$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152384.roa File: AS152384.roa (raw, json) Hash identifier: 9VpSvCVQuzB9JAPOML4M3C2MovCZr5nYrp+EShHHnLo= Subject key identifier: 43:BB:90:3B:2F:CC:28:60:DB:B6:D5:77:85:19:26:0E:DD:6F:41:37 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 331297CFD16B4893725011BC9B5D872910162F88 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152384.roa Signing time: Mon 14 Jul 2025 06:53:06 +0000 ROA not before: Mon 14 Jul 2025 06:48:06 +0000 ROA not after: Mon 13 Jul 2026 06:53:06 +0000 asID: 152384 IP address blocks: 163.223.37.0/24 maxlen: 24 2001:df5:31c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 00:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:12:97:cf:d1:6b:48:93:72:50:11:bc:9b:5d:87:29:10:16:2f:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 14 06:48:06 2025 GMT Not After : Jul 13 06:53:06 2026 GMT Subject: CN=43BB903B2FCC2860DBB6D5778519260EDD6F4137 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c3:d6:3b:b9:3c:e3:f5:49:e9:4e:e7:79:1c: 59:43:5e:a0:5b:12:b6:99:71:3f:34:76:cc:53:a4: 5d:4b:8b:01:3a:84:85:29:8d:0b:38:d8:4e:38:3f: c0:a4:45:cb:ee:76:9e:4d:ea:b9:7e:47:76:e7:58: 5e:d0:6d:3b:ea:84:e3:ae:a0:8e:c6:31:9e:cc:40: de:be:4c:75:d5:d9:9e:0b:e1:b3:24:5f:75:6f:37: 3a:3d:01:00:c7:53:27:66:b4:43:9f:46:ea:0f:26: 75:9b:0c:ba:86:1a:83:5a:be:95:0b:e3:ad:a3:de: 78:f6:09:23:6e:67:e4:4f:66:99:75:89:ee:0b:64: 8f:db:81:d5:49:ca:23:e6:1a:02:ea:d3:24:22:74: cf:5b:fa:e3:06:3d:1d:87:8b:11:fe:cc:c8:3e:13: 37:c7:70:2b:8a:55:93:c6:c2:6d:26:9d:8d:b9:37: f0:77:b0:5c:33:db:da:26:de:cc:87:ae:8c:39:95: 2e:27:44:c4:c5:de:2c:9d:e6:87:d3:32:6a:3e:85: c2:fd:9b:8b:36:a8:b8:80:0c:51:11:3b:80:32:fe: c2:62:c4:4d:5e:12:92:fd:a3:d8:c5:64:5f:bd:69: 85:45:6d:e2:5d:99:f2:8e:72:b9:e1:a9:46:ee:a3: 9c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:BB:90:3B:2F:CC:28:60:DB:B6:D5:77:85:19:26:0E:DD:6F:41:37 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152384.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.223.37.0/24 IPv6: 2001:df5:31c0::/48 Signature Algorithm: sha256WithRSAEncryption 63:a9:5b:ea:63:a6:3f:fe:d3:54:2c:14:35:0d:27:bd:7b:1e: 1d:e2:8d:78:a2:1d:90:47:d0:3d:da:b0:cc:d4:5c:5c:81:58: 5b:a9:cd:30:ac:6a:c8:82:f7:ee:73:80:31:aa:25:8c:52:05: 45:d9:eb:77:5c:9a:48:a1:55:88:49:41:cd:a9:5c:ae:95:53: a7:5d:98:98:55:d7:55:0c:a2:43:d9:74:87:50:c6:6a:00:1b: b9:c3:a5:6b:b1:b2:d2:4a:4e:45:91:2e:02:7d:42:d8:5d:28: df:2b:ee:d1:89:e2:0a:48:46:3e:48:a1:3c:2a:a2:66:0d:68: b4:5a:1a:1b:e3:2b:b0:23:92:5e:36:2e:80:95:ac:ce:ad:cc: d2:be:4b:ec:6e:2a:a3:c1:37:cb:f8:0b:84:39:0d:c8:bc:3a: 84:59:e7:56:b1:19:35:db:aa:ff:66:17:fd:b5:6a:34:02:b3: 62:25:08:f9:80:99:45:f0:7c:a1:a7:8a:e0:75:8b:b1:16:63: 3f:96:d8:8a:88:a3:b7:1f:83:7c:7c:b7:87:b4:58:25:35:43: 64:7e:14:8f:88:71:c4:f8:35:ab:8a:f3:d2:7b:93:c6:46:80: 66:8f:5b:72:00:27:98:d6:26:4d:c8:cd:a4:2a:42:8e:75:12: 06:c3:73:ee -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUMxKXz9FrSJNyUBG8m12HKRAWL4gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcxNDA2NDgwNloX DTI2MDcxMzA2NTMwNlowMzExMC8GA1UEAxMoNDNCQjkwM0IyRkNDMjg2MERCQjZE NTc3ODUxOTI2MEVERDZGNDEzNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKPD1ju5POP1SelO53kcWUNeoFsStplxPzR2zFOkXUuLATqEhSmNCzjYTjg/ wKRFy+52nk3quX5HdudYXtBtO+qE466gjsYxnsxA3r5MddXZngvhsyRfdW83Oj0B AMdTJ2a0Q59G6g8mdZsMuoYag1q+lQvjraPeePYJI25n5E9mmXWJ7gtkj9uB1UnK I+YaAurTJCJ0z1v64wY9HYeLEf7MyD4TN8dwK4pVk8bCbSadjbk38HewXDPb2ibe zIeujDmVLidExMXeLJ3mh9Myaj6Fwv2bizaouIAMURE7gDL+wmLETV4Skv2j2MVk X71phUVt4l2Z8o5yueGpRu6jnKECAwEAAaOCAeEwggHdMB0GA1UdDgQWBBRDu5A7 L8woYNu21XeFGSYO3W9BNzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjM4NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAKPfJTAPBAIAAjAJAwcAIAEN9THAMA0GCSqGSIb3DQEBCwUAA4IB AQBjqVvqY6Y//tNULBQ1DSe9ex4d4o14oh2QR9A92rDM1FxcgVhbqc0wrGrIgvfu c4AxqiWMUgVF2et3XJpIoVWISUHNqVyulVOnXZiYVddVDKJD2XSHUMZqABu5w6Vr sbLSSk5FkS4CfULYXSjfK+7RieIKSEY+SKE8KqJmDWi0Whob4yuwI5JeNi6AlazO rczSvkvsbiqjwTfL+AuEOQ3IvDqEWedWsRk126r/Zhf9tWo0ArNiJQj5gJlF8Hyh p4rgdYuxFmM/ltiKiKO3H4N8fLeHtFglNUNkfhSPiHHE+DWrivPSe5PGRoBmj1ty ACeY1iZNyM2kKkKOdRIGw3Pu -----END CERTIFICATE-----Generated at Sun Jul 20 23:59:09 2025 by rpki-client