$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151536.roa File: AS151536.roa (raw, json) Hash identifier: MBRjwfxmmMZ1G9iprGj3dKaOfPpWVjkm5irXQLjjgQ4= Subject key identifier: 9D:CA:FE:D0:4A:CF:F7:2E:8C:AD:29:CD:47:31:97:7B:09:56:BF:D5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1CD4FD9546F7AB89ED8FDE392B4A75045E369D28 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151536.roa Signing time: Thu 05 Oct 2023 04:35:10 +0000 ROA not before: Thu 05 Oct 2023 04:30:10 +0000 ROA not after: Thu 03 Oct 2024 04:35:10 +0000 asID: 151536 IP address blocks: 103.244.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:d4:fd:95:46:f7:ab:89:ed:8f:de:39:2b:4a:75:04:5e:36:9d:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 5 04:30:10 2023 GMT Not After : Oct 3 04:35:10 2024 GMT Subject: CN=9DCAFED04ACFF72E8CAD29CD4731977B0956BFD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:86:a0:b8:73:59:45:36:78:72:6c:dd:7d:0d: ea:41:1b:47:2f:8b:6c:3e:f2:69:69:b0:90:f5:69: fc:25:40:f9:26:fd:12:50:b1:4c:64:2f:5a:4b:f3: b4:fc:54:85:75:ed:3b:fa:8f:72:17:93:be:a6:93: 7a:23:24:39:6d:65:16:c2:bc:26:51:73:db:77:af: 9a:c4:c5:f9:11:a2:69:09:1e:8d:f5:31:d7:f9:97: 35:c9:18:d9:74:17:10:2b:5f:1a:51:e7:92:60:55: 89:2f:48:07:42:a2:3f:2f:54:ae:2b:14:c7:3d:c5: d9:23:1f:db:72:9c:c5:a4:bf:e3:47:ca:c9:e2:a3: 86:77:6e:13:a2:6c:38:15:03:15:6d:98:e0:45:aa: f7:42:d1:4a:a8:5e:22:ed:46:a3:ad:bf:c2:44:2b: e6:0b:df:f4:e0:e4:9e:4c:a9:02:8e:84:e6:31:dd: 84:b6:b6:7a:9c:30:9d:b2:c9:0a:74:69:68:55:43: a9:53:c7:12:80:3c:26:bb:cd:59:17:92:a1:20:13: c3:1e:c0:03:72:b4:84:be:11:4f:c4:d3:e9:a4:df: 8c:02:ae:e3:88:b3:11:54:37:d9:03:e2:89:18:48: 0c:c8:01:e6:54:e5:5b:9e:7f:3d:6b:30:31:c2:5c: 96:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:CA:FE:D0:4A:CF:F7:2E:8C:AD:29:CD:47:31:97:7B:09:56:BF:D5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.23.0/24 Signature Algorithm: sha256WithRSAEncryption 42:7c:c3:47:67:b6:6f:62:f4:e6:f0:c4:25:7c:93:96:9e:61: a9:8a:fb:3c:dc:f8:04:c3:06:7d:76:7f:a1:83:ff:48:4c:2d: 6a:4b:92:15:2c:71:bd:da:bf:cc:cc:cb:ba:bb:c3:a3:d5:ab: be:93:52:79:de:65:4d:49:68:67:0b:1e:3e:64:0c:d0:b3:1c: 83:50:22:50:26:58:c5:7e:d5:23:94:69:7a:f4:31:27:5c:d7: 14:b4:a4:09:1f:5f:8f:95:01:d6:3a:77:78:2c:bd:e5:4b:d8: 90:15:9e:bc:65:66:20:3a:58:da:6e:bd:32:25:6f:73:47:98: 8d:18:9c:53:8b:88:0e:25:87:53:1b:21:3b:e6:50:22:31:fa: d9:4a:72:01:d6:c5:25:c9:a9:45:42:a6:94:6b:1c:c1:2a:aa: 5d:5d:dc:ff:1e:78:b1:bc:38:ec:46:2f:43:86:66:ba:e1:a9: cc:26:d3:e4:c6:5b:3f:d5:15:66:72:b7:25:b6:a0:f4:3b:58: 7e:7e:fa:3e:73:99:90:0e:29:b8:0f:7b:3b:ae:c5:09:16:e7: 77:58:1b:fd:8a:4f:4b:21:fa:cc:0c:1e:1c:53:62:a9:82:51: 0b:29:a4:85:60:82:d1:20:5c:d6:36:45:49:72:31:f1:d6:47: ac:28:1d:94 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUHNT9lUb3q4ntj945K0p1BF42nSgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAwNTA0MzAxMFoX DTI0MTAwMzA0MzUxMFowMzExMC8GA1UEAxMoOURDQUZFRDA0QUNGRjcyRThDQUQy OUNENDczMTk3N0IwOTU2QkZENTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANyGoLhzWUU2eHJs3X0N6kEbRy+LbD7yaWmwkPVp/CVA+Sb9ElCxTGQvWkvz tPxUhXXtO/qPcheTvqaTeiMkOW1lFsK8JlFz23evmsTF+RGiaQkejfUx1/mXNckY 2XQXECtfGlHnkmBViS9IB0KiPy9UrisUxz3F2SMf23KcxaS/40fKyeKjhnduE6Js OBUDFW2Y4EWq90LRSqheIu1Go62/wkQr5gvf9ODknkypAo6E5jHdhLa2epwwnbLJ CnRpaFVDqVPHEoA8JrvNWReSoSATwx7AA3K0hL4RT8TT6aTfjAKu44izEVQ32QPi iRhIDMgB5lTlW55/PWswMcJclqkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSdyv7Q Ss/3LoytKc1HMZd7CVa/1TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGf0FzANBgkqhkiG9w0BAQsFAAOCAQEAQnzDR2e2b2L05vDEJXyT lp5hqYr7PNz4BMMGfXZ/oYP/SEwtakuSFSxxvdq/zMzLurvDo9WrvpNSed5lTUlo ZwsePmQM0LMcg1AiUCZYxX7VI5RpevQxJ1zXFLSkCR9fj5UB1jp3eCy95UvYkBWe vGVmIDpY2m69MiVvc0eYjRicU4uIDiWHUxshO+ZQIjH62UpyAdbFJcmpRUKmlGsc wSqqXV3c/x54sbw47EYvQ4ZmuuGpzCbT5MZbP9UVZnK3Jbag9DtYfn76PnOZkA4p uA97O67FCRbnd1gb/YpPSyH6zAweHFNiqYJRCymkhWCC0SBc1jZFSXIx8dZHrCgd lA== -----END CERTIFICATE-----Generated at Wed May 8 14:59:57 2024 by rpki-client on console-ams.rpki-client.org