$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151538.roa File: AS151538.roa (raw, json) Hash identifier: mH/C+V8ERx+DkqbGkfLQWko6RmE1GWSr1H/Gdqq55aE= Subject key identifier: 38:F0:68:DF:93:64:64:7E:48:78:A3:F4:3F:71:16:68:24:A2:C4:22 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 281DA10FB3761403CE79400C3E840E038561970D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151538.roa Signing time: Mon 15 Jul 2024 03:00:00 +0000 ROA not before: Mon 15 Jul 2024 02:55:00 +0000 ROA not after: Mon 14 Jul 2025 03:00:00 +0000 asID: 151538 IP address blocks: 103.248.8.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:1d:a1:0f:b3:76:14:03:ce:79:40:0c:3e:84:0e:03:85:61:97:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 15 02:55:00 2024 GMT Not After : Jul 14 03:00:00 2025 GMT Subject: CN=38F068DF9364647E4878A3F43F71166824A2C422 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d7:ca:3d:d3:2b:fa:6c:ec:41:3e:c6:5f:79: 0e:38:5f:12:d2:03:c6:c4:4c:d8:76:9c:80:f7:38: c4:af:91:33:0d:13:50:3f:1c:5d:e1:0d:3d:64:59: b3:6d:30:4c:9a:f4:f5:f6:fc:ee:bb:68:16:95:a2: 5e:03:7d:60:8d:bd:cd:4b:f6:1c:5b:25:6b:4a:41: 98:e3:c5:1c:04:d7:73:9e:a4:00:db:e3:3a:3b:af: 22:39:40:cf:d2:06:40:6b:0a:b0:c8:ad:a6:d0:b5: 0f:f5:5e:1f:ce:45:52:f8:a1:d9:e7:fb:92:4c:50: 29:d1:22:9b:a2:3c:19:33:da:45:a6:c8:30:27:9a: 88:13:12:a9:40:59:9f:e2:fa:6a:41:77:05:e1:f4: 1a:b2:09:e1:5e:ea:41:46:9c:2b:e8:d7:b6:d7:72: 31:92:fd:65:eb:86:bf:3b:df:e2:79:54:ac:e6:8e: b8:02:87:f3:a5:bf:23:4a:4f:60:a3:15:78:4e:27: 38:d2:5a:5c:5f:cb:b3:58:7e:d4:e5:78:88:21:01: b9:8c:c3:43:5f:50:d9:ea:2e:da:80:19:e5:9f:28: 7a:33:aa:a4:65:ad:c4:c8:d2:eb:48:3b:f1:f8:6c: 8a:26:57:55:7d:cb:07:a2:c8:d1:df:9d:13:0e:cb: ee:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:F0:68:DF:93:64:64:7E:48:78:A3:F4:3F:71:16:68:24:A2:C4:22 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.248.8.0/23 Signature Algorithm: sha256WithRSAEncryption 70:ca:1d:d1:9f:c5:52:e8:f1:95:7a:a8:87:d3:fe:63:97:af: 13:8f:3f:1b:d0:b2:92:a2:17:67:a2:ba:d8:97:5b:52:d0:4f: 1f:cc:ae:ff:ba:7f:7b:b4:30:dd:96:48:1c:50:81:58:90:e8: 69:48:6b:05:d1:0e:90:50:6d:38:fc:47:5c:7e:40:a9:bd:ed: a2:28:b8:6b:33:d7:3f:07:0e:d7:a2:72:e1:53:86:c1:5e:70: 3a:89:3b:76:56:e5:97:bf:90:09:6d:73:48:73:f8:7b:76:c1: 6f:24:68:79:84:3e:be:e8:78:7c:0b:54:ee:da:ee:83:f4:11: 3c:60:9a:e2:38:93:ca:5b:6b:1d:15:14:1e:32:59:58:60:c0: 56:4f:e1:62:27:fb:6f:8a:54:a2:2f:77:cc:23:73:ce:4e:71: d7:a9:c5:fd:6c:82:2e:91:f0:a7:d3:dc:86:c6:06:57:a7:df: e4:f7:c8:96:de:3c:29:be:02:5c:af:74:a1:98:ce:f3:5b:31: 95:15:a2:27:8c:07:df:7d:45:9b:6a:96:5f:ae:d4:5f:47:aa: 5b:44:e9:f6:8a:aa:fc:8d:20:25:50:5e:d4:68:8a:36:be:5d: e3:a0:a5:14:1f:09:1d:57:17:48:7f:a7:ea:37:6c:4e:b6:d6: d3:aa:fe:9d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUKB2hD7N2FAPOeUAMPoQOA4Vhlw0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcxNTAyNTUwMFoX DTI1MDcxNDAzMDAwMFowMzExMC8GA1UEAxMoMzhGMDY4REY5MzY0NjQ3RTQ4NzhB M0Y0M0Y3MTE2NjgyNEEyQzQyMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANTXyj3TK/ps7EE+xl95DjhfEtIDxsRM2HacgPc4xK+RMw0TUD8cXeENPWRZ s20wTJr09fb87rtoFpWiXgN9YI29zUv2HFsla0pBmOPFHATXc56kANvjOjuvIjlA z9IGQGsKsMitptC1D/VeH85FUvih2ef7kkxQKdEim6I8GTPaRabIMCeaiBMSqUBZ n+L6akF3BeH0GrIJ4V7qQUacK+jXttdyMZL9ZeuGvzvf4nlUrOaOuAKH86W/I0pP YKMVeE4nONJaXF/Ls1h+1OV4iCEBuYzDQ19Q2eou2oAZ5Z8oejOqpGWtxMjS60g7 8fhsiiZXVX3LB6LI0d+dEw7L7sMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ48Gjf k2Rkfkh4o/Q/cRZoJKLEIjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWf4CDANBgkqhkiG9w0BAQsFAAOCAQEAcMod0Z/FUujxlXqoh9P+ Y5evE48/G9CykqIXZ6K62JdbUtBPH8yu/7p/e7Qw3ZZIHFCBWJDoaUhrBdEOkFBt OPxHXH5Aqb3toii4azPXPwcO16Jy4VOGwV5wOok7dlbll7+QCW1zSHP4e3bBbyRo eYQ+vuh4fAtU7trug/QRPGCa4jiTyltrHRUUHjJZWGDAVk/hYif7b4pUoi93zCNz zk5x16nF/WyCLpHwp9PchsYGV6ff5PfIlt48Kb4CXK90oZjO81sxlRWiJ4wH331F m2qWX67UX0eqW0Tp9oqq/I0gJVBe1GiKNr5d46ClFB8JHVcXSH+n6jdsTrbW06r+ nQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:49 2024 by rpki-client on console-ams.rpki-client.org