$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153512.roa File: AS153512.roa (raw, json) Hash identifier: TgyVtN8/g7qHU4dugRtPsGcFp8W2ctciN17SXXq3VLc= Subject key identifier: CA:A6:D1:91:EA:97:C5:E7:59:27:E9:97:0F:F3:53:C2:E5:9D:E9:55 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 40D74292C35F476FC151EE356E61445A9A95E4F3 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153512.roa Signing time: Wed 30 Apr 2025 04:34:41 +0000 ROA not before: Wed 30 Apr 2025 04:29:41 +0000 ROA not after: Wed 29 Apr 2026 04:34:41 +0000 asID: 153512 IP address blocks: 160.191.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 01:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:d7:42:92:c3:5f:47:6f:c1:51:ee:35:6e:61:44:5a:9a:95:e4:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Apr 30 04:29:41 2025 GMT Not After : Apr 29 04:34:41 2026 GMT Subject: CN=CAA6D191EA97C5E75927E9970FF353C2E59DE955 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c1:e4:93:38:2a:bf:7f:fb:09:4a:ed:3c:fe: be:9e:11:03:e4:79:1e:17:00:77:5f:e8:ff:e6:43: ef:65:47:e1:9d:62:65:3f:5c:57:a9:e6:9e:85:b2: 5e:a8:70:50:7b:a0:73:0a:bd:cd:8e:95:5e:5f:46: fe:21:11:e3:b6:c0:17:90:b0:63:0c:a8:cb:d4:52: d1:88:d7:24:53:2b:fa:53:2b:0c:1a:49:8d:31:98: 7d:22:ca:c7:2e:58:5b:f1:7e:40:1c:32:98:66:b8: 5d:2c:32:b5:bc:10:cf:1c:93:a6:39:b6:83:05:5a: 11:7c:d3:54:8a:aa:e8:cf:10:cd:cc:64:45:5f:0e: 99:db:62:1d:f9:f5:b6:23:fc:ec:1d:f3:e8:f7:f9: ad:59:52:ed:8c:f9:b9:cd:e2:ec:74:57:71:03:d3: 2e:e5:7d:f9:f3:4b:8a:37:2d:5b:db:d5:dd:05:d8: fa:92:02:26:0c:e7:36:72:bd:16:b2:5d:ca:4b:8c: c0:ee:a1:eb:c8:ae:16:0c:78:5a:1e:67:f1:11:55: 4b:73:d9:e6:a0:bf:a1:7f:b1:2e:f2:4f:54:7d:0f: 70:b6:e0:db:f9:fc:61:d1:ff:a9:2b:e6:21:78:94: 23:0b:8a:0b:99:ec:48:9e:66:ed:3a:86:8c:f0:7b: 60:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:A6:D1:91:EA:97:C5:E7:59:27:E9:97:0F:F3:53:C2:E5:9D:E9:55 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153512.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.186.0/23 Signature Algorithm: sha256WithRSAEncryption 67:48:65:a3:fa:7f:10:b5:82:69:7c:61:c2:93:47:a9:1c:ac: 70:8e:97:5a:4a:df:a5:c0:45:4e:36:94:82:17:72:30:72:ac: f5:58:6a:55:da:6a:a5:aa:54:3e:d1:20:85:03:f8:64:5a:df: 34:4c:10:ae:53:8e:2d:e5:f9:d4:15:0b:a0:a2:85:b9:75:ec: 26:5c:7f:64:16:5d:f5:eb:ab:bb:0d:b2:80:f3:06:8b:d9:5d: 6e:ed:39:df:41:f6:13:5a:64:eb:b8:72:0b:18:05:7f:13:fd: 2f:03:cb:95:32:d2:f0:d8:a8:f6:6c:05:86:e2:98:13:5b:9a: 90:89:a2:22:95:72:03:97:90:15:70:41:19:cf:60:eb:f6:3c: ea:8d:9c:fc:e1:46:9f:ac:e3:a5:b7:9c:e8:e3:2e:d7:6a:9d: 9f:67:d8:63:c4:b6:58:b6:bf:45:a4:46:07:be:6d:46:fb:95: 03:bf:6a:28:e9:b3:9b:d4:6e:1e:6e:86:41:4e:50:f4:45:4e: 19:96:ae:96:ad:8e:89:13:6e:b7:80:25:d1:a3:89:f7:50:2b: 5f:4b:f0:54:b2:c4:81:4f:9a:71:e2:d6:78:35:80:ec:8a:7f: bd:15:2b:1c:ac:50:8d:ce:d7:ea:f9:23:bf:da:27:89:a0:27: fc:7f:ec:48 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUQNdCksNfR2/BUe41bmFEWpqV5PMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDQzMDA0Mjk0MVoX DTI2MDQyOTA0MzQ0MVowMzExMC8GA1UEAxMoQ0FBNkQxOTFFQTk3QzVFNzU5MjdF OTk3MEZGMzUzQzJFNTlERTk1NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANzB5JM4Kr9/+wlK7Tz+vp4RA+R5HhcAd1/o/+ZD72VH4Z1iZT9cV6nmnoWy XqhwUHugcwq9zY6VXl9G/iER47bAF5CwYwyoy9RS0YjXJFMr+lMrDBpJjTGYfSLK xy5YW/F+QBwymGa4XSwytbwQzxyTpjm2gwVaEXzTVIqq6M8QzcxkRV8OmdtiHfn1 tiP87B3z6Pf5rVlS7Yz5uc3i7HRXcQPTLuV9+fNLijctW9vV3QXY+pICJgznNnK9 FrJdykuMwO6h68iuFgx4Wh5n8RFVS3PZ5qC/oX+xLvJPVH0PcLbg2/n8YdH/qSvm IXiUIwuKC5nsSJ5m7TqGjPB7YGsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTKptGR 6pfF51kn6ZcP81PC5Z3pVTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MzUxMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaC/ujANBgkqhkiG9w0BAQsFAAOCAQEAZ0hlo/p/ELWCaXxhwpNH qRyscI6XWkrfpcBFTjaUghdyMHKs9VhqVdpqpapUPtEghQP4ZFrfNEwQrlOOLeX5 1BULoKKFuXXsJlx/ZBZd9euruw2ygPMGi9ldbu0530H2E1pk67hyCxgFfxP9LwPL lTLS8Nio9mwFhuKYE1uakImiIpVyA5eQFXBBGc9g6/Y86o2c/OFGn6zjpbec6OMu 12qdn2fYY8S2WLa/RaRGB75tRvuVA79qKOmzm9RuHm6GQU5Q9EVOGZaulq2OiRNu t4Al0aOJ91ArX0vwVLLEgU+aceLWeDWA7Ip/vRUrHKxQjc7X6vkjv9oniaAn/H/s SA== -----END CERTIFICATE-----Generated at Fri Jun 6 04:56:48 2025 by rpki-client