$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151597.roa File: AS151597.roa (raw, json) Hash identifier: kUsPsBT+r/N9V97uDLHvT04B7xCGKRziXcvcp9fnMoM= Subject key identifier: 78:99:E5:5D:D3:D8:89:8E:2D:FB:EA:6F:3C:C0:B5:5F:56:66:8A:80 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 01ADB9C0A0D35B771CEA05B597D29F755EDF031A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151597.roa Signing time: Mon 16 Oct 2023 07:58:41 +0000 ROA not before: Mon 16 Oct 2023 07:53:41 +0000 ROA not after: Mon 14 Oct 2024 07:58:41 +0000 asID: 151597 IP address blocks: 103.254.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:ad:b9:c0:a0:d3:5b:77:1c:ea:05:b5:97:d2:9f:75:5e:df:03:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 16 07:53:41 2023 GMT Not After : Oct 14 07:58:41 2024 GMT Subject: CN=7899E55DD3D8898E2DFBEA6F3CC0B55F56668A80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2d:d2:6d:2d:be:84:5c:84:f4:09:52:b3:7a: eb:b7:14:ec:79:37:be:4e:fb:f5:37:c2:95:11:56: 3f:8d:a0:12:d7:3b:28:93:f6:4c:3c:36:d8:54:4e: ee:50:48:3f:bf:56:4d:17:22:b7:0b:bf:38:08:db: 47:53:42:08:55:64:8a:a2:cd:e4:c3:af:55:85:95: 66:bd:46:3a:66:a4:36:d6:30:bc:c6:dc:da:6e:d3: 49:d8:4c:41:47:e8:5e:5b:b6:88:cc:36:2b:fd:44: 74:78:93:a7:16:4d:15:ed:0e:08:96:46:88:2b:0f: d5:77:7f:4b:4a:43:dc:a0:2d:71:f2:1b:c8:8f:6b: d7:90:b6:be:03:43:52:29:2d:bd:0c:7c:e8:e2:3c: 9e:41:88:51:6d:8d:fe:e6:1d:46:50:d6:e5:73:26: 12:9e:86:4e:f2:a6:93:35:fa:10:3b:20:d3:0e:52: 8a:e4:21:23:2a:5d:4e:76:2a:1b:7a:34:5a:94:4d: 6f:c0:d6:c3:99:bc:d0:47:59:1b:2a:8d:78:4e:83: b4:b9:7f:1c:d7:41:44:c3:ee:b3:09:c4:21:e7:fe: ea:fa:96:9b:54:0c:7e:66:53:fb:c9:52:ae:f2:67: 2a:aa:ff:a6:a1:d8:1b:6e:87:90:72:36:30:8b:4d: 36:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:99:E5:5D:D3:D8:89:8E:2D:FB:EA:6F:3C:C0:B5:5F:56:66:8A:80 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151597.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.197.0/24 Signature Algorithm: sha256WithRSAEncryption 70:6b:a8:e0:24:c7:60:b6:fd:44:09:11:39:80:91:fa:3c:74: 40:a1:2b:e8:1e:b0:9f:a3:6a:f7:fb:0d:63:e2:bb:31:2a:fd: 08:fa:1a:73:f4:f1:2c:c4:86:db:32:c4:87:f9:c2:90:1c:0b: e4:28:13:17:63:e0:d1:16:a7:c4:b5:c2:e9:1b:94:a6:de:16: 4d:ec:32:f2:10:00:ed:af:bf:3c:10:0a:bb:0c:dc:d3:48:89: db:e0:41:5d:66:e1:b9:36:29:5d:eb:bb:40:46:2e:b9:aa:c1: 07:40:fd:61:da:75:77:fa:b4:1d:04:15:f3:f2:9a:c3:c4:36: a7:61:9c:ad:80:7a:ca:8e:f8:2f:fb:f7:2d:17:f2:14:ce:2f: 81:ee:e3:9c:bd:07:26:c9:28:5c:7b:35:97:e8:c8:88:3c:f6: e9:06:cd:ea:dc:47:0c:61:b6:0b:e8:e5:a5:7a:3b:4d:44:58: de:1e:36:24:f0:54:94:e8:ca:8f:cc:32:a7:b2:a2:f8:8b:f6: 25:90:ec:78:3c:1b:d9:32:e8:08:f2:a9:1e:1f:d8:b2:51:22: 83:b5:65:5a:5c:0e:64:f3:27:cf:dc:2c:5d:8b:59:d9:0d:62: 2f:ef:32:f1:c9:0f:0b:17:d0:0c:5c:03:b5:63:78:7a:37:77: e5:2b:64:30 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUAa25wKDTW3cc6gW1l9KfdV7fAxowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAxNjA3NTM0MVoX DTI0MTAxNDA3NTg0MVowMzExMC8GA1UEAxMoNzg5OUU1NUREM0Q4ODk4RTJERkJF QTZGM0NDMEI1NUY1NjY2OEE4MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ8t0m0tvoRchPQJUrN667cU7Hk3vk779TfClRFWP42gEtc7KJP2TDw22FRO 7lBIP79WTRcitwu/OAjbR1NCCFVkiqLN5MOvVYWVZr1GOmakNtYwvMbc2m7TSdhM QUfoXlu2iMw2K/1EdHiTpxZNFe0OCJZGiCsP1Xd/S0pD3KAtcfIbyI9r15C2vgND UiktvQx86OI8nkGIUW2N/uYdRlDW5XMmEp6GTvKmkzX6EDsg0w5SiuQhIypdTnYq G3o0WpRNb8DWw5m80EdZGyqNeE6DtLl/HNdBRMPuswnEIef+6vqWm1QMfmZT+8lS rvJnKqr/pqHYG26HkHI2MItNNgcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR4meVd 09iJji376m88wLVfVmaKgDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU5Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGf+xTANBgkqhkiG9w0BAQsFAAOCAQEAcGuo4CTHYLb9RAkROYCR +jx0QKEr6B6wn6Nq9/sNY+K7MSr9CPoac/TxLMSG2zLEh/nCkBwL5CgTF2Pg0Ran xLXC6RuUpt4WTewy8hAA7a+/PBAKuwzc00iJ2+BBXWbhuTYpXeu7QEYuuarBB0D9 Ydp1d/q0HQQV8/Kaw8Q2p2GcrYB6yo74L/v3LRfyFM4vge7jnL0HJskoXHs1l+jI iDz26QbN6txHDGG2C+jlpXo7TURY3h42JPBUlOjKj8wyp7Ki+Iv2JZDseDwb2TLo CPKpHh/YslEig7VlWlwOZPMnz9wsXYtZ2Q1iL+8y8ckPCxfQDFwDtWN4ejd35Stk MA== -----END CERTIFICATE-----Generated at Wed May 8 14:59:57 2024 by rpki-client on console-ams.rpki-client.org