$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151527.roa File: AS151527.roa (raw, json) Hash identifier: CPfqF5I50/eF17mzkr7MVwIeaHMgNMEjjMsa9enKOa0= Subject key identifier: 5A:DF:27:D4:7C:40:2D:64:A5:E3:6E:38:20:F3:DE:B5:2C:A2:4B:59 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4BEFFDE81E6F36524FB6B12494E7C7CFEAB65F35 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151527.roa Signing time: Fri 02 Aug 2024 10:00:00 +0000 ROA not before: Fri 02 Aug 2024 09:55:00 +0000 ROA not after: Fri 01 Aug 2025 10:00:00 +0000 asID: 151527 IP address blocks: 103.236.172.0/23 maxlen: 24 2001:df2:bcc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:ef:fd:e8:1e:6f:36:52:4f:b6:b1:24:94:e7:c7:cf:ea:b6:5f:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 2 09:55:00 2024 GMT Not After : Aug 1 10:00:00 2025 GMT Subject: CN=5ADF27D47C402D64A5E36E3820F3DEB52CA24B59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b2:20:d0:12:49:3c:4a:56:cd:1f:c8:23:e8: cb:dd:05:82:e6:a9:bf:1e:d4:bb:8f:e0:41:44:7f: 8e:c5:98:34:ce:62:53:91:1e:6a:9f:14:a7:36:b2: 45:f0:6f:6f:be:a3:07:8a:bf:20:e4:67:64:cc:57: a0:da:3b:05:da:fb:64:b7:3f:88:ad:d6:82:66:31: 78:67:f6:7a:8a:76:be:29:e7:9e:9d:74:8e:de:be: 52:7a:2f:aa:f4:77:2a:30:f7:15:33:8b:5e:17:2d: 95:23:3f:3f:e7:66:3d:8b:ae:d7:b2:6d:9c:51:4c: 6d:e2:e8:32:d1:07:9c:34:5b:1b:24:4a:33:ab:26: 56:0f:a7:2a:ad:e3:50:07:3e:0e:a6:47:7d:3a:df: 66:c7:88:9e:ea:0f:37:b2:b9:1f:c4:0f:37:ef:cd: 8c:82:b5:74:12:03:7a:8d:11:45:2c:f3:12:b6:d5: 02:8e:c8:5c:83:5e:4a:44:06:32:fa:26:d2:41:1d: 5c:1d:ae:f9:7d:bc:40:36:7e:13:57:f9:9a:25:38: e8:a6:96:48:2e:82:6f:c7:0d:cc:b7:28:fd:6d:73: 50:c4:f7:17:b0:97:6d:9f:66:c9:3a:fc:2f:c7:fa: ba:95:f1:f2:9a:5d:3a:c3:0b:a9:47:c5:e0:48:e4: ab:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:DF:27:D4:7C:40:2D:64:A5:E3:6E:38:20:F3:DE:B5:2C:A2:4B:59 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151527.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.236.172.0/23 IPv6: 2001:df2:bcc0::/48 Signature Algorithm: sha256WithRSAEncryption 00:d7:fd:61:a9:5e:2c:c2:39:66:22:dc:3a:04:a8:05:f5:1d: 0f:c8:c6:ad:bc:eb:63:66:c1:8b:1d:b7:c7:e7:35:35:a9:e4: 0c:19:20:02:05:1c:04:88:38:27:31:84:df:01:d1:cc:78:f4: 7b:b2:7c:68:41:dc:06:de:02:17:39:28:12:5b:b6:27:c1:ee: a0:ba:12:dd:0e:5c:d7:a4:0f:fd:31:dd:c4:c6:69:e3:d2:b2: 2d:cb:99:bc:57:ae:0f:15:0e:05:d0:44:35:96:aa:16:c3:92: 3b:6b:9a:1e:6a:8f:70:ea:0a:07:b7:88:89:05:1b:d7:86:fb: d8:7a:76:4e:26:56:0e:27:f2:ae:9a:38:30:e6:80:42:7d:0c: 6a:4f:9c:0d:34:8c:8e:5a:c2:4a:c9:47:fe:f1:b0:5a:54:9a: 6e:77:34:a2:a7:ff:d7:70:45:4b:b9:27:5c:ce:33:70:4c:c9: f9:9b:98:da:e8:74:07:bc:cb:83:9d:fb:13:22:7f:63:03:63: ba:bc:9e:c9:01:54:08:33:1f:e1:95:fb:f4:ce:65:be:d4:ed: 92:8c:dc:39:5f:13:35:28:c3:e9:ce:7c:5b:ce:a6:87:39:7c: 17:a4:39:81:56:10:ce:d7:82:24:5c:ce:1c:6a:83:f3:e8:4a: 7a:d2:5c:59 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUS+/96B5vNlJPtrEklOfHz+q2XzUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgwMjA5NTUwMFoX DTI1MDgwMTEwMDAwMFowMzExMC8GA1UEAxMoNUFERjI3RDQ3QzQwMkQ2NEE1RTM2 RTM4MjBGM0RFQjUyQ0EyNEI1OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKWyINASSTxKVs0fyCPoy90Fguapvx7Uu4/gQUR/jsWYNM5iU5Eeap8Upzay RfBvb76jB4q/IORnZMxXoNo7Bdr7ZLc/iK3WgmYxeGf2eop2vinnnp10jt6+Unov qvR3KjD3FTOLXhctlSM/P+dmPYuu17JtnFFMbeLoMtEHnDRbGyRKM6smVg+nKq3j UAc+DqZHfTrfZseInuoPN7K5H8QPN+/NjIK1dBIDeo0RRSzzErbVAo7IXINeSkQG Mvom0kEdXB2u+X28QDZ+E1f5miU46KaWSC6Cb8cNzLco/W1zUMT3F7CXbZ9myTr8 L8f6upXx8ppdOsMLqUfF4Ejkq2kCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBRa3yfU fEAtZKXjbjgg8961LKJLWTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUyNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWfsrDAPBAIAAjAJAwcAIAEN8rzAMA0GCSqGSIb3DQEBCwUAA4IB AQAA1/1hqV4swjlmItw6BKgF9R0PyMatvOtjZsGLHbfH5zU1qeQMGSACBRwEiDgn MYTfAdHMePR7snxoQdwG3gIXOSgSW7Ynwe6guhLdDlzXpA/9Md3Exmnj0rIty5m8 V64PFQ4F0EQ1lqoWw5I7a5oeao9w6goHt4iJBRvXhvvYenZOJlYOJ/Kumjgw5oBC fQxqT5wNNIyOWsJKyUf+8bBaVJpudzSip//XcEVLuSdczjNwTMn5m5ja6HQHvMuD nfsTIn9jA2O6vJ7JAVQIMx/hlfv0zmW+1O2SjNw5XxM1KMPpznxbzqaHOXwXpDmB VhDO14IkXM4caoPz6Ep60lxZ -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org