$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151580.roa File: AS151580.roa (raw, json) Hash identifier: DraeX6OKMhcmXTmCJ528nN15rC72MndZp/vIsG6DRIc= Subject key identifier: 39:6C:68:33:F9:67:80:62:4A:E0:B8:0D:E9:C1:A8:AC:2D:8A:6F:D4 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 103E57DF3090292BCE4586C0AF996123D7DC77F7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151580.roa Signing time: Thu 28 Sep 2023 08:40:50 +0000 ROA not before: Thu 28 Sep 2023 08:35:50 +0000 ROA not after: Thu 26 Sep 2024 08:40:50 +0000 asID: 151580 IP address blocks: 103.216.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:3e:57:df:30:90:29:2b:ce:45:86:c0:af:99:61:23:d7:dc:77:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 28 08:35:50 2023 GMT Not After : Sep 26 08:40:50 2024 GMT Subject: CN=396C6833F96780624AE0B80DE9C1A8AC2D8A6FD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4a:18:6b:6c:7c:2d:17:ea:55:42:ea:1b:62: e4:a5:96:82:4a:cc:df:b9:2a:a3:19:89:76:c8:32: a8:f2:99:19:ca:d8:6b:2f:92:03:6a:ea:21:b4:62: cc:e3:21:4f:02:d0:9a:91:06:f6:9c:fb:7e:c7:a9: fb:a4:0e:1f:54:82:09:6a:e5:07:19:15:5b:ec:07: 7a:39:6f:a2:da:64:d5:75:a0:e8:f0:67:21:a7:11: aa:59:70:d8:4e:3e:cc:15:19:2d:e5:2a:03:03:37: 3b:ca:4f:fb:d7:50:f7:36:39:f1:49:41:19:2e:2b: e9:1f:06:ac:b4:5a:4b:61:4f:80:dc:e8:52:ea:2d: 93:18:89:6e:3d:2d:d9:bc:14:55:0a:78:b9:01:9f: 2b:d5:56:50:14:e4:7e:b1:4c:fb:26:04:b8:82:bd: 06:09:97:2b:74:f6:2b:cd:b9:25:08:55:cc:a8:d1: 65:32:ed:92:63:53:30:85:99:59:0c:08:c6:24:26: b8:1a:78:6c:cb:71:eb:dd:ed:8f:57:68:0b:66:cd: 02:0d:41:b7:7e:95:98:c5:3c:1a:86:e0:1e:f4:5b: 97:7e:25:f7:04:94:aa:1d:1b:33:7e:57:98:5a:25: d0:26:e7:d8:46:11:44:ea:ef:40:db:ec:85:71:3f: 82:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:6C:68:33:F9:67:80:62:4A:E0:B8:0D:E9:C1:A8:AC:2D:8A:6F:D4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151580.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.216.105.0/24 Signature Algorithm: sha256WithRSAEncryption 41:06:2b:4c:bd:f0:1e:cb:f8:1d:23:7a:50:df:b7:fb:5f:67: 03:87:f3:4b:98:ef:f6:73:48:6d:19:89:34:c2:eb:4a:88:a9: e6:7c:41:ca:b1:fa:5c:9f:03:7a:bd:7e:6c:7f:30:1f:30:c1: 53:a5:28:30:e8:0b:54:b5:cd:e2:b3:8a:f6:99:9a:65:1f:91: 5a:f3:8d:8b:a8:9d:d9:1d:9a:c3:27:39:2d:5d:3b:49:63:09: 3f:6f:ac:7e:f2:26:ba:95:57:90:50:e4:a2:17:15:fc:f6:72: 9d:15:0d:7e:1d:29:63:31:90:30:5e:c6:74:ef:79:db:cf:3d: 8f:5f:29:43:fd:e5:04:25:2f:c4:82:62:9a:10:9e:51:b5:ae: e6:95:7c:02:51:34:1e:9a:d1:ae:8f:b8:04:3c:bb:93:e9:43: 8d:1e:d0:6c:eb:39:fa:6d:3a:a7:fc:07:75:45:f5:35:e2:75: 33:6c:7e:96:9c:2f:0d:a1:71:1a:72:cb:a7:a7:09:57:5c:47: 99:9f:0a:8a:f4:0e:43:ba:28:cc:53:5c:6a:8a:8f:78:69:ca: eb:ae:3e:8a:3a:e4:1f:3c:ac:84:f2:28:30:dd:57:0c:41:75: 20:71:5a:f2:b7:d9:0e:0c:17:69:09:24:fe:f4:c9:44:46:2e: 83:f9:7f:c9 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUED5X3zCQKSvORYbAr5lhI9fcd/cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkyODA4MzU1MFoX DTI0MDkyNjA4NDA1MFowMzExMC8GA1UEAxMoMzk2QzY4MzNGOTY3ODA2MjRBRTBC ODBERTlDMUE4QUMyRDhBNkZENDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKlKGGtsfC0X6lVC6hti5KWWgkrM37kqoxmJdsgyqPKZGcrYay+SA2rqIbRi zOMhTwLQmpEG9pz7fsep+6QOH1SCCWrlBxkVW+wHejlvotpk1XWg6PBnIacRqllw 2E4+zBUZLeUqAwM3O8pP+9dQ9zY58UlBGS4r6R8GrLRaS2FPgNzoUuotkxiJbj0t 2bwUVQp4uQGfK9VWUBTkfrFM+yYEuIK9BgmXK3T2K825JQhVzKjRZTLtkmNTMIWZ WQwIxiQmuBp4bMtx693tj1doC2bNAg1Bt36VmMU8GobgHvRbl34l9wSUqh0bM35X mFol0Cbn2EYRROrvQNvshXE/gsUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ5bGgz +WeAYkrguA3pwaisLYpv1DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU4MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfYaTANBgkqhkiG9w0BAQsFAAOCAQEAQQYrTL3wHsv4HSN6UN+3 +19nA4fzS5jv9nNIbRmJNMLrSoip5nxByrH6XJ8Der1+bH8wHzDBU6UoMOgLVLXN 4rOK9pmaZR+RWvONi6id2R2awyc5LV07SWMJP2+sfvImupVXkFDkohcV/PZynRUN fh0pYzGQMF7GdO952889j18pQ/3lBCUvxIJimhCeUbWu5pV8AlE0HprRro+4BDy7 k+lDjR7QbOs5+m06p/wHdUX1NeJ1M2x+lpwvDaFxGnLLp6cJV1xHmZ8KivQOQ7oo zFNcaoqPeGnK664+ijrkHzyshPIoMN1XDEF1IHFa8rfZDgwXaQkk/vTJREYug/l/ yQ== -----END CERTIFICATE-----Generated at Thu May 9 00:37:08 2024 by rpki-client on console-fra.rpki-client.org