$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151999.roa File: AS151999.roa (raw, json) Hash identifier: RYGDDLfctEL/zy5uwZiM45PQb3xJop974W4IkX8dFgw= Subject key identifier: 49:8F:88:DC:A9:CB:D6:5A:B4:0C:69:D5:68:A1:D2:CC:C0:C0:CC:F4 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1955914B8F2ED1636988D1233B028DA24D512511 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151999.roa Signing time: Thu 16 Nov 2023 04:48:19 +0000 ROA not before: Thu 16 Nov 2023 04:43:19 +0000 ROA not after: Thu 14 Nov 2024 04:48:19 +0000 asID: 151999 IP address blocks: 43.250.182.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:55:91:4b:8f:2e:d1:63:69:88:d1:23:3b:02:8d:a2:4d:51:25:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 16 04:43:19 2023 GMT Not After : Nov 14 04:48:19 2024 GMT Subject: CN=498F88DCA9CBD65AB40C69D568A1D2CCC0C0CCF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:e0:30:b8:6c:dc:f6:df:ec:8b:e1:63:35:8e: 02:d6:b1:4b:f8:09:8c:b0:7b:ce:20:e6:ce:a6:66: d8:32:72:14:32:ca:59:12:af:36:cc:5a:e2:d5:f4: a1:c0:ee:b6:5d:65:ed:9f:56:ab:f5:cd:d1:db:40: 78:e5:ba:06:67:5e:e5:89:98:37:6b:44:36:de:3d: 8a:8d:27:56:5f:dc:75:2a:f8:c9:84:a9:51:1a:25: 6d:0e:11:d9:9c:6d:21:b4:bc:16:19:b8:59:9b:0a: f0:c1:fb:81:90:4b:07:35:83:87:0b:09:5d:35:d6: 48:55:2c:32:30:d7:ee:01:81:ef:a8:74:25:e9:b4: 35:53:b1:2b:18:68:d0:83:92:b8:0b:c0:2a:d7:73: 7b:a4:d7:f8:d3:1c:1f:35:19:62:c6:3a:db:8f:84: 71:e6:a9:e7:1c:f5:16:4c:78:fc:aa:d4:ce:26:14: f1:7b:e4:70:d7:24:75:63:eb:47:9b:d3:7a:a7:1b: 06:29:d8:c2:b6:f4:2c:d9:65:20:75:28:9f:3f:83: 12:e6:d1:b2:81:e9:b2:13:7c:18:78:3e:07:bb:3d: 1b:fc:9f:70:1b:94:0f:bd:ed:ac:0c:d5:60:56:06: 7b:16:a4:19:6b:8c:a1:40:df:53:09:a0:04:8f:85: d6:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:8F:88:DC:A9:CB:D6:5A:B4:0C:69:D5:68:A1:D2:CC:C0:C0:CC:F4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151999.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.250.182.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:64:dd:31:31:73:31:2a:3c:02:1c:0f:b1:c4:a4:d3:9f:2b: 3c:b0:c8:aa:af:87:7e:d5:df:15:f1:1a:f8:43:7b:62:29:18: 8c:5a:06:97:4a:d9:4e:8b:7c:14:1e:5d:d6:c5:85:f7:5e:46: e9:47:5d:e7:e3:0d:f7:5e:db:11:16:5f:05:1c:fe:c5:d6:46: bc:65:ad:18:20:aa:53:df:2b:50:9c:9a:eb:06:69:24:db:13: 25:ed:96:58:f6:4d:c1:2d:c8:92:66:da:3e:8c:91:63:b3:01: 28:9f:19:70:2a:6e:94:42:dc:a3:65:cc:16:d4:43:90:1f:f0: b7:7a:65:ad:4c:20:72:23:80:5d:78:0c:c9:58:92:b1:e4:86: e6:4c:98:ca:61:58:1b:09:0c:01:ee:b1:3b:75:08:33:2b:48: 69:93:91:66:8d:a4:de:50:6b:4c:ab:64:e3:9e:3f:f8:db:51: 75:25:6b:fa:70:39:e1:24:51:53:63:2e:7a:a2:18:51:bc:89: da:24:88:93:e5:a3:a7:63:71:8b:a2:5e:b8:99:c4:3b:56:ef: 8b:0c:3b:82:1e:f6:2b:8a:51:51:8c:83:53:e8:a7:20:b3:e2: 43:e2:f5:59:a5:ff:22:cf:c7:18:2c:b4:ed:27:71:e8:37:91: 35:cf:40:67 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUGVWRS48u0WNpiNEjOwKNok1RJREwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTExNjA0NDMxOVoX DTI0MTExNDA0NDgxOVowMzExMC8GA1UEAxMoNDk4Rjg4RENBOUNCRDY1QUI0MEM2 OUQ1NjhBMUQyQ0NDMEMwQ0NGNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOvgMLhs3Pbf7IvhYzWOAtaxS/gJjLB7ziDmzqZm2DJyFDLKWRKvNsxa4tX0 ocDutl1l7Z9Wq/XN0dtAeOW6Bmde5YmYN2tENt49io0nVl/cdSr4yYSpURolbQ4R 2ZxtIbS8Fhm4WZsK8MH7gZBLBzWDhwsJXTXWSFUsMjDX7gGB76h0Jem0NVOxKxho 0IOSuAvAKtdze6TX+NMcHzUZYsY624+Eceap5xz1Fkx4/KrUziYU8XvkcNckdWPr R5vTeqcbBinYwrb0LNllIHUonz+DEubRsoHpshN8GHg+B7s9G/yfcBuUD73trAzV YFYGexakGWuMoUDfUwmgBI+F1hcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRJj4jc qcvWWrQMadVoodLMwMDM9DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTk5OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEASv6tjANBgkqhkiG9w0BAQsFAAOCAQEAbWTdMTFzMSo8AhwPscSk 058rPLDIqq+HftXfFfEa+EN7YikYjFoGl0rZTot8FB5d1sWF915G6Udd5+MN917b ERZfBRz+xdZGvGWtGCCqU98rUJya6wZpJNsTJe2WWPZNwS3IkmbaPoyRY7MBKJ8Z cCpulELco2XMFtRDkB/wt3plrUwgciOAXXgMyViSseSG5kyYymFYGwkMAe6xO3UI MytIaZORZo2k3lBrTKtk454/+NtRdSVr+nA54SRRU2MueqIYUbyJ2iSIk+Wjp2Nx i6JeuJnEO1bviww7gh72K4pRUYyDU+inILPiQ+L1WaX/Is/HGCy07Sdx6DeRNc9A Zw== -----END CERTIFICATE-----Generated at Thu May 9 00:29:16 2024 by rpki-client on console-ams.rpki-client.org