$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151520.roa File: AS151520.roa (raw, json) Hash identifier: ZCxemmF20T5Wt3wrZ7tR6QGW8Nnzvr7iNxwepAH71PA= Subject key identifier: 5E:F6:D9:F0:E5:DE:76:5F:9D:7F:03:82:5C:EA:02:74:3A:4F:B8:79 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0501B27C9BE2F6981904A67A3FDC8CD2FB9238B2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151520.roa Signing time: Mon 21 Aug 2023 04:05:41 +0000 ROA not before: Mon 21 Aug 2023 04:00:41 +0000 ROA not after: Mon 19 Aug 2024 04:05:41 +0000 asID: 151520 IP address blocks: 103.236.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:01:b2:7c:9b:e2:f6:98:19:04:a6:7a:3f:dc:8c:d2:fb:92:38:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 21 04:00:41 2023 GMT Not After : Aug 19 04:05:41 2024 GMT Subject: CN=5EF6D9F0E5DE765F9D7F03825CEA02743A4FB879 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:5d:b8:c1:ec:ae:76:eb:f2:3b:51:5f:e3:9e: b8:84:93:57:c5:20:88:15:66:3a:89:6b:61:dc:34: c6:41:60:00:33:c8:4f:c4:7e:dc:25:65:bf:fe:84: 00:7a:89:18:b6:d8:78:44:c6:50:26:f2:11:0a:6f: 7c:f4:3c:28:d7:fd:73:22:fe:36:26:6d:de:cc:c5: b4:26:f7:c3:11:fc:07:3d:9b:93:1c:d6:31:80:39: 0b:1d:f0:f6:7e:fd:7f:4c:9b:6c:02:1c:55:7b:1f: 77:2f:49:47:d2:57:6b:30:72:b3:a6:e7:ea:f5:ac: 2b:b3:ea:ca:39:0c:f7:2e:9f:38:73:b5:3a:60:6d: 1f:18:b1:fb:de:f5:83:bf:94:8c:88:74:33:0f:6b: a6:b4:73:b1:e0:17:4f:70:91:62:10:ca:60:0d:58: 4e:29:26:a7:20:60:79:a7:a5:aa:3a:b7:d0:1c:33: e2:5b:9c:79:07:a9:12:7c:c6:c8:7f:7e:64:d7:08: 55:9d:7a:c7:ee:3f:a8:ef:31:57:90:f8:88:c7:37: 28:bd:1c:f0:54:d3:40:36:e7:d1:17:52:66:86:94: f3:ee:22:64:63:f1:69:48:c8:09:a4:68:4c:ce:fb: 1a:00:d4:89:85:5e:28:d4:52:91:c4:98:81:be:01: a9:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:F6:D9:F0:E5:DE:76:5F:9D:7F:03:82:5C:EA:02:74:3A:4F:B8:79 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151520.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.236.142.0/23 Signature Algorithm: sha256WithRSAEncryption 45:2d:12:4a:f5:20:a9:99:ae:c9:79:8b:27:9a:3d:13:65:4a: af:a3:54:1c:15:ee:ad:c2:66:91:60:37:4e:4d:aa:4b:52:2b: 4d:9a:3f:6c:d4:77:90:1d:25:93:56:a3:4f:33:38:c2:8e:68: 60:74:43:c8:ba:16:78:fd:a2:c1:c6:a5:4b:72:49:18:d3:25: a1:41:26:ab:34:25:ff:07:4c:4c:2e:1b:d7:19:9e:18:d6:0c: 61:37:90:56:fd:a3:45:5a:40:93:b4:e1:5b:8a:ac:31:7c:5e: dd:a6:16:dd:23:29:02:23:f8:dd:32:6f:7f:a1:9c:72:51:fc: 97:09:17:6f:a6:c5:54:be:94:42:9f:a0:08:ed:84:a8:50:36: cf:ec:69:d3:28:04:27:d8:62:78:1c:6d:c4:d3:bf:89:d8:8a: 4c:4b:32:c6:11:b7:60:20:42:07:d7:d7:68:4c:e3:50:95:39: 3f:d8:36:b8:76:1c:b2:55:f7:c3:4c:d2:92:52:2b:e5:b4:02: 25:76:22:6a:a2:70:32:84:cf:5a:1a:72:5d:b8:e6:a7:48:6d: 09:7f:5b:f2:f4:9a:12:02:f3:59:b0:22:91:a0:a1:af:14:94: bb:7f:5f:f4:b7:e9:e4:a6:46:b0:e4:5e:19:2d:a0:3e:e5:38: e4:a7:5f:33 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUBQGyfJvi9pgZBKZ6P9yM0vuSOLIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgyMTA0MDA0MVoX DTI0MDgxOTA0MDU0MVowMzExMC8GA1UEAxMoNUVGNkQ5RjBFNURFNzY1RjlEN0Yw MzgyNUNFQTAyNzQzQTRGQjg3OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN5duMHsrnbr8jtRX+OeuISTV8UgiBVmOolrYdw0xkFgADPIT8R+3CVlv/6E AHqJGLbYeETGUCbyEQpvfPQ8KNf9cyL+NiZt3szFtCb3wxH8Bz2bkxzWMYA5Cx3w 9n79f0ybbAIcVXsfdy9JR9JXazBys6bn6vWsK7PqyjkM9y6fOHO1OmBtHxix+971 g7+UjIh0Mw9rprRzseAXT3CRYhDKYA1YTikmpyBgeaelqjq30Bwz4luceQepEnzG yH9+ZNcIVZ16x+4/qO8xV5D4iMc3KL0c8FTTQDbn0RdSZoaU8+4iZGPxaUjICaRo TM77GgDUiYVeKNRSkcSYgb4BqV0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRe9tnw 5d52X51/A4Jc6gJ0Ok+4eTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUyMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfsjjANBgkqhkiG9w0BAQsFAAOCAQEARS0SSvUgqZmuyXmLJ5o9 E2VKr6NUHBXurcJmkWA3Tk2qS1IrTZo/bNR3kB0lk1ajTzM4wo5oYHRDyLoWeP2i wcalS3JJGNMloUEmqzQl/wdMTC4b1xmeGNYMYTeQVv2jRVpAk7ThW4qsMXxe3aYW 3SMpAiP43TJvf6GcclH8lwkXb6bFVL6UQp+gCO2EqFA2z+xp0ygEJ9hieBxtxNO/ idiKTEsyxhG3YCBCB9fXaEzjUJU5P9g2uHYcslX3w0zSklIr5bQCJXYiaqJwMoTP WhpyXbjmp0htCX9b8vSaEgLzWbAikaChrxSUu39f9Lfp5KZGsOReGS2gPuU45Kdf Mw== -----END CERTIFICATE-----Generated at Wed May 8 17:45:23 2024 by rpki-client on console-ams.rpki-client.org