$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151590.roa File: AS151590.roa (raw, json) Hash identifier: +G4URG8QO2SyNgTYo1eaM0saq9UXt+EWPHY5KAPiNPM= Subject key identifier: C4:32:06:63:34:B5:68:15:A9:3E:25:69:97:D5:F7:41:4D:62:08:02 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 05E1DA281AD81E55792C13C69A58D2A19727D3F1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151590.roa Signing time: Fri 20 Sep 2024 09:00:00 +0000 ROA not before: Fri 20 Sep 2024 08:55:00 +0000 ROA not after: Fri 19 Sep 2025 09:00:00 +0000 asID: 151590 IP address blocks: 103.250.14.0/24 maxlen: 24 103.250.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:e1:da:28:1a:d8:1e:55:79:2c:13:c6:9a:58:d2:a1:97:27:d3:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 20 08:55:00 2024 GMT Not After : Sep 19 09:00:00 2025 GMT Subject: CN=C432066334B56815A93E256997D5F7414D620802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c0:71:ad:9a:d8:06:c8:34:2a:c6:b9:68:cf: 09:1f:c7:30:31:d8:b1:d4:2c:8e:56:22:29:31:8a: bc:b1:f1:9b:ff:f9:dc:6a:d8:d5:67:df:ab:4e:95: c9:61:3a:22:3d:4f:a7:ff:27:42:a7:87:59:fb:63: a0:be:ec:9c:30:fd:9e:ec:db:7e:4f:b5:41:40:a7: bf:eb:b9:7e:eb:36:86:78:b8:b9:4a:3a:79:5b:3e: b6:81:93:cd:4d:11:9b:a8:fc:d1:be:69:da:14:28: d2:d7:cd:76:9c:a5:e9:ef:ce:28:f6:5e:b9:89:30: e7:d4:06:05:15:29:d7:2b:e0:dd:a0:d2:87:fc:b2: 54:76:f4:44:92:2c:2a:ce:c0:44:c8:73:b2:90:04: 44:79:f9:7c:f1:36:65:7d:64:a3:01:f7:4f:13:5b: e6:52:43:db:02:24:1f:c8:40:5b:a6:0c:b1:9d:20: 12:9a:eb:b9:08:1f:3c:64:b4:76:e0:25:42:5c:b0: b6:c5:40:cc:ac:b0:98:50:bc:0f:0c:32:fb:ef:42: 5c:6e:d0:77:fb:97:73:2a:69:82:b9:52:55:91:0c: 0c:18:46:ce:ff:74:73:18:74:c8:41:5a:ac:f8:63: 6c:a9:24:1b:ab:af:22:85:07:40:98:36:95:5a:38: 14:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:32:06:63:34:B5:68:15:A9:3E:25:69:97:D5:F7:41:4D:62:08:02 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151590.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.250.14.0/23 Signature Algorithm: sha256WithRSAEncryption 24:40:3f:b9:db:e7:90:8a:d9:11:4f:2b:da:b1:e8:0c:61:8c: f3:32:2d:d3:cb:fc:44:88:78:2f:9e:1d:c0:ff:0d:81:52:e8: 37:40:a2:cf:f1:e3:eb:77:33:59:5c:a3:9a:b3:79:6d:7a:49: b7:2c:89:d7:94:35:e1:14:c6:46:f5:16:e9:5e:b4:20:77:55: 0d:f4:a2:d5:3a:7e:8a:dd:4a:09:37:d9:24:23:3a:62:ad:ee: 2a:3a:55:96:88:60:89:44:d3:ec:f8:3b:ef:15:38:e5:09:ee: d3:4d:0b:25:bf:c3:bd:d2:62:16:35:1b:73:c2:2d:9a:09:a0: e3:5d:38:2f:be:54:d3:0a:bd:1d:2c:43:e1:a8:49:e5:d5:66: 1f:26:ae:cb:68:7c:41:dc:47:44:26:b0:fa:72:06:40:99:ea: f3:b4:0f:d2:9d:4e:39:ba:e8:54:5a:fd:eb:6e:88:db:f2:1c: 3c:37:84:4e:48:92:66:40:24:49:df:fe:ba:72:83:2e:d5:61: b5:d2:5c:d8:c0:9a:9a:9a:cb:2c:c0:79:a7:61:de:fb:4d:64: 6b:10:87:e6:3e:ad:2c:11:69:81:01:3c:96:aa:73:db:fb:72: b7:2b:1f:97:bd:06:02:d4:f7:83:27:25:27:da:88:e8:e1:60: 69:ac:27:a0 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUBeHaKBrYHlV5LBPGmljSoZcn0/EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkyMDA4NTUwMFoX DTI1MDkxOTA5MDAwMFowMzExMC8GA1UEAxMoQzQzMjA2NjMzNEI1NjgxNUE5M0Uy NTY5OTdENUY3NDE0RDYyMDgwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKLAca2a2AbINCrGuWjPCR/HMDHYsdQsjlYiKTGKvLHxm//53GrY1Wffq06V yWE6Ij1Pp/8nQqeHWftjoL7snDD9nuzbfk+1QUCnv+u5fus2hni4uUo6eVs+toGT zU0Rm6j80b5p2hQo0tfNdpyl6e/OKPZeuYkw59QGBRUp1yvg3aDSh/yyVHb0RJIs Ks7ARMhzspAERHn5fPE2ZX1kowH3TxNb5lJD2wIkH8hAW6YMsZ0gEprruQgfPGS0 duAlQlywtsVAzKywmFC8Dwwy++9CXG7Qd/uXcyppgrlSVZEMDBhGzv90cxh0yEFa rPhjbKkkG6uvIoUHQJg2lVo4FOcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTEMgZj NLVoFak+JWmX1fdBTWIIAjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU5MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWf6DjANBgkqhkiG9w0BAQsFAAOCAQEAJEA/udvnkIrZEU8r2rHo DGGM8zIt08v8RIh4L54dwP8NgVLoN0Ciz/Hj63czWVyjmrN5bXpJtyyJ15Q14RTG RvUW6V60IHdVDfSi1Tp+it1KCTfZJCM6Yq3uKjpVlohgiUTT7Pg77xU45Qnu000L Jb/DvdJiFjUbc8Itmgmg4104L75U0wq9HSxD4ahJ5dVmHyauy2h8QdxHRCaw+nIG QJnq87QP0p1OObroVFr9626I2/IcPDeETkiSZkAkSd/+unKDLtVhtdJc2MCamprL LMB5p2He+01kaxCH5j6tLBFpgQE8lqpz2/tytysfl70GAtT3gyclJ9qI6OFgaawn oA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org