$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151585.roa File: AS151585.roa (raw, json) Hash identifier: p0tU35ZQUAcrUJvD7u5lB3SyrjLnXNx+Q5y0Rmfitl0= Subject key identifier: A6:7C:76:F7:25:D7:96:DE:70:50:01:39:C2:E4:7F:DC:E6:A9:7B:57 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 62B106CDFA2A19DCF35C179ABE37E75C35E6797C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151585.roa Signing time: Mon 14 Oct 2024 04:00:00 +0000 ROA not before: Mon 14 Oct 2024 03:55:00 +0000 ROA not after: Mon 13 Oct 2025 04:00:00 +0000 asID: 151585 IP address blocks: 103.204.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:b1:06:cd:fa:2a:19:dc:f3:5c:17:9a:be:37:e7:5c:35:e6:79:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 14 03:55:00 2024 GMT Not After : Oct 13 04:00:00 2025 GMT Subject: CN=A67C76F725D796DE70500139C2E47FDCE6A97B57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0f:7f:b9:fb:ad:14:8a:1a:86:62:67:75:e9: 66:cb:0a:6d:a3:a0:54:9f:5b:59:71:e3:c1:a0:3d: a0:ff:dd:c3:55:6b:9a:b2:17:1e:67:d8:37:fd:97: c0:6e:11:4c:e9:ec:38:ee:4d:f2:10:cd:bc:99:b6: be:29:40:ea:59:14:c4:46:74:09:f9:f8:52:11:de: 8c:f2:0b:04:3e:ee:e4:2e:e4:a5:90:0a:64:66:9b: 12:83:5e:21:46:09:34:6b:88:20:a6:d3:20:0f:7e: fb:52:f0:7a:2a:10:ec:80:cb:b3:b7:ef:3b:80:f6: 4b:7e:32:1b:5a:98:ea:15:70:3a:f6:4f:37:00:5f: 90:34:f7:49:ae:68:57:3e:aa:df:b5:a5:95:e4:38: 93:21:80:92:d1:7b:dc:fc:a8:55:37:16:a1:3f:77: 44:dd:84:08:ff:6a:36:8e:64:3c:6d:4c:cf:4b:3f: 23:11:f5:72:33:73:9a:ac:fc:92:a5:f1:b8:94:4f: 0d:26:fb:2e:8a:8e:07:58:63:1f:9c:57:02:a4:11: c4:a1:66:09:4d:16:11:19:53:f3:8d:9c:96:34:bc: 58:f0:14:35:4f:64:5a:b4:d1:74:01:f0:4b:f9:d0: 38:04:8b:7c:d6:c9:0f:5f:06:ba:f4:19:d0:dd:c5: a3:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:7C:76:F7:25:D7:96:DE:70:50:01:39:C2:E4:7F:DC:E6:A9:7B:57 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151585.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.204.46.0/23 Signature Algorithm: sha256WithRSAEncryption 26:b5:9f:82:9e:de:7c:1c:62:cb:34:75:41:cf:99:ec:03:a5: fa:c8:15:af:3c:e0:92:0b:28:13:ba:82:f7:6a:a5:26:83:46: 4a:76:b1:e6:92:2b:51:3c:8a:d2:16:84:67:1e:ee:24:cb:7c: 91:36:b2:8e:db:54:6d:2e:ab:72:e6:b2:db:62:f9:ff:0b:28: c3:d2:29:6a:df:20:06:66:63:d9:a0:b6:b0:4a:4f:21:3b:40: 21:21:15:2a:a4:c4:04:9b:99:59:8a:b6:eb:1f:93:f9:d4:88: dd:71:e5:80:ee:ae:01:e7:61:ee:cc:af:8f:24:52:b4:c7:82: 19:a9:51:82:20:d1:3c:e0:7a:c3:0d:72:45:80:9f:10:47:24: 03:9f:b0:ea:5a:9e:8b:8a:1f:0d:5a:cc:56:60:0a:4a:8d:54: 2d:33:30:9f:4d:fd:1d:8b:2f:70:d9:b7:57:18:e8:6e:83:89: ab:ac:e5:64:d9:37:86:87:6f:82:a4:6f:62:7d:03:e6:6b:03: 4b:42:bf:0b:18:24:e1:3c:8a:f1:fa:80:88:4c:cc:80:c2:e6: 8f:7c:cc:0e:89:5e:b0:1a:91:9a:e6:75:9f:db:95:39:49:79: 86:88:89:c5:8e:6e:c7:62:2a:13:cd:0c:bf:ec:da:24:db:fa: 3c:ed:2a:ec -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUYrEGzfoqGdzzXBeavjfnXDXmeXwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxNDAzNTUwMFoX DTI1MTAxMzA0MDAwMFowMzExMC8GA1UEAxMoQTY3Qzc2RjcyNUQ3OTZERTcwNTAw MTM5QzJFNDdGRENFNkE5N0I1NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMIPf7n7rRSKGoZiZ3XpZssKbaOgVJ9bWXHjwaA9oP/dw1VrmrIXHmfYN/2X wG4RTOnsOO5N8hDNvJm2vilA6lkUxEZ0Cfn4UhHejPILBD7u5C7kpZAKZGabEoNe IUYJNGuIIKbTIA9++1LweioQ7IDLs7fvO4D2S34yG1qY6hVwOvZPNwBfkDT3Sa5o Vz6q37WlleQ4kyGAktF73PyoVTcWoT93RN2ECP9qNo5kPG1Mz0s/IxH1cjNzmqz8 kqXxuJRPDSb7LoqOB1hjH5xXAqQRxKFmCU0WERlT842cljS8WPAUNU9kWrTRdAHw S/nQOASLfNbJD18GuvQZ0N3FozkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSmfHb3 JdeW3nBQATnC5H/c5ql7VzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU4NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfMLjANBgkqhkiG9w0BAQsFAAOCAQEAJrWfgp7efBxiyzR1Qc+Z 7AOl+sgVrzzgkgsoE7qC92qlJoNGSnax5pIrUTyK0haEZx7uJMt8kTayjttUbS6r cuay22L5/wsow9Ipat8gBmZj2aC2sEpPITtAISEVKqTEBJuZWYq26x+T+dSI3XHl gO6uAedh7syvjyRStMeCGalRgiDRPOB6ww1yRYCfEEckA5+w6lqei4ofDVrMVmAK So1ULTMwn039HYsvcNm3VxjoboOJq6zlZNk3hodvgqRvYn0D5msDS0K/Cxgk4TyK 8fqAiEzMgMLmj3zMDolesBqRmuZ1n9uVOUl5hoiJxY5ux2IqE80Mv+zaJNv6PO0q 7A== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:30 2024 by rpki-client on console-ams.rpki-client.org