$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151591.roa File: AS151591.roa (raw, json) Hash identifier: 5y9kVUZZZS9JvfN/ELNNogXWzCTySAJkoo2UBVNNANM= Subject key identifier: 7C:98:7D:83:34:20:15:9C:80:98:FB:81:BD:E4:5D:F9:C1:5B:8B:0D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7EC5A6475A16CCAD298558A724E84254EB053127 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151591.roa Signing time: Mon 18 Dec 2023 01:46:56 +0000 ROA not before: Mon 18 Dec 2023 01:41:56 +0000 ROA not after: Mon 16 Dec 2024 01:46:56 +0000 asID: 151591 IP address blocks: 103.250.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:c5:a6:47:5a:16:cc:ad:29:85:58:a7:24:e8:42:54:eb:05:31:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 18 01:41:56 2023 GMT Not After : Dec 16 01:46:56 2024 GMT Subject: CN=7C987D833420159C8098FB81BDE45DF9C15B8B0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:7e:70:39:60:85:dc:f0:10:31:32:bb:26:e5: 9f:c5:01:36:e3:c8:35:75:d5:6d:64:b4:c3:3a:b2: 4c:a2:8e:10:f5:fc:32:7c:a5:a4:5d:35:17:eb:15: 94:32:8d:c1:67:8b:54:c0:01:36:4b:ee:e4:4a:cb: b5:7f:9a:e9:9a:6a:1a:e5:4f:f9:f8:59:5c:74:6b: 8b:a6:3f:96:f3:73:81:73:3c:22:0d:48:78:71:cf: 54:38:4d:1a:bf:00:75:d6:a0:da:29:80:0b:26:3f: ee:2d:9c:24:1a:bf:e1:f7:2d:bd:42:fd:9c:df:ec: 3a:9c:df:47:9b:8c:fa:5d:c4:f0:08:c3:e2:6a:75: 23:ea:38:f1:f7:5a:ac:b4:54:f0:36:56:8c:cf:2b: 58:84:ed:e2:bd:a9:20:b8:be:0d:cf:0d:ca:67:c7: ae:22:97:b4:8c:46:02:22:f5:a8:cb:f5:a5:2a:e8: ea:15:61:a2:38:c1:36:d5:02:d4:88:4e:6a:d4:8b: 3e:54:bc:59:3c:b9:85:39:da:fd:96:9d:03:e0:3c: 99:71:02:3e:f9:d6:0d:83:fc:92:1f:3c:05:23:ee: aa:aa:52:36:3a:f2:46:68:9b:f5:c3:2c:6a:59:f4: 6f:01:20:6c:e5:f0:d8:69:0b:f6:c2:f0:f4:f7:b4: 0f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:98:7D:83:34:20:15:9C:80:98:FB:81:BD:E4:5D:F9:C1:5B:8B:0D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151591.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.250.12.0/23 Signature Algorithm: sha256WithRSAEncryption 97:57:e8:19:9e:0c:8d:9b:44:13:c2:15:40:70:2f:35:c7:39: 08:47:2f:f6:97:fd:ec:c6:12:d4:b6:b8:8d:38:0b:5f:a3:43: 92:cb:68:3d:69:25:ec:32:8d:32:e1:81:ca:c9:aa:6d:1f:bd: b5:c2:68:79:ab:4a:a1:b5:ac:37:cd:ed:b9:93:5d:fc:19:9b: 37:fa:9e:a3:22:2e:13:bd:52:01:ed:a9:22:1d:55:50:03:41: eb:e1:63:74:0e:34:54:9d:7d:53:d6:7e:7a:a2:4d:f0:e1:92: d8:86:d3:0d:bd:16:d4:7b:ae:e8:f8:3d:31:b9:64:da:e5:b2: e8:6c:bc:14:65:d5:f1:10:33:3c:6e:15:2f:59:5e:a8:6b:f8: ed:bd:2c:60:49:12:1e:75:02:54:20:79:76:a1:94:bb:24:3d: 44:98:5b:ee:a8:14:c7:03:48:94:aa:89:ab:7c:c4:79:10:fc: b7:8b:9d:bc:32:91:b4:c8:37:95:7e:d1:6d:52:17:43:05:11: 3e:86:b4:16:04:1f:b2:a1:5a:f5:5d:c3:49:0b:ee:96:67:f6: ba:ac:0e:b8:db:ec:34:db:6e:11:5b:a6:00:24:87:89:92:ab: 3c:dc:d8:1b:6e:3f:92:db:0f:80:24:e3:ec:a5:9d:ff:e9:1e: 41:22:27:50 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUfsWmR1oWzK0phVinJOhCVOsFMScwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIxODAxNDE1NloX DTI0MTIxNjAxNDY1NlowMzExMC8GA1UEAxMoN0M5ODdEODMzNDIwMTU5QzgwOThG QjgxQkRFNDVERjlDMTVCOEIwRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ9+cDlghdzwEDEyuybln8UBNuPINXXVbWS0wzqyTKKOEPX8MnylpF01F+sV lDKNwWeLVMABNkvu5ErLtX+a6ZpqGuVP+fhZXHRri6Y/lvNzgXM8Ig1IeHHPVDhN Gr8Addag2imACyY/7i2cJBq/4fctvUL9nN/sOpzfR5uM+l3E8AjD4mp1I+o48fda rLRU8DZWjM8rWITt4r2pILi+Dc8NymfHriKXtIxGAiL1qMv1pSro6hVhojjBNtUC 1IhOatSLPlS8WTy5hTna/ZadA+A8mXECPvnWDYP8kh88BSPuqqpSNjryRmib9cMs aln0bwEgbOXw2GkL9sLw9Pe0D5cCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR8mH2D NCAVnICY+4G95F35wVuLDTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU5MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWf6DDANBgkqhkiG9w0BAQsFAAOCAQEAl1foGZ4MjZtEE8IVQHAv Ncc5CEcv9pf97MYS1La4jTgLX6NDkstoPWkl7DKNMuGBysmqbR+9tcJoeatKobWs N83tuZNd/BmbN/qeoyIuE71SAe2pIh1VUANB6+FjdA40VJ19U9Z+eqJN8OGS2IbT Db0W1Huu6Pg9Mblk2uWy6Gy8FGXV8RAzPG4VL1leqGv47b0sYEkSHnUCVCB5dqGU uyQ9RJhb7qgUxwNIlKqJq3zEeRD8t4udvDKRtMg3lX7RbVIXQwURPoa0FgQfsqFa 9V3DSQvulmf2uqwOuNvsNNtuEVumACSHiZKrPNzYG24/ktsPgCTj7KWd/+keQSIn UA== -----END CERTIFICATE-----Generated at Wed May 8 17:45:23 2024 by rpki-client on console-ams.rpki-client.org