$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151544.roa File: AS151544.roa (raw, json) Hash identifier: Hll1idbNZ47GpAMMWB3COfL5tygC0vhCf+sln9L9Dos= Subject key identifier: E0:D3:0A:A4:98:0F:3C:8F:CF:4F:69:48:46:71:85:3C:DF:DB:60:70 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0D0B54BEC68777BDE51F13415E3F993A4F732999 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151544.roa Signing time: Mon 19 Aug 2024 07:00:00 +0000 ROA not before: Mon 19 Aug 2024 06:55:00 +0000 ROA not after: Mon 18 Aug 2025 07:00:00 +0000 asID: 151544 IP address blocks: 103.245.159.0/24 maxlen: 24 2001:df2:f0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:0b:54:be:c6:87:77:bd:e5:1f:13:41:5e:3f:99:3a:4f:73:29:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 19 06:55:00 2024 GMT Not After : Aug 18 07:00:00 2025 GMT Subject: CN=E0D30AA4980F3C8FCF4F69484671853CDFDB6070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e1:33:d3:46:60:ba:55:a8:f5:3a:10:ac:bc: c6:33:0a:c7:13:4b:bb:ab:52:fb:a8:56:64:3f:b9: 4c:c4:7e:e6:15:43:ea:84:0f:be:cf:9c:1d:0f:44: c8:2b:19:7b:7b:57:3d:cb:b6:05:bc:91:80:c1:7a: e6:59:52:c1:82:48:60:26:c9:f1:9c:38:44:21:63: 35:2f:04:b8:86:60:d1:5d:26:77:56:c5:38:24:5d: 5c:b0:47:ed:7f:f1:20:c7:f3:5a:d8:1f:e0:02:5e: 40:0f:9c:c6:91:9d:96:f2:12:f3:08:71:74:3a:28: 49:ac:73:6f:b5:79:23:b4:1e:48:73:9b:dd:2e:a0: 33:b1:c9:70:5c:f2:8c:83:5a:45:7e:69:8a:b3:bb: d2:3f:b0:59:c1:f2:7d:b7:05:9f:3e:3e:cc:e7:68: 80:93:3c:21:b4:f8:b0:5a:ec:03:e7:49:2b:76:3f: 47:82:1f:17:be:ca:4c:e5:32:d4:69:e7:8d:67:26: f9:40:af:16:a8:0a:4e:a7:fc:04:32:a9:76:6c:20: c9:ea:03:9d:af:50:63:68:01:a4:f0:b4:b1:d8:2d: e3:52:d1:ef:8a:3c:74:7d:63:cd:22:cf:7c:ec:36: 87:f0:bd:e5:c3:76:6e:16:1b:aa:ad:d9:ca:a1:cb: b5:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:D3:0A:A4:98:0F:3C:8F:CF:4F:69:48:46:71:85:3C:DF:DB:60:70 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151544.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.159.0/24 IPv6: 2001:df2:f0c0::/48 Signature Algorithm: sha256WithRSAEncryption 0d:44:6b:18:ce:74:d8:f4:f3:24:50:87:32:10:9a:31:3b:d3: 36:6a:54:9d:a1:f7:43:0c:33:f6:90:65:19:e6:98:77:33:d9: 31:13:0f:b5:83:7a:19:38:ca:87:1e:1c:0a:e2:a7:a6:2b:dd: 22:7b:ae:5a:cd:11:c0:5f:70:7c:94:d9:9f:20:49:1d:3e:25: c9:91:fe:9d:52:78:1a:3a:50:ee:13:ec:28:75:8e:90:7e:09: 5e:85:65:c8:cc:f3:32:87:36:dc:21:30:52:bd:e1:2d:38:46: 29:ab:45:55:0e:ff:34:8c:f6:ee:34:21:9a:ac:ad:86:54:ff: c2:52:25:ea:8b:15:20:53:54:36:3b:b6:b3:56:5f:22:e3:a8: 8c:4e:98:e2:25:36:5f:83:0e:d7:9b:b5:71:af:08:7b:10:ef: 8f:3a:bb:ca:ea:63:f8:84:9d:7f:b6:c3:76:e4:15:72:f5:d7: 97:97:dc:7e:2c:79:8c:dc:00:3e:e5:da:34:10:b1:31:42:db: c1:50:2f:bf:0f:f7:45:1d:c9:a3:f5:fb:b1:d3:21:63:d0:e2: af:e6:83:14:3b:dc:8b:f4:63:2e:08:a2:bb:3d:37:56:27:cd: 5b:ac:60:3e:3f:c9:bd:ef:71:14:24:b5:72:52:14:c7:2f:43: 4f:08:62:25 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUDQtUvsaHd73lHxNBXj+ZOk9zKZkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxOTA2NTUwMFoX DTI1MDgxODA3MDAwMFowMzExMC8GA1UEAxMoRTBEMzBBQTQ5ODBGM0M4RkNGNEY2 OTQ4NDY3MTg1M0NERkRCNjA3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALzhM9NGYLpVqPU6EKy8xjMKxxNLu6tS+6hWZD+5TMR+5hVD6oQPvs+cHQ9E yCsZe3tXPcu2BbyRgMF65llSwYJIYCbJ8Zw4RCFjNS8EuIZg0V0md1bFOCRdXLBH 7X/xIMfzWtgf4AJeQA+cxpGdlvIS8whxdDooSaxzb7V5I7QeSHOb3S6gM7HJcFzy jINaRX5pirO70j+wWcHyfbcFnz4+zOdogJM8IbT4sFrsA+dJK3Y/R4IfF77KTOUy 1GnnjWcm+UCvFqgKTqf8BDKpdmwgyeoDna9QY2gBpPC0sdgt41LR74o8dH1jzSLP fOw2h/C95cN2bhYbqq3ZyqHLtVMCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBTg0wqk mA88j89PaUhGcYU839tgcDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU0NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGf1nzAPBAIAAjAJAwcAIAEN8vDAMA0GCSqGSIb3DQEBCwUAA4IB AQANRGsYznTY9PMkUIcyEJoxO9M2alSdofdDDDP2kGUZ5ph3M9kxEw+1g3oZOMqH HhwK4qemK90ie65azRHAX3B8lNmfIEkdPiXJkf6dUngaOlDuE+wodY6QfglehWXI zPMyhzbcITBSveEtOEYpq0VVDv80jPbuNCGarK2GVP/CUiXqixUgU1Q2O7azVl8i 46iMTpjiJTZfgw7Xm7Vxrwh7EO+POrvK6mP4hJ1/tsN25BVy9deXl9x+LHmM3AA+ 5do0ELExQtvBUC+/D/dFHcmj9fux0yFj0OKv5oMUO9yL9GMuCKK7PTdWJ81brGA+ P8m973EUJLVyUhTHL0NPCGIl -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:49 2024 by rpki-client on console-ams.rpki-client.org