$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151543.roa File: AS151543.roa (raw, json) Hash identifier: RlJJlVYeL1Gl5GBdJQKggr9N4dSDY8OhnH3bobB9x34= Subject key identifier: 1D:47:67:42:57:C0:A1:90:15:73:AD:04:F7:E0:B1:DF:AC:27:FB:7D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5F0107AED4F1EE48C42E0F676803D71F887DC263 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151543.roa Signing time: Mon 14 Aug 2023 06:30:06 +0000 ROA not before: Mon 14 Aug 2023 06:25:06 +0000 ROA not after: Mon 12 Aug 2024 06:30:06 +0000 asID: 151543 IP address blocks: 103.242.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:01:07:ae:d4:f1:ee:48:c4:2e:0f:67:68:03:d7:1f:88:7d:c2:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 14 06:25:06 2023 GMT Not After : Aug 12 06:30:06 2024 GMT Subject: CN=1D47674257C0A1901573AD04F7E0B1DFAC27FB7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e6:0d:96:d4:4c:9c:4e:c5:50:5c:3d:d1:f0: b8:66:f7:c5:ed:6b:4d:98:09:d5:62:00:81:91:de: 2a:31:07:da:2e:95:1f:75:ef:18:63:21:09:b6:15: 05:d5:01:d7:4c:15:4b:ee:20:17:35:3a:73:47:81: 2a:b2:6c:9a:24:7c:ca:14:dd:48:a7:20:0c:52:6f: 39:a6:d3:0b:ef:d0:04:78:ea:91:b6:4f:1a:6b:93: f6:15:68:ec:d6:18:b3:07:e2:d1:71:d0:75:d3:5c: 56:98:c1:42:62:44:ae:e9:92:a2:92:cd:0b:a0:4d: 87:ee:77:6d:eb:bf:5b:3d:52:49:77:70:2f:eb:63: b5:e5:1c:23:c6:50:d3:03:49:a9:a2:1c:21:47:a6: 7f:36:02:de:52:eb:e6:97:e1:a8:3b:c4:29:f8:e0: d0:96:d4:49:b0:e8:67:07:15:ee:1b:1c:83:ad:1a: b2:d6:6b:00:3b:c0:11:c5:5b:fa:0e:8e:a7:cd:39: 3e:ec:33:bb:f6:b0:af:30:7e:d0:f5:bd:31:e8:4b: d2:a9:ed:4e:fd:9a:7f:86:83:76:91:9e:77:6f:be: f6:08:f2:32:d6:c0:27:15:20:32:80:2e:3a:bf:f1: cb:ca:4e:63:85:13:91:0a:5b:57:51:a6:61:b6:02: e0:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:47:67:42:57:C0:A1:90:15:73:AD:04:F7:E0:B1:DF:AC:27:FB:7D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151543.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.82.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:5b:64:86:10:94:46:5c:fd:83:8f:bf:d9:8a:97:28:df:27: 8f:e0:0a:30:e6:44:b0:ae:82:eb:7c:cf:c5:a9:bc:f6:8e:6f: b6:d8:38:ef:e5:d8:f3:4d:af:0e:65:fd:ed:77:3e:03:5c:66: 49:44:91:50:3a:88:72:53:df:b8:b1:c2:a5:98:56:8f:cc:67: 96:cf:4e:c3:8a:00:5c:72:44:cf:45:b6:d5:f6:b4:d3:01:93: c1:f5:85:3e:76:2c:bf:06:ca:77:74:19:6c:b2:4c:ff:06:0b: 5f:be:93:f2:53:6a:1e:10:6b:76:d3:a0:54:6e:70:f1:63:13: f6:8d:6e:58:7c:e3:06:8b:cd:00:91:c5:92:86:3d:cf:47:4a: b0:b0:fc:56:a7:59:67:86:44:9b:10:90:61:c0:2f:be:37:e6: 1a:26:d9:2a:2f:00:36:5f:83:5c:60:76:76:0d:34:3e:7d:b1: 99:9d:92:e1:58:30:56:54:73:7c:b7:7f:af:3a:a7:9e:34:3a: b9:5b:41:c2:95:09:bc:44:93:cf:b8:a0:5c:7c:d3:30:70:e9: 11:3b:25:a8:a5:da:3a:cf:2d:71:34:7c:44:d9:9c:08:92:84: 5d:69:36:7c:57:cf:34:de:67:f6:0b:32:2a:6b:7d:d2:56:b2: cb:d9:a4:7f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUXwEHrtTx7kjELg9naAPXH4h9wmMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgxNDA2MjUwNloX DTI0MDgxMjA2MzAwNlowMzExMC8GA1UEAxMoMUQ0NzY3NDI1N0MwQTE5MDE1NzNB RDA0RjdFMEIxREZBQzI3RkI3RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK/mDZbUTJxOxVBcPdHwuGb3xe1rTZgJ1WIAgZHeKjEH2i6VH3XvGGMhCbYV BdUB10wVS+4gFzU6c0eBKrJsmiR8yhTdSKcgDFJvOabTC+/QBHjqkbZPGmuT9hVo 7NYYswfi0XHQddNcVpjBQmJErumSopLNC6BNh+53beu/Wz1SSXdwL+tjteUcI8ZQ 0wNJqaIcIUemfzYC3lLr5pfhqDvEKfjg0JbUSbDoZwcV7hscg60astZrADvAEcVb +g6Op805Puwzu/awrzB+0PW9MehL0qntTv2af4aDdpGed2++9gjyMtbAJxUgMoAu Or/xy8pOY4UTkQpbV1GmYbYC4PECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQdR2dC V8ChkBVzrQT34LHfrCf7fTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU0My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfyUjANBgkqhkiG9w0BAQsFAAOCAQEAjltkhhCURlz9g4+/2YqX KN8nj+AKMOZEsK6C63zPxam89o5vttg47+XY802vDmX97Xc+A1xmSUSRUDqIclPf uLHCpZhWj8xnls9Ow4oAXHJEz0W21fa00wGTwfWFPnYsvwbKd3QZbLJM/wYLX76T 8lNqHhBrdtOgVG5w8WMT9o1uWHzjBovNAJHFkoY9z0dKsLD8VqdZZ4ZEmxCQYcAv vjfmGibZKi8ANl+DXGB2dg00Pn2xmZ2S4VgwVlRzfLd/rzqnnjQ6uVtBwpUJvEST z7igXHzTMHDpETslqKXaOs8tcTR8RNmcCJKEXWk2fFfPNN5n9gsyKmt90layy9mk fw== -----END CERTIFICATE-----Generated at Wed May 8 09:50:40 2024 by rpki-client on console-fra.rpki-client.org