$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151553.roa File: AS151553.roa (raw, json) Hash identifier: zMJ0Lp4Bb2MUSxD/HjVhTvtNj0+B2ErguNrl+B6rCOE= Subject key identifier: D4:04:2E:0D:3C:6F:F2:3A:48:B3:5F:E6:AF:45:80:11:E9:30:81:3A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 75CE8C563548DABEF188E84DEA4F149ECD0D1027 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151553.roa Signing time: Tue 29 Aug 2023 07:22:20 +0000 ROA not before: Tue 29 Aug 2023 07:17:20 +0000 ROA not after: Tue 27 Aug 2024 07:22:20 +0000 asID: 151553 IP address blocks: 103.255.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:ce:8c:56:35:48:da:be:f1:88:e8:4d:ea:4f:14:9e:cd:0d:10:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 29 07:17:20 2023 GMT Not After : Aug 27 07:22:20 2024 GMT Subject: CN=D4042E0D3C6FF23A48B35FE6AF458011E930813A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:62:16:ab:a7:5c:f4:0a:30:44:92:49:b3:c6: 97:e9:34:f8:65:8c:b2:4e:6f:98:b0:21:4f:ba:b1: b4:87:af:43:69:8f:e7:e6:e6:f1:f8:2f:ad:ea:d7: 84:cc:0a:af:7e:dc:93:6b:f3:2a:66:48:37:12:61: ad:7f:a6:12:82:56:0d:0b:4f:e2:59:65:81:29:30: 10:ac:45:db:e1:cd:7b:51:fe:cd:d8:62:e1:5f:99: d0:f5:1a:db:67:65:e7:2a:3f:84:cf:9f:13:72:e6: 47:9f:3c:f5:8d:00:fb:4b:95:19:55:d9:25:36:0d: f1:3d:f4:f0:9b:3d:4f:d4:46:6c:f3:2b:83:7c:5a: be:95:24:69:f6:16:58:5a:ca:92:33:c6:64:79:7d: e3:3a:8e:3d:4f:66:0e:25:d1:f1:94:df:a5:45:b6: 6c:df:fa:90:86:0c:6a:ed:e6:d4:87:18:09:ce:28: 3e:8f:c9:af:0c:01:ad:7c:b2:01:76:32:40:19:f9: de:f1:18:01:13:91:37:d1:24:89:3c:c5:11:d9:e4: 84:d8:3d:3d:10:52:19:39:c5:4b:da:f6:70:b7:36: e4:51:b6:c4:70:1b:99:d2:2b:6e:f0:d2:67:15:b0: f7:6e:76:77:1b:ef:1c:8a:b4:ed:64:a5:aa:c9:a6: 53:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:04:2E:0D:3C:6F:F2:3A:48:B3:5F:E6:AF:45:80:11:E9:30:81:3A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151553.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.98.0/23 Signature Algorithm: sha256WithRSAEncryption 21:b9:de:80:ad:26:48:63:d4:9b:81:48:85:c5:9c:5d:1f:89: 68:cd:81:10:49:7a:5b:7c:05:8e:bb:52:f1:5c:30:5e:71:55: 58:24:1b:ea:8a:ed:e9:b9:a2:3c:96:cc:58:a5:b4:17:d7:d0: 71:a2:af:b8:6a:93:b8:b9:58:bb:88:2f:6d:c4:1e:66:d6:38: 14:b9:f5:0b:3e:e1:8a:22:c6:d1:0d:9d:b9:6c:0c:49:13:2a: 0b:9a:1d:d2:d4:89:50:e1:5e:20:22:cd:0a:4c:d8:69:d1:16: cf:03:80:aa:b1:d8:6a:40:a8:cb:72:06:35:6a:bf:76:65:72: 39:da:bc:c5:36:53:03:d8:9c:fa:e0:cb:c9:d0:b5:48:70:06: ed:65:fd:ac:5e:e4:73:98:ce:49:9c:b1:93:3c:9a:b0:33:38: 8b:61:3e:58:fd:e0:ad:f0:65:65:2d:7c:33:48:fd:24:f5:ba: 58:b9:76:4b:6c:46:03:3c:f0:f6:95:ec:4a:7d:4c:97:c8:c8: 67:da:3b:a5:96:94:fa:17:f2:dc:12:72:0c:11:92:70:1a:b9: 16:50:ca:0f:99:0e:f3:1d:e6:9a:5d:45:bb:dc:23:64:4c:33: 00:6c:58:a2:c7:4b:dd:5d:f9:86:40:ca:a8:80:74:3c:46:c5: 5e:9c:bc:5b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUdc6MVjVI2r7xiOhN6k8Uns0NECcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgyOTA3MTcyMFoX DTI0MDgyNzA3MjIyMFowMzExMC8GA1UEAxMoRDQwNDJFMEQzQzZGRjIzQTQ4QjM1 RkU2QUY0NTgwMTFFOTMwODEzQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJpiFqunXPQKMESSSbPGl+k0+GWMsk5vmLAhT7qxtIevQ2mP5+bm8fgvrerX hMwKr37ck2vzKmZINxJhrX+mEoJWDQtP4lllgSkwEKxF2+HNe1H+zdhi4V+Z0PUa 22dl5yo/hM+fE3LmR5889Y0A+0uVGVXZJTYN8T308Js9T9RGbPMrg3xavpUkafYW WFrKkjPGZHl94zqOPU9mDiXR8ZTfpUW2bN/6kIYMau3m1IcYCc4oPo/JrwwBrXyy AXYyQBn53vEYARORN9EkiTzFEdnkhNg9PRBSGTnFS9r2cLc25FG2xHAbmdIrbvDS ZxWw9252dxvvHIq07WSlqsmmU3kCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTUBC4N PG/yOkizX+avRYAR6TCBOjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU1My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWf/YjANBgkqhkiG9w0BAQsFAAOCAQEAIbnegK0mSGPUm4FIhcWc XR+JaM2BEEl6W3wFjrtS8VwwXnFVWCQb6ort6bmiPJbMWKW0F9fQcaKvuGqTuLlY u4gvbcQeZtY4FLn1Cz7hiiLG0Q2duWwMSRMqC5od0tSJUOFeICLNCkzYadEWzwOA qrHYakCoy3IGNWq/dmVyOdq8xTZTA9ic+uDLydC1SHAG7WX9rF7kc5jOSZyxkzya sDM4i2E+WP3grfBlZS18M0j9JPW6WLl2S2xGAzzw9pXsSn1Ml8jIZ9o7pZaU+hfy 3BJyDBGScBq5FlDKD5kO8x3mml1Fu9wjZEwzAGxYosdL3V35hkDKqIB0PEbFXpy8 Ww== -----END CERTIFICATE-----Generated at Wed May 8 17:45:23 2024 by rpki-client on console-ams.rpki-client.org