$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153092.roa File: AS153092.roa (raw, json) Hash identifier: vmF5cNVwCfC5qjL7w83Zx3ktyYy6h5mlLTUG8quxMoU= Subject key identifier: 32:B2:8D:FC:1F:DA:B3:0C:A8:CF:1A:F7:F8:82:93:87:FF:AA:BF:14 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7BFA626FD43535E429FFC146F1F766D5B2C019A9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153092.roa Signing time: Wed 30 Oct 2024 07:31:24 +0000 ROA not before: Wed 30 Oct 2024 07:26:24 +0000 ROA not after: Wed 29 Oct 2025 07:31:24 +0000 asID: 153092 IP address blocks: 103.80.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:fa:62:6f:d4:35:35:e4:29:ff:c1:46:f1:f7:66:d5:b2:c0:19:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 30 07:26:24 2024 GMT Not After : Oct 29 07:31:24 2025 GMT Subject: CN=32B28DFC1FDAB30CA8CF1AF7F8829387FFAABF14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8f:86:0b:a7:8b:c8:b8:ab:0c:31:ac:72:ea: 1c:b8:d8:06:b6:32:db:23:1a:6d:95:71:2b:9c:d0: 04:c4:3b:63:47:7c:e9:a3:0a:6a:e7:5c:c4:73:16: 2e:8a:7d:d1:dc:b3:fb:a5:49:bc:22:02:0e:f7:f1: 66:3c:b9:c2:67:15:16:b7:dc:8e:65:ec:6b:54:b4: a1:3b:19:88:a6:a2:a2:0a:1b:9a:9a:cb:90:88:55: 0b:60:1e:42:0b:18:c4:f4:e4:51:db:05:15:2b:ae: 8f:88:fe:ed:26:bb:ba:32:ee:47:b0:82:be:f9:3c: 7b:12:b7:21:33:d9:11:b8:e0:ae:0b:ad:55:35:0e: e2:92:29:92:70:87:2c:bc:0c:c1:41:4c:ae:e9:28: ad:62:52:24:cc:e8:0a:2f:65:4a:10:20:e0:94:e1: 1e:44:c0:56:f1:75:2e:84:8c:0e:0a:a8:db:2f:b3: 94:fd:f5:3f:db:68:bd:cb:a8:35:2d:3f:2f:64:ae: ab:07:c8:8d:a8:38:ee:64:f7:64:02:ed:d2:6f:80: a6:61:3d:50:9d:c7:7f:91:ec:a4:83:c7:cd:30:69: 45:dc:36:7e:99:f4:d6:0c:ff:0d:19:a3:ca:b0:e4: 88:ce:dd:1a:d7:bd:64:f7:c3:09:b4:f1:ce:a0:1e: 99:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:B2:8D:FC:1F:DA:B3:0C:A8:CF:1A:F7:F8:82:93:87:FF:AA:BF:14 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153092.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.80.214.0/23 Signature Algorithm: sha256WithRSAEncryption 41:2a:88:7f:01:c7:35:9b:f0:3d:44:e6:b8:4b:2e:33:94:b1: 29:18:95:c4:3d:33:39:35:49:85:3a:93:c0:0f:2f:2a:72:49: a7:b5:20:a9:e2:9c:09:c1:3e:7d:d7:23:12:f9:0d:7f:74:3d: 7a:5d:22:a0:59:e7:c8:3b:24:b1:ef:ed:48:c5:19:70:2b:75: 6c:c5:36:b4:b8:12:e5:7f:bf:76:73:bd:50:49:e8:29:b5:b3: 2e:92:56:9c:17:5e:16:d2:31:c3:8e:c9:55:d2:c1:18:32:d9: 68:37:2f:d8:aa:8d:19:b5:12:9f:e2:96:5c:06:dd:bc:6a:1f: d7:16:d3:44:6d:b1:78:54:b3:10:80:d8:7e:db:22:c3:c1:2b: 96:90:e3:19:c1:ec:fe:a9:52:c2:04:8c:dd:53:e9:3c:58:42: 0a:ef:91:90:77:e3:a4:64:b3:e5:fc:27:b6:28:d2:e7:87:3d: f3:da:5a:d4:27:df:32:ea:86:1e:65:77:d4:3b:12:66:41:f6: 7a:65:15:7d:cb:ce:5b:99:b9:7c:e9:71:c3:8e:06:bf:c9:1f: 82:cf:2c:d7:08:65:0f:dd:ec:4e:02:a2:36:eb:21:38:9c:34: 0d:3a:02:a9:c0:c9:d4:c8:b3:1c:36:90:7a:87:6c:6d:e6:10: 66:c9:8a:78 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUe/pib9Q1NeQp/8FG8fdm1bLAGakwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAzMDA3MjYyNFoX DTI1MTAyOTA3MzEyNFowMzExMC8GA1UEAxMoMzJCMjhERkMxRkRBQjMwQ0E4Q0Yx QUY3Rjg4MjkzODdGRkFBQkYxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMKPhguni8i4qwwxrHLqHLjYBrYy2yMabZVxK5zQBMQ7Y0d86aMKaudcxHMW Lop90dyz+6VJvCICDvfxZjy5wmcVFrfcjmXsa1S0oTsZiKaiogobmprLkIhVC2Ae QgsYxPTkUdsFFSuuj4j+7Sa7ujLuR7CCvvk8exK3ITPZEbjgrgutVTUO4pIpknCH LLwMwUFMrukorWJSJMzoCi9lShAg4JThHkTAVvF1LoSMDgqo2y+zlP31P9tovcuo NS0/L2SuqwfIjag47mT3ZALt0m+ApmE9UJ3Hf5HspIPHzTBpRdw2fpn01gz/DRmj yrDkiM7dGte9ZPfDCbTxzqAemdsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQyso38 H9qzDKjPGvf4gpOH/6q/FDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzA5Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWdQ1jANBgkqhkiG9w0BAQsFAAOCAQEAQSqIfwHHNZvwPUTmuEsu M5SxKRiVxD0zOTVJhTqTwA8vKnJJp7UgqeKcCcE+fdcjEvkNf3Q9el0ioFnnyDsk se/tSMUZcCt1bMU2tLgS5X+/dnO9UEnoKbWzLpJWnBdeFtIxw47JVdLBGDLZaDcv 2KqNGbUSn+KWXAbdvGof1xbTRG2xeFSzEIDYftsiw8ErlpDjGcHs/qlSwgSM3VPp PFhCCu+RkHfjpGSz5fwntijS54c989pa1CffMuqGHmV31DsSZkH2emUVfcvOW5m5 fOlxw44Gv8kfgs8s1whlD93sTgKiNushOJw0DToCqcDJ1MizHDaQeodsbeYQZsmK eA== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:58 2024 by rpki-client on console-fra.rpki-client.org