$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151592.roa File: AS151592.roa (raw, json) Hash identifier: 9hsarpEM4hgvtLyDgLjwqbOzl89AbLiIZbppjPRgjF8= Subject key identifier: 33:5E:CA:61:14:A7:F7:50:68:13:F5:55:DD:6D:E3:CD:33:F2:12:81 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 24ED96EE6AFD465AC0AE388DECF531BBFE9D1D3B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151592.roa Signing time: Tue 17 Oct 2023 02:19:51 +0000 ROA not before: Tue 17 Oct 2023 02:14:51 +0000 ROA not after: Tue 15 Oct 2024 02:19:51 +0000 asID: 151592 IP address blocks: 2001:df3:240::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:ed:96:ee:6a:fd:46:5a:c0:ae:38:8d:ec:f5:31:bb:fe:9d:1d:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 17 02:14:51 2023 GMT Not After : Oct 15 02:19:51 2024 GMT Subject: CN=335ECA6114A7F7506813F555DD6DE3CD33F21281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:13:be:20:17:ef:ed:00:64:82:43:25:be:a3: e1:dd:8a:5e:a2:c9:56:06:eb:fa:32:6b:da:ef:64: ac:28:9e:64:1c:d9:e5:4b:9a:f8:2d:61:73:e6:4b: d3:98:8c:02:99:74:ac:9b:f2:c0:8d:c2:ea:e4:f3: 7a:6d:f1:77:fb:41:89:77:2c:d8:34:86:38:e9:26: 25:49:c4:87:a5:40:85:74:8d:38:fa:8a:18:91:ac: e7:50:15:7b:d1:c8:d8:c1:dc:fb:77:b3:6d:ce:51: d2:f1:44:d1:1a:e6:2f:a5:70:c0:a9:df:61:2e:e8: a8:ac:99:a4:45:4f:35:2d:63:ac:95:ca:03:eb:be: b7:3e:ae:8b:b2:92:f8:4b:05:a4:0f:08:1b:cc:a1: 8b:3f:63:96:60:b3:32:73:61:5c:0b:00:29:fb:91: 36:55:91:3e:1a:ca:f2:6f:a4:af:96:4a:e0:a7:77: 1e:a5:6e:ec:22:f7:9a:f5:c5:48:97:f5:50:a0:ac: 95:ab:b3:d2:f9:78:d8:4e:0c:31:c8:ac:f4:44:33: 1a:1e:18:b7:d6:12:c1:50:a8:96:b7:18:53:f9:f4: 61:1c:bd:f8:4d:58:60:6c:99:14:e3:88:7a:34:34: f7:59:f1:6d:8d:c6:53:2e:0c:04:fb:e6:34:5f:2d: 47:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:5E:CA:61:14:A7:F7:50:68:13:F5:55:DD:6D:E3:CD:33:F2:12:81 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151592.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:240::/48 Signature Algorithm: sha256WithRSAEncryption 8f:42:43:26:93:19:ed:64:74:f8:7e:64:a6:63:f2:48:f0:c0: 77:32:c8:90:ab:83:83:c6:5f:4b:df:f4:ee:63:70:51:eb:0f: 0f:bc:fc:a1:58:d4:c4:a8:c7:9d:39:88:c0:a8:c0:2f:cf:ba: b8:23:25:1f:98:1a:61:4e:80:63:ce:f7:d1:45:c6:28:86:ca: 4c:f3:ba:44:c2:6a:6b:a8:8e:eb:be:80:1c:07:c0:64:c4:53: 80:0d:22:92:6f:04:15:63:22:3e:dd:47:1e:74:14:cb:3f:7c: 82:ff:40:c7:e9:a9:48:60:d6:a8:db:8e:bf:92:5e:b3:f8:dd: ae:2f:24:94:58:6c:cc:f8:d5:cd:e6:09:07:68:7b:3e:16:fa: d1:2e:5d:af:de:65:00:74:87:f9:be:e7:60:28:9c:4c:60:e1: d0:ac:31:57:ea:84:78:64:7d:ac:98:d9:25:86:52:58:00:11: fc:22:35:68:5b:c2:96:06:1a:5a:46:08:32:d5:87:f0:56:51: ee:2d:28:c7:a9:89:19:83:9d:de:db:4b:39:b5:60:4e:51:73: 00:05:79:b9:6a:40:31:03:9b:7f:33:45:d1:33:b8:ee:6c:9f: f1:cc:e5:27:ac:7d:46:0d:5f:e1:62:e4:4f:a2:6d:10:af:49: 49:89:94:a7 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUJO2W7mr9RlrArjiN7PUxu/6dHTswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAxNzAyMTQ1MVoX DTI0MTAxNTAyMTk1MVowMzExMC8GA1UEAxMoMzM1RUNBNjExNEE3Rjc1MDY4MTNG NTU1REQ2REUzQ0QzM0YyMTI4MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANgTviAX7+0AZIJDJb6j4d2KXqLJVgbr+jJr2u9krCieZBzZ5Uua+C1hc+ZL 05iMApl0rJvywI3C6uTzem3xd/tBiXcs2DSGOOkmJUnEh6VAhXSNOPqKGJGs51AV e9HI2MHc+3ezbc5R0vFE0RrmL6VwwKnfYS7oqKyZpEVPNS1jrJXKA+u+tz6ui7KS +EsFpA8IG8yhiz9jlmCzMnNhXAsAKfuRNlWRPhrK8m+kr5ZK4Kd3HqVu7CL3mvXF SJf1UKCslauz0vl42E4MMcis9EQzGh4Yt9YSwVColrcYU/n0YRy9+E1YYGyZFOOI ejQ091nxbY3GUy4MBPvmNF8tR8kCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQzXsph FKf3UGgT9VXdbePNM/ISgTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU5Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfMCQDANBgkqhkiG9w0BAQsFAAOCAQEAj0JDJpMZ7WR0+H5k pmPySPDAdzLIkKuDg8ZfS9/07mNwUesPD7z8oVjUxKjHnTmIwKjAL8+6uCMlH5ga YU6AY8730UXGKIbKTPO6RMJqa6iO676AHAfAZMRTgA0ikm8EFWMiPt1HHnQUyz98 gv9Ax+mpSGDWqNuOv5Jes/jdri8klFhszPjVzeYJB2h7Phb60S5dr95lAHSH+b7n YCicTGDh0KwxV+qEeGR9rJjZJYZSWAAR/CI1aFvClgYaWkYIMtWH8FZR7i0ox6mJ GYOd3ttLObVgTlFzAAV5uWpAMQObfzNF0TO47myf8czlJ6x9Rg1f4WLkT6JtEK9J SYmUpw== -----END CERTIFICATE-----Generated at Wed May 8 10:06:55 2024 by rpki-client on console-ams.rpki-client.org