$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151510.roa File: AS151510.roa (raw, json) Hash identifier: N3lGb0YZ4odPriZioi7wdWyW319kCps9A1FEuFviMAk= Subject key identifier: 06:B8:09:4A:30:E0:FB:8A:55:09:86:AF:F7:E5:20:0E:97:3A:E5:1C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6F26C99AC31CC9B1CFEE7B8CE285A01E21F9D146 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151510.roa Signing time: Mon 30 Sep 2024 07:03:30 +0000 ROA not before: Mon 30 Sep 2024 06:58:30 +0000 ROA not after: Mon 29 Sep 2025 07:03:30 +0000 asID: 151510 IP address blocks: 103.236.214.0/23 maxlen: 24 2001:df2:dd40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:26:c9:9a:c3:1c:c9:b1:cf:ee:7b:8c:e2:85:a0:1e:21:f9:d1:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 30 06:58:30 2024 GMT Not After : Sep 29 07:03:30 2025 GMT Subject: CN=06B8094A30E0FB8A550986AFF7E5200E973AE51C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:a4:2c:42:5f:23:69:f7:f9:3b:e5:b0:3d:c0: 82:87:9b:14:f9:56:23:9a:57:3e:d0:45:33:a2:fd: 74:50:0a:68:4a:58:f5:9f:6b:8e:fc:28:7e:8a:d8: 28:2b:19:ca:1c:55:4d:fb:e4:15:ce:bb:b8:fc:68: ff:dd:2d:6e:19:f7:eb:1b:75:73:3f:19:ab:fd:cb: fe:58:d9:63:8f:55:5b:19:7e:de:2b:0a:eb:6f:22: 69:dc:c6:e8:9f:1a:7f:79:f6:5a:32:cc:8c:5d:8a: 36:11:21:46:50:a5:63:0c:82:a7:86:23:91:1f:c9: b6:92:8b:fd:11:03:ef:69:45:5d:4b:18:64:da:29: c1:c1:45:fd:46:c7:ee:d6:e3:c4:b8:78:d4:cf:12: 9f:b5:31:4e:47:43:71:7c:1f:d1:5d:31:e4:f0:e9: 09:5d:b6:2d:f4:f4:ed:3a:90:fe:32:16:d8:4f:ca: 6f:4e:fb:0c:c1:07:3b:52:5a:6f:af:f3:f0:ba:c8: f9:1e:dd:14:74:b7:c5:ca:5a:02:fe:d9:d5:5d:87: b6:0f:a0:3f:ba:36:a9:4d:15:b5:b1:b6:76:5f:21: f7:f7:4f:a0:9a:9c:9e:b8:b0:b2:46:29:51:00:3c: 07:ea:4e:c9:f8:e4:2d:d2:b5:17:6d:8d:eb:b5:ff: 6d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:B8:09:4A:30:E0:FB:8A:55:09:86:AF:F7:E5:20:0E:97:3A:E5:1C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151510.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.236.214.0/23 IPv6: 2001:df2:dd40::/48 Signature Algorithm: sha256WithRSAEncryption 7c:b0:0e:58:b8:8f:ce:1d:ff:22:1b:cf:77:9d:5d:89:e9:29: 1a:9f:0f:e8:2a:d9:05:49:74:b1:a8:5f:31:76:ee:ed:5d:ce: 95:62:19:03:28:1e:1b:a9:a1:0a:af:be:be:98:01:b4:2a:30: 19:f8:e3:79:fc:75:20:f9:56:5d:f4:07:35:96:be:9d:dc:61: f3:a5:ed:8f:51:9f:60:41:2b:1c:7f:cf:3a:40:bc:b3:2a:8f: 81:c5:a6:6c:3e:01:7b:4a:8a:ca:d6:cc:34:24:58:e9:9e:11: fe:d6:20:d0:c7:e2:41:ea:e8:1c:55:22:64:b3:1d:63:09:18: 14:2d:e5:69:d7:b7:0d:b3:27:71:5d:e3:d8:e4:0c:8d:88:51: 7a:1c:d6:8f:0d:68:fd:56:33:1b:18:70:b1:50:2a:e5:50:06: dc:8a:24:23:14:8a:b7:4f:bb:4a:2d:d3:9c:ad:6c:4f:2d:46: aa:b4:86:38:b5:b3:0a:11:45:af:6b:4f:d9:75:f4:c4:b4:5f: 06:d8:a8:61:b7:7e:5d:e4:50:f0:68:65:7b:5e:e7:3f:18:a3: ad:5a:98:55:3a:71:1a:cd:fd:0c:60:b9:98:a4:fa:e7:c8:8d: a8:b9:3d:60:0a:fd:d3:41:3d:d5:a1:1c:8d:16:50:71:41:60: 5e:b3:dd:2f -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUbybJmsMcybHP7nuM4oWgHiH50UYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkzMDA2NTgzMFoX DTI1MDkyOTA3MDMzMFowMzExMC8GA1UEAxMoMDZCODA5NEEzMEUwRkI4QTU1MDk4 NkFGRjdFNTIwMEU5NzNBRTUxQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPCkLEJfI2n3+TvlsD3AgoebFPlWI5pXPtBFM6L9dFAKaEpY9Z9rjvwoforY KCsZyhxVTfvkFc67uPxo/90tbhn36xt1cz8Zq/3L/ljZY49VWxl+3isK628iadzG 6J8af3n2WjLMjF2KNhEhRlClYwyCp4YjkR/JtpKL/RED72lFXUsYZNopwcFF/UbH 7tbjxLh41M8Sn7UxTkdDcXwf0V0x5PDpCV22LfT07TqQ/jIW2E/Kb077DMEHO1Ja b6/z8LrI+R7dFHS3xcpaAv7Z1V2Htg+gP7o2qU0VtbG2dl8h9/dPoJqcnriwskYp UQA8B+pOyfjkLdK1F22N67X/bXcCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBQGuAlK MOD7ilUJhq/35SAOlzrlHDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUxMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWfs1jAPBAIAAjAJAwcAIAEN8t1AMA0GCSqGSIb3DQEBCwUAA4IB AQB8sA5YuI/OHf8iG893nV2J6Skanw/oKtkFSXSxqF8xdu7tXc6VYhkDKB4bqaEK r76+mAG0KjAZ+ON5/HUg+VZd9Ac1lr6d3GHzpe2PUZ9gQSscf886QLyzKo+BxaZs PgF7SorK1sw0JFjpnhH+1iDQx+JB6ugcVSJksx1jCRgULeVp17cNsydxXePY5AyN iFF6HNaPDWj9VjMbGHCxUCrlUAbciiQjFIq3T7tKLdOcrWxPLUaqtIY4tbMKEUWv a0/ZdfTEtF8G2Khht35d5FDwaGV7Xuc/GKOtWphVOnEazf0MYLmYpPrnyI2ouT1g Cv3TQT3VoRyNFlBxQWBes90v -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:29 2024 by rpki-client on console-ams.rpki-client.org