$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151543.roa File: AS151543.roa (raw, json) Hash identifier: cfUbZzrXLL/JzbHdxV1jK7ZGNLavTtqUu0LhCNL+g/A= Subject key identifier: D5:68:1B:BE:0E:11:8A:1E:D8:12:90:71:18:8B:3F:A5:A6:10:63:78 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7E3E92EBD42CB3F7BBC73A0DC396A71ED55387BD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151543.roa Signing time: Mon 15 Jul 2024 07:00:00 +0000 ROA not before: Mon 15 Jul 2024 06:55:00 +0000 ROA not after: Mon 14 Jul 2025 07:00:00 +0000 asID: 151543 IP address blocks: 103.242.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:3e:92:eb:d4:2c:b3:f7:bb:c7:3a:0d:c3:96:a7:1e:d5:53:87:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jul 15 06:55:00 2024 GMT Not After : Jul 14 07:00:00 2025 GMT Subject: CN=D5681BBE0E118A1ED8129071188B3FA5A6106378 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a3:77:f6:78:d6:de:7b:43:d5:52:2a:0f:79: 7f:50:40:e6:5c:2e:b8:71:e8:e0:fa:59:29:2c:02: 81:65:e9:28:bd:72:22:28:e9:c0:5a:0b:e2:2b:c2: 2f:85:e7:a8:ac:09:d7:87:e9:d0:f7:8c:15:8e:05: cc:d2:2a:04:b9:0b:16:86:2b:19:08:98:28:6c:9c: 03:b3:b3:74:78:a3:6e:90:83:cd:8d:a9:f2:0e:58: f0:59:ff:70:97:c8:b2:5a:9e:b9:d2:b0:9f:ae:3c: a7:27:fe:75:80:bc:2c:c2:dc:43:ea:54:37:56:1e: e7:9f:56:64:ae:ff:58:2e:58:44:d4:1e:70:73:5a: 4d:9b:06:4e:5f:b9:ae:ff:f3:67:7d:21:62:c0:59: 37:81:59:d9:05:83:3e:df:fb:61:b4:a5:7a:79:53: 6f:ff:92:7c:a5:6c:ca:56:95:d7:22:ad:1d:62:55: 68:54:e4:f3:8d:9c:70:0b:cc:b7:f1:08:d1:7a:9f: cd:07:00:30:f2:51:12:42:2c:ee:7e:59:13:4a:3e: 24:aa:89:25:5b:17:6e:60:78:1e:5e:39:2c:ce:5f: 22:ae:32:b5:bb:f0:76:34:39:dc:e6:28:b3:09:ac: b3:c7:2f:f4:33:b4:c8:99:4b:80:85:ab:cd:d8:1a: f4:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:68:1B:BE:0E:11:8A:1E:D8:12:90:71:18:8B:3F:A5:A6:10:63:78 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151543.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.82.0/24 Signature Algorithm: sha256WithRSAEncryption 74:41:b2:92:14:28:16:0d:58:e3:6f:d5:68:af:16:5d:bc:27: 4a:88:0a:47:23:15:31:83:7a:db:da:d1:45:53:7a:0d:e3:33: bb:4d:40:3a:cb:98:75:06:fd:3e:74:38:45:16:27:4b:8d:8f: 18:5e:11:bc:32:43:f8:e3:20:a2:a1:16:26:c0:a5:1d:b8:59: 80:d6:09:0b:b0:38:46:88:d8:dd:6d:b2:07:bd:51:7d:63:f7: 98:59:c1:95:86:39:c4:b1:3e:38:29:88:f2:1c:20:3c:1c:d4: 50:d2:db:cf:16:dc:ad:43:b8:ee:ba:5a:b5:88:b0:9c:37:f8: 8a:a0:62:81:df:47:b1:27:34:28:43:01:db:8f:7d:3f:fd:29: c5:a0:6b:a8:8c:22:a9:2f:a6:b6:79:5f:f8:8a:86:b3:fc:b1: c6:8b:a9:80:73:df:0b:a9:28:45:aa:85:67:b9:9d:09:32:15: c5:26:42:ed:cf:7d:ca:09:a1:ab:50:fe:b4:9c:13:be:76:84: 27:b0:da:47:6d:2b:90:ac:af:24:a8:f1:90:b9:6a:ad:20:fc: 66:57:2a:1a:f6:c7:89:ef:85:16:41:94:63:03:54:04:43:fe: 4f:cc:a3:47:7f:97:fc:14:7a:54:c3:a9:2b:99:aa:eb:d6:9a: 0f:14:3b:b4 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUfj6S69Qss/e7xzoNw5anHtVTh70wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcxNTA2NTUwMFoX DTI1MDcxNDA3MDAwMFowMzExMC8GA1UEAxMoRDU2ODFCQkUwRTExOEExRUQ4MTI5 MDcxMTg4QjNGQTVBNjEwNjM3ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALejd/Z41t57Q9VSKg95f1BA5lwuuHHo4PpZKSwCgWXpKL1yIijpwFoL4ivC L4XnqKwJ14fp0PeMFY4FzNIqBLkLFoYrGQiYKGycA7OzdHijbpCDzY2p8g5Y8Fn/ cJfIslqeudKwn648pyf+dYC8LMLcQ+pUN1Ye559WZK7/WC5YRNQecHNaTZsGTl+5 rv/zZ30hYsBZN4FZ2QWDPt/7YbSlenlTb/+SfKVsylaV1yKtHWJVaFTk842ccAvM t/EI0XqfzQcAMPJREkIs7n5ZE0o+JKqJJVsXbmB4Hl45LM5fIq4ytbvwdjQ53OYo swmss8cv9DO0yJlLgIWrzdga9IkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTVaBu+ DhGKHtgSkHEYiz+lphBjeDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU0My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfyUjANBgkqhkiG9w0BAQsFAAOCAQEAdEGykhQoFg1Y42/VaK8W XbwnSogKRyMVMYN629rRRVN6DeMzu01AOsuYdQb9PnQ4RRYnS42PGF4RvDJD+OMg oqEWJsClHbhZgNYJC7A4RojY3W2yB71RfWP3mFnBlYY5xLE+OCmI8hwgPBzUUNLb zxbcrUO47rpatYiwnDf4iqBigd9HsSc0KEMB2499P/0pxaBrqIwiqS+mtnlf+IqG s/yxxoupgHPfC6koRaqFZ7mdCTIVxSZC7c99ygmhq1D+tJwTvnaEJ7DaR20rkKyv JKjxkLlqrSD8ZlcqGvbHie+FFkGUYwNUBEP+T8yjR3+X/BR6VMOpK5mq69aaDxQ7 tA== -----END CERTIFICATE-----Generated at Sun Feb 16 21:02:20 2025 by rpki-client