$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151591.roa File: AS151591.roa (raw, json) Hash identifier: 8qoIjRC3id4wk+TQY5KbEyEQxEOaysUoemrwdM3vc84= Subject key identifier: B9:5F:89:3E:C9:F8:F4:9D:EC:3C:BD:5E:17:B1:D6:DB:16:20:53:4E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0D457FE4D769B72B25E71A788FEDD40F4C0C7DB2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151591.roa Signing time: Mon 18 Nov 2024 02:00:00 +0000 ROA not before: Mon 18 Nov 2024 01:55:00 +0000 ROA not after: Mon 17 Nov 2025 02:00:00 +0000 asID: 151591 IP address blocks: 103.250.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:45:7f:e4:d7:69:b7:2b:25:e7:1a:78:8f:ed:d4:0f:4c:0c:7d:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 18 01:55:00 2024 GMT Not After : Nov 17 02:00:00 2025 GMT Subject: CN=B95F893EC9F8F49DEC3CBD5E17B1D6DB1620534E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:42:98:dc:9f:92:54:c8:bd:db:bf:f3:9a:e7: 1f:97:c4:68:6b:ca:7d:75:3a:c2:05:1b:d5:4f:fa: dd:46:43:7d:f0:64:cc:95:3f:81:20:7b:5c:ff:d6: d5:19:34:c2:89:d0:21:05:c7:33:65:dc:d9:e4:01: fb:a4:d6:5f:7e:c8:cc:aa:b6:0d:d3:6d:a4:91:b8: bd:6b:83:af:4f:51:a4:2b:b1:e1:93:f8:6e:a8:d7: 47:2c:29:ed:45:3c:5b:90:ea:38:b6:f3:41:ec:88: 93:d2:6d:b8:49:3f:01:1f:b0:83:db:e3:95:a0:46: 51:9a:e4:92:69:4a:76:55:43:eb:83:d5:c7:44:19: fa:0d:0e:aa:01:bd:66:b5:0b:bc:ce:9c:b2:c6:bd: ea:40:a6:09:69:09:1b:75:9b:ea:cf:eb:f2:9c:f3: 42:ed:ba:24:3d:33:16:fd:c5:cf:88:ab:12:7e:5a: 74:58:5d:50:e1:89:a2:8c:88:ac:26:3f:d1:60:08: 98:30:d8:6b:42:ba:fd:f3:36:c5:77:43:4c:29:36: d3:f3:63:2e:b7:0d:ba:01:c7:c8:da:54:ac:20:ce: 50:c9:c1:b8:7c:93:ff:b0:a4:6f:cd:a0:a1:5c:5e: 1e:84:69:c5:d4:25:3b:8e:60:38:ce:fa:98:4f:84: f3:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:5F:89:3E:C9:F8:F4:9D:EC:3C:BD:5E:17:B1:D6:DB:16:20:53:4E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151591.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.250.12.0/23 Signature Algorithm: sha256WithRSAEncryption 43:2f:4b:7d:69:d9:a5:4d:a3:0d:d7:3c:64:32:87:21:27:fb: 38:fa:7a:6c:09:3b:18:06:a3:e8:c5:93:d6:d0:1e:26:a5:06: a1:20:d0:8e:cc:1e:3d:28:87:bb:47:75:bd:00:6a:05:33:c3: 09:6f:ed:a7:92:8b:c4:c4:b6:86:4f:93:09:0d:e9:d7:c8:c6: bd:c8:22:88:4f:22:2b:d4:85:dd:b9:fd:8c:64:bc:dc:7c:97: 00:30:14:a0:22:27:85:36:4e:51:76:d2:e2:c7:16:96:7b:65: 80:0e:3a:6a:e3:68:47:82:b3:0c:d8:7b:12:a0:98:41:f6:f3: c9:d9:ee:3a:0c:6a:50:19:fb:90:6d:16:a3:93:4d:32:8f:01: 2d:e3:64:ee:39:e6:02:f0:3c:d5:71:79:d3:a1:e2:67:93:8f: 33:6f:88:a2:10:33:11:61:03:06:d3:f9:fb:05:36:db:e7:fe: 55:39:56:c2:23:8e:8c:f4:02:76:eb:15:c2:db:7f:0b:c0:87: 38:26:16:06:d9:1c:dc:f1:e9:12:3f:ff:cc:c3:02:fd:01:ba: 6f:df:88:bd:6d:96:96:81:12:53:13:50:8c:93:c7:20:c6:82: a8:4e:cf:53:db:64:0a:56:0e:4a:af:bf:ef:6f:40:be:80:61: e4:40:e3:de -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUDUV/5Ndptysl5xp4j+3UD0wMfbIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTExODAxNTUwMFoX DTI1MTExNzAyMDAwMFowMzExMC8GA1UEAxMoQjk1Rjg5M0VDOUY4RjQ5REVDM0NC RDVFMTdCMUQ2REIxNjIwNTM0RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKdCmNyfklTIvdu/85rnH5fEaGvKfXU6wgUb1U/63UZDffBkzJU/gSB7XP/W 1Rk0wonQIQXHM2Xc2eQB+6TWX37IzKq2DdNtpJG4vWuDr09RpCux4ZP4bqjXRywp 7UU8W5DqOLbzQeyIk9JtuEk/AR+wg9vjlaBGUZrkkmlKdlVD64PVx0QZ+g0OqgG9 ZrULvM6cssa96kCmCWkJG3Wb6s/r8pzzQu26JD0zFv3Fz4irEn5adFhdUOGJooyI rCY/0WAImDDYa0K6/fM2xXdDTCk20/NjLrcNugHHyNpUrCDOUMnBuHyT/7Ckb82g oVxeHoRpxdQlO45gOM76mE+E88cCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS5X4k+ yfj0new8vV4XsdbbFiBTTjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU5MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWf6DDANBgkqhkiG9w0BAQsFAAOCAQEAQy9LfWnZpU2jDdc8ZDKH ISf7OPp6bAk7GAaj6MWT1tAeJqUGoSDQjswePSiHu0d1vQBqBTPDCW/tp5KLxMS2 hk+TCQ3p18jGvcgiiE8iK9SF3bn9jGS83HyXADAUoCInhTZOUXbS4scWlntlgA46 auNoR4KzDNh7EqCYQfbzydnuOgxqUBn7kG0Wo5NNMo8BLeNk7jnmAvA81XF506Hi Z5OPM2+IohAzEWEDBtP5+wU22+f+VTlWwiOOjPQCdusVwtt/C8CHOCYWBtkc3PHp Ej//zMMC/QG6b9+IvW2WloESUxNQjJPHIMaCqE7PU9tkClYOSq+/729AvoBh5EDj 3g== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:30 2024 by rpki-client on console-ams.rpki-client.org