$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151509.roa File: AS151509.roa (raw, json) Hash identifier: 6/7PIwsRUQn8aRaGYiLXD5zzJWQ+lGJOd9xJG8Juhdo= Subject key identifier: 82:E1:74:8F:BB:B4:EE:12:9B:13:13:E3:3F:E9:0B:DA:13:F4:37:AD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 47966315B3D4DA2FE6CD7CD36A828CCE73B81783 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151509.roa Signing time: Tue 08 Aug 2023 04:05:25 +0000 ROA not before: Tue 08 Aug 2023 04:00:25 +0000 ROA not after: Tue 06 Aug 2024 04:05:25 +0000 asID: 151509 IP address blocks: 103.217.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:96:63:15:b3:d4:da:2f:e6:cd:7c:d3:6a:82:8c:ce:73:b8:17:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 8 04:00:25 2023 GMT Not After : Aug 6 04:05:25 2024 GMT Subject: CN=82E1748FBBB4EE129B1313E33FE90BDA13F437AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2c:93:4c:90:cf:59:68:96:7f:3d:96:7f:56: 1c:41:f9:7f:22:e8:8a:bc:3a:98:bc:f0:5e:2e:2f: eb:dc:a0:a6:a8:f1:46:03:8d:bf:b0:53:40:e3:a7: 15:57:36:99:de:ae:78:1c:42:5f:a1:d5:c0:c5:07: a5:c4:ac:0d:4b:e2:2d:16:e3:6a:86:71:17:26:eb: a8:e8:5f:fb:ea:e9:49:5b:a2:b1:55:1d:b2:e1:3f: 85:13:74:ea:32:6f:bb:61:bf:38:86:3a:60:8c:90: 8b:8e:90:6e:84:da:e1:5b:f8:05:d5:bc:67:5b:d1: 51:e5:e5:b6:b5:cb:52:dd:54:d3:f6:0a:ff:e2:32: 22:0c:e6:9b:8b:c2:13:59:1f:08:b9:2b:42:c5:5f: 40:61:d1:bd:4f:aa:f9:55:de:c8:a4:73:1c:a9:da: bc:5c:30:65:7a:27:f6:d5:03:b2:e3:c4:54:97:34: 78:2c:4c:21:aa:54:ae:c3:b8:71:63:48:9f:40:fb: 5c:01:29:c4:9b:0f:34:5b:aa:c4:6b:96:c2:cd:ec: e2:30:40:65:28:ed:db:92:b5:b5:f8:28:0e:37:f4: c3:26:60:0d:36:ac:ca:11:20:4d:ab:5a:e7:43:3e: 00:40:39:41:d5:8c:06:af:b8:11:45:4c:7c:d1:ad: 2e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:E1:74:8F:BB:B4:EE:12:9B:13:13:E3:3F:E9:0B:DA:13:F4:37:AD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151509.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.225.0/24 Signature Algorithm: sha256WithRSAEncryption 28:9c:4e:47:99:4c:48:bb:0b:9e:b4:37:55:4e:b1:70:20:50: 19:1a:25:19:6e:30:32:51:06:eb:c5:29:c4:53:84:1c:82:22: ec:6b:ed:fb:4e:e4:b7:e8:58:9b:14:64:14:c2:0a:cc:88:95: 5f:22:a9:26:75:7c:37:09:4a:59:68:a2:bf:06:28:af:5b:62: 06:f8:da:6e:c5:cf:b8:88:3d:be:d8:b7:b3:90:89:03:f2:a2: 8a:d1:a4:a4:9d:4e:c3:25:3c:c3:18:dd:e6:a0:fb:5b:96:7b: 07:3c:cc:d3:c3:c7:04:6e:fc:09:20:31:34:3a:d6:f0:8c:e7: ee:e4:6e:f2:e4:88:30:18:2d:03:cc:d3:f1:45:4d:70:7e:2d: 8e:5e:66:f1:d1:f0:bd:43:4a:02:71:cc:e3:5d:b0:be:95:96: f3:67:cd:b9:5d:8b:5c:5c:cd:86:b8:7c:d7:45:d6:89:3b:a2: a8:73:7e:ee:c4:65:75:ad:2a:e4:98:1a:83:ed:05:97:74:95: 81:18:53:37:45:64:0e:79:bb:1c:87:fb:b9:1d:38:6c:2a:83: af:03:39:d2:d7:6c:34:04:76:18:6f:0d:79:6a:ce:58:db:ca: ac:e4:dc:23:c9:0f:f5:b7:f6:1a:9b:6c:41:6d:c7:f5:dd:67: 91:90:55:8d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUR5ZjFbPU2i/mzXzTaoKMznO4F4MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgwODA0MDAyNVoX DTI0MDgwNjA0MDUyNVowMzExMC8GA1UEAxMoODJFMTc0OEZCQkI0RUUxMjlCMTMx M0UzM0ZFOTBCREExM0Y0MzdBRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALcsk0yQz1loln89ln9WHEH5fyLoirw6mLzwXi4v69ygpqjxRgONv7BTQOOn FVc2md6ueBxCX6HVwMUHpcSsDUviLRbjaoZxFybrqOhf++rpSVuisVUdsuE/hRN0 6jJvu2G/OIY6YIyQi46QboTa4Vv4BdW8Z1vRUeXltrXLUt1U0/YK/+IyIgzmm4vC E1kfCLkrQsVfQGHRvU+q+VXeyKRzHKnavFwwZXon9tUDsuPEVJc0eCxMIapUrsO4 cWNIn0D7XAEpxJsPNFuqxGuWws3s4jBAZSjt25K1tfgoDjf0wyZgDTasyhEgTata 50M+AEA5QdWMBq+4EUVMfNGtLpMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSC4XSP u7TuEpsTE+M/6QvaE/Q3rTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUwOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfZ4TANBgkqhkiG9w0BAQsFAAOCAQEAKJxOR5lMSLsLnrQ3VU6x cCBQGRolGW4wMlEG68UpxFOEHIIi7Gvt+07kt+hYmxRkFMIKzIiVXyKpJnV8NwlK WWiivwYor1tiBvjabsXPuIg9vti3s5CJA/KiitGkpJ1OwyU8wxjd5qD7W5Z7BzzM 08PHBG78CSAxNDrW8Izn7uRu8uSIMBgtA8zT8UVNcH4tjl5m8dHwvUNKAnHM412w vpWW82fNuV2LXFzNhrh810XWiTuiqHN+7sRlda0q5Jgag+0Fl3SVgRhTN0VkDnm7 HIf7uR04bCqDrwM50tdsNAR2GG8NeWrOWNvKrOTcI8kP9bf2GptsQW3H9d1nkZBV jQ== -----END CERTIFICATE-----Generated at Tue May 7 18:07:19 2024 by rpki-client on console-fra.rpki-client.org