$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151508.roa File: AS151508.roa (raw, json) Hash identifier: nT0ACLCpoovdFhLK9H7cx3UwTeM9/dFk/ygxvxo9eco= Subject key identifier: 2C:B0:2C:5A:99:90:D9:E3:93:F0:B8:9F:0A:11:40:76:21:38:A9:19 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 53C64B9947FEE9FBB4D4FA0276C58F92E6DA8CB8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151508.roa Signing time: Wed 31 Jul 2024 05:00:00 +0000 ROA not before: Wed 31 Jul 2024 04:55:00 +0000 ROA not after: Wed 30 Jul 2025 05:00:00 +0000 asID: 151508 IP address blocks: 103.232.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:c6:4b:99:47:fe:e9:fb:b4:d4:fa:02:76:c5:8f:92:e6:da:8c:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 04:55:00 2024 GMT Not After : Jul 30 05:00:00 2025 GMT Subject: CN=2CB02C5A9990D9E393F0B89F0A1140762138A919 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:80:d1:84:cf:df:45:9a:09:e3:00:bf:3b:0c: 80:93:9b:ba:15:b9:54:0f:e1:3b:46:21:50:41:30: a8:45:7b:76:6d:d2:bd:cc:52:5c:5e:6e:49:19:a2: ab:e2:28:e0:a5:4b:67:cc:0a:8b:2a:5c:c2:f6:6d: cf:57:05:f6:48:29:73:8f:db:2c:c5:ae:3d:e0:d3: d8:65:b5:7f:78:31:b4:fa:38:86:ef:f2:0e:76:48: d2:92:2b:ec:a0:de:5b:77:9d:85:4a:1c:70:29:b4: 78:b3:13:e0:43:d6:fc:0e:cf:bd:9d:5c:8b:73:7a: 2d:8c:16:d3:32:7e:55:80:4c:08:05:d5:0d:62:ec: 9a:2b:a1:9d:16:93:1d:14:4b:6b:c6:f1:92:00:1d: 61:2c:28:99:cf:ab:04:04:2c:ba:90:08:e3:ac:ba: 6e:25:24:10:20:cf:4d:42:d6:2d:9e:4d:ca:ab:95: b2:93:15:a8:c0:60:84:b6:d3:0c:7d:4a:41:9b:5b: 5d:b7:56:ec:a1:44:74:af:32:2f:d2:83:d3:1e:19: 22:63:38:0d:94:28:0e:97:2d:fd:70:66:db:8e:7c: c8:7e:35:41:b4:b3:9a:ae:88:06:2e:31:fb:99:4a: 39:a2:00:40:13:85:85:f9:62:e6:af:62:a5:c1:de: 63:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:B0:2C:5A:99:90:D9:E3:93:F0:B8:9F:0A:11:40:76:21:38:A9:19 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151508.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.232.20.0/23 Signature Algorithm: sha256WithRSAEncryption 85:26:0d:31:f2:bf:65:11:59:7c:56:1b:02:4b:ff:03:4b:51: 85:59:a7:8f:01:39:85:91:94:e8:a3:ad:a8:66:a2:4a:71:c9: 39:54:d2:1b:43:67:d6:32:04:f6:9e:af:06:00:1e:5a:4f:ea: 47:24:1e:e3:2d:0b:ef:37:f2:0e:a3:2c:e5:de:bb:33:26:01: 1e:1b:8a:3a:ab:81:2f:a6:b2:cd:85:98:85:8e:12:5b:b5:78: f7:f7:57:b2:0a:7d:08:1e:65:2b:1e:dc:fd:2d:89:69:7b:49: 07:a3:68:5a:02:c1:b9:97:d7:74:53:67:fb:ea:69:c1:7a:73: 6e:cb:06:f8:2f:f8:39:7b:51:99:29:51:b6:4c:15:bf:42:f4: 40:d9:9a:5c:a6:47:7b:0a:45:8e:cf:fe:22:71:0a:10:cd:28: cb:b9:b1:9a:ee:9f:96:d6:3c:37:b9:95:49:4a:01:5d:b5:f7: 61:73:08:dd:25:2d:af:48:5d:fe:bb:00:cd:a1:26:7d:2a:a4: 0b:3b:47:dc:f9:6b:96:f2:52:d9:82:38:dd:aa:ae:17:ca:c5: c2:97:f7:4f:ef:c1:0e:23:23:1c:b5:cf:d4:b2:99:60:37:af: 6e:97:6c:fc:38:c9:fe:a3:2d:35:25:b8:e8:54:99:eb:1a:8d: b0:f9:70:a2 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUU8ZLmUf+6fu01PoCdsWPkubajLgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDczMTA0NTUwMFoX DTI1MDczMDA1MDAwMFowMzExMC8GA1UEAxMoMkNCMDJDNUE5OTkwRDlFMzkzRjBC ODlGMEExMTQwNzYyMTM4QTkxOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANyA0YTP30WaCeMAvzsMgJObuhW5VA/hO0YhUEEwqEV7dm3SvcxSXF5uSRmi q+Io4KVLZ8wKiypcwvZtz1cF9kgpc4/bLMWuPeDT2GW1f3gxtPo4hu/yDnZI0pIr 7KDeW3edhUoccCm0eLMT4EPW/A7PvZ1ci3N6LYwW0zJ+VYBMCAXVDWLsmiuhnRaT HRRLa8bxkgAdYSwomc+rBAQsupAI46y6biUkECDPTULWLZ5NyquVspMVqMBghLbT DH1KQZtbXbdW7KFEdK8yL9KD0x4ZImM4DZQoDpct/XBm2458yH41QbSzmq6IBi4x +5lKOaIAQBOFhfli5q9ipcHeY1MCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQssCxa mZDZ45PwuJ8KEUB2ITipGTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUwOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfoFDANBgkqhkiG9w0BAQsFAAOCAQEAhSYNMfK/ZRFZfFYbAkv/ A0tRhVmnjwE5hZGU6KOtqGaiSnHJOVTSG0Nn1jIE9p6vBgAeWk/qRyQe4y0L7zfy DqMs5d67MyYBHhuKOquBL6ayzYWYhY4SW7V49/dXsgp9CB5lKx7c/S2JaXtJB6No WgLBuZfXdFNn++ppwXpzbssG+C/4OXtRmSlRtkwVv0L0QNmaXKZHewpFjs/+InEK EM0oy7mxmu6fltY8N7mVSUoBXbX3YXMI3SUtr0hd/rsAzaEmfSqkCztH3PlrlvJS 2YI43aquF8rFwpf3T+/BDiMjHLXP1LKZYDevbpds/DjJ/qMtNSW46FSZ6xqNsPlw og== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:29 2024 by rpki-client on console-ams.rpki-client.org