$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152373.roa File: AS152373.roa (raw, json) Hash identifier: zsOBLEQ6gMhTT4jZp6BQ0xefiVosxZBCkgqMHGuftA4= Subject key identifier: 65:56:91:D4:20:D6:32:E6:F3:92:51:6E:07:F9:78:0F:37:76:EB:74 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 6C8D224E4F022AEEA457AA4E0BFA7CE3197A13F4 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152373.roa Signing time: Thu 06 Feb 2025 10:44:48 +0000 ROA not before: Thu 06 Feb 2025 10:39:48 +0000 ROA not after: Thu 05 Feb 2026 10:44:48 +0000 asID: 152373 IP address blocks: 157.15.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:8d:22:4e:4f:02:2a:ee:a4:57:aa:4e:0b:fa:7c:e3:19:7a:13:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 6 10:39:48 2025 GMT Not After : Feb 5 10:44:48 2026 GMT Subject: CN=655691D420D632E6F392516E07F9780F3776EB74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8d:46:b7:11:66:6d:26:28:0d:1c:57:19:38: 8e:8e:89:51:31:4c:28:66:0a:dd:5e:6d:f9:75:f7: 87:40:5d:a4:8c:b8:d0:db:8f:b3:dc:5a:58:39:d8: fd:2d:c8:fd:97:01:86:8a:8b:fd:c0:a3:ac:a9:74: 38:1c:3c:37:7e:43:0f:0d:05:4b:d6:ff:1c:f8:f2: e7:30:ba:75:cc:47:ef:23:f5:8a:c6:09:0d:e3:40: ee:51:9b:26:71:e9:78:d9:ad:6b:31:a0:02:bd:ef: 05:5e:bc:76:d8:83:02:cf:30:75:69:bf:1a:7d:ea: b7:89:1c:e6:87:e5:2b:93:5c:40:73:83:9f:37:a3: b1:3f:e7:c4:67:ed:b4:c7:fd:6d:b3:a9:3b:8d:cd: 04:89:6d:d8:c2:2c:65:8e:5e:5d:95:44:29:1f:8f: 63:1d:98:a6:5d:0f:cc:61:b8:ba:a8:5d:ba:df:02: 36:54:a9:3c:64:07:e2:d8:84:31:5b:7c:10:80:97: ef:aa:e9:db:f4:05:94:b9:ab:e4:10:3a:63:8f:ec: 96:43:86:8d:6c:03:9b:70:3d:f9:2e:00:c4:fc:15: cf:7f:ae:0d:17:02:64:51:69:25:ee:4e:18:66:c6: 75:ce:3f:48:d2:12:bd:b8:35:9c:0e:02:98:13:a7: 4f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:56:91:D4:20:D6:32:E6:F3:92:51:6E:07:F9:78:0F:37:76:EB:74 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152373.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.62.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:a5:c7:e9:36:82:92:85:43:87:95:c4:a4:3d:21:7d:c3:42: 2c:a6:2a:02:aa:77:a2:fb:70:97:e7:40:e6:8a:64:41:32:e4: 29:9c:f0:eb:68:7e:52:52:75:86:64:f4:f8:ba:07:4a:32:89: 22:8c:c7:bf:9b:e8:c4:21:73:3a:c8:01:5c:c6:65:58:6d:09: d4:74:69:da:82:6b:2a:59:6c:f7:59:c3:ad:8c:45:3b:b3:f3: 3f:e7:61:8a:12:99:ed:0b:fd:fc:bf:dd:24:1f:06:47:7f:9a: 6f:44:e6:9c:56:b7:af:66:9a:ec:64:b2:c6:9f:fc:9b:3f:2f: 8d:06:8a:8c:92:59:b2:d2:df:6e:76:1a:44:f2:0c:af:de:c7: 07:ac:1a:34:be:05:73:31:21:54:18:88:96:7e:e8:d9:c2:b9: 62:b3:8a:d6:43:d7:09:59:f0:67:77:7e:8a:c4:ea:2f:8f:4e: 92:40:97:eb:bd:2c:2d:0c:b9:f7:76:cb:b1:64:0c:1e:82:42: 35:09:39:c5:9a:fe:32:8a:73:49:9e:b4:4e:dc:52:e8:62:13: 27:d6:71:d0:c9:90:a7:40:ba:69:2e:83:06:52:5b:28:e8:f5: 15:67:2d:d9:bf:f1:79:2b:45:24:83:37:b6:54:07:43:87:29: 89:d7:f7:a0 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUbI0iTk8CKu6kV6pOC/p84xl6E/QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIwNjEwMzk0OFoX DTI2MDIwNTEwNDQ0OFowMzExMC8GA1UEAxMoNjU1NjkxRDQyMEQ2MzJFNkYzOTI1 MTZFMDdGOTc4MEYzNzc2RUI3NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMSNRrcRZm0mKA0cVxk4jo6JUTFMKGYK3V5t+XX3h0BdpIy40NuPs9xaWDnY /S3I/ZcBhoqL/cCjrKl0OBw8N35DDw0FS9b/HPjy5zC6dcxH7yP1isYJDeNA7lGb JnHpeNmtazGgAr3vBV68dtiDAs8wdWm/Gn3qt4kc5oflK5NcQHODnzejsT/nxGft tMf9bbOpO43NBIlt2MIsZY5eXZVEKR+PYx2Ypl0PzGG4uqhdut8CNlSpPGQH4tiE MVt8EICX76rp2/QFlLmr5BA6Y4/slkOGjWwDm3A9+S4AxPwVz3+uDRcCZFFpJe5O GGbGdc4/SNISvbg1nA4CmBOnTwkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRlVpHU INYy5vOSUW4H+XgPN3brdDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MjM3My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZ0PPjANBgkqhkiG9w0BAQsFAAOCAQEAW6XH6TaCkoVDh5XEpD0h fcNCLKYqAqp3ovtwl+dA5opkQTLkKZzw62h+UlJ1hmT0+LoHSjKJIozHv5voxCFz OsgBXMZlWG0J1HRp2oJrKlls91nDrYxFO7PzP+dhihKZ7Qv9/L/dJB8GR3+ab0Tm nFa3r2aa7GSyxp/8mz8vjQaKjJJZstLfbnYaRPIMr97HB6waNL4FczEhVBiIln7o 2cK5YrOK1kPXCVnwZ3d+isTqL49OkkCX670sLQy593bLsWQMHoJCNQk5xZr+Mopz SZ60TtxS6GITJ9Zx0MmQp0C6aS6DBlJbKOj1FWct2b/xeStFJIM3tlQHQ4cpidf3 oA== -----END CERTIFICATE-----Generated at Sun Apr 6 18:59:59 2025 by rpki-client