$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151529.roa File: AS151529.roa (raw, json) Hash identifier: Tf2GscgouZp9qVH2rzyZYaU+TKE5tgON0n2oj+U4oac= Subject key identifier: 81:51:52:41:2A:0D:CF:C2:64:09:49:F2:12:9F:55:BE:69:46:92:54 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6E1B209143B71704B63EDDD7F98E5716EC0504D5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151529.roa Signing time: Wed 04 Sep 2024 07:00:00 +0000 ROA not before: Wed 04 Sep 2024 06:55:00 +0000 ROA not after: Wed 03 Sep 2025 07:00:00 +0000 asID: 151529 IP address blocks: 103.224.16.0/23 maxlen: 24 2001:df2:f6c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:1b:20:91:43:b7:17:04:b6:3e:dd:d7:f9:8e:57:16:ec:05:04:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 4 06:55:00 2024 GMT Not After : Sep 3 07:00:00 2025 GMT Subject: CN=815152412A0DCFC2640949F2129F55BE69469254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:db:63:1c:d8:c2:02:85:22:33:3f:e9:e0:31: b6:95:24:df:be:0c:f3:c5:8c:ca:8b:08:ff:9a:5b: 94:b1:2a:bb:6d:4f:d4:79:b8:d1:1c:c9:54:58:83: 7f:84:c5:81:91:c5:a7:5f:80:8a:75:2a:58:91:52: a2:10:45:32:88:c3:f8:9c:c5:ba:1b:d4:a2:ee:34: 67:8b:4e:85:c7:d8:5d:75:a5:2b:bd:21:2d:9a:64: e9:bc:66:ee:30:2d:34:bf:ce:56:4c:4e:1c:5c:2d: 71:d4:0d:14:64:9b:8b:2e:34:f0:8c:a3:6f:47:e6: 2f:87:00:f1:77:e4:ef:33:5a:96:b9:d1:21:61:c0: 95:d7:a5:e2:8e:ea:2c:37:06:aa:c7:5c:b7:02:44: 7c:46:56:05:dc:a4:88:c6:4d:35:b3:10:fa:2e:fb: aa:c1:15:a4:21:7c:25:b2:a8:56:25:2a:48:c6:97: 47:75:6a:51:b3:62:7d:9e:58:b6:89:45:f2:62:72: 91:56:84:7e:d1:05:4b:88:57:58:2f:a9:6d:6d:6b: 56:e2:d3:73:c5:c9:57:bf:e8:d9:7e:05:31:05:cc: 44:97:2d:c3:12:74:49:d6:9e:95:99:c8:36:97:68: 16:4f:2b:3a:c3:79:c5:dd:8b:16:bb:0c:4a:31:2f: 9d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:51:52:41:2A:0D:CF:C2:64:09:49:F2:12:9F:55:BE:69:46:92:54 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151529.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.224.16.0/23 IPv6: 2001:df2:f6c0::/48 Signature Algorithm: sha256WithRSAEncryption 5c:42:0d:c4:71:7a:01:5c:d2:ac:bf:f5:af:6f:f4:89:69:61: 6b:d3:fc:75:c3:65:45:9d:01:1a:56:e9:2e:9c:81:ea:ba:11: a6:e4:4a:eb:f4:be:33:55:93:f4:e5:57:3c:01:1d:13:cc:f9: 3b:67:ac:db:f6:72:94:80:16:72:b5:1e:66:6e:ac:b2:5b:26: 3b:2f:3c:2c:75:fe:5f:52:ff:b0:d3:cd:8b:49:02:72:7a:33: 4b:98:d9:c9:03:61:37:3e:76:86:12:17:fc:f3:88:54:ad:a0: 28:0f:47:c9:81:a4:4e:43:ee:c1:02:27:61:de:f0:5f:1d:63: 17:e0:87:20:e9:26:13:22:7b:3f:c6:04:cd:ee:ee:cd:8d:a1: f9:70:9f:55:83:24:30:86:2d:be:a7:2d:0e:66:39:c5:a4:a4: ad:f8:19:6d:ff:ff:5c:b2:ea:9d:a1:95:27:1d:c8:9d:d9:dc: 60:d6:a5:b0:39:d5:0c:24:ed:06:08:ba:47:33:c7:95:41:a1: a5:18:24:31:dd:77:f6:4c:46:02:73:ee:e2:76:7c:3b:b2:e2: 81:7c:d2:7f:04:e3:66:f4:67:ca:a4:10:22:18:e8:5c:50:12: c3:9e:2e:3d:c9:84:dd:0d:4a:a2:a6:b2:01:f6:29:22:23:0f: 88:93:f8:44 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUbhsgkUO3FwS2Pt3X+Y5XFuwFBNUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkwNDA2NTUwMFoX DTI1MDkwMzA3MDAwMFowMzExMC8GA1UEAxMoODE1MTUyNDEyQTBEQ0ZDMjY0MDk0 OUYyMTI5RjU1QkU2OTQ2OTI1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKnbYxzYwgKFIjM/6eAxtpUk374M88WMyosI/5pblLEqu21P1Hm40RzJVFiD f4TFgZHFp1+AinUqWJFSohBFMojD+JzFuhvUou40Z4tOhcfYXXWlK70hLZpk6bxm 7jAtNL/OVkxOHFwtcdQNFGSbiy408Iyjb0fmL4cA8Xfk7zNalrnRIWHAldel4o7q LDcGqsdctwJEfEZWBdykiMZNNbMQ+i77qsEVpCF8JbKoViUqSMaXR3VqUbNifZ5Y tolF8mJykVaEftEFS4hXWC+pbW1rVuLTc8XJV7/o2X4FMQXMRJctwxJ0SdaelZnI NpdoFk8rOsN5xd2LFrsMSjEvnXUCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBSBUVJB Kg3PwmQJSfISn1W+aUaSVDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUyOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWfgEDAPBAIAAjAJAwcAIAEN8vbAMA0GCSqGSIb3DQEBCwUAA4IB AQBcQg3EcXoBXNKsv/Wvb/SJaWFr0/x1w2VFnQEaVukunIHquhGm5Err9L4zVZP0 5Vc8AR0TzPk7Z6zb9nKUgBZytR5mbqyyWyY7Lzwsdf5fUv+w082LSQJyejNLmNnJ A2E3PnaGEhf884hUraAoD0fJgaROQ+7BAidh3vBfHWMX4Icg6SYTIns/xgTN7u7N jaH5cJ9VgyQwhi2+py0OZjnFpKSt+Blt//9csuqdoZUnHcid2dxg1qWwOdUMJO0G CLpHM8eVQaGlGCQx3Xf2TEYCc+7idnw7suKBfNJ/BONm9GfKpBAiGOhcUBLDni49 yYTdDUqiprIB9ikiIw+Ik/hE -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:57 2024 by rpki-client on console-fra.rpki-client.org