$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153480.roa File: AS153480.roa (raw, json) Hash identifier: 5o0yI+MZ1Ggb+9gxuMLsjJQOw9+DxLFm9x/LbUwj+ew= Subject key identifier: FA:1E:AA:7D:FD:B4:2C:1D:79:49:5A:C5:71:0C:38:D5:CF:63:59:97 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 5D6B489C8F6DAAB917220BD63CCA7E24E6019CE5 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153480.roa Signing time: Thu 13 Feb 2025 02:18:34 +0000 ROA not before: Thu 13 Feb 2025 02:13:34 +0000 ROA not after: Thu 12 Feb 2026 02:18:34 +0000 asID: 153480 IP address blocks: 160.191.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:6b:48:9c:8f:6d:aa:b9:17:22:0b:d6:3c:ca:7e:24:e6:01:9c:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 13 02:13:34 2025 GMT Not After : Feb 12 02:18:34 2026 GMT Subject: CN=FA1EAA7DFDB42C1D79495AC5710C38D5CF635997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:19:af:44:91:bc:f7:bd:30:91:63:cb:e0:c6: 81:30:48:5a:2b:65:c2:cd:11:36:50:9d:66:63:49: d5:11:3b:3e:6c:27:3b:01:4c:39:f4:4d:9f:6d:9b: 0a:12:01:e6:f4:df:f2:e5:01:c2:cd:37:01:8a:a7: 43:3f:a3:55:54:12:0a:dc:d1:7a:9b:7b:ff:a9:d2: 29:b0:27:b6:9b:a8:8f:5a:75:7c:62:96:2f:65:31: 28:a3:07:3d:1a:80:52:8b:9a:a3:c6:09:ed:cb:12: a7:61:54:4a:2d:67:7a:ec:8d:bb:b2:34:b4:dd:2b: 22:c8:c4:3e:38:d9:67:1f:fb:7b:23:a1:7b:95:55: 76:7a:3a:18:fe:17:0d:1c:69:29:2f:1f:7a:91:a7: 25:dc:12:c3:17:d8:fa:5b:c5:bc:5e:69:fc:7c:d9: 05:d8:88:53:16:c6:5d:b9:b7:d5:98:6f:ac:14:1f: 0f:9a:c3:82:26:95:07:66:e8:93:14:fc:67:6a:26: 36:e7:0c:46:44:41:03:0c:92:63:4a:31:da:91:c0: a4:8f:2f:3b:a5:61:65:a7:72:38:5e:97:e3:2b:d4: 7c:78:77:d3:32:ce:a2:41:fe:f2:48:09:70:a9:c3: 05:12:de:7c:16:a0:55:82:2a:11:41:45:59:2e:6b: e9:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:1E:AA:7D:FD:B4:2C:1D:79:49:5A:C5:71:0C:38:D5:CF:63:59:97 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153480.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.232.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:b8:86:1d:c0:09:a3:30:e9:cf:90:29:80:6b:92:a3:cf:65: 49:2f:08:98:f9:76:f3:03:91:54:c7:a8:15:71:13:33:05:1e: 36:e6:37:d3:bf:de:f8:86:9e:17:35:7c:e1:8a:fd:78:c6:5f: 68:f2:7c:8f:a4:3e:1b:8a:b0:68:56:45:cd:fd:7c:71:3b:41: ac:40:cf:b2:93:6b:af:e7:23:63:cd:e0:b6:12:2a:ad:2b:a5: 37:3a:75:fe:09:42:3f:13:84:36:d1:d4:94:69:84:47:e5:a8: b2:db:b7:18:43:a3:00:1f:00:54:e5:54:27:ba:a3:6f:92:76: c5:fd:fc:27:b8:2c:24:f5:87:4c:00:3d:89:38:9d:c8:3c:38: 32:8b:f3:64:cb:4c:53:de:82:ce:2b:a6:8c:29:da:74:07:cc: ef:05:01:4d:62:c0:2c:c7:c3:7c:46:05:e4:35:2a:6a:3c:4e: f0:3b:b9:82:ce:a5:0c:71:49:44:89:65:d9:a7:a2:8a:1f:09: 6c:5c:e4:7f:f9:ff:4a:60:0a:3e:88:f5:95:b3:4e:8e:4b:c5: e2:be:e1:12:46:c3:e5:fb:20:c9:12:10:a7:75:b0:fd:fb:d9: 81:3d:6f:12:d3:8d:1a:e9:31:21:92:b2:7b:c4:12:d7:ac:1b: 40:0c:1d:07 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUXWtInI9tqrkXIgvWPMp+JOYBnOUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIxMzAyMTMzNFoX DTI2MDIxMjAyMTgzNFowMzExMC8GA1UEAxMoRkExRUFBN0RGREI0MkMxRDc5NDk1 QUM1NzEwQzM4RDVDRjYzNTk5NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMUZr0SRvPe9MJFjy+DGgTBIWitlws0RNlCdZmNJ1RE7PmwnOwFMOfRNn22b ChIB5vTf8uUBws03AYqnQz+jVVQSCtzRept7/6nSKbAntpuoj1p1fGKWL2UxKKMH PRqAUouao8YJ7csSp2FUSi1neuyNu7I0tN0rIsjEPjjZZx/7eyOhe5VVdno6GP4X DRxpKS8fepGnJdwSwxfY+lvFvF5p/HzZBdiIUxbGXbm31ZhvrBQfD5rDgiaVB2bo kxT8Z2omNucMRkRBAwySY0ox2pHApI8vO6VhZadyOF6X4yvUfHh30zLOokH+8kgJ cKnDBRLefBagVYIqEUFFWS5r6ccCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT6Hqp9 /bQsHXlJWsVxDDjVz2NZlzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MzQ4MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaC/6DANBgkqhkiG9w0BAQsFAAOCAQEAeriGHcAJozDpz5ApgGuS o89lSS8ImPl28wORVMeoFXETMwUeNuY307/e+IaeFzV84Yr9eMZfaPJ8j6Q+G4qw aFZFzf18cTtBrEDPspNrr+cjY83gthIqrSulNzp1/glCPxOENtHUlGmER+Wostu3 GEOjAB8AVOVUJ7qjb5J2xf38J7gsJPWHTAA9iTidyDw4MovzZMtMU96CziumjCna dAfM7wUBTWLALMfDfEYF5DUqajxO8Du5gs6lDHFJRIll2aeiih8JbFzkf/n/SmAK Poj1lbNOjkvF4r7hEkbD5fsgyRIQp3Ww/fvZgT1vEtONGukxIZKye8QS16wbQAwd Bw== -----END CERTIFICATE-----Generated at Sun Apr 6 20:06:43 2025 by rpki-client