$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153119.roa File: AS153119.roa (raw, json) Hash identifier: sctpoK+BS4y0YZt7riOfIqM0AT746/4csch9nQhSFDE= Subject key identifier: B4:FB:C0:18:E7:39:BB:65:FF:3D:3D:8D:1D:78:A9:9A:45:39:A4:82 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 4AA9D1B66CC811C30B78E85E7950DA816FF1F793 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153119.roa Signing time: Thu 06 Feb 2025 10:44:58 +0000 ROA not before: Thu 06 Feb 2025 10:39:58 +0000 ROA not after: Thu 05 Feb 2026 10:44:58 +0000 asID: 153119 IP address blocks: 160.187.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:a9:d1:b6:6c:c8:11:c3:0b:78:e8:5e:79:50:da:81:6f:f1:f7:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 6 10:39:58 2025 GMT Not After : Feb 5 10:44:58 2026 GMT Subject: CN=B4FBC018E739BB65FF3D3D8D1D78A99A4539A482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2c:85:6d:ae:41:de:90:fd:c1:a8:87:a9:60: 18:b6:e7:2d:79:e7:61:67:6d:3d:6d:46:6c:c9:21: e7:14:13:91:27:5b:d2:e1:65:4c:f4:e5:31:c9:da: bd:32:70:78:47:8e:8e:ea:75:8d:3f:5a:73:0b:61: 16:fa:7e:40:b1:24:6e:8d:ee:a3:03:06:8d:45:a5: b4:2a:01:53:bb:fc:12:97:4c:80:65:1e:3a:14:45: 46:09:a5:5f:55:34:d1:0f:ee:9f:1f:a0:c9:b7:be: 7f:48:07:3a:e6:94:d8:e7:fd:87:fb:a7:ea:d2:e8: 7f:bd:75:8e:bc:ba:16:51:19:f5:72:4d:86:35:de: aa:df:57:86:4f:12:24:93:63:76:0c:da:12:6f:40: 7b:8a:14:92:65:bf:1b:de:60:82:33:3f:f3:b2:ea: 80:82:01:9b:3c:26:f2:fd:2d:50:9d:12:e7:bb:b9: 86:5e:65:34:09:01:b5:e2:fa:ba:04:88:0d:fe:b0: 6b:40:d5:7d:85:af:9c:59:c0:7c:96:01:c9:4e:2d: 14:a2:07:e9:83:bc:01:31:d3:13:be:da:da:12:53: f2:a7:c2:b2:df:55:34:69:67:15:c5:e4:e5:d3:91: 4a:60:b7:34:bb:9b:0d:72:d1:3f:77:63:fd:c4:3f: 9e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:FB:C0:18:E7:39:BB:65:FF:3D:3D:8D:1D:78:A9:9A:45:39:A4:82 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153119.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.107.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:1e:70:40:c5:12:f4:7f:cd:f3:85:7c:f4:57:97:41:15:59: 29:3c:e0:28:a5:f8:45:2d:8d:03:f5:03:96:53:94:6d:81:3f: 31:3c:fd:2d:ef:3a:7f:85:0e:46:a6:a0:5f:75:d7:8e:d1:4f: e5:d8:b5:f9:40:69:fc:66:10:9e:cd:ad:7b:83:e5:58:8f:22: 09:77:bd:1d:36:c5:5c:e6:3c:70:77:e6:59:13:43:1c:79:c0: 74:f7:8a:ed:03:82:00:c6:ba:fe:a2:5e:94:28:7a:f3:4d:03: ef:6b:9e:9d:9e:2e:3f:fd:44:a6:9d:d0:ae:ee:6f:1d:10:e9: 7e:11:83:2c:a3:c5:fe:52:b2:bb:0f:b8:84:1c:eb:98:a8:f3: 0a:29:87:4b:ad:4d:d8:fd:46:71:1d:36:aa:7c:b5:c0:c6:2a: bb:22:63:0f:69:9b:23:b7:1e:dc:c1:2f:52:91:2f:8b:65:38: 1a:0a:5e:09:f7:1e:6d:17:d0:a3:df:33:27:b0:e4:b5:1d:00: 14:a2:45:b6:63:bf:cf:f6:3a:77:77:f3:c6:a2:e2:8e:35:68: 89:0b:57:a8:eb:32:d0:9f:e6:4d:fb:e7:c8:16:4b:0f:0d:96: 12:b9:a5:fd:29:06:aa:63:2c:6f:f1:fb:9f:47:d2:c2:52:8a: 17:4e:dc:d4 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUSqnRtmzIEcMLeOheeVDagW/x95MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIwNjEwMzk1OFoX DTI2MDIwNTEwNDQ1OFowMzExMC8GA1UEAxMoQjRGQkMwMThFNzM5QkI2NUZGM0Qz RDhEMUQ3OEE5OUE0NTM5QTQ4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL8shW2uQd6Q/cGoh6lgGLbnLXnnYWdtPW1GbMkh5xQTkSdb0uFlTPTlMcna vTJweEeOjup1jT9acwthFvp+QLEkbo3uowMGjUWltCoBU7v8EpdMgGUeOhRFRgml X1U00Q/unx+gybe+f0gHOuaU2Of9h/un6tLof711jry6FlEZ9XJNhjXeqt9Xhk8S JJNjdgzaEm9Ae4oUkmW/G95ggjM/87LqgIIBmzwm8v0tUJ0S57u5hl5lNAkBteL6 ugSIDf6wa0DVfYWvnFnAfJYByU4tFKIH6YO8ATHTE77a2hJT8qfCst9VNGlnFcXk 5dORSmC3NLubDXLRP3dj/cQ/nr0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS0+8AY 5zm7Zf89PY0deKmaRTmkgjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MzExOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKC7azANBgkqhkiG9w0BAQsFAAOCAQEAeh5wQMUS9H/N84V89FeX QRVZKTzgKKX4RS2NA/UDllOUbYE/MTz9Le86f4UORqagX3XXjtFP5di1+UBp/GYQ ns2te4PlWI8iCXe9HTbFXOY8cHfmWRNDHHnAdPeK7QOCAMa6/qJelCh6800D72ue nZ4uP/1Epp3Qru5vHRDpfhGDLKPF/lKyuw+4hBzrmKjzCimHS61N2P1GcR02qny1 wMYquyJjD2mbI7ce3MEvUpEvi2U4GgpeCfcebRfQo98zJ7DktR0AFKJFtmO/z/Y6 d3fzxqLijjVoiQtXqOsy0J/mTfvnyBZLDw2WErml/SkGqmMsb/H7n0fSwlKKF07c 1A== -----END CERTIFICATE-----Generated at Sun Apr 6 18:52:38 2025 by rpki-client