$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151592.roa File: AS151592.roa (raw, json) Hash identifier: x9nfqc4u630l646HhiihrMtMQU9uhX6xJLbgO7yyBYk= Subject key identifier: A6:E0:F4:DD:6E:19:2D:D1:41:D6:1F:AA:F0:DB:02:73:A5:A3:44:24 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5CF4FEE521E934E5530C3816DEE0D0B249D326FB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151592.roa Signing time: Tue 17 Sep 2024 03:00:00 +0000 ROA not before: Tue 17 Sep 2024 02:55:00 +0000 ROA not after: Tue 16 Sep 2025 03:00:00 +0000 asID: 151592 IP address blocks: 2001:df3:240::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:f4:fe:e5:21:e9:34:e5:53:0c:38:16:de:e0:d0:b2:49:d3:26:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 17 02:55:00 2024 GMT Not After : Sep 16 03:00:00 2025 GMT Subject: CN=A6E0F4DD6E192DD141D61FAAF0DB0273A5A34424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6a:8a:79:c6:7f:66:96:5b:fc:fc:95:a3:18: 08:66:69:7d:a9:d3:4f:71:43:f0:bf:58:81:8e:e4: e3:4d:67:54:81:42:a8:9d:f3:71:2f:fe:c8:34:a0: 11:21:5c:48:eb:09:57:50:9c:3f:51:8c:b9:b9:0e: 18:3d:b8:ab:30:0f:9c:4e:b4:c3:c5:29:a0:ff:69: f9:8e:b0:35:c8:97:54:03:ae:9b:b3:c1:3b:10:ea: 6a:3f:e5:17:c4:77:dd:de:d5:62:33:40:f9:57:4e: af:5e:e6:04:4a:6d:90:6f:92:b0:fa:dd:34:a5:2b: 35:52:bf:a2:21:e3:06:08:8a:b9:f5:aa:96:92:7d: 9a:5d:1e:5e:73:39:3c:05:fc:fb:82:1b:05:24:01: ab:41:d6:15:73:b3:4c:59:94:4a:1d:ca:2e:bb:ca: 0c:bf:5e:e7:2b:50:11:b8:53:de:72:23:c7:75:5f: 60:fa:d3:68:58:24:b7:c9:a4:1f:f2:d7:86:d3:9b: 07:4a:51:39:90:0f:b5:7c:50:e5:59:37:79:a0:fb: 95:05:7d:c5:af:b4:b9:6f:9a:4c:f0:f3:b6:7a:50: 52:ee:0f:18:e3:17:05:38:58:a2:c6:f9:18:21:3a: 13:56:18:5a:05:e0:ad:19:d7:90:1d:f5:35:fe:a7: 25:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:E0:F4:DD:6E:19:2D:D1:41:D6:1F:AA:F0:DB:02:73:A5:A3:44:24 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151592.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:240::/48 Signature Algorithm: sha256WithRSAEncryption 17:6a:52:83:f6:8b:d6:22:32:13:38:9d:91:54:91:d7:60:0d: 7b:f3:7c:9e:22:22:f4:ee:26:dd:82:e3:d8:e1:62:98:7e:6e: 37:f3:2f:c0:63:ba:bf:e5:5d:64:65:65:18:e2:ac:37:ff:cf: f4:92:2f:64:6c:fb:f0:91:08:9e:ae:87:b8:e0:a7:9a:be:46: 0e:55:98:c6:19:0c:2e:b9:78:47:e8:08:67:27:38:0c:56:53: 1d:45:da:f7:4c:77:f2:cb:b7:e7:f2:8e:98:21:c7:c6:02:f6: 97:c5:b3:b8:2d:26:84:17:5a:72:4d:c2:f7:64:03:b6:5e:bf: 4d:6b:8c:5b:f1:ed:7b:a8:4a:3e:bf:b7:e7:0f:50:09:c9:f0: f9:4c:f6:a6:95:9d:1b:c0:10:60:1b:9b:00:82:c1:aa:91:07: a4:66:ca:77:43:0e:87:79:17:d3:21:97:83:3b:85:11:eb:40: 30:03:a5:5e:d7:cc:12:70:94:c9:82:bf:19:a6:cd:88:3b:a2: bc:2c:ac:69:7f:73:de:95:f2:b9:88:d4:d4:aa:1b:46:81:d1: cb:ca:21:6a:61:0c:6b:21:49:6b:a4:b9:4b:53:6e:19:ed:1c: 46:70:ae:63:2b:98:97:1d:f2:ed:03:da:5a:05:88:32:82:54: 09:aa:8d:34 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUXPT+5SHpNOVTDDgW3uDQsknTJvswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkxNzAyNTUwMFoX DTI1MDkxNjAzMDAwMFowMzExMC8GA1UEAxMoQTZFMEY0REQ2RTE5MkREMTQxRDYx RkFBRjBEQjAyNzNBNUEzNDQyNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMpqinnGf2aWW/z8laMYCGZpfanTT3FD8L9YgY7k401nVIFCqJ3zcS/+yDSg ESFcSOsJV1CcP1GMubkOGD24qzAPnE60w8UpoP9p+Y6wNciXVAOum7PBOxDqaj/l F8R33d7VYjNA+VdOr17mBEptkG+SsPrdNKUrNVK/oiHjBgiKufWqlpJ9ml0eXnM5 PAX8+4IbBSQBq0HWFXOzTFmUSh3KLrvKDL9e5ytQEbhT3nIjx3VfYPrTaFgkt8mk H/LXhtObB0pROZAPtXxQ5Vk3eaD7lQV9xa+0uW+aTPDztnpQUu4PGOMXBThYosb5 GCE6E1YYWgXgrRnXkB31Nf6nJSsCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSm4PTd bhkt0UHWH6rw2wJzpaNEJDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU5Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfMCQDANBgkqhkiG9w0BAQsFAAOCAQEAF2pSg/aL1iIyEzid kVSR12ANe/N8niIi9O4m3YLj2OFimH5uN/MvwGO6v+VdZGVlGOKsN//P9JIvZGz7 8JEInq6HuOCnmr5GDlWYxhkMLrl4R+gIZyc4DFZTHUXa90x38su35/KOmCHHxgL2 l8WzuC0mhBdack3C92QDtl6/TWuMW/Hte6hKPr+35w9QCcnw+Uz2ppWdG8AQYBub AILBqpEHpGbKd0MOh3kX0yGXgzuFEetAMAOlXtfMEnCUyYK/GabNiDuivCysaX9z 3pXyuYjU1KobRoHRy8ohamEMayFJa6S5S1NuGe0cRnCuYyuYlx3y7QPaWgWIMoJU CaqNNA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org