$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151526.roa File: AS151526.roa (raw, json) Hash identifier: K21C8zCl0sOOS1CVFXYDCBveabmm5OQD2EBHjO6RFoA= Subject key identifier: 9B:D4:77:6B:61:86:7E:7D:05:6F:6D:4F:81:3F:83:39:03:C8:7F:14 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2725DFBAAD94F5F769DF040A67E95D3D5C62354E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151526.roa Signing time: Thu 15 Aug 2024 08:00:02 +0000 ROA not before: Thu 15 Aug 2024 07:55:02 +0000 ROA not after: Thu 14 Aug 2025 08:00:02 +0000 asID: 151526 IP address blocks: 103.249.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:25:df:ba:ad:94:f5:f7:69:df:04:0a:67:e9:5d:3d:5c:62:35:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 15 07:55:02 2024 GMT Not After : Aug 14 08:00:02 2025 GMT Subject: CN=9BD4776B61867E7D056F6D4F813F833903C87F14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:bb:2e:c7:1a:9a:de:3a:41:58:f6:45:98:ff: 4b:3c:47:c5:19:bd:8a:ce:ad:41:01:4f:28:9a:74: 0f:1f:33:9a:f4:fe:ad:4e:c2:d9:e5:75:03:ce:97: a9:df:82:fb:b6:d7:4b:bf:fa:d0:1a:c9:8e:97:7e: 68:6d:32:a4:db:2a:cf:5e:20:07:3d:de:ca:d8:fb: 2b:8d:f9:73:1e:90:91:fb:9e:77:10:7c:59:d1:ee: 9a:33:54:e9:6f:f4:81:5c:67:9f:7b:38:6d:0a:11: dd:30:56:3d:bd:6c:91:71:f7:ce:57:2f:9c:62:e8: c1:71:a7:64:08:1a:18:e1:0a:bc:d9:84:8d:93:48: 2b:13:7f:d1:d8:2e:9d:b8:7b:63:f6:ef:c1:9d:f3: 18:5f:ce:60:57:38:42:e4:ca:f2:14:06:7d:7c:7a: 65:77:e8:2d:16:1c:a9:ca:97:5b:30:20:62:07:9b: a6:a7:75:ef:25:68:b7:5d:b5:46:5a:5e:c9:49:53: 73:9f:58:84:42:6a:05:d1:9e:ae:ac:6f:c1:64:96: 14:76:67:52:c8:56:4b:3e:81:53:e2:b4:41:02:42: b0:6c:ac:fe:ff:79:d2:07:4b:54:e2:2b:ac:67:2e: 03:ef:79:09:d2:e8:ad:ba:c9:c5:08:98:b1:b4:f5: 98:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:D4:77:6B:61:86:7E:7D:05:6F:6D:4F:81:3F:83:39:03:C8:7F:14 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151526.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.249.226.0/24 Signature Algorithm: sha256WithRSAEncryption 60:1a:0c:19:8f:19:ff:45:71:36:4c:86:9a:bf:b8:07:74:07: 69:66:94:ca:fb:74:dd:a4:d8:1f:84:4b:e8:b1:31:33:65:ff: e1:82:78:f3:af:8c:8d:f2:a1:da:ed:1f:0c:5a:1c:e4:14:45: c6:29:b4:6c:78:67:ed:db:a7:b1:f1:40:35:5f:36:8d:1c:c4: c2:ee:42:fb:0f:c7:c9:44:80:15:ef:42:2e:01:8b:1b:23:a7: a7:84:76:ca:2b:18:65:8b:41:f7:7b:43:46:0b:c1:cf:09:f7: e6:3e:48:b1:c6:56:07:c9:a0:8a:70:52:02:ae:29:88:ad:d8: 30:8c:db:97:41:81:a1:f1:6a:3e:4b:89:6e:f4:bb:3e:03:bb: 91:f8:33:f4:b8:18:8e:70:86:4a:7f:26:74:71:bf:b3:9d:1f: 82:cb:18:e5:2c:03:39:ad:ed:6a:0a:16:00:29:61:62:da:89: 0d:e7:83:e3:d7:ab:7d:97:98:d3:b0:ae:21:54:40:7b:25:61: 75:fe:dd:42:59:56:2e:24:a2:92:cc:f9:4c:be:56:f5:bb:28: a2:36:09:a5:de:51:f8:04:d5:2f:54:bc:83:47:c6:97:da:ec: da:e1:66:e5:4e:80:9f:2d:5b:90:92:75:df:63:d6:c0:d5:f5: 50:40:4a:ff -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUJyXfuq2U9fdp3wQKZ+ldPVxiNU4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxNTA3NTUwMloX DTI1MDgxNDA4MDAwMlowMzExMC8GA1UEAxMoOUJENDc3NkI2MTg2N0U3RDA1NkY2 RDRGODEzRjgzMzkwM0M4N0YxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKW7Lscamt46QVj2RZj/SzxHxRm9is6tQQFPKJp0Dx8zmvT+rU7C2eV1A86X qd+C+7bXS7/60BrJjpd+aG0ypNsqz14gBz3eytj7K435cx6QkfuedxB8WdHumjNU 6W/0gVxnn3s4bQoR3TBWPb1skXH3zlcvnGLowXGnZAgaGOEKvNmEjZNIKxN/0dgu nbh7Y/bvwZ3zGF/OYFc4QuTK8hQGfXx6ZXfoLRYcqcqXWzAgYgebpqd17yVot121 RlpeyUlTc59YhEJqBdGerqxvwWSWFHZnUshWSz6BU+K0QQJCsGys/v950gdLVOIr rGcuA+95CdLorbrJxQiYsbT1mHMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSb1Hdr YYZ+fQVvbU+BP4M5A8h/FDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUyNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGf54jANBgkqhkiG9w0BAQsFAAOCAQEAYBoMGY8Z/0VxNkyGmr+4 B3QHaWaUyvt03aTYH4RL6LExM2X/4YJ486+MjfKh2u0fDFoc5BRFxim0bHhn7dun sfFANV82jRzEwu5C+w/HyUSAFe9CLgGLGyOnp4R2yisYZYtB93tDRgvBzwn35j5I scZWB8mginBSAq4piK3YMIzbl0GBofFqPkuJbvS7PgO7kfgz9LgYjnCGSn8mdHG/ s50fgssY5SwDOa3tagoWAClhYtqJDeeD49erfZeY07CuIVRAeyVhdf7dQllWLiSi ksz5TL5W9bsoojYJpd5R+ATVL1S8g0fGl9rs2uFm5U6Any1bkJJ132PWwNX1UEBK /w== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:29 2024 by rpki-client on console-ams.rpki-client.org