$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151509.roa File: AS151509.roa (raw, json) Hash identifier: xy6YZ8fKVaLhFsXMSiIOGul0LJu0qEJ8P5k1f0HDN9Y= Subject key identifier: F7:BA:76:05:99:99:B9:8D:9B:77:1E:6D:37:5A:47:61:FB:2D:7D:E2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4101B569A14E965A14962165B2923C0CD5F1C248 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151509.roa Signing time: Tue 09 Jul 2024 05:02:12 +0000 ROA not before: Tue 09 Jul 2024 04:57:12 +0000 ROA not after: Tue 08 Jul 2025 05:02:12 +0000 asID: 151509 IP address blocks: 103.217.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:01:b5:69:a1:4e:96:5a:14:96:21:65:b2:92:3c:0c:d5:f1:c2:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jul 9 04:57:12 2024 GMT Not After : Jul 8 05:02:12 2025 GMT Subject: CN=F7BA76059999B98D9B771E6D375A4761FB2D7DE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:95:46:c0:75:6b:f2:c7:85:a6:e7:a5:f6:e6: 5a:cb:23:85:1c:81:73:2f:12:7d:3f:cd:90:dc:9b: 39:98:b6:db:51:6d:eb:64:76:94:d3:d8:14:c4:f3: 1d:49:7b:6a:4a:23:04:fd:07:ef:a5:5e:e3:3f:5b: b0:5c:e7:bf:ab:1c:f8:4d:26:19:f7:36:1e:64:68: 16:6e:00:75:79:98:85:ef:b9:a0:69:0a:65:dc:26: 9b:a1:cb:a0:27:e1:5e:9e:3b:ee:b5:76:7e:ed:6c: e1:a2:00:cf:c6:ca:2e:b3:70:53:2a:1d:4f:3e:f9: fa:e0:66:5d:47:9e:34:be:1a:c1:36:72:7c:e8:91: 8e:2b:7f:46:38:a7:24:7e:24:8e:c8:98:02:94:ea: 4e:db:ba:db:b3:68:9b:c9:19:06:ba:73:1d:ac:af: a8:26:1f:40:80:0a:c6:1c:7a:d6:d6:37:83:61:ea: 3f:94:8d:0c:2f:8e:0b:e4:0a:6c:d2:5e:00:3b:13: 71:28:e2:a6:21:ec:9a:5f:d6:39:39:7d:dd:05:7f: bc:6a:c3:b7:94:d8:f9:bd:7d:36:a0:ae:68:fe:8b: 5b:39:1b:50:16:aa:66:ef:2f:3b:61:16:5a:d6:5b: 20:ca:df:2a:d4:36:ab:90:de:ad:79:91:d8:a8:90: 54:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:BA:76:05:99:99:B9:8D:9B:77:1E:6D:37:5A:47:61:FB:2D:7D:E2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151509.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.225.0/24 Signature Algorithm: sha256WithRSAEncryption 14:06:bb:e3:6c:32:d1:20:1a:46:a3:9d:70:e8:7e:1c:54:5d: b0:31:b2:eb:82:62:fc:3f:e1:b5:c1:b7:f6:2e:38:69:a7:c1: 86:1a:b9:cd:63:8f:5e:37:35:36:40:01:23:b3:58:34:78:6b: 8c:9d:ca:81:e2:6b:e6:fd:13:38:13:08:6e:52:8d:5c:40:11: 1c:3f:52:0b:a3:60:d2:43:f6:ee:e8:6b:49:20:71:0f:99:3f: 2b:9f:7e:f5:cd:81:fa:d5:93:7a:a5:ca:5d:3f:89:07:b8:0b: 95:4d:7e:ba:6e:8d:18:ad:6d:85:55:b0:6a:2d:58:13:c6:98: 8e:b9:49:db:b6:14:59:1e:64:a0:73:43:8c:81:7e:05:0a:c7: 4a:61:45:07:13:56:53:2f:2a:78:f9:9a:42:61:7e:df:43:69: 96:ad:3c:25:cf:fe:52:59:68:1e:d2:10:bd:d0:80:71:04:ec: 9a:47:6b:a6:d6:e5:d5:06:d2:e4:f1:f6:df:f0:4e:a0:75:02: 28:fb:a3:d1:47:3f:b2:71:4a:1c:5d:8b:0d:f3:09:a9:ad:0f: 50:64:cb:12:20:29:ab:e9:19:91:ce:95:db:85:72:1d:cf:f0: f9:dc:bf:0f:73:ee:69:01:49:96:f8:b9:03:c0:80:4d:19:f9: 98:6b:c5:08 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUQQG1aaFOlloUliFlspI8DNXxwkgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwOTA0NTcxMloX DTI1MDcwODA1MDIxMlowMzExMC8GA1UEAxMoRjdCQTc2MDU5OTk5Qjk4RDlCNzcx RTZEMzc1QTQ3NjFGQjJEN0RFMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK2VRsB1a/LHhabnpfbmWssjhRyBcy8SfT/NkNybOZi221Ft62R2lNPYFMTz HUl7akojBP0H76Ve4z9bsFznv6sc+E0mGfc2HmRoFm4AdXmYhe+5oGkKZdwmm6HL oCfhXp477rV2fu1s4aIAz8bKLrNwUyodTz75+uBmXUeeNL4awTZyfOiRjit/Rjin JH4kjsiYApTqTtu627Nom8kZBrpzHayvqCYfQIAKxhx61tY3g2HqP5SNDC+OC+QK bNJeADsTcSjipiHsml/WOTl93QV/vGrDt5TY+b19NqCuaP6LWzkbUBaqZu8vO2EW WtZbIMrfKtQ2q5DerXmR2KiQVDsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT3unYF mZm5jZt3Hm03Wkdh+y194jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUwOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfZ4TANBgkqhkiG9w0BAQsFAAOCAQEAFAa742wy0SAaRqOdcOh+ HFRdsDGy64Ji/D/htcG39i44aafBhhq5zWOPXjc1NkABI7NYNHhrjJ3KgeJr5v0T OBMIblKNXEARHD9SC6Ng0kP27uhrSSBxD5k/K59+9c2B+tWTeqXKXT+JB7gLlU1+ um6NGK1thVWwai1YE8aYjrlJ27YUWR5koHNDjIF+BQrHSmFFBxNWUy8qePmaQmF+ 30Nplq08Jc/+UlloHtIQvdCAcQTsmkdrptbl1QbS5PH23/BOoHUCKPuj0Uc/snFK HF2LDfMJqa0PUGTLEiApq+kZkc6V24VyHc/w+dy/D3PuaQFJlvi5A8CATRn5mGvF CA== -----END CERTIFICATE-----Generated at Sun Feb 16 20:55:53 2025 by rpki-client