$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151999.roa File: AS151999.roa (raw, json) Hash identifier: yGY/D1EkXl4ASCstzfgWik+spPIexVP6owApuNIyVjQ= Subject key identifier: B0:29:75:F4:04:BD:0D:1C:7B:64:C7:90:81:80:54:8D:6A:69:7B:2A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 551728BF804062EE4BC0CF3C49BB12FCA12C7BFE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151999.roa Signing time: Thu 17 Oct 2024 05:00:00 +0000 ROA not before: Thu 17 Oct 2024 04:55:00 +0000 ROA not after: Thu 16 Oct 2025 05:00:00 +0000 asID: 151999 IP address blocks: 43.250.182.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:17:28:bf:80:40:62:ee:4b:c0:cf:3c:49:bb:12:fc:a1:2c:7b:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 17 04:55:00 2024 GMT Not After : Oct 16 05:00:00 2025 GMT Subject: CN=B02975F404BD0D1C7B64C7908180548D6A697B2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a7:ae:1c:4d:2e:dc:c5:db:84:1a:c5:75:db: 15:3d:f2:01:57:6f:4d:2d:b0:ca:33:db:ba:2d:d7: 36:3c:5c:ec:08:b6:ab:6a:99:0c:41:70:01:f8:3a: d9:67:33:4e:3f:81:d9:3d:a3:7a:8d:93:e4:85:c7: 74:a0:72:2a:b0:d0:54:c9:b7:23:95:da:e6:d8:60: 12:2b:3d:53:22:fa:ed:88:83:20:8d:4e:f5:7d:34: 19:6c:5e:27:93:8f:c7:3b:90:a8:74:32:cf:c4:f9: c1:e9:e7:02:f5:a0:97:27:53:43:1b:13:65:9b:46: f9:24:7e:9d:33:58:20:9f:2f:df:fe:56:d7:4b:8c: b5:af:c8:d7:48:1a:a9:da:2b:92:6e:0c:b9:50:08: 1e:80:d4:5b:1b:7f:d2:c6:94:3a:98:ab:32:5c:62: b9:6f:10:ec:a6:70:ae:3e:57:77:5a:f0:37:13:9d: a9:66:55:ec:8e:e2:31:21:2d:cf:fd:e0:0a:01:77: 26:4f:bc:9b:28:22:62:de:5e:a9:ee:a9:02:5d:e9: a2:1f:a2:1c:01:cb:cd:77:0f:25:65:e5:36:0b:3f: 8b:71:fd:13:de:50:5e:93:e6:0d:3e:89:66:a6:da: 7c:d1:0a:63:34:c2:f2:56:e9:16:ec:99:3d:70:29: 00:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:29:75:F4:04:BD:0D:1C:7B:64:C7:90:81:80:54:8D:6A:69:7B:2A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151999.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.250.182.0/23 Signature Algorithm: sha256WithRSAEncryption 13:29:21:02:ab:a6:c9:5f:39:45:ac:39:33:5e:dd:37:fd:8f: 91:44:04:1e:6c:cd:8e:83:2d:35:89:62:3e:6d:be:59:8d:a2: 72:72:32:9f:a8:a2:df:a0:7d:63:89:7a:8f:7e:d2:97:c4:ef: 6b:fb:85:6f:61:21:80:e0:f9:67:4a:9e:55:16:31:4c:8e:70: d5:45:90:64:5d:6a:ac:a1:32:9c:72:02:f1:f0:bb:80:c0:48: ba:26:cd:7f:07:b2:f1:3a:6b:7a:89:e1:e2:6b:8a:ec:0c:78: 79:55:52:d2:89:cc:26:f1:3c:5c:c6:f0:a3:c0:63:09:b6:db: 84:49:64:07:c7:74:e1:8f:6a:86:91:90:b7:32:a9:af:93:7b: 7e:ac:6f:8f:89:2e:54:6d:36:3b:bf:75:80:f2:5b:36:2f:da: 50:c9:a8:7b:dd:3e:b6:70:4b:58:e9:df:69:90:98:9d:6c:60: 91:8a:8e:59:1b:10:8f:91:9f:c6:ec:b1:db:ba:1d:7e:e2:2a: 5c:e0:8d:b5:81:9b:86:eb:6f:f6:d4:57:a7:52:11:a0:cd:f1: 3f:8c:1e:e8:70:8e:49:9d:59:de:5e:21:b1:45:89:89:27:03: 0f:ba:dd:02:99:2d:ac:ea:8a:64:89:77:37:dc:37:f5:c9:f4: bb:59:74:9d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUVRcov4BAYu5LwM88SbsS/KEse/4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxNzA0NTUwMFoX DTI1MTAxNjA1MDAwMFowMzExMC8GA1UEAxMoQjAyOTc1RjQwNEJEMEQxQzdCNjRD NzkwODE4MDU0OEQ2QTY5N0IyQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN2nrhxNLtzF24QaxXXbFT3yAVdvTS2wyjPbui3XNjxc7Ai2q2qZDEFwAfg6 2WczTj+B2T2jeo2T5IXHdKByKrDQVMm3I5Xa5thgEis9UyL67YiDII1O9X00GWxe J5OPxzuQqHQyz8T5wennAvWglydTQxsTZZtG+SR+nTNYIJ8v3/5W10uMta/I10ga qdorkm4MuVAIHoDUWxt/0saUOpirMlxiuW8Q7KZwrj5Xd1rwNxOdqWZV7I7iMSEt z/3gCgF3Jk+8mygiYt5eqe6pAl3poh+iHAHLzXcPJWXlNgs/i3H9E95QXpPmDT6J ZqbafNEKYzTC8lbpFuyZPXApADsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSwKXX0 BL0NHHtkx5CBgFSNaml7KjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTk5OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEASv6tjANBgkqhkiG9w0BAQsFAAOCAQEAEykhAqumyV85Raw5M17d N/2PkUQEHmzNjoMtNYliPm2+WY2icnIyn6ii36B9Y4l6j37Sl8Tva/uFb2EhgOD5 Z0qeVRYxTI5w1UWQZF1qrKEynHIC8fC7gMBIuibNfwey8Tpreonh4muK7Ax4eVVS 0onMJvE8XMbwo8BjCbbbhElkB8d04Y9qhpGQtzKpr5N7fqxvj4kuVG02O791gPJb Ni/aUMmoe90+tnBLWOnfaZCYnWxgkYqOWRsQj5Gfxuyx27odfuIqXOCNtYGbhutv 9tRXp1IRoM3xP4we6HCOSZ1Z3l4hsUWJiScDD7rdApktrOqKZIl3N9w39cn0u1l0 nQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:57 2024 by rpki-client on console-fra.rpki-client.org