$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151507.roa File: AS151507.roa (raw, json) Hash identifier: YI0n6GW4tSUdNRfxS4Xk8t8zpL3OdCo3SElXkgsDPqE= Subject key identifier: 10:D6:34:65:A6:2A:D0:53:77:9D:EC:AD:EF:70:CB:81:07:F4:D7:6E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7AAC63935D4C50351780660F4FE259212A1B9A74 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151507.roa Signing time: Mon 24 Jul 2023 06:05:12 +0000 ROA not before: Mon 24 Jul 2023 06:00:12 +0000 ROA not after: Mon 22 Jul 2024 06:05:12 +0000 asID: 151507 IP address blocks: 103.234.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:ac:63:93:5d:4c:50:35:17:80:66:0f:4f:e2:59:21:2a:1b:9a:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 24 06:00:12 2023 GMT Not After : Jul 22 06:05:12 2024 GMT Subject: CN=10D63465A62AD053779DECADEF70CB8107F4D76E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f2:d8:89:ea:01:f7:7b:6c:60:4e:62:a9:f0: 9e:54:20:b9:b8:aa:8b:7c:6b:c7:e9:6c:48:be:4b: 74:40:89:c6:60:70:98:1d:c5:32:45:a8:e6:79:e2: 51:ff:1e:98:98:4e:85:cd:f1:05:60:6d:cb:b5:88: b4:fc:3f:bb:a6:2d:34:d7:9b:06:e6:8b:dd:e9:0a: c1:4d:aa:da:0d:71:ab:40:7c:17:b6:63:2e:a2:1a: 4f:89:74:8d:97:e1:d9:34:b5:9d:95:1e:13:af:6d: 89:6f:36:07:eb:49:38:b0:ae:26:fb:6a:57:39:55: f0:be:0f:8c:a7:8e:3c:87:68:ee:d1:8f:ae:95:c5: a5:50:2f:da:cd:d3:96:20:48:d0:43:2d:13:b5:f4: 4a:8d:33:c8:4d:9f:5b:d7:6e:88:c9:aa:69:cb:a6: 1f:35:30:f5:29:01:c5:f7:ce:e4:a9:15:fb:20:bc: 24:16:da:00:97:cd:46:d7:6e:9d:f9:2d:bb:a6:a6: c6:13:9e:4f:11:96:c7:af:d5:1b:40:78:e5:8c:32: 9b:27:5c:9e:1f:53:54:c7:f0:72:21:47:aa:fe:54: a6:cf:b2:15:84:18:37:06:0e:7e:77:c4:71:38:8d: f1:84:05:c4:16:23:1c:9e:25:ef:bd:5f:2b:22:72: 77:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:D6:34:65:A6:2A:D0:53:77:9D:EC:AD:EF:70:CB:81:07:F4:D7:6E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151507.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.28.0/23 Signature Algorithm: sha256WithRSAEncryption 88:ba:28:c8:97:08:40:98:14:5f:33:e8:79:9d:75:7a:a5:c5: 29:b0:6a:c1:1d:a1:a1:18:35:bf:a0:63:3e:6f:44:2e:26:07: 50:e7:d0:2a:20:f5:0b:56:71:e7:05:06:90:d5:2c:87:09:80: c2:ea:9a:32:68:74:27:06:2d:48:f1:2a:09:ae:65:ac:cc:cf: b7:b4:4a:6b:72:23:cc:fa:ea:a7:7b:9e:31:35:82:5c:0c:37: ab:9d:af:4d:c0:70:07:0d:b1:98:20:f3:60:69:68:5b:d0:70: 1b:b9:72:5e:5a:45:16:f5:b3:ad:86:4e:09:37:5b:23:5a:7c: 98:10:09:4e:93:bc:8a:c5:a0:9f:04:07:f3:bc:c6:e7:cc:f6: 36:7d:19:8c:a8:fe:d4:17:40:5e:7c:95:e2:e8:80:6b:92:71: 3c:60:b7:9b:97:d9:c2:db:9c:f6:49:a7:4a:37:fd:36:64:90: 14:f9:37:2a:0e:ad:b3:29:22:30:3d:81:ee:8e:08:38:e9:e6: c6:ba:95:19:4a:6f:b2:5a:80:7b:4a:7b:9d:a6:3e:e1:65:43: 9d:94:42:55:b6:6e:d3:e7:d9:db:99:e6:f4:3e:15:51:50:de: d3:40:8b:a1:6c:12:37:3a:ec:8d:a2:a8:37:b2:ca:ce:71:5e: 46:a2:50:5d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUeqxjk11MUDUXgGYPT+JZISobmnQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcyNDA2MDAxMloX DTI0MDcyMjA2MDUxMlowMzExMC8GA1UEAxMoMTBENjM0NjVBNjJBRDA1Mzc3OURF Q0FERUY3MENCODEwN0Y0RDc2RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN3y2InqAfd7bGBOYqnwnlQgubiqi3xrx+lsSL5LdECJxmBwmB3FMkWo5nni Uf8emJhOhc3xBWBty7WItPw/u6YtNNebBuaL3ekKwU2q2g1xq0B8F7ZjLqIaT4l0 jZfh2TS1nZUeE69tiW82B+tJOLCuJvtqVzlV8L4PjKeOPIdo7tGPrpXFpVAv2s3T liBI0EMtE7X0So0zyE2fW9duiMmqacumHzUw9SkBxffO5KkV+yC8JBbaAJfNRtdu nfktu6amxhOeTxGWx6/VG0B45Ywymydcnh9TVMfwciFHqv5Ups+yFYQYNwYOfnfE cTiN8YQFxBYjHJ4l771fKyJyd4cCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQQ1jRl pirQU3ed7K3vcMuBB/TXbjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUwNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfqHDANBgkqhkiG9w0BAQsFAAOCAQEAiLooyJcIQJgUXzPoeZ11 eqXFKbBqwR2hoRg1v6BjPm9ELiYHUOfQKiD1C1Zx5wUGkNUshwmAwuqaMmh0JwYt SPEqCa5lrMzPt7RKa3IjzPrqp3ueMTWCXAw3q52vTcBwBw2xmCDzYGloW9BwG7ly XlpFFvWzrYZOCTdbI1p8mBAJTpO8isWgnwQH87zG58z2Nn0ZjKj+1BdAXnyV4uiA a5JxPGC3m5fZwtuc9kmnSjf9NmSQFPk3Kg6tsykiMD2B7o4IOOnmxrqVGUpvslqA e0p7naY+4WVDnZRCVbZu0+fZ25nm9D4VUVDe00CLoWwSNzrsjaKoN7LKznFeRqJQ XQ== -----END CERTIFICATE-----Generated at Wed May 8 18:12:17 2024 by rpki-client on console-fra.rpki-client.org