$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151510.roa File: AS151510.roa (raw, json) Hash identifier: ccnxUCXJ6RUiS4yROakO18GaOw0B9vVeSL56Xkm8pII= Subject key identifier: 11:1E:0E:FB:7F:C4:7A:BC:82:2D:E3:B1:2B:45:AA:4C:45:12:35:1D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6B6D43B4AE80DB21DA8FB3D2B42EA70B238D6CDB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151510.roa Signing time: Wed 04 Oct 2023 07:34:21 +0000 ROA not before: Wed 04 Oct 2023 07:29:21 +0000 ROA not after: Wed 02 Oct 2024 07:34:21 +0000 asID: 151510 IP address blocks: 103.236.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:6d:43:b4:ae:80:db:21:da:8f:b3:d2:b4:2e:a7:0b:23:8d:6c:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 4 07:29:21 2023 GMT Not After : Oct 2 07:34:21 2024 GMT Subject: CN=111E0EFB7FC47ABC822DE3B12B45AA4C4512351D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a0:bf:a8:fd:e8:dd:a4:44:6a:c6:55:18:df: 37:52:6b:55:d8:c6:43:07:d4:9a:d7:a5:97:7b:fc: bd:bf:55:b3:2c:af:29:8e:a7:ff:ea:c8:17:18:3c: a0:b7:e3:af:c5:93:93:8a:09:4e:d2:cf:6d:83:b6: 6c:5b:7e:89:9e:a0:cc:ec:9f:97:b4:34:a9:b4:ef: 11:ab:ba:75:a2:09:32:ea:49:1a:e6:42:ea:30:dc: d9:c4:0a:6b:1d:9d:be:9d:4a:56:ca:5f:a3:c3:7f: 99:16:6d:4a:d7:da:13:74:77:03:61:91:6c:88:a8: 07:4e:43:89:12:e5:88:4c:2c:a4:1c:4c:64:1a:7a: d2:18:cc:31:12:01:6e:9d:c2:3f:03:9d:7d:42:01: 90:c3:1f:fe:4d:e7:15:ba:a0:bd:00:18:39:fb:c8: ff:2d:6f:dc:b8:56:7f:76:6b:18:2d:6f:06:6f:3a: 9c:b4:8a:4a:32:a4:61:9a:b9:63:26:69:03:dc:a2: 42:08:a6:d5:58:78:30:37:99:56:41:e6:52:d3:f6: 2d:7e:77:1d:bd:17:3e:f2:f8:25:1c:18:ac:9a:e4: f9:ea:59:58:ed:a8:67:44:29:1c:16:a0:37:79:7f: 67:88:1f:41:0e:2c:1d:c5:95:d3:e7:d4:e1:44:d9: df:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:1E:0E:FB:7F:C4:7A:BC:82:2D:E3:B1:2B:45:AA:4C:45:12:35:1D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151510.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.236.214.0/23 Signature Algorithm: sha256WithRSAEncryption 17:73:45:82:51:ae:ce:ed:c4:f2:b2:a0:0b:34:52:a3:20:cf: 4b:81:46:7e:74:64:db:70:79:fe:d7:4c:d6:17:2d:3d:11:cf: b6:b2:1b:22:4d:71:91:f9:27:9c:90:e7:b2:df:89:a8:f9:49: 58:70:92:fb:4d:0b:f7:2f:2a:f8:0f:44:2c:99:a7:28:a8:f7: c5:9e:dc:88:48:48:6c:6b:bf:45:17:bc:ae:a2:63:61:56:69: 1c:4b:7e:62:3d:ae:e6:7d:f7:76:13:89:d6:1b:7c:8e:9c:e0: 8e:7d:98:5c:0e:3d:a5:de:4e:8c:24:37:1b:cb:5b:65:78:e0: 5d:5a:02:a0:d3:bf:dd:3b:f0:29:66:01:a3:0d:b1:87:0c:5a: 20:b5:3e:96:8c:64:83:ce:53:b1:8a:70:d4:ba:09:c8:a9:d4: 09:e9:75:ce:de:34:40:1f:de:c3:97:84:bd:fb:50:26:67:c8: ae:b2:68:8a:df:1e:2b:ae:cc:3d:cc:68:0f:e6:18:33:86:8c: dd:06:b1:1a:42:0f:6b:6a:55:ce:f9:c3:b3:8a:ea:4b:aa:70: d1:b7:b9:ae:be:d5:63:fa:5f:83:e7:8c:39:de:03:97:1f:2a: 16:fd:81:b6:d4:7a:1b:bc:db:f7:4c:49:0a:2d:d3:23:21:63: 5e:7e:6b:de -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUa21DtK6A2yHaj7PStC6nCyONbNswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAwNDA3MjkyMVoX DTI0MTAwMjA3MzQyMVowMzExMC8GA1UEAxMoMTExRTBFRkI3RkM0N0FCQzgyMkRF M0IxMkI0NUFBNEM0NTEyMzUxRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANOgv6j96N2kRGrGVRjfN1JrVdjGQwfUmtell3v8vb9VsyyvKY6n/+rIFxg8 oLfjr8WTk4oJTtLPbYO2bFt+iZ6gzOyfl7Q0qbTvEau6daIJMupJGuZC6jDc2cQK ax2dvp1KVspfo8N/mRZtStfaE3R3A2GRbIioB05DiRLliEwspBxMZBp60hjMMRIB bp3CPwOdfUIBkMMf/k3nFbqgvQAYOfvI/y1v3LhWf3ZrGC1vBm86nLSKSjKkYZq5 YyZpA9yiQgim1Vh4MDeZVkHmUtP2LX53Hb0XPvL4JRwYrJrk+epZWO2oZ0QpHBag N3l/Z4gfQQ4sHcWV0+fU4UTZ35cCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQRHg77 f8R6vIIt47ErRapMRRI1HTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUxMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfs1jANBgkqhkiG9w0BAQsFAAOCAQEAF3NFglGuzu3E8rKgCzRS oyDPS4FGfnRk23B5/tdM1hctPRHPtrIbIk1xkfknnJDnst+JqPlJWHCS+00L9y8q +A9ELJmnKKj3xZ7ciEhIbGu/RRe8rqJjYVZpHEt+Yj2u5n33dhOJ1ht8jpzgjn2Y XA49pd5OjCQ3G8tbZXjgXVoCoNO/3TvwKWYBow2xhwxaILU+loxkg85TsYpw1LoJ yKnUCel1zt40QB/ew5eEvftQJmfIrrJoit8eK67MPcxoD+YYM4aM3QaxGkIPa2pV zvnDs4rqS6pw0be5rr7VY/pfg+eMOd4Dlx8qFv2BttR6G7zb90xJCi3TIyFjXn5r 3g== -----END CERTIFICATE-----Generated at Wed May 8 10:06:54 2024 by rpki-client on console-ams.rpki-client.org