$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151585.roa File: AS151585.roa (raw, json) Hash identifier: y2dcae5ok3ZxO5JlbfwIS9HuXNDqsUicbyjSp94AxWM= Subject key identifier: 3C:C0:13:81:42:55:99:CE:AA:5B:07:9E:87:9D:81:60:50:B9:02:FC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2D78BDF2B15D968D5C25185CF3D0819A41902795 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151585.roa Signing time: Mon 13 Nov 2023 03:53:06 +0000 ROA not before: Mon 13 Nov 2023 03:48:06 +0000 ROA not after: Mon 11 Nov 2024 03:53:06 +0000 asID: 151585 IP address blocks: 103.204.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:78:bd:f2:b1:5d:96:8d:5c:25:18:5c:f3:d0:81:9a:41:90:27:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 13 03:48:06 2023 GMT Not After : Nov 11 03:53:06 2024 GMT Subject: CN=3CC01381425599CEAA5B079E879D816050B902FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:af:cc:4b:98:01:e5:57:b1:22:fd:49:33:94: dc:c8:91:cb:b4:c3:a3:2e:5d:80:15:03:42:dc:97: 13:c5:75:6c:5e:fe:63:90:f5:62:5b:bb:ec:76:ad: 62:6a:f2:f5:95:91:94:b1:0c:1d:42:13:fa:2f:1a: 80:90:ac:45:ea:dd:24:36:87:4f:8a:8a:77:5c:eb: 8a:a5:cd:da:0c:d4:4b:c5:7f:f4:a7:08:eb:ae:e9: f2:fc:03:bc:13:b8:a6:99:ec:bd:93:b9:ad:db:ce: fe:2d:f7:45:d7:33:ac:5e:f5:60:d0:03:e5:5b:53: be:eb:0d:7d:c2:49:9d:1c:ec:09:8c:2e:d9:4e:f8: f0:7c:c6:d7:92:d2:98:00:2c:3a:6b:ba:c0:47:2f: ba:f9:2f:38:39:ad:e1:0a:ee:65:64:d5:fe:98:4c: 98:c7:eb:d0:48:ba:a9:3b:55:ae:30:6d:ef:60:dc: 3d:5e:fb:ca:70:86:82:15:19:09:4d:21:15:e3:7c: 80:40:74:ad:31:4f:fd:89:8a:9a:d7:9a:93:3b:9d: 4e:e9:8f:5f:01:7c:76:c9:05:f1:a7:51:f0:e9:59: 22:c0:64:5f:e1:32:39:a0:22:55:d0:d9:51:81:14: 61:fe:d3:e3:33:49:3c:de:a6:50:76:dc:8b:b7:b1: 93:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:C0:13:81:42:55:99:CE:AA:5B:07:9E:87:9D:81:60:50:B9:02:FC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151585.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.204.46.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:97:cf:ac:09:cc:68:58:38:75:54:3a:9a:b4:b7:82:91:e4: fb:35:27:d6:c7:10:5e:1e:2a:6d:76:f3:fa:f4:f3:16:a1:cf: c0:a0:08:1d:fd:fe:86:6b:d2:fa:b1:00:01:76:24:12:97:71: 17:6b:d5:07:a2:a2:b9:48:d4:e2:97:55:67:7d:7c:8c:05:c6: c3:32:a2:58:03:2c:63:43:3f:19:8b:94:5c:a9:d9:25:06:b2: 99:c9:77:12:8e:4a:4c:85:18:47:fa:2e:90:9e:a1:4c:e7:88: 12:10:95:f6:1a:46:33:e6:9c:8f:f7:bd:b1:78:9d:a7:ef:f6: d9:cf:95:0e:a5:a8:e7:d5:79:3e:4a:de:81:cb:2d:8b:79:6f: 75:e1:bb:5c:99:c2:2b:87:9d:7e:b8:fa:94:69:19:de:c0:b1: e5:0c:48:37:f8:74:e8:e3:36:29:2e:5b:c3:7e:92:aa:be:5c: b8:6d:ad:b1:17:5c:59:e7:6f:d6:33:47:e0:4b:99:9a:6f:e5: b3:74:fd:01:57:c9:2f:16:9d:6d:47:1e:ae:bd:33:2d:81:56: 1f:9a:b9:f6:9e:be:71:08:52:02:de:74:bd:84:23:30:97:48: 40:27:cf:10:e3:5a:45:07:9c:f6:00:8f:3a:30:dd:d6:1d:5e: b2:e8:35:47 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIULXi98rFdlo1cJRhc89CBmkGQJ5UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTExMzAzNDgwNloX DTI0MTExMTAzNTMwNlowMzExMC8GA1UEAxMoM0NDMDEzODE0MjU1OTlDRUFBNUIw NzlFODc5RDgxNjA1MEI5MDJGQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMKvzEuYAeVXsSL9STOU3MiRy7TDoy5dgBUDQtyXE8V1bF7+Y5D1Ylu77Hat Ymry9ZWRlLEMHUIT+i8agJCsRerdJDaHT4qKd1zriqXN2gzUS8V/9KcI667p8vwD vBO4ppnsvZO5rdvO/i33RdczrF71YNAD5VtTvusNfcJJnRzsCYwu2U748HzG15LS mAAsOmu6wEcvuvkvODmt4QruZWTV/phMmMfr0Ei6qTtVrjBt72DcPV77ynCGghUZ CU0hFeN8gEB0rTFP/YmKmteakzudTumPXwF8dskF8adR8OlZIsBkX+EyOaAiVdDZ UYEUYf7T4zNJPN6mUHbci7exkw8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ8wBOB QlWZzqpbB56HnYFgULkC/DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU4NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfMLjANBgkqhkiG9w0BAQsFAAOCAQEAT5fPrAnMaFg4dVQ6mrS3 gpHk+zUn1scQXh4qbXbz+vTzFqHPwKAIHf3+hmvS+rEAAXYkEpdxF2vVB6KiuUjU 4pdVZ318jAXGwzKiWAMsY0M/GYuUXKnZJQaymcl3Eo5KTIUYR/oukJ6hTOeIEhCV 9hpGM+acj/e9sXidp+/22c+VDqWo59V5Pkregcsti3lvdeG7XJnCK4edfrj6lGkZ 3sCx5QxIN/h06OM2KS5bw36Sqr5cuG2tsRdcWedv1jNH4EuZmm/ls3T9AVfJLxad bUcerr0zLYFWH5q59p6+cQhSAt50vYQjMJdIQCfPEONaRQec9gCPOjDd1h1esug1 Rw== -----END CERTIFICATE-----Generated at Wed May 8 10:06:55 2024 by rpki-client on console-ams.rpki-client.org