$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151584.roa File: AS151584.roa (raw, json) Hash identifier: NSatyC+z8dIvbJkFrERA24vZ/UAScmiRUSbEvEtvE+Y= Subject key identifier: A5:FB:6D:A4:44:DB:37:EC:BF:D6:50:27:AE:F3:64:BF:1E:49:B6:01 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 178717DDE536E42042AA7B38C802DC48B835A9BC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151584.roa Signing time: Mon 09 Sep 2024 07:02:39 +0000 ROA not before: Mon 09 Sep 2024 06:57:39 +0000 ROA not after: Mon 08 Sep 2025 07:02:39 +0000 asID: 151584 IP address blocks: 103.216.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:87:17:dd:e5:36:e4:20:42:aa:7b:38:c8:02:dc:48:b8:35:a9:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 9 06:57:39 2024 GMT Not After : Sep 8 07:02:39 2025 GMT Subject: CN=A5FB6DA444DB37ECBFD65027AEF364BF1E49B601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:11:91:a5:be:26:d2:f1:ff:f2:39:22:15:49: 68:a4:ca:2c:0c:3f:89:aa:39:2d:18:40:47:71:60: e0:6b:6c:10:48:99:bd:52:92:47:23:11:b8:a8:14: 4a:2f:4a:1f:f2:62:4d:1a:75:cb:97:5b:59:f9:76: 70:e9:d9:a5:d1:3c:27:64:ca:bc:d0:45:fc:48:a5: 6d:ba:03:eb:7f:2b:86:c4:c8:23:6e:44:5c:0f:75: 76:d3:68:d1:90:07:ae:91:56:22:60:7a:bd:44:30: 17:0a:12:f2:4a:f1:2d:8f:05:10:bd:1e:ec:1e:ba: d5:d6:18:0e:69:c3:a4:74:05:89:62:c5:ed:9d:46: 82:6d:7c:f5:72:d3:25:c7:ed:c2:d0:80:66:05:7c: 97:02:92:00:5e:c6:07:34:e2:fb:fc:2f:ae:15:0a: 9f:49:21:1e:81:9f:d1:57:d7:ae:f9:da:1f:8f:d5: 71:71:52:f6:4e:d8:e7:91:4d:c8:dd:d7:d5:a6:a7: a3:f0:12:8e:ab:ed:0c:13:ef:d4:80:28:e7:b1:f1: a5:58:12:24:61:62:b9:bb:53:0d:bf:55:5e:cd:7c: 9e:d3:3b:f1:7a:cc:7b:a6:b4:4f:d9:89:fe:d0:91: 79:82:9e:f1:3a:90:9e:d3:f4:cc:51:42:1a:ec:1b: c1:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:FB:6D:A4:44:DB:37:EC:BF:D6:50:27:AE:F3:64:BF:1E:49:B6:01 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151584.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.216.106.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:d6:37:9f:aa:6a:5c:3f:b4:d3:31:dd:28:a8:db:3e:1a:86: da:24:9f:09:ac:c2:05:31:5d:ba:59:75:f2:9e:e6:34:bc:b6: 02:d1:ad:52:7e:6a:a0:dc:38:b4:52:14:66:d7:dd:ae:0a:85: ed:52:47:e9:8f:a9:5c:ee:01:22:41:5d:67:1c:2f:0f:70:cb: 3e:87:34:ae:c4:6f:83:6b:86:c8:c6:b0:d0:42:af:5c:86:ab: a3:66:4a:9d:96:f3:92:18:0a:34:71:57:a2:4f:75:69:bd:df: a5:7e:9c:de:15:77:5e:29:31:cd:42:e0:74:74:bc:f9:af:e0: a3:b0:1d:5f:4e:40:e3:79:29:b8:73:db:49:25:f9:0d:37:7a: 1c:60:89:af:a2:13:c4:29:89:15:ba:72:d8:08:ed:9b:c0:f9: 98:e2:ca:69:78:28:c4:e4:bd:2a:b3:d5:10:c5:90:1d:74:fd: 1c:2b:01:10:70:d3:c3:ad:2d:32:a8:1d:fe:9a:44:50:07:03: 81:6e:f8:84:d9:98:00:4f:d6:b5:60:00:2f:18:ac:df:6d:1c: 65:d4:c1:c0:93:e9:66:2b:a7:e2:33:10:2e:6b:6b:9f:ad:3f: 42:0f:a9:30:d7:73:e8:5d:68:dc:56:42:e8:5f:6d:34:48:96: 0d:11:47:27 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUF4cX3eU25CBCqns4yALcSLg1qbwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkwOTA2NTczOVoX DTI1MDkwODA3MDIzOVowMzExMC8GA1UEAxMoQTVGQjZEQTQ0NERCMzdFQ0JGRDY1 MDI3QUVGMzY0QkYxRTQ5QjYwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANsRkaW+JtLx//I5IhVJaKTKLAw/iao5LRhAR3Fg4GtsEEiZvVKSRyMRuKgU Si9KH/JiTRp1y5dbWfl2cOnZpdE8J2TKvNBF/EilbboD638rhsTII25EXA91dtNo 0ZAHrpFWImB6vUQwFwoS8krxLY8FEL0e7B661dYYDmnDpHQFiWLF7Z1Ggm189XLT JcftwtCAZgV8lwKSAF7GBzTi+/wvrhUKn0khHoGf0VfXrvnaH4/VcXFS9k7Y55FN yN3X1aano/ASjqvtDBPv1IAo57HxpVgSJGFiubtTDb9VXs18ntM78XrMe6a0T9mJ /tCReYKe8TqQntP0zFFCGuwbweMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSl+22k RNs37L/WUCeu82S/Hkm2ATAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU4NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfYajANBgkqhkiG9w0BAQsFAAOCAQEAGtY3n6pqXD+00zHdKKjb PhqG2iSfCazCBTFdull18p7mNLy2AtGtUn5qoNw4tFIUZtfdrgqF7VJH6Y+pXO4B IkFdZxwvD3DLPoc0rsRvg2uGyMaw0EKvXIaro2ZKnZbzkhgKNHFXok91ab3fpX6c 3hV3XikxzULgdHS8+a/go7AdX05A43kpuHPbSSX5DTd6HGCJr6ITxCmJFbpy2Ajt m8D5mOLKaXgoxOS9KrPVEMWQHXT9HCsBEHDTw60tMqgd/ppEUAcDgW74hNmYAE/W tWAALxis320cZdTBwJPpZiun4jMQLmtrn60/Qg+pMNdz6F1o3FZC6F9tNEiWDRFH Jw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:49 2024 by rpki-client on console-ams.rpki-client.org