$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151507.roa File: AS151507.roa (raw, json) Hash identifier: 1aWpeBAkLneu0r6P7zSY7ZdSiEqhHUmLgsPLNQnWImY= Subject key identifier: 97:CE:F6:BB:C5:72:BA:EC:F2:C0:67:32:60:8C:CB:48:1A:BB:91:BB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 790B38C5C139271DE01016E274B7A129195340C9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151507.roa Signing time: Mon 24 Jun 2024 07:00:00 +0000 ROA not before: Mon 24 Jun 2024 06:55:00 +0000 ROA not after: Mon 23 Jun 2025 07:00:00 +0000 asID: 151507 IP address blocks: 103.234.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:0b:38:c5:c1:39:27:1d:e0:10:16:e2:74:b7:a1:29:19:53:40:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 24 06:55:00 2024 GMT Not After : Jun 23 07:00:00 2025 GMT Subject: CN=97CEF6BBC572BAECF2C06732608CCB481ABB91BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ab:39:ca:b1:cb:d6:11:5f:6a:d4:a7:64:89: 5e:46:09:86:df:2d:9f:10:06:72:a6:98:5d:fc:48: f2:6c:1f:8e:0e:71:8c:d4:23:9a:97:22:05:14:0a: d4:f6:67:92:15:7e:f3:7d:f3:5b:c1:9e:ca:4a:8e: 7f:99:e0:2d:bf:f9:9b:63:63:44:6f:5c:4f:a7:36: 87:dd:d9:cc:86:c1:57:e2:91:51:1a:63:db:a0:38: 75:14:3b:7c:7d:64:02:64:c8:df:59:46:be:f1:06: 8b:90:b1:38:87:b8:1a:c1:51:2c:e7:ec:ef:b0:d2: de:44:22:f5:01:f1:fe:f7:c5:e8:f6:16:a6:18:9a: d0:61:fd:23:6d:35:22:58:0f:17:4b:91:f3:44:72: af:50:d8:5f:a8:43:c0:de:e1:92:ae:de:d9:91:c3: 23:48:88:09:db:ea:59:51:3f:ca:48:d2:de:29:a9: 60:5b:8a:97:17:fc:6e:5e:d7:c7:a1:b4:d2:f2:53: da:de:14:3b:10:18:39:b2:f2:a8:69:a3:d3:01:63: 0e:eb:ac:e7:be:17:86:d3:59:59:21:d5:5e:b7:9b: 3c:de:f8:49:a9:43:4c:fb:15:85:c1:02:92:ca:67: dc:ac:b5:41:5c:ac:90:6c:df:e8:80:53:d2:57:03: e8:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:CE:F6:BB:C5:72:BA:EC:F2:C0:67:32:60:8C:CB:48:1A:BB:91:BB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151507.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.28.0/23 Signature Algorithm: sha256WithRSAEncryption 58:75:51:2d:6b:04:bc:d1:94:91:25:63:57:77:e9:8c:86:e7: fd:50:18:7e:9f:4a:16:8c:8b:76:e1:5a:fe:26:ff:ab:6a:3a: 62:fa:f0:a0:e9:e3:89:b6:7b:f8:d3:87:28:31:84:36:59:be: 60:a4:47:f8:30:30:fc:f9:4a:c7:34:44:45:d5:36:d0:3b:94: eb:6e:cf:54:32:64:7c:1a:81:93:b2:36:17:aa:84:d1:1c:c8: 77:e5:90:1e:3c:6e:1c:e8:15:52:a0:d1:5d:c0:33:fe:55:f0: 66:51:c4:72:a0:e2:df:ef:14:b8:28:36:9a:57:0a:d2:15:34: 42:49:d1:ad:12:9f:15:10:f8:3b:85:31:9a:71:8a:aa:0a:ca: fe:df:af:7a:4d:23:4b:21:0a:3e:ce:8c:21:ca:b9:2f:08:94: e2:cb:45:42:7d:6e:4a:34:cc:f0:b0:ba:46:da:43:87:72:b6: fe:bb:c8:c6:37:ac:32:16:00:ce:e1:23:ac:0f:00:70:23:02: 3d:27:a3:4e:7a:2b:da:b4:a9:97:9b:22:25:87:09:da:8b:de: 3d:69:1d:49:8c:9d:9e:7d:ee:41:0b:d1:d9:d6:80:a3:b3:58: ce:00:03:1e:95:f3:f1:d1:67:cb:19:6b:a1:ab:0a:34:7d:5a: 33:63:96:46 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUeQs4xcE5Jx3gEBbidLehKRlTQMkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYyNDA2NTUwMFoX DTI1MDYyMzA3MDAwMFowMzExMC8GA1UEAxMoOTdDRUY2QkJDNTcyQkFFQ0YyQzA2 NzMyNjA4Q0NCNDgxQUJCOTFCQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMGrOcqxy9YRX2rUp2SJXkYJht8tnxAGcqaYXfxI8mwfjg5xjNQjmpciBRQK 1PZnkhV+833zW8GeykqOf5ngLb/5m2NjRG9cT6c2h93ZzIbBV+KRURpj26A4dRQ7 fH1kAmTI31lGvvEGi5CxOIe4GsFRLOfs77DS3kQi9QHx/vfF6PYWphia0GH9I201 IlgPF0uR80Ryr1DYX6hDwN7hkq7e2ZHDI0iICdvqWVE/ykjS3impYFuKlxf8bl7X x6G00vJT2t4UOxAYObLyqGmj0wFjDuus574XhtNZWSHVXrebPN74SalDTPsVhcEC kspn3Ky1QVyskGzf6IBT0lcD6EcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSXzva7 xXK67PLAZzJgjMtIGruRuzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUwNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfqHDANBgkqhkiG9w0BAQsFAAOCAQEAWHVRLWsEvNGUkSVjV3fp jIbn/VAYfp9KFoyLduFa/ib/q2o6YvrwoOnjibZ7+NOHKDGENlm+YKRH+DAw/PlK xzRERdU20DuU627PVDJkfBqBk7I2F6qE0RzId+WQHjxuHOgVUqDRXcAz/lXwZlHE cqDi3+8UuCg2mlcK0hU0QknRrRKfFRD4O4UxmnGKqgrK/t+vek0jSyEKPs6MIcq5 LwiU4stFQn1uSjTM8LC6RtpDh3K2/rvIxjesMhYAzuEjrA8AcCMCPSejTnor2rSp l5siJYcJ2ovePWkdSYydnn3uQQvR2daAo7NYzgADHpXz8dFnyxlroasKNH1aM2OW Rg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:49 2024 by rpki-client on console-ams.rpki-client.org