$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151580.roa File: AS151580.roa (raw, json) Hash identifier: smg+xUfTwNMiEChMj4vveYuB2aGXM/KoxKvQ7N15DNU= Subject key identifier: FC:F5:7D:C9:C3:EB:8F:4A:E0:CB:43:E3:31:2A:7D:93:BA:91:8A:58 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2237D9CEC3AEEB192651E8713D6DD966C51BA055 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151580.roa Signing time: Thu 29 Aug 2024 09:00:00 +0000 ROA not before: Thu 29 Aug 2024 08:55:00 +0000 ROA not after: Thu 28 Aug 2025 09:00:00 +0000 asID: 151580 IP address blocks: 103.216.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:37:d9:ce:c3:ae:eb:19:26:51:e8:71:3d:6d:d9:66:c5:1b:a0:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 29 08:55:00 2024 GMT Not After : Aug 28 09:00:00 2025 GMT Subject: CN=FCF57DC9C3EB8F4AE0CB43E3312A7D93BA918A58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:2c:c1:b6:59:13:d3:cb:85:1b:1a:fc:4a:2d: cb:42:f8:5a:16:58:94:b8:f2:7a:ab:b0:ee:21:aa: 10:2b:91:d4:b6:bb:57:88:18:4c:80:ff:f1:55:f7: 69:bd:00:66:8a:9b:15:65:16:32:6e:18:fa:e4:c7: 31:d6:de:4c:01:b4:92:76:42:e4:2d:47:1e:7e:97: de:0b:19:92:83:a7:11:6d:9b:f0:fb:83:6b:38:de: 43:03:85:f0:7c:34:f7:00:f8:0e:da:6e:ae:ff:87: 72:b6:4f:0e:67:fe:ff:0c:d0:b6:81:49:f8:05:a3: 37:d4:bc:68:eb:20:f6:68:cf:50:75:56:b1:8f:c6: 02:52:f5:f1:02:a2:4f:2f:82:ed:63:c9:f4:bd:6e: 47:8c:df:95:94:73:9c:13:18:ba:6a:3a:82:e0:cd: 17:bf:92:88:e4:ea:61:a6:f6:c0:d9:ab:01:6f:61: d9:33:84:97:1e:87:11:98:0f:35:d4:0b:b6:5b:25: 30:8a:94:d1:a8:45:13:7e:54:b7:93:ae:8a:8d:e1: 96:71:b3:35:b2:a5:50:9e:84:6a:0b:34:1d:42:79: c0:65:63:5e:2b:94:f4:60:7c:c6:8a:aa:9e:dd:49: eb:5b:f2:dd:fd:61:47:5d:d2:97:6f:57:f6:63:cc: 4c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:F5:7D:C9:C3:EB:8F:4A:E0:CB:43:E3:31:2A:7D:93:BA:91:8A:58 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151580.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.216.105.0/24 Signature Algorithm: sha256WithRSAEncryption 60:dc:b2:c6:62:2f:47:cc:96:5c:db:78:fd:48:2b:a4:e2:3d: 70:cf:b5:3c:31:1d:66:03:19:39:3c:a0:5b:b7:5e:1d:8b:2e: b3:0d:7c:5e:99:22:79:91:4b:a1:e4:74:d9:8c:d5:be:9b:a1: e6:73:55:11:a3:da:13:e6:00:38:e6:62:6c:44:05:77:73:13: 61:b5:63:23:b0:c9:d6:47:ca:ca:e3:bd:b0:db:86:4a:22:2a: 78:96:d3:76:05:f1:1a:10:5b:66:58:93:8c:94:4c:f6:a1:b9: e0:ca:5e:ed:03:16:4b:f5:78:a2:7f:b7:4c:9e:c9:ef:fe:62: 06:a2:73:c4:2e:db:0f:ad:ac:39:60:c8:03:9b:fb:2d:ba:20: e9:93:34:8a:a5:15:6a:f4:44:7f:6d:52:a5:1a:f0:98:9e:8a: 24:ac:ab:27:70:bd:12:3d:3a:d4:17:8c:ea:0f:bb:ae:27:75: 9d:ef:42:20:72:a5:52:f9:f3:cb:65:4a:71:ca:e4:53:7d:63: 45:11:95:4e:72:ed:81:2c:c6:2f:14:6f:2a:26:13:5b:26:14: b0:c0:9b:57:69:53:64:d9:6f:f0:f1:2d:90:b1:08:f3:88:88: 40:ea:68:70:40:4e:1d:9e:2b:30:19:e8:ea:26:fb:fb:6d:f4: 08:48:e6:75 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUIjfZzsOu6xkmUehxPW3ZZsUboFUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgyOTA4NTUwMFoX DTI1MDgyODA5MDAwMFowMzExMC8GA1UEAxMoRkNGNTdEQzlDM0VCOEY0QUUwQ0I0 M0UzMzEyQTdEOTNCQTkxOEE1ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOcswbZZE9PLhRsa/Eoty0L4WhZYlLjyequw7iGqECuR1La7V4gYTID/8VX3 ab0AZoqbFWUWMm4Y+uTHMdbeTAG0knZC5C1HHn6X3gsZkoOnEW2b8PuDazjeQwOF 8Hw09wD4Dtpurv+HcrZPDmf+/wzQtoFJ+AWjN9S8aOsg9mjPUHVWsY/GAlL18QKi Ty+C7WPJ9L1uR4zflZRznBMYumo6guDNF7+SiOTqYab2wNmrAW9h2TOElx6HEZgP NdQLtlslMIqU0ahFE35Ut5Ouio3hlnGzNbKlUJ6Eags0HUJ5wGVjXiuU9GB8xoqq nt1J61vy3f1hR13Sl29X9mPMTEkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT89X3J w+uPSuDLQ+MxKn2TupGKWDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU4MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfYaTANBgkqhkiG9w0BAQsFAAOCAQEAYNyyxmIvR8yWXNt4/Ugr pOI9cM+1PDEdZgMZOTygW7deHYsusw18XpkieZFLoeR02YzVvpuh5nNVEaPaE+YA OOZibEQFd3MTYbVjI7DJ1kfKyuO9sNuGSiIqeJbTdgXxGhBbZliTjJRM9qG54Mpe 7QMWS/V4on+3TJ7J7/5iBqJzxC7bD62sOWDIA5v7Lbog6ZM0iqUVavREf21SpRrw mJ6KJKyrJ3C9Ej061BeM6g+7rid1ne9CIHKlUvnzy2VKccrkU31jRRGVTnLtgSzG LxRvKiYTWyYUsMCbV2lTZNlv8PEtkLEI84iIQOpocEBOHZ4rMBno6ib7+230CEjm dQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org