$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151590.roa File: AS151590.roa (raw, json) Hash identifier: uY5p/MYDmqiM6wx4vODKhA5f/0D1DgQ954ioGl6HMYY= Subject key identifier: 6A:4C:28:5D:C8:56:E3:37:27:88:EC:84:1B:EA:FB:03:B8:73:35:C8 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2F5E37D01D82083F3E9DE5F330D49A9DA7B16DF2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151590.roa Signing time: Fri 20 Oct 2023 08:40:19 +0000 ROA not before: Fri 20 Oct 2023 08:35:19 +0000 ROA not after: Fri 18 Oct 2024 08:40:19 +0000 asID: 151590 IP address blocks: 103.250.14.0/24 maxlen: 24 103.250.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:5e:37:d0:1d:82:08:3f:3e:9d:e5:f3:30:d4:9a:9d:a7:b1:6d:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 20 08:35:19 2023 GMT Not After : Oct 18 08:40:19 2024 GMT Subject: CN=6A4C285DC856E3372788EC841BEAFB03B87335C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c6:ff:90:6b:4c:f5:f8:5d:f6:2e:a9:72:05: 30:b0:bc:3d:ba:ec:e6:6d:97:27:f9:f9:1e:aa:e7: a3:d4:37:4c:8f:7b:77:ea:13:54:22:e8:ac:4d:d0: 21:30:3a:03:46:57:da:25:5e:fe:39:be:7f:28:47: 52:be:02:d1:43:1b:86:43:ba:a4:5b:97:dd:01:6f: d8:a8:65:f3:42:4c:be:64:70:3c:88:2d:11:75:83: 4b:4c:ee:94:e3:6d:43:50:4a:92:ec:4c:45:ea:2f: 14:12:26:65:fa:5d:89:98:73:af:41:60:96:16:1b: 64:c1:64:68:5e:a9:e2:78:de:ca:46:1f:c7:c6:5d: 7e:0a:23:b8:ba:45:2c:ee:fb:d3:69:70:12:a0:54: ad:77:e4:8c:e6:65:89:b5:a1:3e:74:d9:6e:0d:e0: 12:7b:6d:95:5f:d1:35:fd:45:32:4c:96:46:b7:a7: 01:73:b6:8f:20:73:94:ad:e6:d1:93:26:cb:86:1a: 3a:9e:d1:db:4e:be:55:2f:2a:03:c8:b6:dd:9f:3b: 59:b2:e9:11:e8:b3:ac:5c:37:1b:74:52:d4:95:14: 21:40:d7:76:74:6c:10:e0:c1:38:9b:19:1c:6c:6f: 71:45:bc:51:ed:b1:9d:60:e7:d3:01:a7:b1:0d:5f: f5:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:4C:28:5D:C8:56:E3:37:27:88:EC:84:1B:EA:FB:03:B8:73:35:C8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151590.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.250.14.0/23 Signature Algorithm: sha256WithRSAEncryption 58:d7:76:1c:2c:b9:d0:f2:83:e6:74:8f:37:5d:22:ee:dd:4a: 3a:b5:8f:9e:b5:89:3c:1c:a0:b1:6d:08:98:7c:db:66:82:88: 71:1b:e5:93:c6:9f:03:a0:21:de:49:96:88:ac:bc:eb:45:22: a9:0e:d6:54:2b:bd:de:81:ec:ed:9f:01:99:1f:76:a8:f0:e6: 5c:cf:40:48:d4:28:32:d0:81:d2:e4:9f:87:b8:d9:b2:ee:7e: 13:e4:9a:c3:75:f5:85:0b:38:2f:54:bf:7c:3d:a3:fe:2a:d2: f4:42:e0:e7:d5:ce:8b:4b:79:2b:dc:e1:29:a6:ab:8e:c7:76: 00:84:ec:5f:c9:42:05:27:17:ad:d4:1a:ab:09:92:fc:cb:2c: a3:84:4b:6b:e5:0e:8e:50:19:52:89:f9:30:4d:40:81:02:6c: 0e:6f:2d:98:65:cf:03:4b:a0:8c:9c:4d:50:74:6b:6f:f5:e2: 2b:9d:b3:1a:ca:46:3c:b7:d4:37:38:47:47:47:5f:02:49:b3: 87:a2:88:7e:7e:32:ef:c0:f0:25:a8:fc:fd:3b:81:89:fa:29: 89:24:0c:0d:c1:b0:0b:1a:1b:d8:37:f3:4c:64:dd:18:6b:9b: 30:3f:4a:9c:4f:82:93:55:af:8a:8d:f6:db:66:17:9a:74:98: a5:d4:ab:c8 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUL1430B2CCD8+neXzMNSanaexbfIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAyMDA4MzUxOVoX DTI0MTAxODA4NDAxOVowMzExMC8GA1UEAxMoNkE0QzI4NURDODU2RTMzNzI3ODhF Qzg0MUJFQUZCMDNCODczMzVDODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM7G/5BrTPX4XfYuqXIFMLC8Pbrs5m2XJ/n5Hqrno9Q3TI97d+oTVCLorE3Q ITA6A0ZX2iVe/jm+fyhHUr4C0UMbhkO6pFuX3QFv2Khl80JMvmRwPIgtEXWDS0zu lONtQ1BKkuxMReovFBImZfpdiZhzr0FglhYbZMFkaF6p4njeykYfx8ZdfgojuLpF LO7702lwEqBUrXfkjOZlibWhPnTZbg3gEnttlV/RNf1FMkyWRrenAXO2jyBzlK3m 0ZMmy4YaOp7R206+VS8qA8i23Z87WbLpEeizrFw3G3RS1JUUIUDXdnRsEODBOJsZ HGxvcUW8Ue2xnWDn0wGnsQ1f9W0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRqTChd yFbjNyeI7IQb6vsDuHM1yDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU5MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWf6DjANBgkqhkiG9w0BAQsFAAOCAQEAWNd2HCy50PKD5nSPN10i 7t1KOrWPnrWJPBygsW0ImHzbZoKIcRvlk8afA6Ah3kmWiKy860UiqQ7WVCu93oHs 7Z8BmR92qPDmXM9ASNQoMtCB0uSfh7jZsu5+E+Saw3X1hQs4L1S/fD2j/irS9ELg 59XOi0t5K9zhKaarjsd2AITsX8lCBScXrdQaqwmS/Msso4RLa+UOjlAZUon5ME1A gQJsDm8tmGXPA0ugjJxNUHRrb/XiK52zGspGPLfUNzhHR0dfAkmzh6KIfn4y78Dw Jaj8/TuBifopiSQMDcGwCxob2DfzTGTdGGubMD9KnE+Ck1Wvio3222YXmnSYpdSr yA== -----END CERTIFICATE-----Generated at Wed May 8 21:02:24 2024 by rpki-client on console-fra.rpki-client.org