$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151555.roa File: AS151555.roa (raw, json) Hash identifier: UsJMIo9NwwNgUcZa8AXsr6ZGfWhLrA/+gmDqnySCr4k= Subject key identifier: 9B:2B:41:97:89:90:B9:5F:C1:C2:36:59:44:AA:E6:F6:2C:11:F5:0A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3F9E2537E258E6CFF1AA9347BAFDE696D2231E1E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151555.roa Signing time: Thu 04 Jan 2024 04:46:59 +0000 ROA not before: Thu 04 Jan 2024 04:41:59 +0000 ROA not after: Thu 02 Jan 2025 04:46:59 +0000 asID: 151555 IP address blocks: 103.250.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:9e:25:37:e2:58:e6:cf:f1:aa:93:47:ba:fd:e6:96:d2:23:1e:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 4 04:41:59 2024 GMT Not After : Jan 2 04:46:59 2025 GMT Subject: CN=9B2B41978990B95FC1C2365944AAE6F62C11F50A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:37:88:e8:31:04:aa:96:99:20:52:43:8f:63: 93:00:fa:50:a9:88:2e:2b:1b:0b:80:a2:8d:7a:04: 80:be:5d:f0:f7:34:55:4e:00:fc:68:7c:c0:21:4b: be:a4:db:5a:f8:66:4e:bd:b2:ee:f9:ed:e4:50:06: df:17:ef:c9:31:4b:0e:27:38:64:c9:74:24:40:ef: 10:d1:70:6b:2f:08:21:a6:c7:f2:45:4c:32:0c:6c: fa:ec:dd:58:8b:1d:a5:e2:3d:d8:48:ce:1e:46:73: f9:10:ad:51:de:94:49:a9:cd:37:70:60:a0:5d:70: 61:38:45:de:98:ae:cb:e7:77:ce:46:64:33:8b:e8: 01:52:41:b2:86:99:a0:18:95:be:70:9d:75:1d:25: 84:62:bc:fe:90:02:84:47:0f:83:e1:a8:c0:d2:4a: ca:47:42:83:1f:d3:7e:fd:87:db:a3:e0:3c:63:95: e9:76:4f:e0:40:ad:65:7e:7a:ed:ea:70:6c:ec:1c: e5:c9:ed:22:4a:77:ca:8b:96:96:12:e0:0b:03:90: 31:fc:34:87:be:61:4c:d5:5c:ea:b1:2a:52:5b:b0: 3e:32:46:b1:c2:f5:52:80:1c:6d:32:7b:2b:6f:b9: 5d:ab:de:da:7a:b8:34:cb:cf:fc:65:c0:14:c1:ad: 24:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:2B:41:97:89:90:B9:5F:C1:C2:36:59:44:AA:E6:F6:2C:11:F5:0A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151555.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.250.130.0/23 Signature Algorithm: sha256WithRSAEncryption 15:ef:87:d1:6d:55:99:2e:81:1a:b1:ce:6c:2c:f9:7f:ae:0e: 30:22:39:f0:04:33:c0:4c:d9:c6:0e:5e:ec:d0:14:5a:35:6d: 01:bf:02:4e:22:12:47:a4:3f:9d:1c:92:b9:e0:1d:b1:4b:ec: df:85:21:0f:04:14:68:ed:8b:3c:cc:e3:bd:21:b0:84:ff:02: 62:e6:6b:32:b4:2a:1b:91:d9:21:12:38:c3:8d:c3:cc:ae:31: 39:66:fc:62:eb:52:fa:fa:b6:20:d9:cf:53:36:bc:39:b2:e9: 44:f9:0a:c4:7d:e4:0d:8d:94:1f:f5:4d:93:86:5f:26:11:75: 8e:30:05:68:e7:5b:25:41:36:77:cf:81:97:f9:16:30:4c:b9: 35:ca:b1:ec:1a:67:f5:a3:bd:c5:33:71:b5:b1:f3:fe:4f:62: 18:79:46:62:5f:33:d1:c4:f2:1f:7b:cd:bb:20:93:30:3d:d3: 2a:d5:bf:99:85:87:34:c8:ea:d9:8b:ab:f2:64:88:e7:0a:63: 00:33:58:46:a0:5c:6c:3e:7f:77:1a:b4:36:7e:94:25:dd:80: 49:72:7c:1c:ae:0c:7d:fa:0f:a2:30:0b:32:5f:4e:37:f0:d1: 71:42:13:a7:8f:08:76:25:c4:2e:3f:b0:fa:1f:6d:98:1c:1a: 44:b0:e0:ec -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUP54lN+JY5s/xqpNHuv3mltIjHh4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwNDA0NDE1OVoX DTI1MDEwMjA0NDY1OVowMzExMC8GA1UEAxMoOUIyQjQxOTc4OTkwQjk1RkMxQzIz NjU5NDRBQUU2RjYyQzExRjUwQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMQ3iOgxBKqWmSBSQ49jkwD6UKmILisbC4CijXoEgL5d8Pc0VU4A/Gh8wCFL vqTbWvhmTr2y7vnt5FAG3xfvyTFLDic4ZMl0JEDvENFway8IIabH8kVMMgxs+uzd WIsdpeI92EjOHkZz+RCtUd6USanNN3BgoF1wYThF3piuy+d3zkZkM4voAVJBsoaZ oBiVvnCddR0lhGK8/pAChEcPg+GowNJKykdCgx/Tfv2H26PgPGOV6XZP4ECtZX56 7epwbOwc5cntIkp3youWlhLgCwOQMfw0h75hTNVc6rEqUluwPjJGscL1UoAcbTJ7 K2+5Xave2nq4NMvP/GXAFMGtJM0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSbK0GX iZC5X8HCNllEqub2LBH1CjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU1NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWf6gjANBgkqhkiG9w0BAQsFAAOCAQEAFe+H0W1VmS6BGrHObCz5 f64OMCI58AQzwEzZxg5e7NAUWjVtAb8CTiISR6Q/nRySueAdsUvs34UhDwQUaO2L PMzjvSGwhP8CYuZrMrQqG5HZIRI4w43DzK4xOWb8YutS+vq2INnPUza8ObLpRPkK xH3kDY2UH/VNk4ZfJhF1jjAFaOdbJUE2d8+Bl/kWMEy5Ncqx7Bpn9aO9xTNxtbHz /k9iGHlGYl8z0cTyH3vNuyCTMD3TKtW/mYWHNMjq2Yur8mSI5wpjADNYRqBcbD5/ dxq0Nn6UJd2ASXJ8HK4MffoPojALMl9ON/DRcUITp48IdiXELj+w+h9tmBwaRLDg 7A== -----END CERTIFICATE-----Generated at Wed May 8 15:17:44 2024 by rpki-client on console-fra.rpki-client.org