$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151567.roa File: AS151567.roa (raw, json) Hash identifier: q63Z/RApfwo3uNVi6NESCoBfr2vkl4NywvWM2tywJD4= Subject key identifier: 0B:67:9F:26:66:5E:91:BD:5E:57:E8:76:C8:A9:DC:CD:BB:05:4B:CF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5CDAC413CDA0B818EF08092A4E840BEB63C8F329 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151567.roa Signing time: Mon 12 Aug 2024 05:00:00 +0000 ROA not before: Mon 12 Aug 2024 04:55:00 +0000 ROA not after: Mon 11 Aug 2025 05:00:00 +0000 asID: 151567 IP address blocks: 103.38.104.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:da:c4:13:cd:a0:b8:18:ef:08:09:2a:4e:84:0b:eb:63:c8:f3:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 12 04:55:00 2024 GMT Not After : Aug 11 05:00:00 2025 GMT Subject: CN=0B679F26665E91BD5E57E876C8A9DCCDBB054BCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:80:df:f2:35:4d:22:41:ea:c6:bc:37:db:a8: 89:46:d1:73:36:ff:44:85:18:bd:8f:52:88:1f:56: ee:ab:f8:a4:62:75:fd:13:d7:e6:a4:8e:91:f8:60: 70:1e:98:ac:88:f1:cc:5c:fa:b7:8d:d8:48:08:bf: 01:f5:67:b9:93:f5:88:31:d4:ce:ca:71:ee:6a:9f: 15:47:c9:b7:47:e7:01:3c:16:87:ff:90:5a:89:00: d3:15:ca:2b:03:33:f4:30:3a:a0:73:0e:d7:65:b1: ad:01:ec:65:6b:d4:02:70:90:9b:ba:c8:a5:86:4e: 82:c3:42:00:8f:d4:b6:4b:e3:14:d8:03:1b:9d:a7: 41:0c:4a:96:98:e7:ea:f5:96:7f:b6:6a:cb:ae:b1: c1:2b:75:c2:d8:77:32:f9:39:03:a5:37:48:d4:cb: 8c:b4:d1:00:a2:a3:79:05:7f:18:33:1b:b8:b2:86: af:00:dd:c8:ee:4c:b9:49:d4:4d:9f:0b:39:2c:91: 0d:c4:7e:4d:bf:f9:9a:fe:e5:e7:e5:92:38:a9:4e: e3:50:cc:49:4b:4a:6a:28:fe:6f:a1:8e:d8:55:96: 00:30:01:5e:63:98:4e:96:33:2f:1b:3c:6d:35:97: e7:9a:a4:60:1d:60:b0:ec:2c:54:72:66:e0:bd:86: 61:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:67:9F:26:66:5E:91:BD:5E:57:E8:76:C8:A9:DC:CD:BB:05:4B:CF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151567.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.38.104.0/23 Signature Algorithm: sha256WithRSAEncryption 58:ef:27:8a:8d:19:c5:5b:5e:c4:a7:d9:13:ea:a5:59:b5:cc: 57:61:18:fb:9f:68:57:d3:bb:c6:f8:f9:3f:5e:b7:30:52:b4: 20:49:1a:df:20:fe:1f:34:21:76:e2:31:1a:8f:69:a6:6c:1b: 39:d8:8c:09:02:34:d6:64:d6:f4:10:bc:93:90:e8:a5:62:cd: af:5b:64:7d:59:9f:01:29:87:23:b7:3a:fd:af:28:4f:59:80: 81:3b:ca:73:dd:d6:1b:ac:0f:11:39:97:59:27:e2:ed:15:df: c0:25:0c:e2:d8:27:1d:ab:51:49:27:68:2d:db:ab:6d:01:15: b5:69:55:b3:c1:7e:53:a6:8e:8a:52:d9:ad:a3:55:69:3a:d9: 91:f9:48:a3:46:d3:5e:23:cd:8e:f0:13:3d:93:c3:32:68:15: a7:34:ee:55:1e:d6:d6:46:80:f4:2a:4b:06:ce:ce:54:39:39: 80:c3:a8:3e:5d:43:0e:6d:c9:55:69:c1:c9:42:d6:45:4c:97: 8a:e0:21:55:b5:c3:89:c9:cd:15:16:c1:67:f1:7d:f7:dd:0e: 38:b6:80:de:6b:61:c0:f2:a8:ed:d2:3d:6c:d5:e5:5c:76:f7: 41:e2:da:85:99:02:91:c3:1b:33:8e:52:27:8c:48:ac:e5:de: 27:bf:6b:58 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUXNrEE82guBjvCAkqToQL62PI8ykwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxMjA0NTUwMFoX DTI1MDgxMTA1MDAwMFowMzExMC8GA1UEAxMoMEI2NzlGMjY2NjVFOTFCRDVFNTdF ODc2QzhBOURDQ0RCQjA1NEJDRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANWA3/I1TSJB6sa8N9uoiUbRczb/RIUYvY9SiB9W7qv4pGJ1/RPX5qSOkfhg cB6YrIjxzFz6t43YSAi/AfVnuZP1iDHUzspx7mqfFUfJt0fnATwWh/+QWokA0xXK KwMz9DA6oHMO12WxrQHsZWvUAnCQm7rIpYZOgsNCAI/UtkvjFNgDG52nQQxKlpjn 6vWWf7Zqy66xwSt1wth3Mvk5A6U3SNTLjLTRAKKjeQV/GDMbuLKGrwDdyO5MuUnU TZ8LOSyRDcR+Tb/5mv7l5+WSOKlO41DMSUtKaij+b6GO2FWWADABXmOYTpYzLxs8 bTWX55qkYB1gsOwsVHJm4L2GYS0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQLZ58m Zl6RvV5X6HbIqdzNuwVLzzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU2Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWcmaDANBgkqhkiG9w0BAQsFAAOCAQEAWO8nio0ZxVtexKfZE+ql WbXMV2EY+59oV9O7xvj5P163MFK0IEka3yD+HzQhduIxGo9ppmwbOdiMCQI01mTW 9BC8k5DopWLNr1tkfVmfASmHI7c6/a8oT1mAgTvKc93WG6wPETmXWSfi7RXfwCUM 4tgnHatRSSdoLdurbQEVtWlVs8F+U6aOilLZraNVaTrZkflIo0bTXiPNjvATPZPD MmgVpzTuVR7W1kaA9CpLBs7OVDk5gMOoPl1DDm3JVWnByULWRUyXiuAhVbXDicnN FRbBZ/F9990OOLaA3mthwPKo7dI9bNXlXHb3QeLahZkCkcMbM45SJ4xIrOXeJ79r WA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org