:c9:4c:3b:e0:49:fa:b0:f9:15:d2:6c:3e:6f:7d: 35:02:fc:df:db:59:f2:10:bc:ff:73:6f:99:e8:2f:9c:ac:06: 04:61:2d:67 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIULyl4+dNmhPd0W3Mp17t1FJtdMlYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYyMTAzNTUwMFoX DTI1MDYyMDA0MDAwMFowMzExMC8GA1UEAxMoN0M1QzFBNTAwODBFM0UyNTUxOTEz RTVERUU0MkU3RTZDQ0ZFRjdDMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMZPjMVfOAwE1L/PoDXRbTBs6OkUonwtYrJ7DdBXJDNdTjTXOq51RMDMr+5t tTZ7rJcJJO+WH+A/JzF9SAam6oT0c3wxTFtri+ZEM0luZZLQr0IwLltB5DTS5kHc VeGjHCOxk32sCwv8430zLTrKnCnECWEXTo0K9yk5XapmqJ/Cncbk0M8SkfaEoQIp sG4LOLlPpMO0uVct20XodBvxAE+0YvFgSLxu5Ri4UF8aVuE/Nd1LEommO0PLDYYg iEwqdtT3GZhHVWWO+5UAh8c2MVYBzy+dQvgsqFqE4cq6NQLd/4U2bEDc2erDs6Tp 3MAfmytVAA6jj+xSKF7HLU13XXECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR8XBpQ CA4+JVGRPl3uQufmzP73wjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUwMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfjBzANBgkqhkiG9w0BAQsFAAOCAQEAMVJvcHocrQluU72C1aCW qVyhenTUcn/pLplo8/bdtEtEIvQ+hOLZJj0hv3Sw9IeQCxoT+nQgtf1sbjZ9DMEC NU2bs+//yBJA9nARIOfjr1D6xE6+46ENbPMvJHZ0qY9YxyVuKSo8dKEXxSNLsaZN +Su5hgOy4xKiTmX413wq/Cs6mqYaT1p58zG/DUvHZq5MLR8EFwIsOKe2xY+Vb2gg z1ReF5E7WgsHVUNdhhOyMjeHLIr3mE5lsbrH3Ik2B4RFoqvcCXoHPQhJq6cNIYuG HaiwDpKQOfvxjD5O6MlMO+BJ+rD5FdJsPm99NQL839tZ8hC8/3NvmegvnKwGBGEt Zw== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:57 2024 by rpki-client on console-fra.rpki-client.org