$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151596.roa File: AS151596.roa (raw, json) Hash identifier: NISmL2wIM+nj+yYetXweI8bWSjrdUHx6phqQagXWy5w= Subject key identifier: 74:C4:1E:45:14:ED:66:89:34:4A:11:26:6B:69:C0:54:CD:48:29:BD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 17D7E817AAC598024410CA53AB3F3C8931028006 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151596.roa Signing time: Tue 31 Oct 2023 07:25:04 +0000 ROA not before: Tue 31 Oct 2023 07:20:04 +0000 ROA not after: Tue 29 Oct 2024 07:25:04 +0000 asID: 151596 IP address blocks: 103.240.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:d7:e8:17:aa:c5:98:02:44:10:ca:53:ab:3f:3c:89:31:02:80:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 31 07:20:04 2023 GMT Not After : Oct 29 07:25:04 2024 GMT Subject: CN=74C41E4514ED6689344A11266B69C054CD4829BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:18:08:1a:04:e5:b2:10:8b:ca:b9:c8:01:ff: a7:e5:55:48:84:d2:9f:85:82:91:13:6c:30:29:b5: 5c:17:e7:87:ea:57:3f:88:98:a1:48:1a:6a:3c:12: a0:7b:a8:a7:24:33:57:a3:27:50:bc:8a:fd:14:c7: 92:dc:bd:cd:f6:92:8f:5c:5a:3a:ad:48:7a:81:94: b6:cd:2f:c6:40:89:a9:0b:04:5f:c6:a5:ff:71:e1: 1c:a3:45:96:e3:a3:5d:f8:7f:10:e1:6a:78:41:4e: af:95:15:1a:4f:ba:0a:43:20:88:d8:21:70:29:6f: 7d:da:bd:94:7d:7d:a0:86:d3:ce:3e:1f:e2:25:43: 7d:e2:20:5c:c6:af:74:6e:35:4b:ad:c7:b4:e1:55: 12:59:a7:58:6c:c3:1f:56:3e:38:fd:d5:c4:0e:53: 99:a5:02:67:7c:96:d0:1a:1d:2a:f5:f7:ee:e9:0b: f5:fd:c8:80:20:c1:51:5a:57:5b:32:86:e6:5a:f5: 31:7a:c9:f7:2e:81:50:e5:2b:ec:b7:33:59:c4:58: 02:df:00:cf:9e:02:60:c3:88:22:0a:5a:b8:87:13: 76:86:d5:cb:75:4a:7a:49:91:3b:d5:10:ad:cb:c9: f8:64:31:e6:2f:ce:54:e8:81:c2:c4:1e:2b:dc:19: c6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:C4:1E:45:14:ED:66:89:34:4A:11:26:6B:69:C0:54:CD:48:29:BD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151596.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.240.0.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:41:e3:d1:6e:fd:c6:a7:f3:01:41:26:51:de:1a:94:c4:cc: af:0d:f9:20:35:f0:3d:4f:1b:45:bb:00:48:cd:ec:1c:a5:98: ac:e8:bd:ee:b5:b4:de:e8:21:02:09:37:aa:98:a0:02:b4:a8: 09:24:5c:7d:61:da:ee:38:5e:01:b4:11:4a:07:d8:1e:04:a5: 35:73:2a:ab:65:89:25:ad:00:51:83:4f:68:e0:af:83:56:8b: a0:88:b3:b2:1d:66:0f:47:67:11:0e:15:1a:28:f1:f1:18:db: 77:a5:a6:f3:22:4c:26:48:f3:5b:dc:0e:18:32:79:00:ee:af: ac:28:c2:62:b0:8b:19:06:fa:b8:10:6a:c0:b5:e4:67:9c:06: 52:0f:15:69:1e:a9:9c:0b:2b:13:8c:1c:39:ea:c1:bd:8d:44: 90:86:95:a8:26:80:42:df:21:01:1d:86:17:50:5a:38:d5:60: 68:10:6d:be:ee:26:8f:39:2d:0a:b7:bc:f1:ab:f2:cc:18:fa: f8:f3:0c:b0:26:c1:45:64:7e:55:c2:87:0c:f7:4a:0a:1e:16: 17:d0:fe:08:06:d6:6c:0f:cf:81:43:27:12:11:1d:e8:ec:00: 71:15:01:01:7b:27:4a:0b:92:41:ee:99:2b:34:61:77:c1:ed: 91:d5:06:8e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUF9foF6rFmAJEEMpTqz88iTECgAYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAzMTA3MjAwNFoX DTI0MTAyOTA3MjUwNFowMzExMC8GA1UEAxMoNzRDNDFFNDUxNEVENjY4OTM0NEEx MTI2NkI2OUMwNTRDRDQ4MjlCRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALsYCBoE5bIQi8q5yAH/p+VVSITSn4WCkRNsMCm1XBfnh+pXP4iYoUgaajwS oHuopyQzV6MnULyK/RTHkty9zfaSj1xaOq1IeoGUts0vxkCJqQsEX8al/3HhHKNF luOjXfh/EOFqeEFOr5UVGk+6CkMgiNghcClvfdq9lH19oIbTzj4f4iVDfeIgXMav dG41S63HtOFVElmnWGzDH1Y+OP3VxA5TmaUCZ3yW0BodKvX37ukL9f3IgCDBUVpX WzKG5lr1MXrJ9y6BUOUr7LczWcRYAt8Az54CYMOIIgpauIcTdobVy3VKekmRO9UQ rcvJ+GQx5i/OVOiBwsQeK9wZxlUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR0xB5F FO1miTRKESZracBUzUgpvTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU5Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfwADANBgkqhkiG9w0BAQsFAAOCAQEAHUHj0W79xqfzAUEmUd4a lMTMrw35IDXwPU8bRbsASM3sHKWYrOi97rW03ughAgk3qpigArSoCSRcfWHa7jhe AbQRSgfYHgSlNXMqq2WJJa0AUYNPaOCvg1aLoIizsh1mD0dnEQ4VGijx8Rjbd6Wm 8yJMJkjzW9wOGDJ5AO6vrCjCYrCLGQb6uBBqwLXkZ5wGUg8VaR6pnAsrE4wcOerB vY1EkIaVqCaAQt8hAR2GF1BaONVgaBBtvu4mjzktCre88avyzBj6+PMMsCbBRWR+ VcKHDPdKCh4WF9D+CAbWbA/PgUMnEhEd6OwAcRUBAXsnSguSQe6ZKzRhd8HtkdUG jg== -----END CERTIFICATE-----Generated at Wed May 8 05:33:22 2024 by rpki-client on console-ams.rpki-client.org