$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153068.roa File: AS153068.roa (raw, json) Hash identifier: 1YWbXNSOrN8bOPf4p3mmBwuuyaFgM1dQLv5Jd2UheNY= Subject key identifier: 4E:83:C1:BC:B9:92:BF:A2:20:9E:93:7C:21:BD:8A:FC:D4:FF:1A:DD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0BFEB13D23AE54BF72356B43C60D96724AD9F30E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153068.roa Signing time: Mon 22 Jul 2024 11:05:05 +0000 ROA not before: Mon 22 Jul 2024 11:00:05 +0000 ROA not after: Mon 21 Jul 2025 11:05:05 +0000 asID: 153068 IP address blocks: 103.136.76.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:fe:b1:3d:23:ae:54:bf:72:35:6b:43:c6:0d:96:72:4a:d9:f3:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 22 11:00:05 2024 GMT Not After : Jul 21 11:05:05 2025 GMT Subject: CN=4E83C1BCB992BFA2209E937C21BD8AFCD4FF1ADD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:4f:b1:47:1f:b4:c8:7e:11:9b:cb:59:c2:47: 54:25:48:c7:a1:4f:a2:ee:c2:da:f4:0c:78:94:8e: 32:be:77:78:4e:a4:97:95:a6:92:8f:cc:f7:49:17: ac:82:e4:93:7d:93:0f:ed:d0:de:c7:6a:56:30:1c: d5:bc:63:80:17:83:e0:ea:4c:d8:dc:45:3d:53:f9: 32:40:97:ce:1f:a5:bc:19:46:b5:c4:3b:b8:a5:3d: a5:2c:df:58:d0:65:9c:7d:e7:fe:9d:fb:74:27:7c: 9e:7f:e8:b3:53:d9:12:56:2f:4b:ee:39:49:3d:13: d8:5a:27:1c:70:ad:38:10:7f:c4:1b:ae:66:de:df: cf:3d:c8:9e:c3:f8:11:3f:47:ed:c3:c5:af:78:81: 62:b3:b7:2f:6e:fe:49:89:d3:c3:d9:a4:27:93:69: ef:89:de:99:06:1a:a3:a0:52:f5:93:fa:bc:5e:ee: c1:49:63:97:58:39:c7:16:72:96:46:c3:33:9e:79: fc:4f:46:d6:80:22:fc:6f:a7:34:0a:a1:fa:3d:a8: 1c:49:73:e3:e7:bb:15:87:f9:a6:ee:6e:5f:5f:b6: b4:15:65:39:ca:9f:fa:05:fa:4f:1e:91:c9:92:db: d0:5c:b4:ef:ef:c1:e4:6b:e3:e0:6e:72:96:7d:a3: 51:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:83:C1:BC:B9:92:BF:A2:20:9E:93:7C:21:BD:8A:FC:D4:FF:1A:DD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153068.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.76.0/23 Signature Algorithm: sha256WithRSAEncryption 25:77:7e:8d:f5:0a:c2:f2:8e:43:46:31:ed:6a:48:bd:75:81: 37:d9:72:b9:e5:0e:a0:c9:fb:81:6e:59:5d:26:8f:2c:90:2e: d2:2a:e1:3a:a4:50:f2:6c:77:5c:19:8f:c9:e9:45:0b:c2:65: fb:4f:ff:77:ad:a2:6b:bf:f9:39:4e:37:5a:ef:a0:d7:9b:f9: 86:19:14:e9:19:fd:f4:b9:79:7f:11:3c:f2:a9:45:9f:36:80: fc:01:97:7c:91:92:02:24:6c:31:60:10:a7:16:98:de:15:1a: 1a:1f:49:63:99:75:f0:9f:fc:c1:6b:7e:8b:a5:4a:61:30:50: 58:14:dd:cb:5a:0e:ff:36:b6:7b:88:07:d8:40:30:c9:61:26: 5b:57:b3:4f:97:95:60:be:c4:0f:c6:54:ea:8b:de:fc:3e:f6: 26:fa:9c:b0:62:f5:f1:38:7f:e5:58:5e:4d:de:90:8c:8b:d1: 7b:af:75:c9:35:dd:97:19:5b:bc:48:ac:3a:98:39:b5:0e:3c: f4:2c:95:27:21:07:28:b2:20:55:9e:5e:ec:28:66:e8:68:da: 2c:00:00:40:87:92:36:c2:14:f8:8e:72:c4:57:46:a9:4a:1f: 2a:98:5c:33:14:0d:25:a6:b7:81:fe:44:f7:0d:19:87:01:b0: 93:2d:1b:f3 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUC/6xPSOuVL9yNWtDxg2WckrZ8w4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcyMjExMDAwNVoX DTI1MDcyMTExMDUwNVowMzExMC8GA1UEAxMoNEU4M0MxQkNCOTkyQkZBMjIwOUU5 MzdDMjFCRDhBRkNENEZGMUFERDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKBPsUcftMh+EZvLWcJHVCVIx6FPou7C2vQMeJSOMr53eE6kl5Wmko/M90kX rILkk32TD+3Q3sdqVjAc1bxjgBeD4OpM2NxFPVP5MkCXzh+lvBlGtcQ7uKU9pSzf WNBlnH3n/p37dCd8nn/os1PZElYvS+45ST0T2FonHHCtOBB/xBuuZt7fzz3InsP4 ET9H7cPFr3iBYrO3L27+SYnTw9mkJ5Np74nemQYao6BS9ZP6vF7uwUljl1g5xxZy lkbDM555/E9G1oAi/G+nNAqh+j2oHElz4+e7FYf5pu5uX1+2tBVlOcqf+gX6Tx6R yZLb0Fy07+/B5Gvj4G5yln2jUU0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBROg8G8 uZK/oiCek3whvYr81P8a3TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzA2OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeITDANBgkqhkiG9w0BAQsFAAOCAQEAJXd+jfUKwvKOQ0Yx7WpI vXWBN9lyueUOoMn7gW5ZXSaPLJAu0irhOqRQ8mx3XBmPyelFC8Jl+0//d62ia7/5 OU43Wu+g15v5hhkU6Rn99Ll5fxE88qlFnzaA/AGXfJGSAiRsMWAQpxaY3hUaGh9J Y5l18J/8wWt+i6VKYTBQWBTdy1oO/za2e4gH2EAwyWEmW1ezT5eVYL7ED8ZU6ove /D72JvqcsGL18Th/5VheTd6QjIvRe691yTXdlxlbvEisOpg5tQ489CyVJyEHKLIg VZ5e7Chm6GjaLAAAQIeSNsIU+I5yxFdGqUofKphcMxQNJaa3gf5E9w0ZhwGwky0b 8w== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:58 2024 by rpki-client on console-fra.rpki-client.org