$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152383.roa File: AS152383.roa (raw, json) Hash identifier: HPc5RRBCTlnD6I45+8aqbpPwwehRsadgMaKMRqbV2j0= Subject key identifier: D8:A5:14:07:A4:3A:74:3D:BD:3A:F7:5B:D6:35:36:62:83:FE:9C:E9 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 47DCC78342C10F8588B29CBB9FA5F3E1757B6EAF Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152383.roa Signing time: Thu 06 Feb 2025 10:44:57 +0000 ROA not before: Thu 06 Feb 2025 10:39:57 +0000 ROA not after: Thu 05 Feb 2026 10:44:57 +0000 asID: 152383 IP address blocks: 157.15.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:dc:c7:83:42:c1:0f:85:88:b2:9c:bb:9f:a5:f3:e1:75:7b:6e:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 6 10:39:57 2025 GMT Not After : Feb 5 10:44:57 2026 GMT Subject: CN=D8A51407A43A743DBD3AF75BD635366283FE9CE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:fa:35:0e:85:e9:23:e6:71:27:50:c2:06:6b: 89:c2:c4:b5:de:be:53:fd:8e:68:94:4c:67:fc:2c: b0:95:e7:53:92:61:4f:8c:49:59:cb:02:57:5e:8c: 13:62:20:f8:50:89:1e:a7:34:31:a8:98:fd:24:36: f4:a1:4c:0a:77:73:4a:01:08:70:15:0e:69:b3:9a: b3:9d:a1:57:e6:9b:c1:10:c2:e1:f4:88:90:54:51: d2:53:0f:d8:46:8a:b2:96:4f:d0:33:87:1e:0a:fd: 73:ba:0e:5f:81:5d:74:d9:2a:bd:64:d8:4a:de:12: 5a:1c:60:58:d0:dc:06:b2:3f:c4:30:30:8e:28:c4: 60:64:78:57:75:22:4a:7a:28:fb:1b:85:66:d0:60: 31:aa:6a:d4:35:36:0e:c5:b1:68:10:6a:07:b2:83: a2:6f:d7:4b:3e:a1:93:9e:7a:19:a8:5e:1c:e8:85: d5:2f:e9:b2:ef:fb:52:08:dc:5e:24:6a:17:f9:bf: 49:75:73:f4:d3:ca:c3:05:cb:03:0b:f8:8d:5e:65: 6d:aa:c1:ba:a0:97:f4:03:d9:3b:71:bb:b6:c7:a0: 15:a5:53:7f:e5:95:68:80:7b:9e:fd:11:8a:20:6d: 1f:ed:4a:97:91:f1:b5:2e:47:ed:f5:dd:52:a0:7e: be:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:A5:14:07:A4:3A:74:3D:BD:3A:F7:5B:D6:35:36:62:83:FE:9C:E9 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152383.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.172.0/23 Signature Algorithm: sha256WithRSAEncryption 58:be:4d:19:fc:e2:ee:e3:10:46:e8:b7:3a:81:7c:74:3e:a8: c0:0b:bf:df:0c:5d:56:ad:d6:42:95:e0:f1:fd:8b:57:6b:4b: aa:2d:32:51:4d:f3:9d:db:e6:f7:5c:cc:5c:ce:60:1f:d2:34: d4:f4:85:7e:fb:9e:b6:a9:fe:c0:a0:01:01:e4:34:e4:22:f9: 47:ec:f9:64:a6:10:e3:e2:16:90:d6:09:29:4a:78:cc:b8:9b: f2:b9:1f:c9:10:a4:71:f3:ad:a2:51:81:61:07:89:43:16:4c: ae:ff:8e:fa:46:95:ec:ff:b6:47:3d:77:7b:c6:40:09:1f:9f: 4a:f4:fe:aa:54:71:b5:c9:77:13:dc:19:38:48:19:c5:f8:4c: 59:cd:9c:c3:77:c8:b6:ad:42:7a:b2:b1:5b:88:3e:c2:e9:e0: 8d:a2:b9:59:b4:b4:35:5b:ec:00:3f:84:d4:b0:5d:05:af:94: 0d:5a:0d:3b:0e:43:45:2f:b1:13:a9:39:61:6c:0b:17:8e:85: 7b:30:b2:dc:91:43:2f:db:a2:87:9d:b1:c1:48:e1:9a:bc:4c: 0d:c2:32:8f:90:4f:d6:51:11:a8:5a:e6:13:cb:8c:07:2e:03: 80:f6:2c:8a:96:2a:2d:83:3d:87:8e:18:c8:e7:05:cb:18:5d: ee:e2:6a:3f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUR9zHg0LBD4WIspy7n6Xz4XV7bq8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIwNjEwMzk1N1oX DTI2MDIwNTEwNDQ1N1owMzExMC8GA1UEAxMoRDhBNTE0MDdBNDNBNzQzREJEM0FG NzVCRDYzNTM2NjI4M0ZFOUNFOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALH6NQ6F6SPmcSdQwgZricLEtd6+U/2OaJRMZ/wssJXnU5JhT4xJWcsCV16M E2Ig+FCJHqc0MaiY/SQ29KFMCndzSgEIcBUOabOas52hV+abwRDC4fSIkFRR0lMP 2EaKspZP0DOHHgr9c7oOX4FddNkqvWTYSt4SWhxgWNDcBrI/xDAwjijEYGR4V3Ui Snoo+xuFZtBgMapq1DU2DsWxaBBqB7KDom/XSz6hk556GaheHOiF1S/psu/7Ugjc XiRqF/m/SXVz9NPKwwXLAwv4jV5lbarBuqCX9APZO3G7tsegFaVTf+WVaIB7nv0R iiBtH+1Kl5HxtS5H7fXdUqB+vpcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTYpRQH pDp0Pb0691vWNTZig/6c6TAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MjM4My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZ0PrDANBgkqhkiG9w0BAQsFAAOCAQEAWL5NGfzi7uMQRui3OoF8 dD6owAu/3wxdVq3WQpXg8f2LV2tLqi0yUU3zndvm91zMXM5gH9I01PSFfvuetqn+ wKABAeQ05CL5R+z5ZKYQ4+IWkNYJKUp4zLib8rkfyRCkcfOtolGBYQeJQxZMrv+O +kaV7P+2Rz13e8ZACR+fSvT+qlRxtcl3E9wZOEgZxfhMWc2cw3fItq1CerKxW4g+ wungjaK5WbS0NVvsAD+E1LBdBa+UDVoNOw5DRS+xE6k5YWwLF46FezCy3JFDL9ui h52xwUjhmrxMDcIyj5BP1lERqFrmE8uMBy4DgPYsipYqLYM9h44YyOcFyxhd7uJq Pw== -----END CERTIFICATE-----Generated at Mon Apr 7 03:36:41 2025 by rpki-client