$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152079.roa File: AS152079.roa (raw, json) Hash identifier: VVhPYJTIa1W7xlpB3nKYuVhPe28QgEEVITm7rvWI/YY= Subject key identifier: BA:82:3D:3F:7C:D3:AA:05:80:00:DA:5C:CE:E6:9F:EA:39:99:54:DA Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 273C4D03A56F473D2B3CA9BE28EA9ED95DA22335 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152079.roa Signing time: Thu 06 Feb 2025 10:44:54 +0000 ROA not before: Thu 06 Feb 2025 10:39:54 +0000 ROA not after: Thu 05 Feb 2026 10:44:54 +0000 asID: 152079 IP address blocks: 157.10.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 16:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:3c:4d:03:a5:6f:47:3d:2b:3c:a9:be:28:ea:9e:d9:5d:a2:23:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 6 10:39:54 2025 GMT Not After : Feb 5 10:44:54 2026 GMT Subject: CN=BA823D3F7CD3AA058000DA5CCEE69FEA399954DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:98:a0:94:e1:fc:b4:ff:80:ca:21:c9:e2:14: fb:db:7a:14:36:19:35:97:d4:db:0c:e1:dc:92:3d: 5d:98:e8:d9:56:24:59:52:ed:2e:ff:86:38:f1:e2: 5d:2c:6d:2d:7a:e4:23:7c:77:cc:c4:73:8f:48:92: a7:cf:72:ea:65:57:66:0b:cb:1f:1f:20:d6:c8:6a: 0b:ad:87:17:9b:9f:74:1b:42:9c:bb:40:e3:0c:a7: f9:47:24:35:44:30:df:38:0c:4f:96:4e:c8:94:04: 87:fa:a3:47:30:b1:34:98:ee:9a:60:84:0a:f4:e4: 04:f4:f4:e5:7e:8f:4a:4a:42:19:df:79:2c:52:bb: cd:35:22:8b:2d:fe:a5:38:23:ff:4b:ae:c5:c8:09: f3:95:b1:9b:f6:b2:ff:8c:2d:d5:16:40:13:8f:4a: bd:78:1b:b3:5e:c7:7d:87:8b:a5:57:cc:61:75:dc: 37:87:79:ba:72:fd:ef:6c:d4:a4:e7:57:93:b4:e4: b3:c8:b5:10:28:26:28:95:47:3b:8a:38:d9:6a:4f: 84:82:6e:81:19:03:6f:90:5e:13:94:f3:b5:eb:35: 5d:64:7f:3d:36:93:3b:81:52:b6:2c:f9:f5:59:26: 1a:ae:9a:16:64:30:a9:54:96:cb:58:c4:d4:f3:02: 6b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:82:3D:3F:7C:D3:AA:05:80:00:DA:5C:CE:E6:9F:EA:39:99:54:DA X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152079.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.0.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:7a:ee:00:4f:b6:cd:58:e0:3a:ea:70:96:f3:70:0c:ef:d5: 3a:c6:03:98:5d:cf:db:34:c2:6a:ad:68:89:30:aa:aa:68:03: 34:0a:95:ac:59:23:00:f1:c4:52:ed:ae:4b:5c:ad:fe:04:dd: 95:df:02:f1:0f:3b:59:7f:c1:5a:29:e5:5f:b6:ef:be:fb:2a: a0:ca:52:07:66:a6:7c:b6:3b:16:ab:d0:41:03:84:8b:09:3e: c3:e7:ce:c4:8e:33:7a:f4:e8:a5:29:f0:6f:b3:d6:19:87:5d: 76:b4:71:8d:e3:a6:20:82:5e:fe:c9:d8:44:31:b3:50:32:be: 98:c0:13:3b:8f:e9:4c:88:dd:b7:a8:7c:e7:a0:4b:f4:df:d6: 7a:f5:1c:25:7b:d1:46:27:93:2e:56:c2:b1:40:03:c2:61:de: 23:02:a9:aa:20:26:9c:6d:d0:33:f4:8a:d1:62:51:2a:1a:2b: 81:2f:b1:7b:99:2a:cd:c7:a3:93:fc:31:59:a4:b9:83:02:67: d3:00:fb:19:38:90:b3:98:17:60:2f:1e:54:3b:ec:a7:27:05: 01:c2:99:d5:3d:98:a2:e2:19:73:3f:27:72:10:75:0c:0f:88: 27:1b:87:49:ce:83:30:69:0e:df:2a:d4:91:89:a3:2c:45:b3: ff:ca:71:4f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUJzxNA6VvRz0rPKm+KOqe2V2iIzUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIwNjEwMzk1NFoX DTI2MDIwNTEwNDQ1NFowMzExMC8GA1UEAxMoQkE4MjNEM0Y3Q0QzQUEwNTgwMDBE QTVDQ0VFNjlGRUEzOTk5NTREQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJaYoJTh/LT/gMohyeIU+9t6FDYZNZfU2wzh3JI9XZjo2VYkWVLtLv+GOPHi XSxtLXrkI3x3zMRzj0iSp89y6mVXZgvLHx8g1shqC62HF5ufdBtCnLtA4wyn+Uck NUQw3zgMT5ZOyJQEh/qjRzCxNJjummCECvTkBPT05X6PSkpCGd95LFK7zTUiiy3+ pTgj/0uuxcgJ85Wxm/ay/4wt1RZAE49KvXgbs17HfYeLpVfMYXXcN4d5unL972zU pOdXk7Tks8i1ECgmKJVHO4o42WpPhIJugRkDb5BeE5Tztes1XWR/PTaTO4FStiz5 9VkmGq6aFmQwqVSWy1jE1PMCax8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS6gj0/ fNOqBYAA2lzO5p/qOZlU2jAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MjA3OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZ0KADANBgkqhkiG9w0BAQsFAAOCAQEAD3ruAE+2zVjgOupwlvNw DO/VOsYDmF3P2zTCaq1oiTCqqmgDNAqVrFkjAPHEUu2uS1yt/gTdld8C8Q87WX/B WinlX7bvvvsqoMpSB2amfLY7FqvQQQOEiwk+w+fOxI4zevTopSnwb7PWGYdddrRx jeOmIIJe/snYRDGzUDK+mMATO4/pTIjdt6h856BL9N/WevUcJXvRRieTLlbCsUAD wmHeIwKpqiAmnG3QM/SK0WJRKhorgS+xe5kqzcejk/wxWaS5gwJn0wD7GTiQs5gX YC8eVDvspycFAcKZ1T2YouIZcz8nchB1DA+IJxuHSc6DMGkO3yrUkYmjLEWz/8px Tw== -----END CERTIFICATE-----Generated at Wed Feb 19 22:06:41 2025 by rpki-client