$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151561.roa File: AS151561.roa (raw, json) Hash identifier: k8fB/WljPzFAOcVW7zQDOq3o1qxm9ThNTN0iCcr1Z+c= Subject key identifier: 1C:4E:F9:80:D5:26:DC:BA:8E:34:93:B6:A6:79:13:58:B8:1E:A6:C3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0F44B5BD06308AEB7B868D586304F4C7115D94F7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151561.roa Signing time: Mon 19 Aug 2024 09:00:00 +0000 ROA not before: Mon 19 Aug 2024 08:55:00 +0000 ROA not after: Mon 18 Aug 2025 09:00:00 +0000 asID: 151561 IP address blocks: 103.255.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:44:b5:bd:06:30:8a:eb:7b:86:8d:58:63:04:f4:c7:11:5d:94:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 19 08:55:00 2024 GMT Not After : Aug 18 09:00:00 2025 GMT Subject: CN=1C4EF980D526DCBA8E3493B6A6791358B81EA6C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:06:f1:0c:9a:f8:c1:ea:d7:f9:95:34:54:86: 82:c3:45:8d:98:d3:10:9a:09:6f:77:ec:d4:92:76: 20:35:7b:0d:52:f9:c6:c9:44:b5:9c:2e:a4:7a:87: cd:33:44:51:a4:a5:62:ad:16:04:84:09:23:5f:af: 0e:f2:96:07:ba:a2:cd:76:2f:da:75:75:b4:ba:e7: 17:f1:86:4a:fc:fe:c8:42:6f:af:24:a6:d1:9f:d6: 25:c4:fa:c0:a6:63:02:be:71:8f:50:38:3b:1f:32: ea:5e:9f:c3:9e:98:90:24:89:99:b5:2b:e7:a0:2d: 08:2b:3e:68:9b:0a:b8:ca:61:d5:e9:c7:59:eb:3e: 16:31:9a:00:2f:18:8a:91:14:77:1d:a2:ea:5a:7c: 51:07:6c:99:ee:fe:d3:f4:01:1a:e0:35:19:59:dc: fa:6f:e7:e5:b2:f5:dc:78:68:7c:67:40:3b:79:2b: 85:96:6e:a8:74:58:aa:84:34:13:78:c3:65:44:62: 64:0d:c3:fc:ad:1f:4a:0e:de:02:b6:bb:33:c2:96: 19:67:03:f7:a5:1a:7e:4e:a8:38:d8:f7:d1:21:7d: fa:56:f9:09:f2:6e:f7:3b:d8:86:ee:da:e1:b5:fc: f7:18:da:c5:b2:2c:90:0d:e0:ea:f1:e3:34:f6:46: 84:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:4E:F9:80:D5:26:DC:BA:8E:34:93:B6:A6:79:13:58:B8:1E:A6:C3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151561.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.110.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:4a:41:bb:a4:0b:97:2f:a6:91:ec:c7:e7:45:cd:eb:57:14: 0f:95:e3:db:a5:f2:81:f7:0c:8f:ec:a8:7e:bd:59:d9:3a:2d: bf:61:bc:3c:7c:8f:bb:35:04:7b:93:b4:eb:2a:3e:d5:d9:2c: a7:6e:30:70:ea:fe:52:96:99:48:ce:db:37:af:b3:c2:6a:cb: 19:dc:25:37:9b:e8:36:4d:b1:0c:f9:9d:24:d2:cf:68:70:36: cf:3e:29:28:56:49:0e:d1:69:c3:7d:88:d2:11:a0:b7:31:53: 02:ee:6e:1a:9d:aa:ad:e2:e2:13:0e:47:61:dd:b9:31:64:a0: cb:23:a5:83:49:5b:1f:d8:87:d5:d9:57:fc:06:6b:94:76:44: c7:c9:44:a9:a1:61:bb:e2:a4:dd:c5:5c:24:9a:02:9f:60:1e: fa:92:69:c6:c8:da:db:b9:0d:9c:1f:93:2a:b4:00:61:62:29: f9:44:2c:ff:fb:76:dd:4a:79:07:78:6b:bd:bf:55:b3:22:0c: ad:ad:4c:04:7c:d0:b2:ee:71:51:51:e9:76:24:ba:ed:da:d4: 31:b9:12:ff:00:c0:87:1a:74:4d:8d:d7:1c:7d:47:87:c3:b1: 9b:62:19:34:04:b9:11:32:22:8b:9e:41:83:9c:c6:be:5c:f3: 54:1f:8e:bb -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUD0S1vQYwiut7ho1YYwT0xxFdlPcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxOTA4NTUwMFoX DTI1MDgxODA5MDAwMFowMzExMC8GA1UEAxMoMUM0RUY5ODBENTI2RENCQThFMzQ5 M0I2QTY3OTEzNThCODFFQTZDMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKsG8Qya+MHq1/mVNFSGgsNFjZjTEJoJb3fs1JJ2IDV7DVL5xslEtZwupHqH zTNEUaSlYq0WBIQJI1+vDvKWB7qizXYv2nV1tLrnF/GGSvz+yEJvrySm0Z/WJcT6 wKZjAr5xj1A4Ox8y6l6fw56YkCSJmbUr56AtCCs+aJsKuMph1enHWes+FjGaAC8Y ipEUdx2i6lp8UQdsme7+0/QBGuA1GVnc+m/n5bL13HhofGdAO3krhZZuqHRYqoQ0 E3jDZURiZA3D/K0fSg7eAra7M8KWGWcD96Uafk6oONj30SF9+lb5CfJu9zvYhu7a 4bX89xjaxbIskA3g6vHjNPZGhAMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQcTvmA 1Sbcuo40k7ameRNYuB6mwzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU2MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGf/bjANBgkqhkiG9w0BAQsFAAOCAQEAHkpBu6QLly+mkezH50XN 61cUD5Xj26XygfcMj+yofr1Z2Totv2G8PHyPuzUEe5O06yo+1dksp24wcOr+UpaZ SM7bN6+zwmrLGdwlN5voNk2xDPmdJNLPaHA2zz4pKFZJDtFpw32I0hGgtzFTAu5u Gp2qreLiEw5HYd25MWSgyyOlg0lbH9iH1dlX/AZrlHZEx8lEqaFhu+Kk3cVcJJoC n2Ae+pJpxsja27kNnB+TKrQAYWIp+UQs//t23Up5B3hrvb9VsyIMra1MBHzQsu5x UVHpdiS67drUMbkS/wDAhxp0TY3XHH1Hh8Oxm2IZNAS5ETIii55Bg5zGvlzzVB+O uw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org