$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151505.roa File: AS151505.roa (raw, json) Hash identifier: kcnxQyCm1SP9yAQeAm6EKupFbTY9Ll0n62nSC1mFNXw= Subject key identifier: 2C:C4:3B:A9:C3:53:47:08:60:04:C2:86:04:79:DB:FB:69:90:E4:82 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 081E0890A275828E7EC670858F186E3424DE3CAC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151505.roa Signing time: Fri 02 Feb 2024 04:11:20 +0000 ROA not before: Fri 02 Feb 2024 04:06:20 +0000 ROA not after: Fri 31 Jan 2025 04:11:20 +0000 asID: 151505 IP address blocks: 103.222.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:1e:08:90:a2:75:82:8e:7e:c6:70:85:8f:18:6e:34:24:de:3c:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 2 04:06:20 2024 GMT Not After : Jan 31 04:11:20 2025 GMT Subject: CN=2CC43BA9C35347086004C2860479DBFB6990E482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:01:ae:02:26:0d:93:95:51:a2:8c:19:8a:d6: 93:56:c7:94:2e:ee:b6:1a:61:80:45:fb:7d:11:ba: e8:81:9f:32:81:9d:7f:9b:27:31:26:b5:37:ae:c4: e6:6c:f8:20:2d:09:5d:36:70:27:67:06:0b:f5:9f: 41:a4:2f:ca:46:f1:0d:b2:32:75:75:a1:c4:98:2f: a3:42:0c:2d:bc:d5:ce:6d:55:8f:56:87:2c:7c:a7: 33:91:a2:8e:a4:9b:2b:11:11:7e:b4:56:39:ba:b1: de:79:4c:55:46:2d:ef:11:84:05:48:20:7c:62:1e: aa:ac:bc:30:92:d0:1e:21:e6:c8:90:44:92:95:f2: d7:a0:11:26:0f:ca:27:ae:4c:e2:54:a6:b9:b8:07: ca:52:20:41:bd:31:cf:99:8e:99:f9:3d:8b:62:9e: 62:04:a2:14:78:64:ce:01:f6:a4:f2:7e:d8:47:65: be:7a:ce:72:b8:e8:6f:3e:83:25:9e:13:87:66:e2: 7a:9d:f8:61:62:ab:7b:91:3e:97:c2:4d:08:1f:e1: d5:fe:37:73:4d:49:75:37:5b:22:ee:62:58:30:90: 58:7a:73:54:f3:0b:97:b3:9d:f9:9c:67:6e:1b:24: fc:97:ce:f0:29:b4:f1:e0:8a:c6:ee:7f:1a:3b:a7: 54:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:C4:3B:A9:C3:53:47:08:60:04:C2:86:04:79:DB:FB:69:90:E4:82 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151505.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.222.255.0/24 Signature Algorithm: sha256WithRSAEncryption 42:52:75:50:cc:ef:63:06:89:b2:98:f2:0c:1f:8e:4e:b6:25: 83:21:2f:92:c8:e5:56:01:99:1f:51:02:3c:ba:14:60:dc:3d: 8a:25:4b:da:68:e6:df:c6:e2:7d:2b:fc:57:e5:6d:76:12:65: d8:8d:51:79:88:1a:ab:61:5c:04:1b:7c:d6:7a:38:41:5a:d8: 1b:69:b9:85:67:74:90:53:e0:de:a8:bd:f2:18:36:cb:43:f9: e6:04:61:4f:4c:89:d0:ca:ff:de:82:97:6a:0d:4c:9d:ac:91: ec:b7:6b:99:2d:3c:ba:62:57:85:03:f2:8a:64:c6:81:5b:3d: 07:04:d0:f6:08:86:b0:a4:94:58:93:82:fc:a0:90:8d:65:67: 79:1f:91:c9:54:69:32:15:44:6f:19:8f:35:af:f9:7d:50:89: 0a:c6:c3:51:9d:d5:c7:dd:70:0a:b7:7a:04:b1:c1:5d:88:9f: 2a:5e:b7:f3:35:7d:bc:72:44:eb:96:be:c0:58:b8:06:fc:95: a1:75:a8:36:d9:4d:17:aa:33:60:9f:b5:1f:8d:41:f4:6b:a0: e2:40:ff:43:a6:70:74:63:c8:79:27:0a:5c:33:4e:ef:43:f8: e6:2c:99:e1:7e:bd:b1:b8:4a:38:51:11:46:57:fd:3d:ce:11: f7:2e:f4:4e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUCB4IkKJ1go5+xnCFjxhuNCTePKwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIwMjA0MDYyMFoX DTI1MDEzMTA0MTEyMFowMzExMC8GA1UEAxMoMkNDNDNCQTlDMzUzNDcwODYwMDRD Mjg2MDQ3OURCRkI2OTkwRTQ4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMwBrgImDZOVUaKMGYrWk1bHlC7uthphgEX7fRG66IGfMoGdf5snMSa1N67E 5mz4IC0JXTZwJ2cGC/WfQaQvykbxDbIydXWhxJgvo0IMLbzVzm1Vj1aHLHynM5Gi jqSbKxERfrRWObqx3nlMVUYt7xGEBUggfGIeqqy8MJLQHiHmyJBEkpXy16ARJg/K J65M4lSmubgHylIgQb0xz5mOmfk9i2KeYgSiFHhkzgH2pPJ+2EdlvnrOcrjobz6D JZ4Th2biep34YWKre5E+l8JNCB/h1f43c01JdTdbIu5iWDCQWHpzVPMLl7Od+Zxn bhsk/JfO8Cm08eCKxu5/GjunVM0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQsxDup w1NHCGAEwoYEedv7aZDkgjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUwNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfe/zANBgkqhkiG9w0BAQsFAAOCAQEAQlJ1UMzvYwaJspjyDB+O TrYlgyEvksjlVgGZH1ECPLoUYNw9iiVL2mjm38bifSv8V+VtdhJl2I1ReYgaq2Fc BBt81no4QVrYG2m5hWd0kFPg3qi98hg2y0P55gRhT0yJ0Mr/3oKXag1MnayR7Ldr mS08umJXhQPyimTGgVs9BwTQ9giGsKSUWJOC/KCQjWVneR+RyVRpMhVEbxmPNa/5 fVCJCsbDUZ3Vx91wCrd6BLHBXYifKl638zV9vHJE65a+wFi4BvyVoXWoNtlNF6oz YJ+1H41B9Gug4kD/Q6ZwdGPIeScKXDNO70P45iyZ4X69sbhKOFERRlf9Pc4R9y70 Tg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org