$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151529.roa File: AS151529.roa (raw, json) Hash identifier: ZpJ9op5MJFxi3TLwBTBOJ5Dsbvb8wtFwcVXbzFH2VB8= Subject key identifier: 70:1E:36:AC:A5:60:69:5C:14:06:C4:6E:08:47:1C:4F:91:59:A8:E7 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5DABE64E7E3FAF7EC586488505A848C6C5490804 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151529.roa Signing time: Wed 04 Oct 2023 06:37:16 +0000 ROA not before: Wed 04 Oct 2023 06:32:16 +0000 ROA not after: Wed 02 Oct 2024 06:37:16 +0000 asID: 151529 IP address blocks: 103.224.16.0/23 maxlen: 24 2001:df2:f6c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:ab:e6:4e:7e:3f:af:7e:c5:86:48:85:05:a8:48:c6:c5:49:08:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 4 06:32:16 2023 GMT Not After : Oct 2 06:37:16 2024 GMT Subject: CN=701E36ACA560695C1406C46E08471C4F9159A8E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:36:28:44:04:ed:58:3b:dc:ff:64:9a:00:d1: aa:f8:d8:9e:93:50:48:60:4c:3e:50:43:91:71:ac: 66:b7:11:83:f2:5e:4e:56:c3:84:5b:cc:76:58:1a: 28:d2:6f:cc:e6:22:76:31:7f:55:83:4a:3a:77:ff: 90:80:c4:a8:61:ef:d9:38:02:02:96:96:1a:16:37: f4:e4:2e:02:a4:1b:32:26:d0:1d:64:f0:a4:1d:c1: a5:68:60:3f:45:70:aa:31:3b:66:f9:96:16:f9:ff: 59:c5:69:ea:d3:94:ff:fb:22:9c:f5:c9:bd:d8:ce: 1e:5f:9e:d6:48:16:2b:54:62:fa:df:80:2c:4c:58: 53:55:8b:10:d9:e1:8f:cd:34:26:b8:b4:cb:18:0f: e2:0d:de:b6:b4:c5:44:07:09:c0:74:c8:bb:4e:ad: 33:fc:e5:f1:20:12:8d:43:4a:ce:92:35:40:e6:0c: e3:9c:5a:0a:72:3c:56:d5:d7:a3:d1:eb:13:1e:e3: f9:a4:42:4e:98:9c:f3:88:fe:20:46:d1:7c:be:f8: 2c:3d:3b:0e:48:e6:1e:ec:bc:bd:d7:d1:ce:f4:52: 57:83:7a:09:3c:0f:21:62:cc:85:53:48:f5:d9:22: a1:a9:e6:aa:2d:88:01:0f:8e:5e:f4:0c:3d:f8:b5: 21:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:1E:36:AC:A5:60:69:5C:14:06:C4:6E:08:47:1C:4F:91:59:A8:E7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151529.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.224.16.0/23 IPv6: 2001:df2:f6c0::/48 Signature Algorithm: sha256WithRSAEncryption 0b:59:f3:87:74:1b:4e:70:a3:17:27:65:d2:a2:38:f8:5d:2a: bf:d4:e6:d5:be:14:5b:a5:b9:d5:05:68:87:78:13:b0:fc:0e: 56:f9:28:99:55:13:d5:f0:88:93:4e:03:1c:9e:7c:66:33:be: 0e:c3:98:ef:0e:b7:f7:e4:f8:19:b0:ef:d8:57:5c:e8:29:b3: 3b:4b:41:08:91:d2:0b:13:ba:db:a5:d2:16:75:43:51:66:f9: b8:88:94:66:ea:30:4c:f5:a1:3e:70:96:89:27:48:f6:42:16: b6:f6:cf:97:77:88:2c:f2:47:a3:05:b9:9c:d2:f7:1a:4f:47: 61:f9:9f:aa:27:21:1f:69:a6:a0:99:62:c2:b4:57:f6:ea:bf: 6e:8b:f2:f1:b1:7e:38:fb:b9:bc:7a:3e:43:49:64:9c:98:62: e1:72:9b:77:2e:50:49:d1:45:d4:98:96:82:65:af:e8:bd:1e: e3:cb:d1:40:14:c2:a6:b4:0a:45:a1:8f:8c:61:84:cb:f6:81: a4:6f:c9:ce:aa:61:40:86:66:a4:b5:c4:e0:41:fd:52:59:51: ee:a0:6e:74:c0:cf:03:39:58:01:a8:1f:9f:93:c1:6f:cc:5b: 2c:03:2f:d1:92:50:f7:08:54:97:e9:52:93:29:9b:2d:f3:71: 24:b5:97:e6 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUXavmTn4/r37FhkiFBahIxsVJCAQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAwNDA2MzIxNloX DTI0MTAwMjA2MzcxNlowMzExMC8GA1UEAxMoNzAxRTM2QUNBNTYwNjk1QzE0MDZD NDZFMDg0NzFDNEY5MTU5QThFNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMw2KEQE7Vg73P9kmgDRqvjYnpNQSGBMPlBDkXGsZrcRg/JeTlbDhFvMdlga KNJvzOYidjF/VYNKOnf/kIDEqGHv2TgCApaWGhY39OQuAqQbMibQHWTwpB3BpWhg P0VwqjE7ZvmWFvn/WcVp6tOU//sinPXJvdjOHl+e1kgWK1Ri+t+ALExYU1WLENnh j800Jri0yxgP4g3etrTFRAcJwHTIu06tM/zl8SASjUNKzpI1QOYM45xaCnI8VtXX o9HrEx7j+aRCTpic84j+IEbRfL74LD07DkjmHuy8vdfRzvRSV4N6CTwPIWLMhVNI 9dkioanmqi2IAQ+OXvQMPfi1IQcCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBRwHjas pWBpXBQGxG4IRxxPkVmo5zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUyOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWfgEDAPBAIAAjAJAwcAIAEN8vbAMA0GCSqGSIb3DQEBCwUAA4IB AQALWfOHdBtOcKMXJ2XSojj4XSq/1ObVvhRbpbnVBWiHeBOw/A5W+SiZVRPV8IiT TgMcnnxmM74Ow5jvDrf35PgZsO/YV1zoKbM7S0EIkdILE7rbpdIWdUNRZvm4iJRm 6jBM9aE+cJaJJ0j2Qha29s+Xd4gs8kejBbmc0vcaT0dh+Z+qJyEfaaagmWLCtFf2 6r9ui/LxsX44+7m8ej5DSWScmGLhcpt3LlBJ0UXUmJaCZa/ovR7jy9FAFMKmtApF oY+MYYTL9oGkb8nOqmFAhmaktcTgQf1SWVHuoG50wM8DOVgBqB+fk8FvzFssAy/R klD3CFSX6VKTKZst83EktZfm -----END CERTIFICATE-----Generated at Wed May 8 17:45:23 2024 by rpki-client on console-ams.rpki-client.org