$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152003.roa File: AS152003.roa (raw, json) Hash identifier: GS/44pLaui0knKrrJunVdc9D6zN50VqJ7NKh+5NHEGo= Subject key identifier: 6F:DF:CD:F3:5D:22:0F:05:36:A6:FC:41:DB:9F:81:BA:47:73:67:49 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 42E0370362C91A6CAF94B01B1B6DAF4B4AF2A969 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152003.roa Signing time: Tue 07 Nov 2023 04:12:43 +0000 ROA not before: Tue 07 Nov 2023 04:07:43 +0000 ROA not after: Tue 05 Nov 2024 04:12:43 +0000 asID: 152003 IP address blocks: 115.84.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:e0:37:03:62:c9:1a:6c:af:94:b0:1b:1b:6d:af:4b:4a:f2:a9:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 7 04:07:43 2023 GMT Not After : Nov 5 04:12:43 2024 GMT Subject: CN=6FDFCDF35D220F0536A6FC41DB9F81BA47736749 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b9:38:b4:f0:75:c2:eb:a1:9b:95:38:3e:e7: 2d:c3:ed:d0:3a:d2:f5:cb:af:d3:51:aa:52:f7:47: 29:a7:79:8d:62:29:fc:8c:98:68:71:b7:c1:0c:ac: 88:62:fa:12:72:84:d2:25:37:bf:8a:23:39:78:c6: 58:d6:bf:12:7b:e0:ce:a1:33:cb:20:ab:b8:d3:7a: c4:c5:ae:a1:b1:c1:f7:f9:13:30:83:6f:83:f4:35: 3d:54:a5:9e:76:cd:30:0e:4f:d4:a8:5d:16:a3:80: d7:25:57:00:4d:54:39:92:c6:07:22:27:c7:f4:b5: 75:e2:bc:f9:88:e9:b8:28:d7:d3:e3:4d:c0:72:ba: 0f:b6:44:89:e9:a4:63:f0:66:28:50:3d:14:3b:77: 6f:fa:9d:ae:68:ae:b6:e6:d4:36:be:c6:2c:5d:7f: 51:36:ce:43:b6:43:d9:50:5e:c9:1e:be:cb:dc:df: 8a:26:34:b0:49:59:92:59:69:61:e1:ca:11:c0:eb: e5:64:73:0b:00:dd:d7:8c:50:5a:99:7f:df:d7:bb: 2d:da:98:c3:1b:4f:8c:43:52:69:48:b6:90:80:09: b8:f0:b5:61:d8:d2:4c:61:2f:83:3d:d0:83:8e:96: e2:75:54:c8:ce:a0:af:56:7e:e8:c2:c2:aa:ec:54: b4:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:DF:CD:F3:5D:22:0F:05:36:A6:FC:41:DB:9F:81:BA:47:73:67:49 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152003.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.84.175.0/24 Signature Algorithm: sha256WithRSAEncryption 22:f4:aa:15:13:63:a6:ca:af:6f:e4:88:27:de:cc:d8:74:e7: e8:83:15:73:cf:ea:93:df:f5:98:34:ed:bf:03:58:19:9d:12: 47:b0:79:92:eb:e0:f1:85:67:54:4b:97:38:70:6a:73:76:f2: 9e:af:0b:2c:91:06:5b:9f:e6:15:a5:ba:fa:89:ec:8a:97:98: 38:16:13:b1:93:ef:33:7c:15:28:10:a4:9a:6b:a6:41:46:53: c6:f1:1b:77:bd:94:26:48:6d:8b:3b:e2:79:52:fc:7f:a9:86: 1d:23:87:37:74:8b:8f:c4:22:62:23:ad:80:d1:46:84:91:08: 83:51:88:20:20:cf:2c:d2:b6:93:40:70:c0:60:31:af:5e:0e: e9:5d:f7:2c:74:32:5f:9f:b3:14:4f:82:c6:6e:97:8a:eb:fa: c4:c1:ef:8b:2f:0a:47:20:1b:e1:5f:60:6f:79:86:d6:83:af: e5:3e:60:c7:12:0e:a7:1a:f6:d9:f3:e6:c4:23:0f:9d:ca:0d: 7b:1a:fb:18:e0:22:3b:d6:8e:09:d3:16:bf:5f:55:ea:8e:06: 83:f0:71:4d:1b:5d:b1:4f:f8:84:91:83:50:84:d8:ca:81:52: aa:c1:2f:ea:4b:8a:5f:e9:c2:fb:19:50:63:c1:8a:4e:b6:2d: 77:86:9f:a3 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUQuA3A2LJGmyvlLAbG22vS0ryqWkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEwNzA0MDc0M1oX DTI0MTEwNTA0MTI0M1owMzExMC8GA1UEAxMoNkZERkNERjM1RDIyMEYwNTM2QTZG QzQxREI5RjgxQkE0NzczNjc0OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALC5OLTwdcLroZuVOD7nLcPt0DrS9cuv01GqUvdHKad5jWIp/IyYaHG3wQys iGL6EnKE0iU3v4ojOXjGWNa/EnvgzqEzyyCruNN6xMWuobHB9/kTMINvg/Q1PVSl nnbNMA5P1KhdFqOA1yVXAE1UOZLGByInx/S1deK8+YjpuCjX0+NNwHK6D7ZEiemk Y/BmKFA9FDt3b/qdrmiutubUNr7GLF1/UTbOQ7ZD2VBeyR6+y9zfiiY0sElZkllp YeHKEcDr5WRzCwDd14xQWpl/39e7LdqYwxtPjENSaUi2kIAJuPC1YdjSTGEvgz3Q g46W4nVUyM6gr1Z+6MLCquxUtGMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRv383z XSIPBTam/EHbn4G6R3NnSTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjAwMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHNUrzANBgkqhkiG9w0BAQsFAAOCAQEAIvSqFRNjpsqvb+SIJ97M 2HTn6IMVc8/qk9/1mDTtvwNYGZ0SR7B5kuvg8YVnVEuXOHBqc3bynq8LLJEGW5/m FaW6+onsipeYOBYTsZPvM3wVKBCkmmumQUZTxvEbd72UJkhtizvieVL8f6mGHSOH N3SLj8QiYiOtgNFGhJEIg1GIICDPLNK2k0BwwGAxr14O6V33LHQyX5+zFE+Cxm6X iuv6xMHviy8KRyAb4V9gb3mG1oOv5T5gxxIOpxr22fPmxCMPncoNexr7GOAiO9aO CdMWv19V6o4Gg/BxTRtdsU/4hJGDUITYyoFSqsEv6kuKX+nC+xlQY8GKTrYtd4af ow== -----END CERTIFICATE-----Generated at Wed May 8 21:02:24 2024 by rpki-client on console-fra.rpki-client.org