$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152766.roa File: AS152766.roa (raw, json) Hash identifier: nR5nYpEGKe04kJKOUyUpeKq1uqW8EmFy2TZwBp28DuM= Subject key identifier: 29:D3:3D:FF:62:4A:F8:37:49:0A:BF:49:8F:A7:81:E9:21:01:AE:B6 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 6ECE674853D0536CE0597FC57961621C1EB1EA16 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152766.roa Signing time: Thu 06 Feb 2025 10:44:51 +0000 ROA not before: Thu 06 Feb 2025 10:39:51 +0000 ROA not after: Thu 05 Feb 2026 10:44:51 +0000 asID: 152766 IP address blocks: 160.19.184.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:ce:67:48:53:d0:53:6c:e0:59:7f:c5:79:61:62:1c:1e:b1:ea:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 6 10:39:51 2025 GMT Not After : Feb 5 10:44:51 2026 GMT Subject: CN=29D33DFF624AF837490ABF498FA781E92101AEB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2e:5e:08:9f:a1:99:18:c2:cb:9b:c3:cf:e8: 06:bd:17:64:cb:9c:b4:92:c2:3c:94:66:ea:4d:03: 56:1a:46:96:6f:d0:5b:38:2b:2f:8c:69:92:ea:d2: ee:e8:6f:89:9d:3b:3c:b7:ad:64:58:f2:77:b5:6d: 87:86:37:ba:58:1e:22:f3:45:bc:4f:d3:05:86:3b: 61:50:7f:b4:55:3b:19:2b:47:9e:f2:18:f6:55:4d: 5d:6d:4e:da:e2:62:11:9c:0d:b4:91:e1:29:15:fe: 8c:5e:af:39:b0:0a:47:5d:3e:59:5d:96:70:de:f7: d7:ca:1d:c2:c4:88:47:81:17:cd:5c:53:7c:12:b2: d8:8a:02:9e:1f:36:3f:93:2c:82:8e:00:ff:d9:87: ae:80:4e:74:47:19:7e:0a:e0:22:2d:7c:b8:02:3f: a4:cb:8f:e6:d1:6e:f5:ac:62:8e:f9:83:8a:41:c8: df:a3:3a:a4:f1:d7:62:0d:b5:6a:dd:29:7b:b4:f8: e1:44:10:f6:68:7b:81:29:aa:b8:d1:c3:3e:0d:30: 62:9c:2b:3f:e4:4b:de:cf:c5:e7:7c:c2:11:19:b0: e2:77:30:34:08:de:9b:24:16:e8:29:00:dc:68:e8: 20:b0:66:56:ce:b1:64:a5:70:24:50:98:1d:be:c1: 91:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D3:3D:FF:62:4A:F8:37:49:0A:BF:49:8F:A7:81:E9:21:01:AE:B6 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152766.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.184.0/23 Signature Algorithm: sha256WithRSAEncryption 49:82:76:56:13:99:0a:aa:fb:3c:99:99:79:6b:b4:e2:85:78: 3f:7d:4a:55:13:77:6b:09:4c:f3:5b:24:e6:2a:84:cc:f6:e5: 73:65:b5:e5:93:34:fa:8b:0d:e6:ba:a7:c4:d2:4d:d4:c1:d5: a5:ca:8e:88:35:fe:4f:8f:47:d4:10:7c:eb:3a:04:80:8f:0c: 80:42:d4:46:d2:c7:b6:bf:47:46:a6:62:45:d7:b4:9d:7a:dc: 4c:a3:56:3f:a5:76:51:02:75:a2:19:61:c7:0b:98:a0:f9:d7: f2:fc:8f:40:c5:0d:1b:b9:f8:6c:f3:e4:85:c0:06:52:a6:f2: 53:2e:3b:54:a8:8a:4d:80:db:9e:de:d5:2e:0f:35:6a:9d:f9: ff:09:80:28:9f:9d:57:af:ba:3e:6d:88:47:5f:ab:59:44:7e: 06:85:3b:03:f6:68:e1:e7:03:27:d7:7d:fd:7d:c9:6d:06:04: 36:4d:50:a6:46:98:59:0a:c6:ee:e1:d0:38:e6:df:d4:9f:56: 20:99:7f:92:a8:ba:02:0d:41:00:6a:eb:6c:68:4d:7b:71:b5: 5e:f0:b4:dd:cb:34:a4:98:e1:f6:3e:5e:31:58:77:93:3b:22: 31:5b:3d:be:b6:ac:b7:d5:be:5d:6f:67:af:bc:e4:55:22:23: 4d:68:6e:bf -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUbs5nSFPQU2zgWX/FeWFiHB6x6hYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIwNjEwMzk1MVoX DTI2MDIwNTEwNDQ1MVowMzExMC8GA1UEAxMoMjlEMzNERkY2MjRBRjgzNzQ5MEFC RjQ5OEZBNzgxRTkyMTAxQUVCNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKYuXgifoZkYwsubw8/oBr0XZMuctJLCPJRm6k0DVhpGlm/QWzgrL4xpkurS 7uhviZ07PLetZFjyd7Vth4Y3ulgeIvNFvE/TBYY7YVB/tFU7GStHnvIY9lVNXW1O 2uJiEZwNtJHhKRX+jF6vObAKR10+WV2WcN7318odwsSIR4EXzVxTfBKy2IoCnh82 P5Msgo4A/9mHroBOdEcZfgrgIi18uAI/pMuP5tFu9axijvmDikHI36M6pPHXYg21 at0pe7T44UQQ9mh7gSmquNHDPg0wYpwrP+RL3s/F53zCERmw4ncwNAjemyQW6CkA 3GjoILBmVs6xZKVwJFCYHb7BkUECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQp0z3/ Ykr4N0kKv0mPp4HpIQGutjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1Mjc2Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaATuDANBgkqhkiG9w0BAQsFAAOCAQEASYJ2VhOZCqr7PJmZeWu0 4oV4P31KVRN3awlM81sk5iqEzPblc2W15ZM0+osN5rqnxNJN1MHVpcqOiDX+T49H 1BB86zoEgI8MgELURtLHtr9HRqZiRde0nXrcTKNWP6V2UQJ1ohlhxwuYoPnX8vyP QMUNG7n4bPPkhcAGUqbyUy47VKiKTYDbnt7VLg81ap35/wmAKJ+dV6+6Pm2IR1+r WUR+BoU7A/Zo4ecDJ9d9/X3JbQYENk1QpkaYWQrG7uHQOObf1J9WIJl/kqi6Ag1B AGrrbGhNe3G1XvC03cs0pJjh9j5eMVh3kzsiMVs9vrast9W+XW9nr7zkVSIjTWhu vw== -----END CERTIFICATE-----Generated at Mon Apr 7 03:34:28 2025 by rpki-client