$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151528.roa File: AS151528.roa (raw, json) Hash identifier: KlQJ7DjsgExEHqjnENdxQi+iTYXpdFpWqaG6HrcjYAg= Subject key identifier: C1:39:21:86:BB:8F:D5:8F:A9:B6:3A:55:E4:0F:53:77:EF:DE:6E:C9 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 68016FF7470C5B5023CF7D4CB2C6872BFB2A829B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151528.roa Signing time: Thu 14 Nov 2024 04:15:36 +0000 ROA not before: Thu 14 Nov 2024 04:10:36 +0000 ROA not after: Thu 13 Nov 2025 04:15:36 +0000 asID: 151528 IP address blocks: 103.3.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:01:6f:f7:47:0c:5b:50:23:cf:7d:4c:b2:c6:87:2b:fb:2a:82:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 14 04:10:36 2024 GMT Not After : Nov 13 04:15:36 2025 GMT Subject: CN=C1392186BB8FD58FA9B63A55E40F5377EFDE6EC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3d:a7:16:f1:a1:07:c7:89:a4:58:26:a5:75: 89:d9:fc:80:c8:85:b4:c1:c3:da:ba:a9:ac:f4:44: 81:d3:15:58:f6:b3:78:6f:83:ec:11:60:f0:51:76: a1:be:55:fd:14:e7:c3:11:3b:9a:72:ec:34:66:07: 59:36:67:2a:ab:e3:9e:0a:e2:de:4c:39:fb:c5:15: 5b:27:c4:ba:9f:1f:e3:3d:3a:d9:d8:89:62:42:95: b0:a3:90:a7:e0:6b:d2:a9:43:72:c2:86:27:60:19: 97:10:21:f9:9d:97:94:99:fc:9d:35:9d:9b:12:7a: f3:c1:16:ff:e0:6a:98:3b:ba:0a:c1:02:19:84:05: af:07:30:81:9f:72:44:2b:0d:e8:ed:ee:6b:88:73: b8:7b:ad:f4:ca:21:8f:bb:b4:36:ce:67:03:f2:46: f4:1c:84:0e:a3:31:a3:85:58:04:10:7a:d0:57:03: ad:1e:17:87:8b:d1:17:e6:f8:0b:28:7f:fc:51:c2: 31:8c:06:bd:f5:82:e6:d4:89:77:ad:ff:59:80:5b: f5:96:87:ea:f2:7c:2f:f8:10:2f:d1:90:d0:01:6b: c5:9a:46:04:08:36:61:58:bb:78:18:86:7e:6b:01: e4:8c:8e:76:e3:d6:f8:73:7d:4d:7a:69:9b:f3:8f: 55:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:39:21:86:BB:8F:D5:8F:A9:B6:3A:55:E4:0F:53:77:EF:DE:6E:C9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151528.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.3.232.0/24 Signature Algorithm: sha256WithRSAEncryption 24:8b:26:af:e4:f2:87:b7:75:49:d8:d2:ab:f4:71:7e:f0:89: a6:03:0e:f0:11:4d:0a:b7:56:bd:34:d9:cd:46:17:bd:30:6a: 72:ee:38:59:86:f7:3a:0c:db:1e:04:63:ff:52:80:bc:3b:b5: 6a:e8:24:7e:7c:6b:91:f6:2d:22:47:0b:91:e2:0f:16:f2:f1: 23:a8:4f:40:3d:53:ae:ef:c7:66:0e:bb:ae:1b:0b:29:50:50: 7b:24:d4:e2:b8:9e:e2:3a:17:9c:d9:b4:2e:17:59:e6:ad:68: 51:d4:d8:e5:24:88:51:91:8b:9e:02:1e:22:5a:6a:b5:95:ea: fa:18:0e:cf:07:3f:24:7d:db:6e:46:18:18:11:1a:41:01:e5: 84:00:35:a0:b8:95:4f:99:2a:33:5b:24:45:30:78:42:00:fc: cf:f1:70:28:41:d7:2d:1c:8b:46:3f:6d:40:bb:6a:93:cb:8e: fb:a5:20:70:bc:41:04:24:0b:ec:90:7a:dc:28:3c:99:14:5f: 44:b7:8d:38:4b:0e:6e:35:df:83:f7:36:08:ca:80:6f:11:ed: 90:56:3f:b7:b5:12:c5:00:24:e7:51:f8:3f:b3:c8:07:95:e2: 98:8a:fa:6b:28:e8:55:2d:53:9f:38:53:7e:4f:47:3d:9d:7e: 5c:33:38:5c -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUaAFv90cMW1Ajz31MssaHK/sqgpswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTExNDA0MTAzNloX DTI1MTExMzA0MTUzNlowMzExMC8GA1UEAxMoQzEzOTIxODZCQjhGRDU4RkE5QjYz QTU1RTQwRjUzNzdFRkRFNkVDOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANU9pxbxoQfHiaRYJqV1idn8gMiFtMHD2rqprPREgdMVWPazeG+D7BFg8FF2 ob5V/RTnwxE7mnLsNGYHWTZnKqvjngri3kw5+8UVWyfEup8f4z062diJYkKVsKOQ p+Br0qlDcsKGJ2AZlxAh+Z2XlJn8nTWdmxJ688EW/+BqmDu6CsECGYQFrwcwgZ9y RCsN6O3ua4hzuHut9Mohj7u0Ns5nA/JG9ByEDqMxo4VYBBB60FcDrR4Xh4vRF+b4 Cyh//FHCMYwGvfWC5tSJd63/WYBb9ZaH6vJ8L/gQL9GQ0AFrxZpGBAg2YVi7eBiG fmsB5IyOduPW+HN9TXppm/OPVVkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTBOSGG u4/Vj6m2OlXkD1N3795uyTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUyOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGcD6DANBgkqhkiG9w0BAQsFAAOCAQEAJIsmr+Tyh7d1SdjSq/Rx fvCJpgMO8BFNCrdWvTTZzUYXvTBqcu44WYb3OgzbHgRj/1KAvDu1augkfnxrkfYt IkcLkeIPFvLxI6hPQD1Tru/HZg67rhsLKVBQeyTU4rie4joXnNm0LhdZ5q1oUdTY 5SSIUZGLngIeIlpqtZXq+hgOzwc/JH3bbkYYGBEaQQHlhAA1oLiVT5kqM1skRTB4 QgD8z/FwKEHXLRyLRj9tQLtqk8uO+6UgcLxBBCQL7JB63Cg8mRRfRLeNOEsObjXf g/c2CMqAbxHtkFY/t7USxQAk51H4P7PIB5XimIr6ayjoVS1TnzhTfk9HPZ1+XDM4 XA== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:57 2024 by rpki-client on console-fra.rpki-client.org