$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151584.roa File: AS151584.roa (raw, json) Hash identifier: g8hHA+NnAa6ik82uNYCgqChwPqLnw5n63ioXDfyLj7s= Subject key identifier: E7:1D:A0:11:D0:8B:8E:26:3C:35:1D:0C:A0:A7:AE:F3:82:0A:CE:B0 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 237C2F337CB70BDAAFCC45CB001E0AB4B84AD98D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151584.roa Signing time: Mon 09 Oct 2023 06:55:37 +0000 ROA not before: Mon 09 Oct 2023 06:50:37 +0000 ROA not after: Mon 07 Oct 2024 06:55:37 +0000 asID: 151584 IP address blocks: 103.216.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:7c:2f:33:7c:b7:0b:da:af:cc:45:cb:00:1e:0a:b4:b8:4a:d9:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 9 06:50:37 2023 GMT Not After : Oct 7 06:55:37 2024 GMT Subject: CN=E71DA011D08B8E263C351D0CA0A7AEF3820ACEB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:74:86:71:5a:db:87:b6:88:00:5c:25:4c:74: 91:ea:b3:cf:53:dd:7a:00:59:3e:3f:60:41:53:16: 5a:54:9a:fa:2b:8a:fb:78:85:02:a9:be:0d:b1:3b: c7:2d:1a:7d:c6:88:6b:8f:3e:bb:b4:fc:66:2e:1e: 36:05:ac:ad:6b:27:be:a1:e8:0b:dd:a4:2f:05:36: 9b:79:66:7e:f7:c8:b5:fd:d7:cf:c6:e0:bf:c7:0e: eb:4f:1f:44:29:d7:f5:a5:b2:94:40:b2:9b:84:d3: bf:57:37:53:4d:e4:1c:49:c4:e2:b0:4a:78:ea:30: c9:8a:47:d8:8b:f4:d1:23:2a:21:79:e8:10:cf:2b: be:9c:a9:7d:67:3c:b6:46:92:8b:88:3c:f9:98:2a: 56:06:b7:57:4d:b8:dd:6b:44:fa:b3:ba:5d:5d:fa: 10:20:31:73:fc:40:77:cb:ba:68:a9:a3:55:54:9d: f8:97:36:17:fd:2c:c0:84:31:38:e5:d8:ee:0c:f2: aa:62:c9:71:a2:2a:7b:39:8f:eb:31:e0:31:9b:17: ca:33:dc:0d:71:66:12:b0:79:6c:c2:63:36:7b:ec: d7:58:fd:4f:0b:e0:e2:de:35:ec:7a:6a:be:0e:51: ec:06:97:0e:30:97:ab:e9:18:13:db:3f:81:75:6e: 47:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:1D:A0:11:D0:8B:8E:26:3C:35:1D:0C:A0:A7:AE:F3:82:0A:CE:B0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151584.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.216.106.0/23 Signature Algorithm: sha256WithRSAEncryption 12:f0:68:59:7e:86:77:48:49:db:d5:de:96:dd:e4:49:85:ae: 4a:f2:65:76:59:54:3d:23:e8:00:eb:d7:29:6b:3b:71:e8:83: 07:03:47:5e:97:80:bd:bc:01:10:fd:7d:2c:ad:cb:d3:0c:42: 4f:36:fa:5d:58:1e:b4:bf:03:47:48:35:42:a0:6c:3f:04:2c: b3:7b:71:7d:e5:65:49:09:30:64:50:27:68:b8:51:43:7b:5b: 20:a3:70:2a:17:18:c1:9e:e3:08:3a:9e:fe:a3:98:06:da:24: a3:85:5c:7f:c5:c3:a8:44:c0:00:ca:82:7c:6a:90:58:12:a5: 59:b7:3e:2a:93:77:6b:89:a4:a5:e7:70:a5:44:c5:6b:07:2d: d5:7a:41:d4:9c:52:23:a6:e0:af:f6:7e:0c:c0:82:02:c0:42: 6d:c6:4d:51:72:f6:d8:3c:74:0d:b2:7a:fa:67:d1:89:b3:97: 35:3d:48:91:19:f3:ed:72:42:7f:69:2d:c7:87:e0:bf:00:7d: da:35:28:99:0e:dc:f9:b2:e6:0b:56:05:9d:9f:67:ec:19:cc: ee:a7:7b:40:2d:0b:3f:d1:6c:04:2e:24:37:40:ef:e3:ec:8c: 47:a7:06:07:c8:bd:8c:9e:38:68:c7:d6:8e:3a:3a:bb:be:27: 04:6f:b2:bd -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUI3wvM3y3C9qvzEXLAB4KtLhK2Y0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAwOTA2NTAzN1oX DTI0MTAwNzA2NTUzN1owMzExMC8GA1UEAxMoRTcxREEwMTFEMDhCOEUyNjNDMzUx RDBDQTBBN0FFRjM4MjBBQ0VCMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALt0hnFa24e2iABcJUx0keqzz1PdegBZPj9gQVMWWlSa+iuK+3iFAqm+DbE7 xy0afcaIa48+u7T8Zi4eNgWsrWsnvqHoC92kLwU2m3lmfvfItf3Xz8bgv8cO608f RCnX9aWylECym4TTv1c3U03kHEnE4rBKeOowyYpH2Iv00SMqIXnoEM8rvpypfWc8 tkaSi4g8+ZgqVga3V0243WtE+rO6XV36ECAxc/xAd8u6aKmjVVSd+Jc2F/0swIQx OOXY7gzyqmLJcaIqezmP6zHgMZsXyjPcDXFmErB5bMJjNnvs11j9Twvg4t417Hpq vg5R7AaXDjCXq+kYE9s/gXVuRxcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTnHaAR 0IuOJjw1HQygp67zggrOsDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU4NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfYajANBgkqhkiG9w0BAQsFAAOCAQEAEvBoWX6Gd0hJ29Xelt3k SYWuSvJldllUPSPoAOvXKWs7ceiDBwNHXpeAvbwBEP19LK3L0wxCTzb6XVgetL8D R0g1QqBsPwQss3txfeVlSQkwZFAnaLhRQ3tbIKNwKhcYwZ7jCDqe/qOYBtoko4Vc f8XDqETAAMqCfGqQWBKlWbc+KpN3a4mkpedwpUTFawct1XpB1JxSI6bgr/Z+DMCC AsBCbcZNUXL22Dx0DbJ6+mfRibOXNT1IkRnz7XJCf2ktx4fgvwB92jUomQ7c+bLm C1YFnZ9n7BnM7qd7QC0LP9FsBC4kN0Dv4+yMR6cGB8i9jJ44aMfWjjo6u74nBG+y vQ== -----END CERTIFICATE-----Generated at Wed May 8 10:06:55 2024 by rpki-client on console-ams.rpki-client.org