$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151515.roa File: AS151515.roa (raw, json) Hash identifier: DmYrOb2l2TFwA/Mf8nS4S4gfWBbb9wjyhzNklHztDsY= Subject key identifier: 56:B2:5D:29:9A:4A:B5:7F:51:1B:B1:FF:78:73:16:3B:FC:AB:37:53 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 027546C650CC0AAB3EB33449F3D201ED1815023E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151515.roa Signing time: Thu 07 Sep 2023 06:38:34 +0000 ROA not before: Thu 07 Sep 2023 06:33:34 +0000 ROA not after: Thu 05 Sep 2024 06:38:34 +0000 asID: 151515 IP address blocks: 103.224.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:75:46:c6:50:cc:0a:ab:3e:b3:34:49:f3:d2:01:ed:18:15:02:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 7 06:33:34 2023 GMT Not After : Sep 5 06:38:34 2024 GMT Subject: CN=56B25D299A4AB57F511BB1FF7873163BFCAB3753 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2a:35:05:70:c1:d2:d1:0d:26:8e:59:12:0e: e2:4c:c6:01:68:53:24:d7:e4:f9:ec:a4:30:9f:f1: 9e:3e:d6:e5:29:2f:5b:c8:90:28:92:3c:9d:7e:6a: 0c:06:53:3b:e5:8c:11:ac:9c:84:04:4c:14:42:b3: cb:3e:a2:df:ce:f7:88:34:b5:96:68:f1:66:39:72: 3f:86:8a:7d:be:dd:05:b2:34:5e:21:04:a8:89:55: a9:c4:77:72:91:ba:76:38:3e:84:0c:a8:0e:5f:89: 45:94:35:d9:3a:01:83:46:05:29:98:55:93:21:05: 70:17:1f:19:e9:ef:a5:f1:04:d5:ac:6d:5d:a8:0d: 46:82:bb:18:7c:6c:19:8b:3f:9a:35:eb:01:91:e3: 71:4c:68:ee:08:d7:23:9a:a8:19:88:b9:ab:af:d3: 1b:ad:ca:77:3a:bd:52:db:b1:59:4d:5c:86:10:ad: 68:57:92:6b:62:7b:db:4b:e6:18:c8:b3:37:8b:c7: 5c:f3:e5:01:67:73:bd:76:cc:1f:f0:97:02:1c:eb: 32:ee:9e:e2:7a:2c:cf:a3:5f:e3:ae:05:3b:c8:c3: c6:74:22:68:de:a2:78:2c:e6:03:3e:95:7d:bc:61: 51:c4:ac:5a:2f:c1:0e:39:a7:94:71:b0:44:27:ab: 00:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:B2:5D:29:9A:4A:B5:7F:51:1B:B1:FF:78:73:16:3B:FC:AB:37:53 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151515.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.224.18.0/24 Signature Algorithm: sha256WithRSAEncryption 00:1e:91:41:7d:c4:ed:34:5a:59:9c:f9:74:71:1e:f4:fe:e9: 18:12:c5:82:07:65:b5:80:81:7a:92:e3:3c:1e:d0:11:b3:ad: 37:d9:02:d9:bf:88:14:e9:d3:5f:e4:97:fd:42:b4:38:0d:3e: d3:3b:b8:13:d6:ee:63:d6:71:98:cb:73:2a:81:c4:cf:d1:42: a7:22:8c:2d:2d:7f:4a:bd:b8:49:78:4b:89:33:72:cf:d5:dc: 05:9d:63:95:d0:c2:0a:41:89:89:b0:c1:d1:31:9b:4a:a6:53: d5:36:2d:dd:96:a6:56:a0:bd:34:84:df:1e:c7:89:db:a2:fa: 08:cc:da:15:08:c6:7e:bc:52:88:18:de:f7:88:07:5a:f7:a7: fe:77:93:57:10:e4:64:59:08:62:89:83:cf:fb:9c:ac:1a:ca: c5:3f:8e:dc:20:3b:d6:4e:41:45:35:64:9c:9b:68:87:cc:bf: b5:78:01:d1:0f:ad:84:fe:28:4a:c1:c6:d5:e2:a8:5e:e2:f8: 16:5c:71:23:df:90:04:5f:60:cb:ee:4f:93:35:c9:76:e7:3e: ab:a5:3c:fd:ae:40:72:99:87:cb:a3:5a:22:34:d8:93:fc:cf: 6c:be:1a:35:2d:84:63:20:bc:16:8a:0a:59:b9:c3:e9:5e:94: 2a:67:11:ed -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUAnVGxlDMCqs+szRJ89IB7RgVAj4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkwNzA2MzMzNFoX DTI0MDkwNTA2MzgzNFowMzExMC8GA1UEAxMoNTZCMjVEMjk5QTRBQjU3RjUxMUJC MUZGNzg3MzE2M0JGQ0FCMzc1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0qNQVwwdLRDSaOWRIO4kzGAWhTJNfk+eykMJ/xnj7W5SkvW8iQKJI8nX5q DAZTO+WMEaychARMFEKzyz6i3873iDS1lmjxZjlyP4aKfb7dBbI0XiEEqIlVqcR3 cpG6djg+hAyoDl+JRZQ12ToBg0YFKZhVkyEFcBcfGenvpfEE1axtXagNRoK7GHxs GYs/mjXrAZHjcUxo7gjXI5qoGYi5q6/TG63Kdzq9UtuxWU1chhCtaFeSa2J720vm GMizN4vHXPPlAWdzvXbMH/CXAhzrMu6e4nosz6Nf464FO8jDxnQiaN6ieCzmAz6V fbxhUcSsWi/BDjmnlHGwRCerAJUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRWsl0p mkq1f1Ebsf94cxY7/Ks3UzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUxNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfgEjANBgkqhkiG9w0BAQsFAAOCAQEAAB6RQX3E7TRaWZz5dHEe 9P7pGBLFggdltYCBepLjPB7QEbOtN9kC2b+IFOnTX+SX/UK0OA0+0zu4E9buY9Zx mMtzKoHEz9FCpyKMLS1/Sr24SXhLiTNyz9XcBZ1jldDCCkGJibDB0TGbSqZT1TYt 3ZamVqC9NITfHseJ26L6CMzaFQjGfrxSiBje94gHWven/neTVxDkZFkIYomDz/uc rBrKxT+O3CA71k5BRTVknJtoh8y/tXgB0Q+thP4oSsHG1eKoXuL4FlxxI9+QBF9g y+5PkzXJduc+q6U8/a5AcpmHy6NaIjTYk/zPbL4aNS2EYyC8FooKWbnD6V6UKmcR 7Q== -----END CERTIFICATE-----Generated at Wed May 8 14:59:57 2024 by rpki-client on console-ams.rpki-client.org