$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151596.roa File: AS151596.roa (raw, json) Hash identifier: s4Z4wrJBStvUEkqFJCbl951F+6/UDA85mywjAD0+srg= Subject key identifier: 4F:7F:18:44:CD:AB:17:3B:33:58:B9:74:50:82:63:21:B9:77:38:66 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4DCB0C2E1B366BCBF576F376398310C9761BAF23 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151596.roa Signing time: Tue 01 Oct 2024 08:00:00 +0000 ROA not before: Tue 01 Oct 2024 07:55:00 +0000 ROA not after: Tue 30 Sep 2025 08:00:00 +0000 asID: 151596 IP address blocks: 103.240.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:cb:0c:2e:1b:36:6b:cb:f5:76:f3:76:39:83:10:c9:76:1b:af:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 1 07:55:00 2024 GMT Not After : Sep 30 08:00:00 2025 GMT Subject: CN=4F7F1844CDAB173B3358B97450826321B9773866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c9:9a:8f:e8:ee:07:a1:72:9d:d0:a5:b9:8c: 85:75:f8:9f:cc:b2:cc:c3:75:5c:33:11:a1:39:78: 21:14:91:65:36:c4:3d:b2:48:8d:31:d0:5d:9e:80: 86:40:71:db:a1:c8:f9:d6:a2:9a:3b:1c:60:b0:9b: 51:fe:09:88:b6:c1:45:2b:ac:69:16:34:34:61:b1: e6:57:fd:d7:cb:d9:ae:26:16:d2:d3:78:aa:ba:a9: e8:bf:35:67:73:79:03:9d:03:71:6d:49:63:c3:84: 40:13:8d:f2:dd:57:15:eb:c4:8b:b0:e9:d8:35:67: 6e:38:db:74:e3:44:44:7e:21:fe:ba:b0:a8:9d:27: 05:f0:86:ab:71:0c:62:9f:1b:43:44:d9:36:d5:df: ac:57:a1:3f:f9:17:b4:3e:b9:6c:41:8c:24:ff:3f: ea:87:85:e5:8a:a4:e4:a0:42:34:2e:20:59:ab:e0: cb:8f:c6:d5:2c:c7:ed:b8:5c:d2:a1:d7:09:7e:eb: d2:9a:c4:2f:11:8a:71:d5:61:9e:65:7b:81:51:af: 29:4f:db:46:2e:2d:37:ba:43:ee:0b:da:c0:71:d2: 8b:52:c0:58:5c:57:ce:17:04:62:25:ff:7a:ac:90: 52:76:f1:9f:48:75:8a:7c:b8:a9:29:79:ce:68:44: 5e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:7F:18:44:CD:AB:17:3B:33:58:B9:74:50:82:63:21:B9:77:38:66 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151596.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.240.0.0/24 Signature Algorithm: sha256WithRSAEncryption 88:6a:87:05:d4:1b:c3:6e:a2:54:dc:dc:22:06:fd:25:8f:76: 32:cb:3d:ec:39:70:c0:2e:8d:63:27:c5:6a:c3:ab:15:6d:21: 4a:f8:45:b1:63:14:7b:d5:d9:c8:d6:84:28:2b:17:e0:41:ee: 72:8f:a6:a9:e7:a2:e1:c4:fb:ab:4d:e1:0a:8e:d2:98:dc:ef: 60:26:21:9f:30:9f:29:d8:6a:a2:b4:fa:a8:4e:76:e7:05:aa: 92:65:b7:52:14:b1:cb:d7:7d:a5:60:39:3f:b8:01:72:6f:ab: cd:dc:c1:13:21:37:8a:8f:b1:59:ca:21:bb:62:81:50:52:86: 04:0d:1a:a7:05:ba:80:a7:cf:eb:1a:ca:a0:3d:c2:d0:96:9f: cb:e3:e9:3c:c5:6b:f6:ef:75:7d:ff:eb:13:c8:cc:81:88:e4: fc:6f:8d:20:64:7d:27:dc:6f:39:5a:8b:30:54:c0:2d:cb:79: d0:88:1c:b3:97:e7:69:80:0c:4c:97:8f:de:7a:d4:98:fb:13: 7d:fd:4e:60:36:14:9a:b6:78:3f:e7:ae:75:94:e9:f4:24:1f: 8c:c0:5b:0d:4b:f8:ad:a9:69:e5:0f:1a:73:42:18:e5:e9:b0: 14:4e:e7:03:9a:b2:24:18:88:62:bc:02:57:e8:4d:24:34:5d: 1e:ee:80:85 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUTcsMLhs2a8v1dvN2OYMQyXYbryMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAwMTA3NTUwMFoX DTI1MDkzMDA4MDAwMFowMzExMC8GA1UEAxMoNEY3RjE4NDRDREFCMTczQjMzNThC OTc0NTA4MjYzMjFCOTc3Mzg2NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMjJmo/o7gehcp3QpbmMhXX4n8yyzMN1XDMRoTl4IRSRZTbEPbJIjTHQXZ6A hkBx26HI+daimjscYLCbUf4JiLbBRSusaRY0NGGx5lf918vZriYW0tN4qrqp6L81 Z3N5A50DcW1JY8OEQBON8t1XFevEi7Dp2DVnbjjbdONERH4h/rqwqJ0nBfCGq3EM Yp8bQ0TZNtXfrFehP/kXtD65bEGMJP8/6oeF5Yqk5KBCNC4gWavgy4/G1SzH7bhc 0qHXCX7r0prELxGKcdVhnmV7gVGvKU/bRi4tN7pD7gvawHHSi1LAWFxXzhcEYiX/ eqyQUnbxn0h1iny4qSl5zmhEXikCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRPfxhE zasXOzNYuXRQgmMhuXc4ZjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU5Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfwADANBgkqhkiG9w0BAQsFAAOCAQEAiGqHBdQbw26iVNzcIgb9 JY92Mss97DlwwC6NYyfFasOrFW0hSvhFsWMUe9XZyNaEKCsX4EHuco+mqeei4cT7 q03hCo7SmNzvYCYhnzCfKdhqorT6qE525wWqkmW3UhSxy9d9pWA5P7gBcm+rzdzB EyE3io+xWcohu2KBUFKGBA0apwW6gKfP6xrKoD3C0Jafy+PpPMVr9u91ff/rE8jM gYjk/G+NIGR9J9xvOVqLMFTALct50Igcs5fnaYAMTJeP3nrUmPsTff1OYDYUmrZ4 P+eudZTp9CQfjMBbDUv4ralp5Q8ac0IY5emwFE7nA5qyJBiIYrwCV+hNJDRdHu6A hQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org