$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151538.roa File: AS151538.roa (raw, json) Hash identifier: ZxXYlUWRRFh7HjY8pFgqSewWwh78RcrHEObZdxJHsPc= Subject key identifier: 2D:BB:D8:7F:3E:9C:71:90:8F:AC:17:F5:8A:23:DE:B8:20:99:85:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 77E8AA8840720002ED897E6FCA10CE997238A82F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151538.roa Signing time: Mon 14 Aug 2023 02:17:51 +0000 ROA not before: Mon 14 Aug 2023 02:12:51 +0000 ROA not after: Mon 12 Aug 2024 02:17:51 +0000 asID: 151538 IP address blocks: 103.248.8.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:e8:aa:88:40:72:00:02:ed:89:7e:6f:ca:10:ce:99:72:38:a8:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 14 02:12:51 2023 GMT Not After : Aug 12 02:17:51 2024 GMT Subject: CN=2DBBD87F3E9C71908FAC17F58A23DEB82099856B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fd:39:95:5c:ac:79:5c:8c:63:fa:e7:46:49: 88:39:09:ba:74:23:92:af:00:26:1b:7d:23:32:b8: 74:16:57:f7:da:14:2b:7f:e9:4c:c1:db:e8:06:32: 1d:86:f2:08:50:8b:9f:ac:7a:fd:e0:f6:93:f7:00: db:32:1f:d2:0d:38:7d:03:20:94:e1:44:41:c1:f9: f2:db:56:fa:1f:8c:be:c4:09:46:c6:e0:05:48:75: 2c:88:19:d7:ba:30:cc:49:83:f9:64:06:4c:be:70: cd:88:5f:de:ae:ef:92:ff:75:90:a4:51:96:03:4f: 17:0b:16:03:92:d8:3e:d5:8c:18:ba:8f:fe:9b:13: 05:a3:84:4b:01:98:01:ed:1b:2b:14:11:4f:68:61: 16:18:92:fa:4a:6f:3f:cc:c0:c7:e0:90:ad:fc:6e: 42:80:06:c0:f7:c8:62:73:ce:e0:0f:ec:f5:ea:bf: 8c:8b:18:83:24:b2:ef:c6:7b:24:4e:f8:54:7a:a1: b8:44:39:42:9f:22:c3:ce:91:ed:5b:f4:07:ae:e5: 34:b4:36:b5:af:4e:0c:ee:4f:77:62:a7:1a:90:f1: a8:81:2d:42:2d:1f:7f:43:08:90:c6:83:7b:f6:73: d8:cc:ec:b4:4a:e1:74:a0:45:4e:9f:69:bf:be:0f: 50:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:BB:D8:7F:3E:9C:71:90:8F:AC:17:F5:8A:23:DE:B8:20:99:85:6B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.248.8.0/23 Signature Algorithm: sha256WithRSAEncryption 42:4a:08:31:cf:b1:49:a9:58:c4:7d:fd:55:a2:78:7e:2f:af: af:b9:39:48:74:1b:40:b5:85:8b:d0:97:e7:00:6b:f6:3a:37: 73:37:91:b0:72:c5:51:fa:80:2f:19:55:d9:4b:b4:29:88:41: 8f:07:4a:d1:96:d7:18:03:b1:c4:70:6a:90:3c:3c:08:85:68: 0b:8c:39:c7:d4:18:88:6d:55:3d:5e:84:e1:5f:18:e9:f1:f4: be:ce:f7:6b:08:7d:d6:50:61:27:5b:e7:7b:42:3b:ea:c6:50: 59:da:15:93:01:c8:72:03:2a:70:74:0d:bb:d0:b6:e5:fa:a8: 5e:17:d5:44:02:da:fb:56:dc:b2:eb:85:5d:9a:b2:4c:98:e8: 2a:5d:f4:75:c8:53:e8:03:32:11:fa:0a:20:9a:56:ec:74:58: 12:82:36:b7:32:e4:c7:8c:50:ad:16:02:0a:aa:5a:7c:6f:45: df:36:a8:51:9e:5b:b0:e5:61:96:7e:dd:ed:33:2d:98:6a:1c: f5:4d:26:80:bb:21:c3:99:68:73:ff:d0:fa:07:ad:ef:2f:9e: 2f:06:48:03:97:23:ca:e8:93:24:8a:bb:fa:06:d7:eb:29:36: 63:70:ed:1b:fb:3c:a9:0a:f3:3c:ec:dc:02:f3:ec:91:ca:90: 1c:cd:ef:46 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUd+iqiEByAALtiX5vyhDOmXI4qC8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgxNDAyMTI1MVoX DTI0MDgxMjAyMTc1MVowMzExMC8GA1UEAxMoMkRCQkQ4N0YzRTlDNzE5MDhGQUMx N0Y1OEEyM0RFQjgyMDk5ODU2QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANT9OZVcrHlcjGP650ZJiDkJunQjkq8AJht9IzK4dBZX99oUK3/pTMHb6AYy HYbyCFCLn6x6/eD2k/cA2zIf0g04fQMglOFEQcH58ttW+h+MvsQJRsbgBUh1LIgZ 17owzEmD+WQGTL5wzYhf3q7vkv91kKRRlgNPFwsWA5LYPtWMGLqP/psTBaOESwGY Ae0bKxQRT2hhFhiS+kpvP8zAx+CQrfxuQoAGwPfIYnPO4A/s9eq/jIsYgySy78Z7 JE74VHqhuEQ5Qp8iw86R7Vv0B67lNLQ2ta9ODO5Pd2KnGpDxqIEtQi0ff0MIkMaD e/Zz2MzstErhdKBFTp9pv74PUOECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQtu9h/ PpxxkI+sF/WKI964IJmFazAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWf4CDANBgkqhkiG9w0BAQsFAAOCAQEAQkoIMc+xSalYxH39VaJ4 fi+vr7k5SHQbQLWFi9CX5wBr9jo3czeRsHLFUfqALxlV2Uu0KYhBjwdK0ZbXGAOx xHBqkDw8CIVoC4w5x9QYiG1VPV6E4V8Y6fH0vs73awh91lBhJ1vne0I76sZQWdoV kwHIcgMqcHQNu9C25fqoXhfVRALa+1bcsuuFXZqyTJjoKl30dchT6AMyEfoKIJpW 7HRYEoI2tzLkx4xQrRYCCqpafG9F3zaoUZ5bsOVhln7d7TMtmGoc9U0mgLshw5lo c//Q+get7y+eLwZIA5cjyuiTJIq7+gbX6yk2Y3DtG/s8qQrzPOzcAvPskcqQHM3v Rg== -----END CERTIFICATE-----Generated at Wed May 8 21:02:24 2024 by rpki-client on console-fra.rpki-client.org