$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151561.roa File: AS151561.roa (raw, json) Hash identifier: edhLhfk3J8de0S59ZKU95EQe0cv2MHj4v3tOFLpoyiY= Subject key identifier: 63:B5:D0:F1:96:3A:49:32:D8:FD:36:7C:00:60:AD:00:7E:F7:03:0B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7B0A5C6992EB7368548D5FDA73E5C3F84CA0539A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151561.roa Signing time: Mon 18 Sep 2023 08:04:46 +0000 ROA not before: Mon 18 Sep 2023 07:59:46 +0000 ROA not after: Mon 16 Sep 2024 08:04:46 +0000 asID: 151561 IP address blocks: 103.255.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:0a:5c:69:92:eb:73:68:54:8d:5f:da:73:e5:c3:f8:4c:a0:53:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 18 07:59:46 2023 GMT Not After : Sep 16 08:04:46 2024 GMT Subject: CN=63B5D0F1963A4932D8FD367C0060AD007EF7030B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e5:2a:00:1e:1f:7f:db:01:13:9b:d7:24:09: 12:2a:62:48:f4:a6:4d:f6:63:a1:b9:91:53:e0:08: 65:e6:6d:41:1c:1f:03:6d:7d:f5:91:3e:3d:98:a7: 3e:26:ad:44:48:a5:a6:b6:20:04:82:28:3e:a4:b4: c6:4f:54:9e:f1:0d:bb:29:a2:ea:9d:74:6b:f0:b3: f5:f5:e8:81:6f:2e:45:21:f7:fb:08:fd:e3:69:0c: 55:31:c0:b0:1e:08:72:6b:13:37:b1:79:eb:ec:c0: 5e:e4:e4:02:7f:11:8b:33:3e:5b:da:1f:2d:de:66: ac:13:1c:fe:c7:b9:cf:1a:cd:93:0b:f4:60:94:28: b9:1f:a8:00:13:47:97:3d:2d:53:f3:29:3f:aa:f3: 3d:53:ec:c8:69:e6:ca:86:80:d4:ab:78:c5:4f:31: 8b:b1:6e:d4:c3:f4:f0:c4:97:4f:ec:25:49:10:65: 01:fc:1e:4f:e8:b8:35:7f:d8:6e:31:5c:dd:a4:4f: 68:b8:20:cc:9f:10:2c:60:e5:43:ac:e9:d2:2f:6e: 4b:24:3f:09:ce:74:83:d0:0a:fd:5a:38:39:10:76: 08:89:f6:d2:ea:c8:0d:dc:97:ed:9c:49:bb:dc:fa: 67:bf:43:41:59:d3:41:c8:fe:76:19:5c:32:ab:5b: 2e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:B5:D0:F1:96:3A:49:32:D8:FD:36:7C:00:60:AD:00:7E:F7:03:0B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151561.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.110.0/24 Signature Algorithm: sha256WithRSAEncryption 37:0f:5a:72:dc:92:00:a1:dc:84:b2:cf:8d:28:55:5c:d5:05: ba:1c:b2:a8:92:8c:af:47:c9:1a:2d:ce:b4:56:44:72:f3:17: 21:ff:05:66:16:9e:27:35:46:51:95:2f:87:86:f2:6e:8c:95: dd:32:a2:4c:29:85:41:4a:6c:7e:d5:ab:a7:15:c0:d1:73:11: cf:41:7b:8d:25:51:ab:90:23:16:45:e6:af:31:9f:da:02:6c: d7:56:de:ce:7c:f3:10:64:c6:68:33:ce:89:6c:25:74:72:50: a6:32:12:3f:1c:bd:c4:d7:51:a5:dc:4c:41:25:75:8a:28:b0: ef:c1:b4:01:8c:63:db:07:fe:cb:ae:59:a3:72:ae:f1:46:c9: a3:ed:b9:6f:ef:99:af:85:a7:c0:80:62:03:d6:c6:18:16:a1: 3d:ec:cf:64:bc:c0:26:1e:44:b0:d7:c5:e2:4b:11:8e:46:fd: a0:4e:d6:f7:f7:54:92:5e:fb:f1:74:dc:5f:40:8f:8f:a8:0d: 43:cb:8b:52:17:ef:58:47:4b:4b:ad:3c:c5:70:70:da:81:1c: 2b:b1:86:93:45:ff:e0:2a:a0:fc:1e:b8:eb:03:d4:be:e5:04: 26:33:4f:82:e1:18:05:87:11:8a:0c:c4:5e:02:8f:66:71:19: 4a:0e:e6:ff -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUewpcaZLrc2hUjV/ac+XD+EygU5owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkxODA3NTk0NloX DTI0MDkxNjA4MDQ0NlowMzExMC8GA1UEAxMoNjNCNUQwRjE5NjNBNDkzMkQ4RkQz NjdDMDA2MEFEMDA3RUY3MDMwQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMblKgAeH3/bAROb1yQJEipiSPSmTfZjobmRU+AIZeZtQRwfA2199ZE+PZin PiatREilprYgBIIoPqS0xk9UnvENuymi6p10a/Cz9fXogW8uRSH3+wj942kMVTHA sB4IcmsTN7F56+zAXuTkAn8RizM+W9ofLd5mrBMc/se5zxrNkwv0YJQouR+oABNH lz0tU/MpP6rzPVPsyGnmyoaA1Kt4xU8xi7Fu1MP08MSXT+wlSRBlAfweT+i4NX/Y bjFc3aRPaLggzJ8QLGDlQ6zp0i9uSyQ/Cc50g9AK/Vo4ORB2CIn20urIDdyX7ZxJ u9z6Z79DQVnTQcj+dhlcMqtbLnkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRjtdDx ljpJMtj9NnwAYK0AfvcDCzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU2MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGf/bjANBgkqhkiG9w0BAQsFAAOCAQEANw9actySAKHchLLPjShV XNUFuhyyqJKMr0fJGi3OtFZEcvMXIf8FZhaeJzVGUZUvh4byboyV3TKiTCmFQUps ftWrpxXA0XMRz0F7jSVRq5AjFkXmrzGf2gJs11beznzzEGTGaDPOiWwldHJQpjIS Pxy9xNdRpdxMQSV1iiiw78G0AYxj2wf+y65Zo3Ku8UbJo+25b++Zr4WnwIBiA9bG GBahPezPZLzAJh5EsNfF4ksRjkb9oE7W9/dUkl778XTcX0CPj6gNQ8uLUhfvWEdL S608xXBw2oEcK7GGk0X/4Cqg/B646wPUvuUEJjNPguEYBYcRigzEXgKPZnEZSg7m /w== -----END CERTIFICATE-----Generated at Wed May 8 10:06:55 2024 by rpki-client on console-ams.rpki-client.org