$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151527.roa File: AS151527.roa (raw, json) Hash identifier: sBfUm2H8VVtyUcD+vw9zekAY9ajruUwWdl6X7Os1yuw= Subject key identifier: D2:4C:3F:B6:7C:D0:9B:D1:3C:B9:3D:65:8E:25:19:21:BA:F0:83:55 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 690294880A7DF7B9736F1849A7237021D61DCF96 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151527.roa Signing time: Fri 01 Sep 2023 09:20:10 +0000 ROA not before: Fri 01 Sep 2023 09:15:10 +0000 ROA not after: Fri 30 Aug 2024 09:20:10 +0000 asID: 151527 IP address blocks: 103.236.172.0/23 maxlen: 24 2001:df2:bcc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:02:94:88:0a:7d:f7:b9:73:6f:18:49:a7:23:70:21:d6:1d:cf:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 1 09:15:10 2023 GMT Not After : Aug 30 09:20:10 2024 GMT Subject: CN=D24C3FB67CD09BD13CB93D658E251921BAF08355 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:84:dd:0a:03:5d:fe:31:fc:18:94:7b:8e:8d: f9:20:c9:82:8f:e8:7b:5b:45:f2:36:f4:9f:10:90: 9a:31:a0:b4:e9:c7:82:84:cf:c5:b6:91:48:7e:79: ec:b4:b0:19:a8:83:34:2b:71:41:88:0a:85:5a:25: c1:c7:c1:02:3a:30:d8:31:e7:ed:d8:0b:09:4c:75: b6:a2:f9:ae:c4:af:a8:fd:c4:44:30:71:5c:e9:ff: 8c:2a:2a:47:3e:c1:c1:de:c8:ed:e0:25:dc:91:ba: 3e:c9:ff:70:87:a6:a6:ab:84:46:0e:ed:6b:75:84: 17:a1:9c:fe:25:7c:e0:d5:34:a9:bf:09:ab:ee:5e: 55:ad:d2:cb:4d:e6:8d:4b:68:37:36:54:1c:75:b0: 6a:51:8e:3d:00:d7:11:7b:23:c6:d6:ac:4c:d6:d6: 09:11:4d:06:24:ab:2a:e3:20:bf:2b:9f:21:5a:2d: 4e:b7:22:73:72:c4:46:e7:51:29:17:f0:3e:f4:7e: a3:28:dd:32:14:52:9f:11:51:84:1c:d5:f4:78:8c: 5a:8f:6e:dc:67:2c:61:a4:58:6a:1f:fb:60:5e:e7: c3:fe:fb:13:c9:d4:8d:1c:d8:b1:24:bd:bd:93:91: ee:68:78:dd:b1:0b:4d:40:76:3b:cd:ab:99:a2:0e: e9:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:4C:3F:B6:7C:D0:9B:D1:3C:B9:3D:65:8E:25:19:21:BA:F0:83:55 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151527.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.236.172.0/23 IPv6: 2001:df2:bcc0::/48 Signature Algorithm: sha256WithRSAEncryption 19:a9:31:17:9e:ea:24:8a:ad:0a:02:5c:d5:5d:55:32:ad:ac: 0c:83:6e:60:d4:53:63:4e:4a:6f:bb:fe:00:85:a9:7f:9d:ad: 96:6a:90:66:a7:4b:7c:b7:f3:5d:8d:33:4f:d1:d4:00:4f:ad: 82:43:97:30:28:16:30:e9:58:55:af:e5:6a:ab:38:42:cc:1f: 21:8e:c8:f3:5f:b9:9e:10:aa:da:bb:0d:37:23:cc:52:e3:bd: df:9e:43:68:61:80:15:ce:6d:1f:21:4f:a2:bb:e1:f9:22:32: 1f:09:f3:3b:59:56:54:0b:8a:9f:19:2b:32:9b:b0:6a:1c:62: 3b:ce:a1:11:56:39:21:44:60:45:ec:7c:92:45:cc:c9:c9:5f: ea:70:2e:47:a9:3e:9b:bb:37:b1:3f:28:df:d4:6e:60:78:0d: 38:05:6b:08:f8:e6:d3:e6:3d:f6:19:90:32:5f:5e:47:66:9e: 72:b4:be:3e:a6:95:e4:74:35:79:ce:1d:5d:b6:14:a6:e4:e1: 8c:d8:ed:f3:c5:73:bf:32:c9:3a:27:f6:7b:a7:50:34:58:98: 13:bd:72:94:cf:cc:3d:bf:4a:20:16:4d:3b:00:38:71:bb:5d: 12:52:e9:f9:ad:e4:7f:f9:a5:60:2e:e4:17:06:a1:06:05:57: 5f:3b:db:09 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUaQKUiAp997lzbxhJpyNwIdYdz5YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkwMTA5MTUxMFoX DTI0MDgzMDA5MjAxMFowMzExMC8GA1UEAxMoRDI0QzNGQjY3Q0QwOUJEMTNDQjkz RDY1OEUyNTE5MjFCQUYwODM1NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOqE3QoDXf4x/BiUe46N+SDJgo/oe1tF8jb0nxCQmjGgtOnHgoTPxbaRSH55 7LSwGaiDNCtxQYgKhVolwcfBAjow2DHn7dgLCUx1tqL5rsSvqP3ERDBxXOn/jCoq Rz7Bwd7I7eAl3JG6Psn/cIempquERg7ta3WEF6Gc/iV84NU0qb8Jq+5eVa3Sy03m jUtoNzZUHHWwalGOPQDXEXsjxtasTNbWCRFNBiSrKuMgvyufIVotTrcic3LERudR KRfwPvR+oyjdMhRSnxFRhBzV9HiMWo9u3GcsYaRYah/7YF7nw/77E8nUjRzYsSS9 vZOR7mh43bELTUB2O82rmaIO6acCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBTSTD+2 fNCb0Ty5PWWOJRkhuvCDVTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUyNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWfsrDAPBAIAAjAJAwcAIAEN8rzAMA0GCSqGSIb3DQEBCwUAA4IB AQAZqTEXnuokiq0KAlzVXVUyrawMg25g1FNjTkpvu/4Ahal/na2WapBmp0t8t/Nd jTNP0dQAT62CQ5cwKBYw6VhVr+VqqzhCzB8hjsjzX7meEKrauw03I8xS473fnkNo YYAVzm0fIU+iu+H5IjIfCfM7WVZUC4qfGSsym7BqHGI7zqERVjkhRGBF7HySRczJ yV/qcC5HqT6buzexPyjf1G5geA04BWsI+ObT5j32GZAyX15HZp5ytL4+ppXkdDV5 zh1dthSm5OGM2O3zxXO/Msk6J/Z7p1A0WJgTvXKUz8w9v0ogFk07ADhxu10SUun5 reR/+aVgLuQXBqEGBVdfO9sJ -----END CERTIFICATE-----Generated at Wed May 8 14:59:57 2024 by rpki-client on console-ams.rpki-client.org