$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151515.roa File: AS151515.roa (raw, json) Hash identifier: mMzefHE/70E5We008PrZHw0CWPRwwToo9JcvoNv646Q= Subject key identifier: A6:29:91:FC:41:CD:86:33:57:AB:CA:09:51:55:B8:1D:85:63:AC:9C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 769A6A1E8F39B38DEDB89CAE9D1A1087ED5E4D1F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151515.roa Signing time: Thu 08 Aug 2024 07:00:03 +0000 ROA not before: Thu 08 Aug 2024 06:55:03 +0000 ROA not after: Thu 07 Aug 2025 07:00:03 +0000 asID: 151515 IP address blocks: 103.224.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:9a:6a:1e:8f:39:b3:8d:ed:b8:9c:ae:9d:1a:10:87:ed:5e:4d:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 8 06:55:03 2024 GMT Not After : Aug 7 07:00:03 2025 GMT Subject: CN=A62991FC41CD863357ABCA095155B81D8563AC9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:dd:64:a8:f9:f3:92:e7:b5:ab:20:57:94:03: f8:cc:1d:dd:db:20:9b:60:16:cf:1d:c8:2f:aa:5b: 01:c3:a8:59:61:a2:93:1d:e3:38:59:69:c9:3b:57: 7d:cc:9c:e0:ef:69:4f:ee:61:f3:31:64:51:fb:25: 3a:64:88:36:d3:57:48:90:5b:50:79:78:5f:eb:ae: c6:5f:2f:a7:b2:9e:54:4d:96:59:15:e0:3c:6b:e0: bb:45:2c:b7:90:46:60:f1:a0:b6:71:86:99:55:cb: 11:25:52:05:35:cf:c7:4e:9e:e0:e0:57:39:2c:a9: 79:cd:1e:9e:83:4e:60:6e:54:88:c2:6b:60:92:b7: 34:8a:b2:52:f1:4a:c9:6d:86:4e:fb:53:dd:88:8b: 0e:dd:9b:7f:26:cd:f0:e0:74:a9:29:e8:a0:55:03: 28:6a:12:f6:fe:ab:11:c1:48:fe:d4:91:a0:e2:b8: 45:f3:57:25:12:e1:e1:85:61:fc:4a:9e:fc:45:84: f3:58:fc:8e:69:4b:be:ee:05:5f:37:ef:0b:91:09: 52:0a:71:b5:fa:01:76:15:e7:4b:d0:f1:73:5d:2d: 2e:09:10:19:bf:60:fd:c7:78:c6:05:cd:fb:e7:dc: e6:1a:87:3f:3b:30:f6:30:2e:77:5f:dc:cb:82:57: 66:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:29:91:FC:41:CD:86:33:57:AB:CA:09:51:55:B8:1D:85:63:AC:9C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151515.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.224.18.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:be:4c:e7:30:ba:ec:c7:c9:82:4a:46:88:97:a2:a5:03:db: 2c:b8:ab:cc:bd:c2:e1:8d:f8:80:26:d0:cd:50:e4:0e:07:20: 02:41:53:bc:3f:d7:39:74:e3:3d:53:e4:91:13:7c:fd:78:df: 14:6c:6f:cd:27:93:78:87:f4:73:c1:21:3c:cb:dc:ff:da:8c: 41:13:b6:07:47:11:3d:26:52:69:d0:18:f1:2d:55:b7:50:31: 3d:15:99:cb:9b:0f:78:26:97:69:8f:18:3f:b0:d3:28:a9:0a: 4a:2d:d1:d2:ad:d2:51:ee:0c:6c:b5:6e:26:96:6b:d6:39:f3: 7b:ff:f1:da:40:09:da:81:f8:85:5d:40:e3:c3:71:9e:7b:f6: 13:cf:0f:b8:f4:6d:fe:94:70:48:9b:27:a2:25:0f:b2:e1:f4: 51:50:17:c1:84:a7:a0:87:7d:5d:25:dd:c6:d6:f6:43:50:a8: a5:ae:49:59:c3:82:df:e1:f2:38:4a:33:50:ff:9d:81:45:60: 6d:4e:87:18:49:28:23:27:d0:1c:2b:91:db:f9:f1:ca:15:54: 52:df:2d:6e:61:26:97:25:9f:ed:c8:b5:42:67:45:9e:3d:f6: 03:c9:ce:51:c0:19:ef:9f:70:a8:48:da:41:20:a9:cb:5e:18: da:24:13:9f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUdppqHo85s43tuJyunRoQh+1eTR8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgwODA2NTUwM1oX DTI1MDgwNzA3MDAwM1owMzExMC8GA1UEAxMoQTYyOTkxRkM0MUNEODYzMzU3QUJD QTA5NTE1NUI4MUQ4NTYzQUM5QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOndZKj585LntasgV5QD+Mwd3dsgm2AWzx3IL6pbAcOoWWGikx3jOFlpyTtX fcyc4O9pT+5h8zFkUfslOmSINtNXSJBbUHl4X+uuxl8vp7KeVE2WWRXgPGvgu0Us t5BGYPGgtnGGmVXLESVSBTXPx06e4OBXOSypec0enoNOYG5UiMJrYJK3NIqyUvFK yW2GTvtT3YiLDt2bfybN8OB0qSnooFUDKGoS9v6rEcFI/tSRoOK4RfNXJRLh4YVh /Eqe/EWE81j8jmlLvu4FXzfvC5EJUgpxtfoBdhXnS9Dxc10tLgkQGb9g/cd4xgXN ++fc5hqHPzsw9jAud1/cy4JXZlUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSmKZH8 Qc2GM1eryglRVbgdhWOsnDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUxNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfgEjANBgkqhkiG9w0BAQsFAAOCAQEAWr5M5zC67MfJgkpGiJei pQPbLLirzL3C4Y34gCbQzVDkDgcgAkFTvD/XOXTjPVPkkRN8/XjfFGxvzSeTeIf0 c8EhPMvc/9qMQRO2B0cRPSZSadAY8S1Vt1AxPRWZy5sPeCaXaY8YP7DTKKkKSi3R 0q3SUe4MbLVuJpZr1jnze//x2kAJ2oH4hV1A48Nxnnv2E88PuPRt/pRwSJsnoiUP suH0UVAXwYSnoId9XSXdxtb2Q1Copa5JWcOC3+HyOEozUP+dgUVgbU6HGEkoIyfQ HCuR2/nxyhVUUt8tbmEmlyWf7ci1QmdFnj32A8nOUcAZ759wqEjaQSCpy14Y2iQT nw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org