$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153059.roa File: AS153059.roa (raw, json) Hash identifier: +sVvsjzjBiZFdw2pKro1eQL30t2C7xJS/uwC9p7T1Tc= Subject key identifier: 8C:4F:33:BF:37:35:F1:FA:24:00:A5:BC:2F:07:41:6C:96:84:3E:2C Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 2EB55100DBD2D8BFE7E683087BD286D957B7DC65 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153059.roa Signing time: Thu 06 Feb 2025 10:44:49 +0000 ROA not before: Thu 06 Feb 2025 10:39:49 +0000 ROA not after: Thu 05 Feb 2026 10:44:49 +0000 asID: 153059 IP address blocks: 160.25.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:b5:51:00:db:d2:d8:bf:e7:e6:83:08:7b:d2:86:d9:57:b7:dc:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 6 10:39:49 2025 GMT Not After : Feb 5 10:44:49 2026 GMT Subject: CN=8C4F33BF3735F1FA2400A5BC2F07416C96843E2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:bc:c6:76:d8:4b:e4:55:c7:39:6e:5a:8f:23: d2:46:18:f7:07:d2:cd:9b:3b:db:48:63:7b:81:32: 08:30:3e:79:aa:19:7b:ab:79:e7:65:67:32:84:38: 22:7c:3f:0c:da:80:b2:59:5c:ac:d5:d2:5b:00:0e: 30:d7:42:38:88:0d:e7:d3:95:11:b3:e4:03:2c:3a: 4c:d7:0d:20:89:4e:d7:96:3e:ec:06:27:d0:9b:be: 2a:bb:fa:f0:6b:af:53:8e:72:ed:16:7a:86:9f:c9: 62:8e:ff:82:d8:2d:35:8e:89:ce:dc:81:89:e0:50: 74:64:c7:0f:e2:61:15:44:07:51:31:9d:4a:9a:c0: 72:9b:a9:ab:3e:8b:cb:c0:f3:97:11:63:9c:f8:de: 86:cf:e2:5c:e2:ee:f5:0d:3e:d5:ee:02:f0:0d:97: 3e:e2:f5:94:bd:40:b5:bc:d5:50:e0:92:45:4a:bc: 4a:85:a5:e9:66:9c:0b:5c:29:6a:de:a0:58:a2:6b: 1e:e7:dd:15:ba:8b:7c:95:c4:28:c8:0e:ae:2c:6b: 81:8d:6e:34:74:9d:1c:fa:f0:6e:40:7a:53:1a:fd: f0:e5:06:0c:68:fd:2d:0d:68:5d:41:67:dd:f3:ee: 7f:d4:16:82:2b:e1:77:56:68:47:e8:62:7e:7b:09: 2d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:4F:33:BF:37:35:F1:FA:24:00:A5:BC:2F:07:41:6C:96:84:3E:2C X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153059.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.46.0/23 Signature Algorithm: sha256WithRSAEncryption 31:a6:5a:38:58:6f:15:aa:ef:df:20:f8:67:26:7e:b1:31:d5: 3e:b9:ac:e8:7e:b8:6a:75:44:2b:d0:66:01:87:25:5b:4c:2c: c8:a4:a4:8a:3d:c0:9f:fb:78:5f:e6:5e:2c:43:57:7d:5b:7f: 5d:dc:11:5b:1a:f7:19:75:a8:59:20:8c:af:06:21:7a:95:61: 33:29:b8:7e:27:9c:09:f2:bf:bd:71:2f:98:3a:8f:30:35:16: 6b:38:61:ca:b3:1d:ab:b0:ca:05:fc:4a:e6:5f:38:23:3b:f2: 22:78:87:64:58:f9:08:2c:76:e4:e8:43:a2:d8:ea:63:78:1a: 36:b3:9b:ce:72:1c:b7:91:6a:c2:c8:2b:b9:01:e5:f7:af:2e: d7:8a:1a:54:d8:fc:8e:1d:93:53:6f:85:42:ec:4a:3f:47:7f: d8:b6:2b:f8:98:bb:c9:cc:54:4e:69:54:58:d0:54:ff:29:ca: ed:e5:8a:dc:ea:3e:e2:ac:fe:36:c6:43:e4:eb:16:be:16:39: c9:ba:cb:1f:d8:63:e8:a3:5f:66:4e:fd:61:be:80:1b:f3:46: 3f:e8:a0:7c:ac:44:1c:9e:ac:92:76:18:d7:06:ec:a2:9b:4a: c7:45:b0:fb:f1:b9:f8:c7:8a:63:90:58:7f:37:68:b0:87:6b: 78:53:49:4b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIULrVRANvS2L/n5oMIe9KG2Ve33GUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIwNjEwMzk0OVoX DTI2MDIwNTEwNDQ0OVowMzExMC8GA1UEAxMoOEM0RjMzQkYzNzM1RjFGQTI0MDBB NUJDMkYwNzQxNkM5Njg0M0UyQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPO8xnbYS+RVxzluWo8j0kYY9wfSzZs720hje4EyCDA+eaoZe6t552VnMoQ4 Inw/DNqAsllcrNXSWwAOMNdCOIgN59OVEbPkAyw6TNcNIIlO15Y+7AYn0Ju+Krv6 8GuvU45y7RZ6hp/JYo7/gtgtNY6JztyBieBQdGTHD+JhFUQHUTGdSprAcpupqz6L y8DzlxFjnPjehs/iXOLu9Q0+1e4C8A2XPuL1lL1AtbzVUOCSRUq8SoWl6WacC1wp at6gWKJrHufdFbqLfJXEKMgOrixrgY1uNHSdHPrwbkB6Uxr98OUGDGj9LQ1oXUFn 3fPuf9QWgivhd1ZoR+hifnsJLesCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSMTzO/ NzXx+iQApbwvB0FsloQ+LDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MzA1OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaAZLjANBgkqhkiG9w0BAQsFAAOCAQEAMaZaOFhvFarv3yD4ZyZ+ sTHVPrms6H64anVEK9BmAYclW0wsyKSkij3An/t4X+ZeLENXfVt/XdwRWxr3GXWo WSCMrwYhepVhMym4fiecCfK/vXEvmDqPMDUWazhhyrMdq7DKBfxK5l84IzvyIniH ZFj5CCx25OhDotjqY3gaNrObznIct5FqwsgruQHl968u14oaVNj8jh2TU2+FQuxK P0d/2LYr+Ji7ycxUTmlUWNBU/ynK7eWK3Oo+4qz+NsZD5OsWvhY5ybrLH9hj6KNf Zk79Yb6AG/NGP+igfKxEHJ6sknYY1wbsoptKx0Ww+/G5+MeKY5BYfzdosIdreFNJ Sw== -----END CERTIFICATE-----Generated at Mon Apr 7 03:34:14 2025 by rpki-client