$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151526.roa File: AS151526.roa (raw, json) Hash identifier: 0Mcu1n77G5ITNgdxcPUzyTToiZrhfEGhV4wzngLurY0= Subject key identifier: 1A:14:5D:BB:C2:0B:F2:FA:0F:D1:D4:A9:B0:51:6A:8C:61:3A:AF:8C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0F02D32F66BF4146ED7F0A5FC7881E6059FD4935 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151526.roa Signing time: Thu 14 Sep 2023 07:40:15 +0000 ROA not before: Thu 14 Sep 2023 07:35:15 +0000 ROA not after: Thu 12 Sep 2024 07:40:15 +0000 asID: 151526 IP address blocks: 103.249.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:02:d3:2f:66:bf:41:46:ed:7f:0a:5f:c7:88:1e:60:59:fd:49:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 14 07:35:15 2023 GMT Not After : Sep 12 07:40:15 2024 GMT Subject: CN=1A145DBBC20BF2FA0FD1D4A9B0516A8C613AAF8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:9c:08:0a:9c:54:7d:ad:e4:a2:eb:1e:ca:e9: 6b:51:5e:8a:4f:05:ad:1e:08:4d:99:e9:4f:bd:c1: d5:2b:49:58:6a:3f:9b:21:9b:9c:47:9c:53:c1:7f: a7:37:7e:a5:8f:bf:fc:f5:3c:03:75:05:04:34:3e: 2c:bf:33:b9:25:35:8c:fd:be:88:4a:81:27:b3:db: a6:31:6f:86:9c:ed:cc:60:a2:39:c2:bf:bc:21:a9: 36:6a:a9:bc:ac:5a:f0:69:47:a2:57:65:b8:0d:94: 87:4b:e9:9d:b1:f0:c9:04:2a:25:e3:e8:36:72:3e: 78:3e:fa:fe:f8:15:65:1a:ff:a0:00:86:ec:c2:84: c2:a7:f0:92:95:37:e8:11:1b:a0:56:88:1b:12:71: 6a:3a:6d:7f:5b:97:ad:92:27:aa:5a:ea:d8:d9:ef: ff:f6:9b:89:61:8e:7f:b7:13:18:dc:78:50:d6:9a: ec:87:2e:db:45:2a:46:fd:82:ee:e4:e9:2a:0e:04: da:9f:7c:88:c8:30:b8:ad:44:3b:ef:78:0d:6d:c2: 63:f6:91:d0:ab:d6:4d:7b:6f:71:92:db:14:12:3a: 3e:eb:15:fc:ab:c0:17:b3:b4:e9:89:04:54:c4:0b: 56:0c:3b:8b:1f:47:c5:c2:ec:8e:6c:f5:b1:27:15: 2a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:14:5D:BB:C2:0B:F2:FA:0F:D1:D4:A9:B0:51:6A:8C:61:3A:AF:8C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151526.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.249.226.0/24 Signature Algorithm: sha256WithRSAEncryption 91:9d:14:cb:ea:b7:e7:29:7e:8d:18:6f:25:e7:43:43:4f:96: 85:27:16:c0:eb:8f:07:02:dc:6d:47:41:77:5f:99:d4:01:af: 64:dd:82:23:33:ba:2a:e6:53:c4:69:8f:af:55:4d:c7:18:2d: 22:76:68:e4:f4:5d:df:26:e7:41:4e:c2:20:fc:71:00:d7:2c: cb:09:f8:1d:d5:2c:a1:b6:96:d8:ab:51:39:27:58:b2:d9:b9: e5:f9:47:e1:8c:8e:aa:6a:f2:06:f4:2f:82:43:45:19:5a:66: 83:56:e8:e7:68:95:51:7d:c9:8f:fc:c7:dd:74:c1:25:e3:c5: 95:08:86:b2:3a:a4:68:72:79:26:8b:11:e3:0c:6b:2d:b6:db: ea:21:05:1b:f2:69:7f:9f:08:25:56:bc:8c:c9:33:30:b2:e8: 88:b1:8a:5d:86:16:77:45:b9:62:b8:92:f8:af:e7:23:ff:97: 0f:5f:42:e4:9f:77:d9:bd:05:f3:e3:f7:74:7b:d6:2f:13:9b: 42:0e:72:0d:01:f2:04:84:77:78:06:22:86:c7:f1:d7:7c:b3: 23:03:f2:a5:41:c9:34:84:fb:f5:7e:63:5a:65:3c:0f:e6:97: 31:3c:d4:62:65:c0:d0:e5:94:8e:ff:66:6d:81:3e:0d:2a:66: 75:3c:eb:54 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUDwLTL2a/QUbtfwpfx4geYFn9STUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkxNDA3MzUxNVoX DTI0MDkxMjA3NDAxNVowMzExMC8GA1UEAxMoMUExNDVEQkJDMjBCRjJGQTBGRDFE NEE5QjA1MTZBOEM2MTNBQUY4QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANqcCAqcVH2t5KLrHsrpa1Feik8FrR4ITZnpT73B1StJWGo/myGbnEecU8F/ pzd+pY+//PU8A3UFBDQ+LL8zuSU1jP2+iEqBJ7PbpjFvhpztzGCiOcK/vCGpNmqp vKxa8GlHoldluA2Uh0vpnbHwyQQqJePoNnI+eD76/vgVZRr/oACG7MKEwqfwkpU3 6BEboFaIGxJxajptf1uXrZInqlrq2Nnv//abiWGOf7cTGNx4UNaa7Icu20UqRv2C 7uTpKg4E2p98iMgwuK1EO+94DW3CY/aR0KvWTXtvcZLbFBI6PusV/KvAF7O06YkE VMQLVgw7ix9HxcLsjmz1sScVKi8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQaFF27 wgvy+g/R1KmwUWqMYTqvjDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUyNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGf54jANBgkqhkiG9w0BAQsFAAOCAQEAkZ0Uy+q35yl+jRhvJedD Q0+WhScWwOuPBwLcbUdBd1+Z1AGvZN2CIzO6KuZTxGmPr1VNxxgtInZo5PRd3ybn QU7CIPxxANcsywn4HdUsobaW2KtROSdYstm55flH4YyOqmryBvQvgkNFGVpmg1bo 52iVUX3Jj/zH3XTBJePFlQiGsjqkaHJ5JosR4wxrLbbb6iEFG/Jpf58IJVa8jMkz MLLoiLGKXYYWd0W5YriS+K/nI/+XD19C5J932b0F8+P3dHvWLxObQg5yDQHyBIR3 eAYihsfx13yzIwPypUHJNIT79X5jWmU8D+aXMTzUYmXA0OWUjv9mbYE+DSpmdTzr VA== -----END CERTIFICATE-----Generated at Wed May 8 04:37:58 2024 by rpki-client on console-fra.rpki-client.org