$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151571.roa File: AS151571.roa (raw, json) Hash identifier: 7+zdMwyASmPrG0UPLlMoJu/B/dLtd+KIua2z+9Yq42A= Subject key identifier: 5F:E3:93:73:DD:18:BE:E9:24:8A:55:31:28:8A:ED:08:84:A4:E0:62 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 670613580A5B7251A2F9C1D3C8F4B1F4656F5CAC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151571.roa Signing time: Tue 01 Oct 2024 05:00:00 +0000 ROA not before: Tue 01 Oct 2024 04:55:00 +0000 ROA not after: Tue 30 Sep 2025 05:00:00 +0000 asID: 151571 IP address blocks: 103.80.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:06:13:58:0a:5b:72:51:a2:f9:c1:d3:c8:f4:b1:f4:65:6f:5c:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 1 04:55:00 2024 GMT Not After : Sep 30 05:00:00 2025 GMT Subject: CN=5FE39373DD18BEE9248A5531288AED0884A4E062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:39:ed:d8:eb:bd:90:c4:d2:09:e9:c9:f2:ff: cd:9a:b8:cc:4a:92:40:dc:6b:cf:94:b2:86:56:a3: 13:23:53:8c:de:e5:8f:3b:fd:d3:ca:e7:52:a4:b7: ee:82:83:71:72:19:b1:76:02:a5:44:8e:9c:7a:d2: 70:b8:a0:8a:f1:3c:1f:64:d0:aa:d7:fd:d1:df:4b: 1e:6b:be:e5:18:dc:64:20:ff:7f:51:39:f8:9e:1f: 4f:67:69:71:d1:57:fe:6d:5a:57:06:87:9b:15:2e: bb:39:f7:04:0e:61:e1:d8:68:d7:1d:99:65:b1:fd: 5f:91:e7:de:2f:97:dd:8c:cd:85:bc:a6:41:eb:91: 81:d1:7f:56:be:9d:c5:05:ca:02:77:a6:a2:21:8f: bb:90:ea:59:f4:d2:d6:aa:5c:d6:1b:e1:61:f2:23: 80:b3:90:2a:fc:11:a4:49:62:8c:3b:a3:52:5b:4f: 9d:0b:91:02:4b:1c:47:50:4a:fe:16:fd:15:df:93: 6c:d9:1e:6b:1f:1a:38:52:27:39:ee:92:a6:d0:15: 80:71:13:7e:b9:c9:f1:4c:d5:91:fd:56:d7:aa:c3: 37:e3:62:a3:1f:db:cd:9b:5a:33:f9:d2:f1:6a:2e: 42:1b:22:be:f8:cd:ea:25:6f:b1:bb:e7:ec:f0:82: f1:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:E3:93:73:DD:18:BE:E9:24:8A:55:31:28:8A:ED:08:84:A4:E0:62 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151571.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.80.228.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:bf:2a:69:e5:ef:4b:8b:be:52:fa:4d:0a:ee:04:7b:30:c2: 59:6d:c6:43:33:5a:8b:aa:3b:98:31:bf:74:5b:a7:62:31:e9: 7e:99:ac:12:36:0b:8b:ff:82:80:ca:f0:72:24:f2:59:c7:68: 79:74:b0:41:64:b1:1d:ae:aa:82:73:cf:17:0a:77:47:5d:81: 05:09:78:9b:b2:20:56:31:6a:f4:59:67:21:e1:2e:ae:1b:42: 5a:06:c1:2e:1e:63:83:e0:e6:52:2f:92:ef:d1:ab:05:72:62: 4c:4b:b7:c7:7a:8f:21:74:ee:58:25:b4:9a:1e:b6:d1:58:1e: 18:d7:7d:73:b9:61:25:cd:5f:da:17:96:da:15:64:6d:67:23: 26:73:d7:05:3d:0d:3a:74:36:31:f8:25:a1:48:6d:c3:0c:b5: e3:14:3e:66:9c:1c:26:3a:29:e6:57:bc:75:b5:21:45:bd:60: 4d:2a:97:d7:0f:72:76:5a:01:5c:c5:81:15:e0:2e:f7:2c:46: 8e:24:00:15:11:71:f1:d2:3a:7d:8e:23:5e:07:e1:2c:38:c4: 7c:c7:9a:64:56:04:74:6e:f0:f0:b3:49:e5:03:18:13:6e:2a: 8f:70:c0:f3:85:f0:82:fb:78:d8:2f:f7:1a:04:70:68:cb:4a: f2:15:59:ae -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUZwYTWApbclGi+cHTyPSx9GVvXKwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAwMTA0NTUwMFoX DTI1MDkzMDA1MDAwMFowMzExMC8GA1UEAxMoNUZFMzkzNzNERDE4QkVFOTI0OEE1 NTMxMjg4QUVEMDg4NEE0RTA2MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOs57djrvZDE0gnpyfL/zZq4zEqSQNxrz5SyhlajEyNTjN7ljzv908rnUqS3 7oKDcXIZsXYCpUSOnHrScLigivE8H2TQqtf90d9LHmu+5RjcZCD/f1E5+J4fT2dp cdFX/m1aVwaHmxUuuzn3BA5h4dho1x2ZZbH9X5Hn3i+X3YzNhbymQeuRgdF/Vr6d xQXKAnemoiGPu5DqWfTS1qpc1hvhYfIjgLOQKvwRpElijDujUltPnQuRAkscR1BK /hb9Fd+TbNkeax8aOFInOe6SptAVgHETfrnJ8UzVkf1W16rDN+Niox/bzZtaM/nS 8WouQhsivvjN6iVvsbvn7PCC8RUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRf45Nz 3Ri+6SSKVTEoiu0IhKTgYjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU3MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWdQ5DANBgkqhkiG9w0BAQsFAAOCAQEAf78qaeXvS4u+UvpNCu4E ezDCWW3GQzNai6o7mDG/dFunYjHpfpmsEjYLi/+CgMrwciTyWcdoeXSwQWSxHa6q gnPPFwp3R12BBQl4m7IgVjFq9FlnIeEurhtCWgbBLh5jg+DmUi+S79GrBXJiTEu3 x3qPIXTuWCW0mh620VgeGNd9c7lhJc1f2heW2hVkbWcjJnPXBT0NOnQ2MfgloUht wwy14xQ+ZpwcJjop5le8dbUhRb1gTSqX1w9ydloBXMWBFeAu9yxGjiQAFRFx8dI6 fY4jXgfhLDjEfMeaZFYEdG7w8LNJ5QMYE24qj3DA84Xwgvt42C/3GgRwaMtK8hVZ rg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:49 2024 by rpki-client on console-ams.rpki-client.org