$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151549.roa File: AS151549.roa (raw, json) Hash identifier: e1nLRuV+nQMFs2gfN/EthNyZGJIwCqjZV5GKU/5tGSU= Subject key identifier: A3:04:74:1A:BD:F0:E2:76:54:C2:BC:8B:ED:8C:AB:6A:71:43:6B:A9 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 622C294BF279BC17539E8ECDD8CD50EB80883D29 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151549.roa Signing time: Mon 05 Aug 2024 05:00:00 +0000 ROA not before: Mon 05 Aug 2024 04:55:00 +0000 ROA not after: Mon 04 Aug 2025 05:00:00 +0000 asID: 151549 IP address blocks: 103.255.132.0/23 maxlen: 24 2401:2de0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:2c:29:4b:f2:79:bc:17:53:9e:8e:cd:d8:cd:50:eb:80:88:3d:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 5 04:55:00 2024 GMT Not After : Aug 4 05:00:00 2025 GMT Subject: CN=A304741ABDF0E27654C2BC8BED8CAB6A71436BA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:04:5c:2e:72:0e:23:4a:62:02:17:5d:17:e6: 8f:62:46:f5:60:07:04:30:c9:43:65:b8:9f:23:85: fa:b3:4f:e6:90:ed:68:73:64:9d:87:dc:e2:f0:0d: 30:0e:2e:d2:7a:6a:80:46:75:7e:0a:ec:f3:69:27: 76:c0:29:98:74:ee:e2:60:62:1a:01:8a:0e:b5:37: 44:01:c7:eb:64:23:9f:46:73:aa:dd:96:cd:3e:3d: 05:ff:46:1e:e3:0a:77:fb:9f:75:30:bd:bc:f1:0d: df:22:69:72:d8:cd:fc:49:56:e0:81:c2:ab:5b:1e: c9:bc:a4:19:c9:9a:40:32:fc:8f:bf:e0:09:2c:01: 62:c5:86:90:2f:7c:8e:9b:8b:a2:25:7f:05:60:ff: 00:ee:0e:b2:d2:4a:67:29:30:1b:9a:32:f6:92:cf: da:da:8b:c0:3f:a2:31:e3:20:f8:15:a4:76:ab:f8: f3:7d:97:94:01:ee:16:f1:f4:a2:30:fd:4e:9a:88: c9:28:df:9f:28:44:e4:fb:9a:8e:c9:e7:e9:bd:98: 33:66:94:1a:92:35:38:57:cd:c8:04:64:fb:9b:d7: 31:18:eb:53:f1:5e:ea:2d:c4:ee:f9:0f:7f:6a:ec: 49:9a:05:7f:06:66:13:18:b2:a5:60:c1:ff:35:03: f8:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:04:74:1A:BD:F0:E2:76:54:C2:BC:8B:ED:8C:AB:6A:71:43:6B:A9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151549.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.132.0/23 IPv6: 2401:2de0::/32 Signature Algorithm: sha256WithRSAEncryption 4a:7a:ff:6d:1f:f6:f2:fd:98:ee:c4:a0:0c:48:39:af:54:62: 8d:49:f1:73:d9:fd:41:e2:6e:37:79:ec:85:16:59:0c:7f:b1: 3b:7b:80:4f:f8:e9:90:9c:af:fb:4c:70:8b:29:1a:e3:ab:0a: a5:0e:fc:14:f4:9d:e4:62:ea:da:07:bf:77:b2:74:83:db:8c: 5f:24:a3:56:4d:ed:bf:9d:10:36:67:6b:25:6b:3e:73:da:e4: 53:2a:0f:c1:d3:fc:6b:74:45:cb:b1:a3:58:d9:98:0f:7f:db: d6:dd:c4:4f:26:32:b0:22:62:22:3e:9f:65:15:e6:b4:e6:6f: dd:2e:ec:a5:cc:52:a4:a5:e5:8a:da:26:47:87:cc:49:4f:8f: 30:32:f3:b5:48:41:29:53:b2:98:16:29:64:f1:6d:01:2e:df: d2:eb:48:ea:10:a0:36:f4:36:8b:4a:95:a9:bd:9f:2e:61:89: d2:bc:13:0a:ad:fb:2e:e6:6f:8e:7e:9b:a5:02:f7:52:1b:f1: 32:36:5a:0d:27:6a:9e:c1:fb:14:81:b0:68:ef:03:53:2e:81: 7e:4e:17:4b:d4:dd:bc:95:ac:08:27:c9:6a:35:27:4a:49:3d: 81:93:13:98:0b:fa:33:19:55:9b:6c:f1:c6:86:c1:a3:a8:a3: 16:b1:d7:d1 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUYiwpS/J5vBdTno7N2M1Q64CIPSkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgwNTA0NTUwMFoX DTI1MDgwNDA1MDAwMFowMzExMC8GA1UEAxMoQTMwNDc0MUFCREYwRTI3NjU0QzJC QzhCRUQ4Q0FCNkE3MTQzNkJBOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALwEXC5yDiNKYgIXXRfmj2JG9WAHBDDJQ2W4nyOF+rNP5pDtaHNknYfc4vAN MA4u0npqgEZ1fgrs82kndsApmHTu4mBiGgGKDrU3RAHH62Qjn0Zzqt2WzT49Bf9G HuMKd/ufdTC9vPEN3yJpctjN/ElW4IHCq1seybykGcmaQDL8j7/gCSwBYsWGkC98 jpuLoiV/BWD/AO4OstJKZykwG5oy9pLP2tqLwD+iMeMg+BWkdqv4832XlAHuFvH0 ojD9TpqIySjfnyhE5Puajsnn6b2YM2aUGpI1OFfNyARk+5vXMRjrU/Fe6i3E7vkP f2rsSZoFfwZmExiypWDB/zUD+I8CAwEAAaOCAd8wggHbMB0GA1UdDgQWBBSjBHQa vfDidlTCvIvtjKtqcUNrqTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU0OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWf/hDANBAIAAjAHAwUAJAEt4DANBgkqhkiG9w0BAQsFAAOCAQEA Snr/bR/28v2Y7sSgDEg5r1RijUnxc9n9QeJuN3nshRZZDH+xO3uAT/jpkJyv+0xw iyka46sKpQ78FPSd5GLq2ge/d7J0g9uMXySjVk3tv50QNmdrJWs+c9rkUyoPwdP8 a3RFy7GjWNmYD3/b1t3ETyYysCJiIj6fZRXmtOZv3S7spcxSpKXlitomR4fMSU+P MDLztUhBKVOymBYpZPFtAS7f0utI6hCgNvQ2i0qVqb2fLmGJ0rwTCq37LuZvjn6b pQL3UhvxMjZaDSdqnsH7FIGwaO8DUy6Bfk4XS9TdvJWsCCfJajUnSkk9gZMTmAv6 MxlVm2zxxobBo6ijFrHX0Q== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:49 2024 by rpki-client on console-ams.rpki-client.org