$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151549.roa File: AS151549.roa (raw, json) Hash identifier: fLYddURzUvooG7GsAKQ2WrGJm3tb0+ISWZ1+Yx+h24c= Subject key identifier: 5D:F5:AC:AE:E3:6A:5F:AC:C6:3D:DA:60:82:CE:B4:FE:96:78:DD:D4 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6E2C0A644C8749FE9A5E2C7A40837365D925C528 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151549.roa Signing time: Mon 04 Sep 2023 04:12:43 +0000 ROA not before: Mon 04 Sep 2023 04:07:43 +0000 ROA not after: Mon 02 Sep 2024 04:12:43 +0000 asID: 151549 IP address blocks: 103.255.132.0/23 maxlen: 24 2401:2de0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:2c:0a:64:4c:87:49:fe:9a:5e:2c:7a:40:83:73:65:d9:25:c5:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 4 04:07:43 2023 GMT Not After : Sep 2 04:12:43 2024 GMT Subject: CN=5DF5ACAEE36A5FACC63DDA6082CEB4FE9678DDD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:62:c6:8b:30:d4:f0:f7:51:d5:fb:fe:6e:7d: 14:74:db:e1:de:fe:03:06:d2:f7:3b:d2:61:80:3e: d0:f8:96:cb:a8:17:03:d6:e2:ed:71:ae:f0:e5:02: 5a:b5:1e:43:56:7d:65:4f:fa:4c:44:88:bf:7f:1d: 85:39:7a:03:ab:63:06:92:1b:b2:3b:b4:21:7f:25: b0:aa:13:ef:f0:29:92:1b:0e:24:62:e2:d6:e7:d5: d3:41:46:d4:23:55:19:3e:d2:01:93:ba:b0:9e:50: 0b:7c:d5:4a:e0:0a:b5:18:3d:c2:4d:5d:7c:a8:1b: dd:30:20:b9:51:50:9a:db:98:e0:5c:d6:18:7d:bc: 0e:fa:a3:7f:3e:6f:76:8a:64:24:c2:69:10:3d:2a: 06:9d:c1:79:f0:f0:39:20:50:ea:1c:8b:42:94:78: 90:56:37:b7:38:23:d3:65:4f:75:4c:aa:54:b7:ef: 17:a1:1d:94:0c:01:99:60:66:d3:b8:e4:93:ab:c3: 30:0a:01:17:8b:3d:6f:6a:ba:ee:91:70:12:42:37: d0:9d:8c:a8:85:41:0d:f6:90:90:4d:5d:47:7a:da: 46:ea:28:81:b7:b5:6a:20:7e:d6:a0:e6:b3:c0:36: 5f:51:12:b6:f1:2b:c6:e2:0a:9e:c8:62:89:9b:af: 9b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:F5:AC:AE:E3:6A:5F:AC:C6:3D:DA:60:82:CE:B4:FE:96:78:DD:D4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151549.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.132.0/23 IPv6: 2401:2de0::/32 Signature Algorithm: sha256WithRSAEncryption 83:0e:75:85:92:8e:7f:a9:03:2b:48:0b:5f:77:c4:ed:45:54: 51:89:8c:ff:51:b6:9c:b6:67:c9:61:48:fd:97:59:80:5a:63: 8b:fb:98:9f:76:fd:0f:3d:6a:c5:07:e5:2c:26:21:a6:5d:de: 29:51:20:15:a1:56:8f:fd:d8:ad:4e:b6:7d:97:b2:9c:da:d2: 9c:73:b7:51:73:5e:7c:d1:49:2a:31:35:74:3d:61:b1:f8:32: 11:b3:fa:b9:11:51:cb:4c:cd:06:06:04:f0:ff:02:c6:0e:0d: 6e:72:ff:96:ed:fb:de:15:db:cd:2f:d2:56:22:bb:ab:33:eb: 3b:b0:b3:c2:b2:d3:14:1f:70:18:5a:45:42:8d:6d:db:f0:c4: 32:a3:d3:ca:38:8c:9b:b7:d7:e4:a7:a2:bd:46:93:56:d8:4f: 8e:5c:96:4b:45:88:ca:91:12:bd:b9:7f:c7:92:3f:6d:25:3b: b1:fe:53:3a:db:2c:52:8e:95:be:1f:e5:75:4c:84:4f:4b:a6: fe:65:60:4a:60:8b:72:74:fd:cf:3a:10:ff:03:60:3d:03:20: 96:a7:52:11:0c:c5:db:1c:a3:cd:63:30:37:fe:eb:9d:4d:54: 0a:7c:3a:8d:5e:90:61:56:c8:7a:29:8c:5c:60:f5:1a:35:51: c7:18:99:c8 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUbiwKZEyHSf6aXix6QINzZdklxSgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkwNDA0MDc0M1oX DTI0MDkwMjA0MTI0M1owMzExMC8GA1UEAxMoNURGNUFDQUVFMzZBNUZBQ0M2M0RE QTYwODJDRUI0RkU5Njc4RERENDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALdixosw1PD3UdX7/m59FHTb4d7+AwbS9zvSYYA+0PiWy6gXA9bi7XGu8OUC WrUeQ1Z9ZU/6TESIv38dhTl6A6tjBpIbsju0IX8lsKoT7/ApkhsOJGLi1ufV00FG 1CNVGT7SAZO6sJ5QC3zVSuAKtRg9wk1dfKgb3TAguVFQmtuY4FzWGH28Dvqjfz5v dopkJMJpED0qBp3BefDwOSBQ6hyLQpR4kFY3tzgj02VPdUyqVLfvF6EdlAwBmWBm 07jkk6vDMAoBF4s9b2q67pFwEkI30J2MqIVBDfaQkE1dR3raRuoogbe1aiB+1qDm s8A2X1EStvErxuIKnshiiZuvmxECAwEAAaOCAd8wggHbMB0GA1UdDgQWBBRd9ayu 42pfrMY92mCCzrT+lnjd1DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU0OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWf/hDANBAIAAjAHAwUAJAEt4DANBgkqhkiG9w0BAQsFAAOCAQEA gw51hZKOf6kDK0gLX3fE7UVUUYmM/1G2nLZnyWFI/ZdZgFpji/uYn3b9Dz1qxQfl LCYhpl3eKVEgFaFWj/3YrU62fZeynNrSnHO3UXNefNFJKjE1dD1hsfgyEbP6uRFR y0zNBgYE8P8Cxg4NbnL/lu373hXbzS/SViK7qzPrO7CzwrLTFB9wGFpFQo1t2/DE MqPTyjiMm7fX5KeivUaTVthPjlyWS0WIypESvbl/x5I/bSU7sf5TOtssUo6Vvh/l dUyET0um/mVgSmCLcnT9zzoQ/wNgPQMglqdSEQzF2xyjzWMwN/7rnU1UCnw6jV6Q YVbIeimMXGD1GjVRxxiZyA== -----END CERTIFICATE-----Generated at Wed May 8 17:45:23 2024 by rpki-client on console-ams.rpki-client.org