$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151597.roa File: AS151597.roa (raw, json) Hash identifier: HQHh0KBPT8AU1vCQtN+MbSygAl4laru5uBWYXKQOx74= Subject key identifier: E1:07:1B:26:B0:52:97:4D:2D:E6:CB:7C:C2:6F:1E:A3:3B:4C:75:D9 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0F45B556C2A025C6E9CDD39026A4D80FB4CEEC09 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151597.roa Signing time: Mon 16 Sep 2024 08:00:00 +0000 ROA not before: Mon 16 Sep 2024 07:55:00 +0000 ROA not after: Mon 15 Sep 2025 08:00:00 +0000 asID: 151597 IP address blocks: 103.254.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:45:b5:56:c2:a0:25:c6:e9:cd:d3:90:26:a4:d8:0f:b4:ce:ec:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 16 07:55:00 2024 GMT Not After : Sep 15 08:00:00 2025 GMT Subject: CN=E1071B26B052974D2DE6CB7CC26F1EA33B4C75D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a7:74:c9:61:29:ac:1e:f9:89:e7:17:95:f9: d4:1a:e0:6a:d6:e4:e4:86:85:74:df:32:24:72:52: bc:cb:21:a8:ee:9e:7d:8b:9c:d5:e5:fd:40:86:e5: f0:38:20:c9:ee:fb:e8:e3:50:1b:33:8d:3a:2d:d3: a4:e6:32:42:3a:68:b2:e2:8b:a0:62:3b:8a:b1:3f: f7:95:8f:57:16:a2:af:cc:a3:d1:51:fc:e5:57:7c: f5:e8:e6:85:89:3f:49:cd:35:6f:f4:c9:22:52:67: 23:7b:c8:88:21:5f:30:dd:2f:81:d0:f6:5e:9b:85: b6:56:3b:01:f0:82:05:0b:0e:05:27:90:1d:7c:8d: 57:a3:da:08:27:15:af:fa:2c:e2:db:c6:68:ae:57: 55:e5:97:d6:4f:c1:83:9c:0d:37:ed:2b:a6:54:ce: 44:7b:7a:88:7d:0a:64:6b:95:ba:40:3d:dd:0f:1e: c8:b0:7b:13:c5:84:da:34:be:02:4e:e5:cb:5c:cb: cb:25:e2:d4:fb:24:f0:14:c6:ce:a7:33:55:6e:8c: fb:55:e4:b6:78:96:10:2e:2e:ff:02:cb:c1:49:48: 3d:ad:10:ea:e3:b8:74:77:4e:fe:69:a5:79:60:37: 26:6d:62:4c:30:53:49:bc:c8:7b:b2:94:40:73:b6: 2b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:07:1B:26:B0:52:97:4D:2D:E6:CB:7C:C2:6F:1E:A3:3B:4C:75:D9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151597.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.197.0/24 Signature Algorithm: sha256WithRSAEncryption 90:91:e9:e7:af:f3:a1:f4:a3:03:9a:27:ba:91:e3:74:f6:2a: e4:98:5c:95:80:b9:5a:a8:02:96:ff:55:94:5c:3f:63:31:3c: 8d:a8:61:6b:38:67:94:8b:05:27:4e:d3:29:66:e5:78:2d:8f: 87:b3:10:d4:9c:26:a3:b7:b4:c0:51:aa:15:d2:c2:fe:69:e8: 9f:d8:d8:5e:cd:83:b7:51:85:35:6f:e6:ec:52:8d:bb:e4:02: c7:d9:f0:40:b8:a5:e5:67:b1:90:32:ab:82:bb:dc:2a:d3:d3: 6d:79:2e:1e:a8:9b:6f:93:af:2d:89:19:8b:f7:21:26:a9:46: 70:b5:ea:72:96:f7:ca:4a:05:bb:bf:23:9d:9c:0c:cd:a6:9d: 4d:b4:d2:0a:cf:0d:1a:0b:da:7e:10:29:38:2a:63:e9:95:e6: 3b:79:bf:aa:ec:7e:e3:0a:79:60:df:d8:ec:ce:a0:be:6f:d7: 3b:92:a0:73:04:26:cf:92:f8:63:5d:ef:9f:25:81:d4:1e:09: 9e:6c:7a:a6:ea:cf:ec:45:a6:e5:a6:4f:0b:5e:b1:a4:29:76: f2:aa:8a:f4:5b:04:4a:d0:29:5d:cb:7a:3e:b9:08:1e:73:50: 0f:63:e6:7a:63:1f:91:ed:31:d5:79:1a:fd:d5:42:97:c5:d3: 54:12:8b:70 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUD0W1VsKgJcbpzdOQJqTYD7TO7AkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkxNjA3NTUwMFoX DTI1MDkxNTA4MDAwMFowMzExMC8GA1UEAxMoRTEwNzFCMjZCMDUyOTc0RDJERTZD QjdDQzI2RjFFQTMzQjRDNzVEOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2ndMlhKawe+YnnF5X51Brgatbk5IaFdN8yJHJSvMshqO6efYuc1eX9QIbl 8Dggye776ONQGzONOi3TpOYyQjposuKLoGI7irE/95WPVxair8yj0VH85Vd89ejm hYk/Sc01b/TJIlJnI3vIiCFfMN0vgdD2XpuFtlY7AfCCBQsOBSeQHXyNV6PaCCcV r/os4tvGaK5XVeWX1k/Bg5wNN+0rplTORHt6iH0KZGuVukA93Q8eyLB7E8WE2jS+ Ak7ly1zLyyXi1Psk8BTGzqczVW6M+1XktniWEC4u/wLLwUlIPa0Q6uO4dHdO/mml eWA3Jm1iTDBTSbzIe7KUQHO2K00CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBThBxsm sFKXTS3my3zCbx6jO0x12TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU5Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGf+xTANBgkqhkiG9w0BAQsFAAOCAQEAkJHp56/zofSjA5onupHj dPYq5JhclYC5WqgClv9VlFw/YzE8jahhazhnlIsFJ07TKWbleC2Ph7MQ1Jwmo7e0 wFGqFdLC/mnon9jYXs2Dt1GFNW/m7FKNu+QCx9nwQLil5WexkDKrgrvcKtPTbXku Hqibb5OvLYkZi/chJqlGcLXqcpb3ykoFu78jnZwMzaadTbTSCs8NGgvafhApOCpj 6ZXmO3m/qux+4wp5YN/Y7M6gvm/XO5KgcwQmz5L4Y13vnyWB1B4Jnmx6purP7EWm 5aZPC16xpCl28qqK9FsEStApXct6PrkIHnNQD2PmemMfke0x1Xka/dVCl8XTVBKL cA== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:30 2024 by rpki-client on console-ams.rpki-client.org