$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151522.roa File: AS151522.roa (raw, json) Hash identifier: jwaZi0RBfZGQ7J/6tdruUuVdzaXeTRB48/SxnTYCdeM= Subject key identifier: 1D:E7:73:D5:FD:76:0C:C3:9E:6E:6B:77:F5:DD:C7:51:58:BA:EF:27 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1AFD65297C40CE0DE545D45834E53A116A1494A0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151522.roa Signing time: Fri 18 Oct 2024 04:00:00 +0000 ROA not before: Fri 18 Oct 2024 03:55:00 +0000 ROA not after: Fri 17 Oct 2025 04:00:00 +0000 asID: 151522 IP address blocks: 103.234.124.0/23 maxlen: 24 2001:df3:c40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:fd:65:29:7c:40:ce:0d:e5:45:d4:58:34:e5:3a:11:6a:14:94:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 18 03:55:00 2024 GMT Not After : Oct 17 04:00:00 2025 GMT Subject: CN=1DE773D5FD760CC39E6E6B77F5DDC75158BAEF27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:52:e4:bb:2b:2c:dd:0a:06:55:c1:80:0b:79: 6b:1b:41:69:f2:34:99:0f:f6:1a:7c:ae:2c:93:21: d0:4b:10:5e:5b:3d:95:b5:6a:17:35:40:c9:4d:6c: 31:04:5b:79:b8:df:8c:26:f4:ec:15:9a:de:6c:45: f1:66:45:84:d9:57:0d:cb:21:b8:fb:4f:d5:61:4b: 9b:24:a7:bd:d5:d2:55:2e:ad:fc:1d:b1:92:ae:2a: 58:fe:1e:be:0e:6a:fe:28:91:0b:56:27:b8:90:d3: a9:44:a3:88:b4:a1:4c:00:73:9e:6a:cb:5d:31:1f: b9:ae:da:3f:d1:dd:3b:a3:15:e0:6b:cb:84:58:67: 53:0c:06:c3:63:36:32:79:97:66:d0:38:f3:78:91: 32:d6:ba:73:3c:b9:fe:18:23:d9:63:cf:58:d2:8a: db:d8:fb:9e:c7:ed:da:f6:70:30:3e:3a:02:3f:bc: 03:af:c6:fc:a0:5d:1d:26:af:41:f6:6a:22:05:2e: e9:a6:93:bc:f4:a2:94:ff:e9:d7:cf:d6:74:63:fb: 82:9b:9c:0b:64:b5:5a:9b:0b:1d:56:cc:97:2e:ca: 27:83:83:43:2f:1b:6c:37:ac:34:e2:ad:f8:b0:dc: bd:ba:28:1d:f3:21:ea:37:4f:4a:4d:40:48:9a:34: e8:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:E7:73:D5:FD:76:0C:C3:9E:6E:6B:77:F5:DD:C7:51:58:BA:EF:27 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151522.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.124.0/23 IPv6: 2001:df3:c40::/48 Signature Algorithm: sha256WithRSAEncryption 19:b5:79:a9:a6:a6:93:41:a4:53:ec:e0:cd:bc:bd:71:6e:c1: 5d:aa:eb:f9:87:2b:7b:10:6a:3b:22:bf:12:ec:37:0d:ed:c2: 4a:16:97:35:bd:aa:07:75:31:af:ab:8d:59:5d:2c:10:0e:7c: 06:7e:9c:55:3a:bd:d1:02:1a:c5:22:de:6c:7e:24:a1:68:48: f4:ed:a6:09:87:c3:3a:8a:24:fa:a3:fd:58:43:22:8d:71:6e: c9:1f:f1:f9:f7:3e:af:4d:45:a8:8a:65:54:b0:2d:8d:8c:74: 9e:71:b0:89:39:8a:7e:13:20:a0:3e:17:df:48:ea:ca:18:6f: 88:37:00:37:dc:c4:8b:c5:83:00:a1:ca:36:81:79:89:46:4d: d5:be:b5:59:73:c3:a0:e9:fa:bd:67:f0:8c:ca:30:f0:47:bd: 02:3d:a1:95:03:88:36:62:00:89:55:02:97:7e:7b:70:93:2c: bd:6b:05:80:aa:f0:1d:5b:ce:91:2b:24:73:3b:6e:f7:26:4f: 2a:d6:f8:e9:33:fa:9d:3c:d3:d0:6c:4c:0f:b0:8a:20:91:be: 56:66:2b:d5:9a:c8:d3:0f:2f:8c:58:12:fe:d0:6c:e9:f8:ae: 72:7f:5b:f5:8f:bb:60:86:f8:8f:49:ad:24:2b:41:a4:e1:d9: c5:5a:92:8f -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUGv1lKXxAzg3lRdRYNOU6EWoUlKAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxODAzNTUwMFoX DTI1MTAxNzA0MDAwMFowMzExMC8GA1UEAxMoMURFNzczRDVGRDc2MENDMzlFNkU2 Qjc3RjVEREM3NTE1OEJBRUYyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM9S5LsrLN0KBlXBgAt5axtBafI0mQ/2GnyuLJMh0EsQXls9lbVqFzVAyU1s MQRbebjfjCb07BWa3mxF8WZFhNlXDcshuPtP1WFLmySnvdXSVS6t/B2xkq4qWP4e vg5q/iiRC1YnuJDTqUSjiLShTABznmrLXTEfua7aP9HdO6MV4GvLhFhnUwwGw2M2 MnmXZtA483iRMta6czy5/hgj2WPPWNKK29j7nsft2vZwMD46Aj+8A6/G/KBdHSav QfZqIgUu6aaTvPSilP/p18/WdGP7gpucC2S1WpsLHVbMly7KJ4ODQy8bbDesNOKt +LDcvbooHfMh6jdPSk1ASJo06JMCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBQd53PV /XYMw55ua3f13cdRWLrvJzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUyMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWfqfDAPBAIAAjAJAwcAIAEN8wxAMA0GCSqGSIb3DQEBCwUAA4IB AQAZtXmppqaTQaRT7ODNvL1xbsFdquv5hyt7EGo7Ir8S7DcN7cJKFpc1vaoHdTGv q41ZXSwQDnwGfpxVOr3RAhrFIt5sfiShaEj07aYJh8M6iiT6o/1YQyKNcW7JH/H5 9z6vTUWoimVUsC2NjHSecbCJOYp+EyCgPhffSOrKGG+INwA33MSLxYMAoco2gXmJ Rk3VvrVZc8Og6fq9Z/CMyjDwR70CPaGVA4g2YgCJVQKXfntwkyy9awWAqvAdW86R KyRzO273Jk8q1vjpM/qdPNPQbEwPsIogkb5WZivVmsjTDy+MWBL+0Gzp+K5yf1v1 j7tghviPSa0kK0Gk4dnFWpKP -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:57 2024 by rpki-client on console-fra.rpki-client.org