$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151571.roa File: AS151571.roa (raw, json) Hash identifier: U3HRc0vz6b9mt5KhiUNK5x/uKVpaSegw90Juhv6LNUk= Subject key identifier: 48:B0:65:81:77:42:EB:FF:A7:FE:EC:3A:E8:E8:29:E7:B4:E2:36:D3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 77128C3202537CE7ACEADE2AE77DE6109508D136 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151571.roa Signing time: Tue 31 Oct 2023 04:21:55 +0000 ROA not before: Tue 31 Oct 2023 04:16:55 +0000 ROA not after: Tue 29 Oct 2024 04:21:55 +0000 asID: 151571 IP address blocks: 103.80.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:12:8c:32:02:53:7c:e7:ac:ea:de:2a:e7:7d:e6:10:95:08:d1:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 31 04:16:55 2023 GMT Not After : Oct 29 04:21:55 2024 GMT Subject: CN=48B065817742EBFFA7FEEC3AE8E829E7B4E236D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:67:fa:30:43:01:96:d5:ad:4b:74:d5:fb:76: 12:4a:a7:ae:ae:fc:f6:f5:ca:5e:45:50:09:a2:b4: 20:86:48:fb:1c:bc:7a:2b:a1:97:0c:e8:6d:d6:49: e1:28:cc:51:c2:b5:ea:4a:19:ce:3d:3a:44:f0:53: 08:98:40:fb:af:16:0b:83:4b:30:bb:3e:33:47:d2: e0:80:fc:01:6c:a1:01:3f:2c:f1:d8:f9:25:70:a9: f6:1e:b9:7a:19:61:07:f5:54:0c:15:86:8a:e3:26: 14:7c:11:1b:dd:d3:7d:f8:1e:df:fd:42:45:20:47: 7a:fa:54:01:c3:4b:f5:b1:9c:d1:d7:c7:3e:d2:9b: 5f:0f:28:0e:40:f7:89:ed:21:94:57:2a:79:8e:09: a0:68:c1:de:9d:39:8d:b4:76:1f:8d:01:c7:ab:22: 19:ac:f6:32:b4:6d:7d:58:a8:b0:d1:0c:be:5a:bf: c9:23:c5:4d:5e:13:c5:be:79:6e:84:fc:ec:48:cb: 90:77:03:96:65:83:ff:01:df:5f:c1:e4:9c:d7:56: f3:83:d6:2d:5f:ba:f8:80:3d:3b:48:e6:68:1b:e3: 4a:52:78:c5:26:b5:36:32:01:09:e1:74:d0:9d:36: c8:45:a0:64:10:48:58:4c:fb:72:a2:f9:14:c4:d5: a5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:B0:65:81:77:42:EB:FF:A7:FE:EC:3A:E8:E8:29:E7:B4:E2:36:D3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151571.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.80.228.0/23 Signature Algorithm: sha256WithRSAEncryption 54:ec:0e:45:fb:1b:b5:95:21:31:2d:b8:42:06:53:7b:50:a9: e8:e6:e6:3a:41:80:48:5d:cc:10:32:17:35:5b:75:2c:93:59: f9:25:1f:4a:8e:7b:4b:7f:0a:73:23:f9:2b:a5:3d:c2:91:78: d7:ba:af:46:f0:d0:21:27:be:e5:ec:e6:c5:9c:c5:f0:25:81: 35:0a:7a:51:fb:d5:7f:32:c8:34:d5:12:42:41:a2:9a:77:39: 80:da:c9:b8:5f:c5:68:ac:62:1b:10:17:8f:08:fa:82:1a:07: c7:1f:6e:f5:d3:1c:a4:80:b6:8f:68:ae:86:ee:1e:10:33:cf: 33:19:4a:47:01:44:4d:e9:8f:ea:a8:74:64:72:42:f0:50:e6: 1c:1f:f1:5f:ef:e3:1b:e5:90:e2:a8:a9:76:d4:1f:4c:cc:35: 2b:fc:90:6c:49:d1:69:32:7a:f2:17:15:58:1e:76:8b:92:38: 5f:f0:c0:6b:bc:73:c4:92:1c:e5:b3:f0:6d:c6:a5:92:a6:d3: cc:64:81:ce:d5:2d:f7:61:ee:23:8d:b9:2e:e5:06:59:43:40: de:07:7b:fa:31:ef:aa:df:f9:d1:61:f0:ac:bb:2b:40:62:44: db:18:1a:f4:78:43:ba:4e:8e:32:d2:92:51:fb:22:57:f2:40: ee:15:f1:12 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUdxKMMgJTfOes6t4q533mEJUI0TYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAzMTA0MTY1NVoX DTI0MTAyOTA0MjE1NVowMzExMC8GA1UEAxMoNDhCMDY1ODE3NzQyRUJGRkE3RkVF QzNBRThFODI5RTdCNEUyMzZEMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMhn+jBDAZbVrUt01ft2Ekqnrq789vXKXkVQCaK0IIZI+xy8eiuhlwzobdZJ 4SjMUcK16koZzj06RPBTCJhA+68WC4NLMLs+M0fS4ID8AWyhAT8s8dj5JXCp9h65 ehlhB/VUDBWGiuMmFHwRG93Tffge3/1CRSBHevpUAcNL9bGc0dfHPtKbXw8oDkD3 ie0hlFcqeY4JoGjB3p05jbR2H40Bx6siGaz2MrRtfViosNEMvlq/ySPFTV4Txb55 boT87EjLkHcDlmWD/wHfX8HknNdW84PWLV+6+IA9O0jmaBvjSlJ4xSa1NjIBCeF0 0J02yEWgZBBIWEz7cqL5FMTVpfECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRIsGWB d0Lr/6f+7Dro6CnntOI20zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU3MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWdQ5DANBgkqhkiG9w0BAQsFAAOCAQEAVOwORfsbtZUhMS24QgZT e1Cp6ObmOkGASF3MEDIXNVt1LJNZ+SUfSo57S38KcyP5K6U9wpF417qvRvDQISe+ 5ezmxZzF8CWBNQp6UfvVfzLINNUSQkGimnc5gNrJuF/FaKxiGxAXjwj6ghoHxx9u 9dMcpIC2j2iuhu4eEDPPMxlKRwFETemP6qh0ZHJC8FDmHB/xX+/jG+WQ4qipdtQf TMw1K/yQbEnRaTJ68hcVWB52i5I4X/DAa7xzxJIc5bPwbcalkqbTzGSBztUt92Hu I425LuUGWUNA3gd7+jHvqt/50WHwrLsrQGJE2xga9HhDuk6OMtKSUfsiV/JA7hXx Eg== -----END CERTIFICATE-----Generated at Wed May 8 04:37:58 2024 by rpki-client on console-fra.rpki-client.org