$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151502.roa File: AS151502.roa (raw, json) Hash identifier: p6dnrWD9CWVmox5dQi70F1BUirwkNh3Wf7iQZ93GfuQ= Subject key identifier: EF:C4:59:B8:C8:A5:E0:E4:13:86:39:73:DE:78:30:5F:7B:AD:0D:BD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1EC15C6AD20F6C246736C8498DC7643A6F297F12 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151502.roa Signing time: Fri 21 Jul 2023 03:28:29 +0000 ROA not before: Fri 21 Jul 2023 03:23:29 +0000 ROA not after: Fri 19 Jul 2024 03:28:29 +0000 asID: 151502 IP address blocks: 103.227.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:c1:5c:6a:d2:0f:6c:24:67:36:c8:49:8d:c7:64:3a:6f:29:7f:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 21 03:23:29 2023 GMT Not After : Jul 19 03:28:29 2024 GMT Subject: CN=EFC459B8C8A5E0E413863973DE78305F7BAD0DBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:72:a5:05:a0:c9:51:49:30:02:64:e2:9c:a2: a9:ee:e0:fd:d5:c2:e3:32:fa:ec:ce:e4:2f:a8:4f: c4:d2:d7:ee:1c:2c:6f:30:94:9b:1c:d6:50:18:50: db:4d:67:d1:ca:9a:fd:82:4d:4f:41:b7:55:31:94: c4:47:07:f1:f4:bf:40:fa:63:30:50:97:e9:96:c4: 75:d5:10:91:70:01:7d:5f:2d:9f:2e:c0:2d:45:c3: ff:96:9a:77:22:ad:1c:a1:82:9a:21:7e:76:1c:85: 73:9e:f4:50:e8:55:57:41:58:e8:c5:e1:05:27:c0: e5:8d:3e:cc:50:49:ce:a6:be:73:a3:65:c2:45:d0: 58:0b:7e:f8:83:53:5a:9d:2d:cf:7a:fe:81:ed:9b: b5:26:41:22:13:30:19:72:29:fe:26:85:a0:49:11: 82:bb:77:6a:25:c7:f4:16:50:2a:f0:87:4e:9d:6a: 8c:0d:68:83:c0:54:b8:8c:6a:d0:f2:4d:de:b6:be: 98:3a:12:b8:e4:8e:48:1d:05:3e:97:3f:03:3b:b0: 3a:dd:0a:6f:3f:8c:f2:59:a3:6e:b5:d1:b4:86:8d: 7a:c4:70:07:3c:e4:2b:7d:da:33:19:6e:45:f3:15: 96:fe:22:1c:c4:9b:15:c8:12:a4:a7:ea:b4:c8:56: db:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:C4:59:B8:C8:A5:E0:E4:13:86:39:73:DE:78:30:5F:7B:AD:0D:BD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151502.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.7.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:06:88:d4:a9:c7:95:f8:0c:2e:76:27:98:52:e6:80:c9:8d: c9:ce:f8:fd:86:5f:22:63:1f:d3:ed:f0:f5:26:10:b5:2d:83: d9:ba:bf:21:a9:0e:71:03:0c:7b:6f:9e:e0:8d:85:1e:ca:fb: 9d:c2:ed:5a:fa:45:e2:2b:43:3f:46:14:8d:5e:e8:a7:26:8f: 93:47:99:1a:b6:88:f3:9d:49:7e:82:3f:f3:30:cf:35:63:89: b0:6d:30:9a:c6:19:60:db:7b:43:3a:57:f3:34:49:7e:35:7e: 6f:55:fb:50:d3:cd:0f:cc:33:ab:5e:60:cf:5d:a0:90:68:e5: d1:d8:86:ab:50:9e:0d:35:fc:d0:e1:0b:9d:60:32:1f:0c:72: 00:47:f0:60:e4:56:0e:8b:ee:cf:2f:cb:b0:b6:9c:45:7e:94: 09:93:49:9d:04:40:22:7d:21:3f:a6:79:02:2c:77:ad:4f:9e: 4a:95:a6:be:91:0f:78:10:fe:6f:38:f4:68:1b:fe:19:c2:b9: 2e:97:bc:1c:9a:56:51:2e:6d:25:83:da:21:9f:1d:ad:4d:ff: d5:e7:c8:9b:9f:39:32:e2:28:96:c3:e4:fc:46:4c:8e:d6:96: 77:83:7c:76:91:a1:0f:a6:d6:83:f6:56:94:51:cd:e4:77:39: c7:62:59:5f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUHsFcatIPbCRnNshJjcdkOm8pfxIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcyMTAzMjMyOVoX DTI0MDcxOTAzMjgyOVowMzExMC8GA1UEAxMoRUZDNDU5QjhDOEE1RTBFNDEzODYz OTczREU3ODMwNUY3QkFEMERCRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANxypQWgyVFJMAJk4pyiqe7g/dXC4zL67M7kL6hPxNLX7hwsbzCUmxzWUBhQ 201n0cqa/YJNT0G3VTGUxEcH8fS/QPpjMFCX6ZbEddUQkXABfV8tny7ALUXD/5aa dyKtHKGCmiF+dhyFc570UOhVV0FY6MXhBSfA5Y0+zFBJzqa+c6NlwkXQWAt++INT Wp0tz3r+ge2btSZBIhMwGXIp/iaFoEkRgrt3aiXH9BZQKvCHTp1qjA1og8BUuIxq 0PJN3ra+mDoSuOSOSB0FPpc/AzuwOt0Kbz+M8lmjbrXRtIaNesRwBzzkK33aMxlu RfMVlv4iHMSbFcgSpKfqtMhW220CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTvxFm4 yKXg5BOGOXPeeDBfe60NvTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUwMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfjBzANBgkqhkiG9w0BAQsFAAOCAQEATQaI1KnHlfgMLnYnmFLm gMmNyc74/YZfImMf0+3w9SYQtS2D2bq/IakOcQMMe2+e4I2FHsr7ncLtWvpF4itD P0YUjV7opyaPk0eZGraI851JfoI/8zDPNWOJsG0wmsYZYNt7QzpX8zRJfjV+b1X7 UNPND8wzq15gz12gkGjl0diGq1CeDTX80OELnWAyHwxyAEfwYORWDovuzy/LsLac RX6UCZNJnQRAIn0hP6Z5Aix3rU+eSpWmvpEPeBD+bzj0aBv+GcK5Lpe8HJpWUS5t JYPaIZ8drU3/1efIm585MuIolsPk/EZMjtaWd4N8dpGhD6bWg/ZWlFHN5Hc5x2JZ Xw== -----END CERTIFICATE-----Generated at Tue May 7 16:42:41 2024 by rpki-client on console-ams.rpki-client.org