$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151553.roa File: AS151553.roa (raw, json) Hash identifier: h9SlxXEko3Trrf4fSj3vXiteCS0KWcYuAO1B2dUNjYo= Subject key identifier: 41:C5:0A:7F:06:23:32:CB:3F:86:3A:06:98:12:64:C1:1E:06:C4:76 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 338FEF8545495977E9B0F523BB0933FF421FD349 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151553.roa Signing time: Tue 30 Jul 2024 08:00:00 +0000 ROA not before: Tue 30 Jul 2024 07:55:00 +0000 ROA not after: Tue 29 Jul 2025 08:00:00 +0000 asID: 151553 IP address blocks: 103.255.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:8f:ef:85:45:49:59:77:e9:b0:f5:23:bb:09:33:ff:42:1f:d3:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 30 07:55:00 2024 GMT Not After : Jul 29 08:00:00 2025 GMT Subject: CN=41C50A7F062332CB3F863A06981264C11E06C476 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:17:40:ae:13:07:91:ee:f4:4b:1f:5c:bc:f7: 4e:a3:0f:a9:1a:40:48:e0:fe:1c:53:93:49:f1:52: 6c:64:3d:db:11:4d:5f:54:2d:fe:93:9c:01:58:8e: d2:73:df:78:78:f4:e0:17:16:6e:7c:e9:d2:36:9f: 96:e1:dc:75:2e:3a:cb:07:96:c5:12:0b:d1:e2:39: 57:d6:2a:67:9e:3b:4f:12:a2:8d:4e:ed:23:55:9b: 79:b7:b4:a3:7b:22:10:ad:69:ee:53:ff:a1:fd:06: 79:19:fc:6b:a1:ed:ab:f7:18:c6:0a:cc:cb:e5:5d: b5:77:63:d4:08:02:0e:aa:d4:7d:db:08:d1:a4:c2: d4:2a:ca:6d:51:2f:ae:e2:1e:ff:7a:bb:ee:eb:81: d3:9e:05:53:89:38:0d:f7:3f:0a:8b:e1:53:7f:da: 3c:44:aa:b6:2a:b1:2c:f6:6a:53:07:cd:27:89:70: 6c:ae:38:25:aa:b8:b0:16:d5:da:d6:af:ce:21:b4: 0a:2b:57:b9:65:4b:05:9d:e0:d9:5d:a4:1f:f7:73: 1a:67:3c:f2:48:83:0d:55:e3:48:a4:88:34:d0:80: 2c:9f:5e:c3:e6:ee:5c:a4:c0:79:66:75:25:73:58: 42:4a:67:bf:50:2f:66:f8:89:d7:6a:ed:28:e6:85: ba:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:C5:0A:7F:06:23:32:CB:3F:86:3A:06:98:12:64:C1:1E:06:C4:76 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151553.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.98.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:72:96:88:62:4e:b3:f3:4d:b4:7b:bf:6e:7f:f8:21:01:c6: 7c:9f:65:07:1c:af:89:0a:5c:79:0d:fb:2b:76:37:72:ed:0c: 04:56:5b:74:0b:9b:bd:89:82:09:48:1c:63:a4:04:2f:29:a1: 0c:c8:d5:28:9d:0b:41:07:5a:90:fc:79:cb:66:dc:10:8e:2c: f9:b5:27:48:25:d8:23:f1:3d:50:1e:e6:e0:a1:83:a5:bb:9b: dc:ad:a4:ab:1a:82:76:06:42:ce:da:80:50:16:46:fc:94:51: e9:f8:74:6d:2b:f4:4a:0b:19:bf:4a:46:c3:ff:a8:7f:21:9c: 57:da:88:81:3c:04:9c:6c:52:e0:b8:e3:38:09:3d:35:3a:fd: 29:28:d5:e9:ab:08:0c:66:3c:d6:a8:1e:2f:79:76:ec:69:e8: 15:42:f4:83:8e:7b:ad:76:7c:1d:25:e6:01:19:24:96:90:18: e1:0e:a6:5b:71:ca:0e:56:c7:d3:89:ea:a0:93:98:33:41:46: d6:d2:61:1c:55:ae:dd:6d:9c:4b:78:57:50:29:b2:d3:c6:0a: 73:19:55:25:d8:c6:01:f7:c9:46:e6:74:55:82:c6:04:ff:80: f2:1f:dc:35:18:52:8f:3b:f1:7b:cc:43:c6:2e:33:ff:ab:1f: db:de:88:82 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUM4/vhUVJWXfpsPUjuwkz/0If00kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDczMDA3NTUwMFoX DTI1MDcyOTA4MDAwMFowMzExMC8GA1UEAxMoNDFDNTBBN0YwNjIzMzJDQjNGODYz QTA2OTgxMjY0QzExRTA2QzQ3NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMwXQK4TB5Hu9EsfXLz3TqMPqRpASOD+HFOTSfFSbGQ92xFNX1Qt/pOcAViO 0nPfeHj04BcWbnzp0jafluHcdS46yweWxRIL0eI5V9YqZ547TxKijU7tI1Wbebe0 o3siEK1p7lP/of0GeRn8a6Htq/cYxgrMy+VdtXdj1AgCDqrUfdsI0aTC1CrKbVEv ruIe/3q77uuB054FU4k4Dfc/CovhU3/aPESqtiqxLPZqUwfNJ4lwbK44Jaq4sBbV 2tavziG0CitXuWVLBZ3g2V2kH/dzGmc88kiDDVXjSKSINNCALJ9ew+buXKTAeWZ1 JXNYQkpnv1AvZviJ12rtKOaFul8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRBxQp/ BiMyyz+GOgaYEmTBHgbEdjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU1My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWf/YjANBgkqhkiG9w0BAQsFAAOCAQEAnHKWiGJOs/NNtHu/bn/4 IQHGfJ9lBxyviQpceQ37K3Y3cu0MBFZbdAubvYmCCUgcY6QELymhDMjVKJ0LQQda kPx5y2bcEI4s+bUnSCXYI/E9UB7m4KGDpbub3K2kqxqCdgZCztqAUBZG/JRR6fh0 bSv0SgsZv0pGw/+ofyGcV9qIgTwEnGxS4LjjOAk9NTr9KSjV6asIDGY81qgeL3l2 7GnoFUL0g457rXZ8HSXmARkklpAY4Q6mW3HKDlbH04nqoJOYM0FG1tJhHFWu3W2c S3hXUCmy08YKcxlVJdjGAffJRuZ0VYLGBP+A8h/cNRhSjzvxe8xDxi4z/6sf296I gg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:49 2024 by rpki-client on console-ams.rpki-client.org