$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151004.roa File: AS151004.roa (raw, json) Hash identifier: bTGKQxTHyJ4zlh4c3V2wJvC5MtrreHUo270ycLbgk9Y= Subject key identifier: 59:5E:AB:72:81:D4:85:A3:41:60:5B:81:65:55:04:C1:E2:C4:0F:FA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 49749028DD8447AA4D7CF4F14EFA1B309EB9B82E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151004.roa Signing time: Mon 16 Oct 2023 06:56:27 +0000 ROA not before: Mon 16 Oct 2023 06:51:27 +0000 ROA not after: Mon 14 Oct 2024 06:56:27 +0000 asID: 151004 IP address blocks: 103.214.250.0/24 maxlen: 24 103.251.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:74:90:28:dd:84:47:aa:4d:7c:f4:f1:4e:fa:1b:30:9e:b9:b8:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 16 06:51:27 2023 GMT Not After : Oct 14 06:56:27 2024 GMT Subject: CN=595EAB7281D485A341605B81655504C1E2C40FFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:66:c8:0d:63:dd:7d:ea:47:99:9a:e7:f1:d8: 6a:eb:a9:29:7f:2d:26:60:0e:3c:4c:43:9b:bc:ef: d9:ed:65:95:a9:64:35:13:5c:a4:f5:71:f3:88:6f: e9:b9:e0:e3:73:69:43:85:29:b4:a4:1f:a2:9d:2d: 03:4b:66:7d:fd:5c:ee:dc:78:eb:48:ab:a8:0c:96: a1:5e:09:48:fc:10:29:01:2e:2e:17:cf:42:f8:ba: f7:4b:ea:d3:41:f1:6d:8d:bb:79:2f:46:39:d8:b9: 86:68:14:8b:db:1f:cf:52:d0:6f:e6:68:21:bc:ab: d0:49:7b:cf:e7:bd:4f:93:f9:4e:51:30:ce:8d:24: 93:a8:24:cd:b7:3d:84:fe:ce:c7:16:15:d1:48:b7: e7:30:f0:34:94:ac:33:9b:db:4a:8c:16:b4:5e:23: af:80:f4:e9:b8:a7:13:89:ca:27:34:bb:e3:42:8b: c5:17:d4:bb:23:c2:fb:14:90:33:de:33:e3:a6:84: 06:14:e9:e9:07:a9:e4:00:0a:04:69:5e:46:8b:b7: e0:9c:9f:3c:a7:77:b1:7e:9b:33:df:d1:3f:54:9d: aa:9c:76:a6:46:6d:a9:f4:00:99:f4:82:2e:cd:89: 93:56:98:13:d9:e4:1b:49:44:d6:3c:9a:31:e6:ce: 20:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:5E:AB:72:81:D4:85:A3:41:60:5B:81:65:55:04:C1:E2:C4:0F:FA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151004.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.250.0/24 103.251.69.0/24 Signature Algorithm: sha256WithRSAEncryption 40:ce:d5:4e:21:45:09:a9:d0:b6:34:5b:5f:ab:da:c9:b6:2f: 62:2d:38:3c:f7:92:d9:ed:71:36:02:7d:62:e9:c9:f4:3a:23: 8b:3d:ed:1f:65:5c:e4:41:f4:b5:50:d3:64:7f:ce:d2:b6:cd: c6:c3:08:58:7a:8f:23:06:49:19:39:43:b6:be:7e:db:a1:00: 93:01:47:da:25:a3:cc:a7:df:27:75:12:69:7f:2f:22:60:3c: c2:5f:b4:ff:42:e6:64:7e:16:56:ff:4a:a2:02:87:d8:36:6e: 51:6d:00:30:85:f0:e7:e7:a4:8e:36:81:c7:8e:b1:8e:10:5f: 48:2f:c8:91:77:51:ba:1e:a4:04:5f:fd:ab:5a:61:7a:11:9c: 60:1f:af:45:64:f6:f1:53:0a:04:61:01:e0:34:ea:10:09:19: f1:3f:a5:e8:a2:df:44:18:32:fb:68:32:1e:8f:f0:2c:34:91: 1a:73:57:bc:c2:5b:c5:91:26:76:92:91:7c:dc:91:ad:24:5b: 94:d0:21:e1:c8:95:b4:cd:1c:7d:22:9a:63:ea:9f:45:d6:59: fb:3b:fa:a4:03:a7:86:47:4c:d6:f4:34:09:5c:2b:2a:d8:33: 6e:e9:d2:d7:a2:52:d3:86:68:d1:98:81:4a:b4:6d:20:7c:00: 9f:3c:f0:9b -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUSXSQKN2ER6pNfPTxTvobMJ65uC4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAxNjA2NTEyN1oX DTI0MTAxNDA2NTYyN1owMzExMC8GA1UEAxMoNTk1RUFCNzI4MUQ0ODVBMzQxNjA1 QjgxNjU1NTA0QzFFMkM0MEZGQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOdmyA1j3X3qR5ma5/HYauupKX8tJmAOPExDm7zv2e1llalkNRNcpPVx84hv 6bng43NpQ4UptKQfop0tA0tmff1c7tx460irqAyWoV4JSPwQKQEuLhfPQvi690vq 00HxbY27eS9GOdi5hmgUi9sfz1LQb+ZoIbyr0El7z+e9T5P5TlEwzo0kk6gkzbc9 hP7OxxYV0Ui35zDwNJSsM5vbSowWtF4jr4D06binE4nKJzS740KLxRfUuyPC+xSQ M94z46aEBhTp6Qep5AAKBGleRou34JyfPKd3sX6bM9/RP1Sdqpx2pkZtqfQAmfSC Ls2Jk1aYE9nkG0lE1jyaMebOIEECAwEAAaOCAdYwggHSMB0GA1UdDgQWBBRZXqty gdSFo0FgW4FlVQTB4sQP+jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTAwNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGfW+gMEAGf7RTANBgkqhkiG9w0BAQsFAAOCAQEAQM7VTiFFCanQ tjRbX6vaybYvYi04PPeS2e1xNgJ9YunJ9Dojiz3tH2Vc5EH0tVDTZH/O0rbNxsMI WHqPIwZJGTlDtr5+26EAkwFH2iWjzKffJ3USaX8vImA8wl+0/0LmZH4WVv9KogKH 2DZuUW0AMIXw5+ekjjaBx46xjhBfSC/IkXdRuh6kBF/9q1phehGcYB+vRWT28VMK BGEB4DTqEAkZ8T+l6KLfRBgy+2gyHo/wLDSRGnNXvMJbxZEmdpKRfNyRrSRblNAh 4ciVtM0cfSKaY+qfRdZZ+zv6pAOnhkdM1vQ0CVwrKtgzbunS16JS04Zo0ZiBSrRt IHwAnzzwmw== -----END CERTIFICATE-----Generated at Wed May 8 04:37:58 2024 by rpki-client on console-fra.rpki-client.org