$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151517.roa File: AS151517.roa (raw, json) Hash identifier: s90Zdc8nMvdcN4FhrecfThL8CIyyf3F1rBEhpMUu/L0= Subject key identifier: 79:F0:1F:FE:72:FB:00:3B:4C:B2:5B:19:EC:EE:41:4E:D2:3E:0B:E4 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 05657C0D48E693E6E36D6C9F1983152B6C4B8FD1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151517.roa Signing time: Fri 21 Jul 2023 03:18:01 +0000 ROA not before: Fri 21 Jul 2023 03:13:01 +0000 ROA not after: Fri 19 Jul 2024 03:18:01 +0000 asID: 151517 IP address blocks: 103.235.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:65:7c:0d:48:e6:93:e6:e3:6d:6c:9f:19:83:15:2b:6c:4b:8f:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 21 03:13:01 2023 GMT Not After : Jul 19 03:18:01 2024 GMT Subject: CN=79F01FFE72FB003B4CB25B19ECEE414ED23E0BE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d8:68:48:f0:79:78:ed:d3:c2:e3:44:13:09: 3c:73:44:23:2d:a7:09:7b:08:a9:92:b6:75:d7:2d: e0:67:73:b9:85:cc:2e:54:51:ff:8f:88:58:a1:9c: cb:0d:d3:6b:c5:af:63:67:d5:60:f0:da:cb:0a:88: 81:77:7b:f0:de:55:fc:40:3f:e8:48:bb:dc:7d:16: 25:b1:b3:52:2c:82:d3:ee:8e:79:39:d6:3a:b0:70: c7:4a:b9:03:a8:0c:25:a8:0a:8a:44:c9:85:bf:d1: 44:58:b2:7c:d1:1b:2f:6a:73:db:fe:9e:3c:2d:b9: 10:ad:e8:91:2e:1a:a4:73:cb:fb:6a:ca:d3:14:fc: 6d:62:ec:9c:0f:ff:6f:b7:13:34:0e:6d:5d:4c:b7: d1:f7:1f:cc:80:66:37:9f:95:56:a9:fe:27:d2:a2: 11:46:a8:d1:96:d4:91:de:26:82:7b:b5:bf:61:0a: ae:a1:c6:72:ba:95:fe:6b:89:cb:84:a2:35:ad:58: d0:cf:e2:47:8c:37:88:aa:12:bc:42:44:c4:eb:c8: e7:7a:ee:00:05:77:16:36:a5:19:3f:8c:b7:b5:55: e3:cb:98:a5:98:2f:bf:eb:a1:16:49:c8:16:27:bd: 6a:ca:5e:2c:13:a0:4d:85:ee:e0:4e:ae:73:96:29: d0:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:F0:1F:FE:72:FB:00:3B:4C:B2:5B:19:EC:EE:41:4E:D2:3E:0B:E4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151517.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.235.181.0/24 Signature Algorithm: sha256WithRSAEncryption 42:74:dc:86:24:48:33:68:1b:b3:f2:d0:f6:50:0a:28:cc:0e: 58:3f:f2:b2:e3:e7:b5:6e:bc:6c:4d:27:c0:d3:bd:86:c5:70: d3:7a:1e:1c:11:3f:a9:70:1c:d8:85:36:c9:c7:07:f7:66:4d: f1:08:c2:a9:40:b8:f3:28:a6:0d:11:f3:8a:28:7d:f5:1a:71: 2a:bd:31:28:00:37:97:7b:b9:de:2f:bc:bc:0a:39:70:ba:46: 6f:77:5b:6f:6e:87:a6:67:35:03:f6:0e:cf:ba:6d:48:c1:86: 5c:c8:69:b9:b2:9c:c1:40:7f:f6:4d:38:41:51:11:2b:e7:de: 32:6a:7a:0e:19:f4:7c:51:97:ed:01:3b:2c:7b:6f:58:fe:b2: 04:55:26:71:5f:9d:08:d2:94:72:45:a3:6a:83:e9:9a:d1:ef: 2f:25:b0:f8:d9:5b:c9:04:1b:3d:04:07:82:cc:ca:06:0f:8d: 17:b1:55:09:31:cb:e3:7d:16:c9:b4:6b:76:8e:c0:1c:23:cd: 60:78:af:30:0d:e2:4d:2d:0d:08:27:2d:51:95:40:dc:2e:4a: bb:93:f1:9e:bc:ce:a1:b4:02:cb:7e:39:c8:bd:31:78:c4:64: 51:b2:6f:84:13:08:c7:bd:57:d8:57:42:ac:33:70:27:52:db: a1:00:44:fd -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUBWV8DUjmk+bjbWyfGYMVK2xLj9EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcyMTAzMTMwMVoX DTI0MDcxOTAzMTgwMVowMzExMC8GA1UEAxMoNzlGMDFGRkU3MkZCMDAzQjRDQjI1 QjE5RUNFRTQxNEVEMjNFMEJFNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN/YaEjweXjt08LjRBMJPHNEIy2nCXsIqZK2ddct4GdzuYXMLlRR/4+IWKGc yw3Ta8WvY2fVYPDaywqIgXd78N5V/EA/6Ei73H0WJbGzUiyC0+6OeTnWOrBwx0q5 A6gMJagKikTJhb/RRFiyfNEbL2pz2/6ePC25EK3okS4apHPL+2rK0xT8bWLsnA// b7cTNA5tXUy30fcfzIBmN5+VVqn+J9KiEUao0ZbUkd4mgnu1v2EKrqHGcrqV/muJ y4SiNa1Y0M/iR4w3iKoSvEJExOvI53ruAAV3FjalGT+Mt7VV48uYpZgvv+uhFknI Fie9aspeLBOgTYXu4E6uc5Yp0G0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR58B/+ cvsAO0yyWxns7kFO0j4L5DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUxNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfrtTANBgkqhkiG9w0BAQsFAAOCAQEAQnTchiRIM2gbs/LQ9lAK KMwOWD/ysuPntW68bE0nwNO9hsVw03oeHBE/qXAc2IU2yccH92ZN8QjCqUC48yim DRHziih99RpxKr0xKAA3l3u53i+8vAo5cLpGb3dbb26Hpmc1A/YOz7ptSMGGXMhp ubKcwUB/9k04QVERK+feMmp6Dhn0fFGX7QE7LHtvWP6yBFUmcV+dCNKUckWjaoPp mtHvLyWw+NlbyQQbPQQHgszKBg+NF7FVCTHL430WybRrdo7AHCPNYHivMA3iTS0N CCctUZVA3C5Ku5PxnrzOobQCy345yL0xeMRkUbJvhBMIx71X2FdCrDNwJ1LboQBE /Q== -----END CERTIFICATE-----Generated at Tue May 7 16:42:41 2024 by rpki-client on console-ams.rpki-client.org