$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151517.roa File: AS151517.roa (raw, json) Hash identifier: sc9qM6VBMoOkuAbfAz8xgEYa5yTNWBIfwJk/7crb6W4= Subject key identifier: CB:C6:10:62:D0:C1:E0:38:F9:5B:38:E4:FB:9F:54:B6:0E:C4:D9:FF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4B4B2D4B6442C4582AE0E2454033729F22A29720 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151517.roa Signing time: Fri 21 Jun 2024 04:00:00 +0000 ROA not before: Fri 21 Jun 2024 03:55:00 +0000 ROA not after: Fri 20 Jun 2025 04:00:00 +0000 asID: 151517 IP address blocks: 103.235.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:4b:2d:4b:64:42:c4:58:2a:e0:e2:45:40:33:72:9f:22:a2:97:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 21 03:55:00 2024 GMT Not After : Jun 20 04:00:00 2025 GMT Subject: CN=CBC61062D0C1E038F95B38E4FB9F54B60EC4D9FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fe:1f:6b:27:d8:ee:c6:c4:8b:72:99:bf:c0: 12:ba:03:3e:cf:b2:6e:ad:b9:65:dc:65:55:18:63: ad:d1:e3:08:c4:7c:88:f4:24:ed:a3:5d:55:5f:1c: 5e:dd:0c:20:bd:e9:66:ea:40:dc:a7:23:e8:ec:75: 82:88:3d:30:9d:a0:1f:f8:3a:d7:9e:6d:4e:df:8b: 0b:a6:61:32:ec:d4:a5:0b:db:65:8c:96:c8:00:94: 78:46:41:23:80:76:6f:d1:66:65:24:95:7c:24:d2: 07:91:71:40:56:4b:17:84:ef:2d:43:e0:f4:4c:d7: a9:f8:1c:6c:fd:e4:b1:c9:fc:33:25:82:db:2a:dd: 17:9d:8b:7a:39:69:ac:a6:af:6b:1c:22:aa:e4:53: 84:56:58:9a:d5:4b:0c:6e:c5:1b:e6:c5:60:57:40: 02:29:f5:77:89:c4:a7:42:2c:a7:6f:60:2f:d6:b6: 4b:2d:25:bd:9a:61:76:7c:56:52:10:96:90:7e:1e: 00:66:b4:e6:a2:c0:8f:9b:e2:11:1c:19:52:60:1f: 9f:01:72:28:7f:c4:1e:60:65:17:18:21:b8:63:d8: d0:55:be:84:4b:54:f4:c8:79:15:ab:2f:9c:28:fb: b3:27:2c:c5:60:eb:9b:40:e1:f0:d4:1a:d5:3f:30: 29:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:C6:10:62:D0:C1:E0:38:F9:5B:38:E4:FB:9F:54:B6:0E:C4:D9:FF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151517.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.235.181.0/24 Signature Algorithm: sha256WithRSAEncryption 20:d4:8b:de:51:4e:ce:f8:c0:ff:af:e4:27:d3:b3:b5:84:ec: 22:da:04:8b:88:3a:fe:47:c5:ae:55:24:7d:cf:e8:52:60:86: 84:e6:b1:5b:36:10:6a:60:87:20:14:dd:1d:c6:03:12:eb:7a: 09:62:33:44:70:6d:5a:f2:02:e4:09:b3:80:69:66:a0:16:16: 36:3f:cd:b0:92:f8:1e:ba:fd:e8:0d:a0:72:96:c1:40:04:82: 22:e9:19:61:87:a0:e8:a1:ef:b4:66:19:d6:f0:72:29:17:59: 96:16:c9:60:2b:81:23:8e:50:62:77:20:e9:f9:d8:0d:7c:31: 2c:0b:e2:2e:c5:66:ea:84:d5:d6:2d:96:a9:f0:7f:e0:bc:c0: 34:af:8c:0c:c6:ed:76:bb:65:c5:da:ba:cf:73:02:5a:18:44: 45:2f:f6:c0:53:08:b8:cd:a8:e1:c0:c6:60:fe:bd:a5:1a:9c: 7f:80:09:97:3d:c0:49:d9:93:5b:c9:cb:6c:74:08:45:8c:45: 94:d8:7c:a8:19:0b:57:7c:de:b6:ee:da:4c:09:97:80:da:ca: fa:f7:c1:02:d0:d2:48:2a:58:da:63:b0:f9:c6:37:19:db:c1: c1:05:7f:bf:88:28:c0:6e:c6:a5:ed:11:b9:b4:97:84:2d:54: ea:dd:6f:59 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUS0stS2RCxFgq4OJFQDNynyKilyAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYyMTAzNTUwMFoX DTI1MDYyMDA0MDAwMFowMzExMC8GA1UEAxMoQ0JDNjEwNjJEMEMxRTAzOEY5NUIz OEU0RkI5RjU0QjYwRUM0RDlGRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMj+H2sn2O7GxItymb/AEroDPs+ybq25ZdxlVRhjrdHjCMR8iPQk7aNdVV8c Xt0MIL3pZupA3Kcj6Ox1gog9MJ2gH/g6155tTt+LC6ZhMuzUpQvbZYyWyACUeEZB I4B2b9FmZSSVfCTSB5FxQFZLF4TvLUPg9EzXqfgcbP3kscn8MyWC2yrdF52Lejlp rKavaxwiquRThFZYmtVLDG7FG+bFYFdAAin1d4nEp0Isp29gL9a2Sy0lvZphdnxW UhCWkH4eAGa05qLAj5viERwZUmAfnwFyKH/EHmBlFxghuGPY0FW+hEtU9Mh5Fasv nCj7sycsxWDrm0Dh8NQa1T8wKXcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTLxhBi 0MHgOPlbOOT7n1S2DsTZ/zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUxNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfrtTANBgkqhkiG9w0BAQsFAAOCAQEAINSL3lFOzvjA/6/kJ9Oz tYTsItoEi4g6/kfFrlUkfc/oUmCGhOaxWzYQamCHIBTdHcYDEut6CWIzRHBtWvIC 5AmzgGlmoBYWNj/NsJL4Hrr96A2gcpbBQASCIukZYYeg6KHvtGYZ1vByKRdZlhbJ YCuBI45QYncg6fnYDXwxLAviLsVm6oTV1i2WqfB/4LzANK+MDMbtdrtlxdq6z3MC WhhERS/2wFMIuM2o4cDGYP69pRqcf4AJlz3ASdmTW8nLbHQIRYxFlNh8qBkLV3ze tu7aTAmXgNrK+vfBAtDSSCpY2mOw+cY3GdvBwQV/v4gowG7Gpe0RubSXhC1U6t1v WQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org