$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151520.roa File: AS151520.roa (raw, json) Hash identifier: SpcRMcmm6FpR9KzCj5xxdmo5d4Zt/EgaN/ZFNcng4L0= Subject key identifier: 92:5C:83:A1:6A:8D:E3:A4:8D:BE:1F:89:B9:29:3C:92:19:F8:E9:90 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 174CFC81BD5F4E0137955344C357A18DF4824789 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151520.roa Signing time: Mon 22 Jul 2024 05:00:00 +0000 ROA not before: Mon 22 Jul 2024 04:55:00 +0000 ROA not after: Mon 21 Jul 2025 05:00:00 +0000 asID: 151520 IP address blocks: 103.236.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:4c:fc:81:bd:5f:4e:01:37:95:53:44:c3:57:a1:8d:f4:82:47:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jul 22 04:55:00 2024 GMT Not After : Jul 21 05:00:00 2025 GMT Subject: CN=925C83A16A8DE3A48DBE1F89B9293C9219F8E990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:36:fa:a5:5a:9c:e3:f6:43:65:c7:da:8d:c9: 08:5e:78:84:32:44:b4:04:ec:2e:6f:86:59:dc:53: 14:e4:8f:2c:db:9d:b8:5c:70:05:78:d4:b6:0e:7f: 5a:b0:d7:0a:3f:c6:30:51:df:18:85:c0:f9:32:ca: f1:37:eb:ae:23:5e:20:8c:30:65:1d:ee:b5:d1:c3: 64:d9:58:13:6e:e3:c4:36:82:13:3b:79:25:20:43: b7:2e:08:9a:14:b4:17:37:42:f6:14:3b:b9:2b:1a: 2e:a8:10:e9:5c:49:d4:f2:d2:99:e8:98:81:fb:b6: 58:44:49:49:a2:6a:74:d7:33:9f:cc:3c:e4:94:76: 7b:b1:18:6c:51:0d:28:cc:d7:a9:07:34:8b:c5:74: 0d:22:22:cf:d7:4b:4b:ab:a9:c3:72:a3:31:3b:c4: e2:69:a4:a5:8a:41:9c:e7:8a:10:2d:72:d9:88:05: 2f:69:6e:c3:d2:69:a5:8c:3e:90:49:7d:4b:78:cc: 0b:f4:25:18:c8:f2:ba:c6:d4:6d:d0:37:7a:78:66: bd:d5:7a:56:a5:54:04:b8:0c:ae:89:15:67:d8:e6: 58:d7:db:68:32:bf:8c:5a:a3:a8:e3:dd:98:b8:55: 13:38:b0:3d:88:d8:b0:fa:26:6b:81:a1:59:1a:8c: 7e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:5C:83:A1:6A:8D:E3:A4:8D:BE:1F:89:B9:29:3C:92:19:F8:E9:90 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151520.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.236.142.0/23 Signature Algorithm: sha256WithRSAEncryption 84:ec:1c:be:00:3a:af:84:1a:54:fe:0c:12:aa:c8:fb:4b:78: a7:aa:ef:8d:ef:dd:9f:7a:04:75:b5:42:c5:8a:7d:cc:3b:06: 18:34:16:8d:e0:ae:5f:92:c0:d7:36:f3:68:12:a1:f3:ae:b3: e2:7a:98:50:6f:33:cd:67:3f:7f:fe:20:67:f5:e2:ff:4a:51: d4:1e:af:20:91:26:5a:85:a6:a9:c5:c4:71:4b:1b:84:04:ab: 1f:26:22:26:67:ee:05:57:39:7d:68:d0:05:cf:7e:7b:d1:bf: f4:ac:88:79:0c:f3:c4:cf:cb:b9:00:1e:70:60:71:2f:36:f3: 8f:0a:52:cf:e6:38:38:11:32:79:6e:a7:e2:b6:d2:22:7c:6a: 5a:bb:82:9e:32:2e:5d:bd:8f:8d:ab:50:a6:c2:7d:00:3c:21: 19:5d:cd:f1:2c:86:06:c4:d1:e0:f9:7c:67:73:42:8a:c7:7e: fc:be:29:9d:ad:74:a1:c1:f4:a8:78:6c:62:19:34:54:08:19: 5a:9d:0b:29:8a:61:be:a6:77:d0:dc:af:4d:bc:0c:2e:b6:45: b1:38:71:f2:9d:ff:93:79:00:c9:55:fe:e3:36:f2:f9:16:dc: bb:37:c2:bf:78:87:43:dc:80:07:43:80:1b:fa:40:63:69:1c: a1:15:d7:f8 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUF0z8gb1fTgE3lVNEw1ehjfSCR4kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcyMjA0NTUwMFoX DTI1MDcyMTA1MDAwMFowMzExMC8GA1UEAxMoOTI1QzgzQTE2QThERTNBNDhEQkUx Rjg5QjkyOTNDOTIxOUY4RTk5MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMQ2+qVanOP2Q2XH2o3JCF54hDJEtATsLm+GWdxTFOSPLNuduFxwBXjUtg5/ WrDXCj/GMFHfGIXA+TLK8TfrriNeIIwwZR3utdHDZNlYE27jxDaCEzt5JSBDty4I mhS0FzdC9hQ7uSsaLqgQ6VxJ1PLSmeiYgfu2WERJSaJqdNczn8w85JR2e7EYbFEN KMzXqQc0i8V0DSIiz9dLS6upw3KjMTvE4mmkpYpBnOeKEC1y2YgFL2luw9JppYw+ kEl9S3jMC/QlGMjyusbUbdA3enhmvdV6VqVUBLgMrokVZ9jmWNfbaDK/jFqjqOPd mLhVEziwPYjYsPoma4GhWRqMfi8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSSXIOh ao3jpI2+H4m5KTySGfjpkDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUyMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfsjjANBgkqhkiG9w0BAQsFAAOCAQEAhOwcvgA6r4QaVP4MEqrI +0t4p6rvje/dn3oEdbVCxYp9zDsGGDQWjeCuX5LA1zbzaBKh866z4nqYUG8zzWc/ f/4gZ/Xi/0pR1B6vIJEmWoWmqcXEcUsbhASrHyYiJmfuBVc5fWjQBc9+e9G/9KyI eQzzxM/LuQAecGBxLzbzjwpSz+Y4OBEyeW6n4rbSInxqWruCnjIuXb2PjatQpsJ9 ADwhGV3N8SyGBsTR4Pl8Z3NCisd+/L4pna10ocH0qHhsYhk0VAgZWp0LKYphvqZ3 0NyvTbwMLrZFsThx8p3/k3kAyVX+4zby+RbcuzfCv3iHQ9yAB0OAG/pAY2kcoRXX +A== -----END CERTIFICATE-----Generated at Sun Feb 16 20:46:02 2025 by rpki-client