$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151508.roa File: AS151508.roa (raw, json) Hash identifier: xHhr9d+mCwvHlBDHHDXRZVlKcHWlo7Kykgn7pKvUTPA= Subject key identifier: 09:19:95:B1:24:C1:2A:3C:B4:F9:33:8B:DE:00:E8:34:39:BD:04:69 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7FEAB5A061B85D3F59007E8E6BC2E8A7BDB70BAD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151508.roa Signing time: Wed 30 Aug 2023 04:40:22 +0000 ROA not before: Wed 30 Aug 2023 04:35:22 +0000 ROA not after: Wed 28 Aug 2024 04:40:22 +0000 asID: 151508 IP address blocks: 103.232.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:ea:b5:a0:61:b8:5d:3f:59:00:7e:8e:6b:c2:e8:a7:bd:b7:0b:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 30 04:35:22 2023 GMT Not After : Aug 28 04:40:22 2024 GMT Subject: CN=091995B124C12A3CB4F9338BDE00E83439BD0469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:07:ff:77:9a:8b:07:b6:ec:ac:85:67:e1:a5: 0c:c9:6b:42:de:40:f1:ff:5e:0f:c5:df:64:65:69: d8:43:fd:a8:85:54:fe:96:3b:5f:f0:62:66:0c:dd: 99:e9:9d:29:be:a9:bb:34:a4:b8:f7:7b:07:bb:e2: a1:1d:50:43:5d:32:d2:c7:19:3a:32:8a:07:ba:b6: b3:3c:43:4f:6c:99:dc:25:c9:4c:dd:1c:af:4a:d1: e2:79:0b:0a:c2:02:2c:4b:d5:a7:38:15:c3:87:b6: b9:29:fd:1a:e0:ae:03:66:99:26:25:dd:77:c6:af: c8:3c:e1:d1:55:f6:85:66:99:06:64:72:02:b6:91: 22:e6:da:2e:7f:3b:a7:96:5c:14:1d:b4:07:04:b0: 9e:c8:87:05:92:2c:10:00:d1:8d:73:68:f8:4f:49: 2f:10:bf:d3:07:c5:49:67:74:e7:2d:f7:f4:2b:cf: fc:5c:57:ce:4f:d8:2a:37:a1:67:6f:d7:16:b2:23: 5b:40:f6:1f:08:25:ab:ab:0c:07:bc:48:2c:17:61: c4:47:fe:19:38:da:e4:be:4c:c4:f1:d8:54:0c:61: a9:d1:92:bc:d8:a6:cf:ed:55:44:20:bb:08:8f:8d: 66:25:71:42:18:d0:c1:78:38:0e:f8:fe:37:ea:f6: 7a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:19:95:B1:24:C1:2A:3C:B4:F9:33:8B:DE:00:E8:34:39:BD:04:69 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151508.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.232.20.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:fa:ca:94:6e:c9:d4:b2:df:9d:b9:73:33:57:5a:06:b5:77: 8d:22:37:04:11:ba:51:4c:29:a1:82:be:ed:c9:fd:8a:51:f6: 63:96:74:25:92:98:3d:a2:49:e5:f5:5e:b7:14:10:5c:2e:ac: c9:c2:5c:5b:0b:8f:da:5e:d3:67:46:bd:93:da:0f:27:68:74: 00:99:77:67:53:19:e9:8b:bf:c6:79:ce:e9:f3:54:69:1a:fd: 5d:d8:3d:41:e4:f1:79:45:ea:6a:e5:32:d2:81:5b:68:d6:3d: 95:dd:ee:f9:f2:21:77:9a:55:69:11:f0:3a:2e:c1:0e:09:9d: bb:f4:95:b7:9b:60:7e:9a:81:5d:d7:34:f6:41:a1:7e:83:8f: 18:01:da:b5:4f:69:ec:d8:6d:52:26:7b:fc:c0:9f:fc:1f:83: 54:a1:ad:c7:ff:aa:a1:17:48:0a:bf:af:0e:8e:a1:d5:50:a0: fd:48:d6:16:44:47:d6:22:00:7b:f2:5e:5c:54:97:99:d1:38: 31:af:3a:76:6a:b6:26:4c:1f:5c:25:34:5a:a0:e9:35:a8:b6: 74:ce:43:d8:c5:c4:f2:95:10:b1:07:a9:5c:e7:09:ba:fa:cd: 2f:65:c3:a3:cd:70:c6:20:6a:ee:28:5b:97:24:ec:d6:ed:fb: 47:52:98:b9 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUf+q1oGG4XT9ZAH6Oa8Lop723C60wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgzMDA0MzUyMloX DTI0MDgyODA0NDAyMlowMzExMC8GA1UEAxMoMDkxOTk1QjEyNEMxMkEzQ0I0Rjkz MzhCREUwMEU4MzQzOUJEMDQ2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMsH/3eaiwe27KyFZ+GlDMlrQt5A8f9eD8XfZGVp2EP9qIVU/pY7X/BiZgzd memdKb6puzSkuPd7B7vioR1QQ10y0scZOjKKB7q2szxDT2yZ3CXJTN0cr0rR4nkL CsICLEvVpzgVw4e2uSn9GuCuA2aZJiXdd8avyDzh0VX2hWaZBmRyAraRIubaLn87 p5ZcFB20BwSwnsiHBZIsEADRjXNo+E9JLxC/0wfFSWd05y339CvP/FxXzk/YKjeh Z2/XFrIjW0D2Hwglq6sMB7xILBdhxEf+GTja5L5MxPHYVAxhqdGSvNimz+1VRCC7 CI+NZiVxQhjQwXg4Dvj+N+r2eqsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQJGZWx JMEqPLT5M4veAOg0Ob0EaTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUwOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfoFDANBgkqhkiG9w0BAQsFAAOCAQEAGvrKlG7J1LLfnblzM1da BrV3jSI3BBG6UUwpoYK+7cn9ilH2Y5Z0JZKYPaJJ5fVetxQQXC6sycJcWwuP2l7T Z0a9k9oPJ2h0AJl3Z1MZ6Yu/xnnO6fNUaRr9Xdg9QeTxeUXqauUy0oFbaNY9ld3u +fIhd5pVaRHwOi7BDgmdu/SVt5tgfpqBXdc09kGhfoOPGAHatU9p7NhtUiZ7/MCf /B+DVKGtx/+qoRdICr+vDo6h1VCg/UjWFkRH1iIAe/JeXFSXmdE4Ma86dmq2Jkwf XCU0WqDpNai2dM5D2MXE8pUQsQepXOcJuvrNL2XDo81wxiBq7ihblyTs1u37R1KY uQ== -----END CERTIFICATE-----Generated at Wed May 8 21:02:24 2024 by rpki-client on console-fra.rpki-client.org