$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151536.roa File: AS151536.roa (raw, json) Hash identifier: hdww8ZAbCi4kp8+/mDQkPXS8AtlqNRpRVrO8VkCCjvM= Subject key identifier: 6A:92:FD:B0:D9:C0:6F:E5:C9:E6:6A:C2:62:08:BA:51:A4:A3:19:08 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 07A04CACDF62D72DC4F4D30D5391D4AEA4FF5B5A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151536.roa Signing time: Thu 05 Sep 2024 05:00:00 +0000 ROA not before: Thu 05 Sep 2024 04:55:00 +0000 ROA not after: Thu 04 Sep 2025 05:00:00 +0000 asID: 151536 IP address blocks: 103.244.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:a0:4c:ac:df:62:d7:2d:c4:f4:d3:0d:53:91:d4:ae:a4:ff:5b:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 5 04:55:00 2024 GMT Not After : Sep 4 05:00:00 2025 GMT Subject: CN=6A92FDB0D9C06FE5C9E66AC26208BA51A4A31908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b9:e3:7c:3e:d9:2f:e5:9c:5d:0a:4f:b5:5a: 23:e1:82:22:1e:81:78:7f:1b:71:d2:69:b7:87:89: e4:60:d4:11:fb:a2:36:d1:61:78:2d:a2:68:df:e9: 48:4a:d3:9b:ee:39:8a:a7:8d:4f:b6:98:09:59:40: e8:72:54:60:86:97:00:01:14:99:4e:68:be:28:f7: b2:77:0e:b5:33:50:c6:9a:14:40:71:a4:04:d2:17: f6:a2:91:d5:ca:b0:8b:11:32:35:f5:78:fa:0f:4d: 4e:ec:b0:65:1b:cb:bb:9e:8e:05:54:32:b0:ad:db: bc:b1:17:15:a5:ae:1e:04:54:d4:0f:50:e0:7c:9d: b0:f4:2b:b2:c8:3b:05:e6:36:a1:e2:f3:fd:c5:4e: 2b:f8:3a:c9:f9:81:ac:f2:3e:db:51:b3:1b:a7:85: 02:18:dd:85:ec:ab:bc:af:57:a3:f4:52:03:58:36: dd:d7:55:d7:8a:48:ac:50:89:37:18:2a:a9:c7:c7: f9:7b:be:ad:b7:39:09:76:23:3d:06:27:ea:09:ab: 58:d5:21:98:1a:55:b6:75:a4:cc:ef:69:de:60:49: 57:1e:83:bc:fb:81:97:21:37:f5:3a:06:d1:c7:c7: e9:7a:db:36:a0:a3:01:da:bb:27:d3:46:fa:07:ed: fe:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:92:FD:B0:D9:C0:6F:E5:C9:E6:6A:C2:62:08:BA:51:A4:A3:19:08 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.23.0/24 Signature Algorithm: sha256WithRSAEncryption 27:e4:7b:2c:a2:d4:80:98:14:38:8f:13:a9:9e:fa:63:3c:eb: d0:c4:0f:31:c8:9e:c4:a2:bd:d8:6c:ee:5c:32:2f:15:45:57: 77:a1:b5:41:5f:56:0a:dc:12:95:f9:b4:7e:de:9d:10:82:02: 3f:dd:1b:e6:cb:91:6f:40:83:3d:99:10:82:5e:e9:23:84:c2: 8a:82:d8:ee:15:f2:9d:90:30:73:ff:1c:cb:dd:3b:75:22:3a: ec:9f:d0:fc:04:7d:e7:b8:e2:49:e0:75:a3:68:e4:36:15:a0: c0:00:ee:4d:ba:55:2b:e1:cc:d1:97:2a:53:cf:be:3c:13:f1: fa:b2:a4:3f:16:1d:22:f2:42:3f:4b:7d:11:bf:59:43:41:a8: e9:70:8d:c6:1d:f9:51:2b:7f:c8:dc:e8:9d:e7:b6:03:44:0d: 2b:9e:e3:cd:b5:e1:5d:f0:52:53:73:05:85:43:71:a7:92:56: 0b:46:c1:4c:7d:3c:f3:da:49:8d:36:70:b0:6d:28:f6:d8:bf: 48:61:6c:f2:7a:b5:c6:3e:70:f5:28:c1:fe:54:de:90:68:9c: 03:89:cf:17:f4:22:68:e7:d3:02:12:81:03:f2:ce:c2:d8:2a: 40:3e:8d:3d:54:5a:0e:e1:bb:d6:ce:a8:8b:29:e3:82:09:1c: c1:bf:cb:b1 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUB6BMrN9i1y3E9NMNU5HUrqT/W1owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkwNTA0NTUwMFoX DTI1MDkwNDA1MDAwMFowMzExMC8GA1UEAxMoNkE5MkZEQjBEOUMwNkZFNUM5RTY2 QUMyNjIwOEJBNTFBNEEzMTkwODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMS543w+2S/lnF0KT7VaI+GCIh6BeH8bcdJpt4eJ5GDUEfuiNtFheC2iaN/p SErTm+45iqeNT7aYCVlA6HJUYIaXAAEUmU5ovij3sncOtTNQxpoUQHGkBNIX9qKR 1cqwixEyNfV4+g9NTuywZRvLu56OBVQysK3bvLEXFaWuHgRU1A9Q4HydsPQrssg7 BeY2oeLz/cVOK/g6yfmBrPI+21GzG6eFAhjdheyrvK9Xo/RSA1g23ddV14pIrFCJ NxgqqcfH+Xu+rbc5CXYjPQYn6gmrWNUhmBpVtnWkzO9p3mBJVx6DvPuBlyE39ToG 0cfH6XrbNqCjAdq7J9NG+gft/nECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRqkv2w 2cBv5cnmasJiCLpRpKMZCDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGf0FzANBgkqhkiG9w0BAQsFAAOCAQEAJ+R7LKLUgJgUOI8TqZ76 Yzzr0MQPMciexKK92GzuXDIvFUVXd6G1QV9WCtwSlfm0ft6dEIICP90b5suRb0CD PZkQgl7pI4TCioLY7hXynZAwc/8cy907dSI67J/Q/AR957jiSeB1o2jkNhWgwADu TbpVK+HM0ZcqU8++PBPx+rKkPxYdIvJCP0t9Eb9ZQ0Go6XCNxh35USt/yNzonee2 A0QNK57jzbXhXfBSU3MFhUNxp5JWC0bBTH0889pJjTZwsG0o9ti/SGFs8nq1xj5w 9SjB/lTekGicA4nPF/QiaOfTAhKBA/LOwtgqQD6NPVRaDuG71s6oiynjggkcwb/L sQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org