$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152003.roa File: AS152003.roa (raw, json) Hash identifier: eUsWS/DaZ9YRrOE/sy+P4KhtTC8Vn0dl9RDi/RWy8FM= Subject key identifier: 64:A3:B9:E7:F5:61:1D:2B:A1:3F:48:EA:80:9C:C8:C1:87:A3:85:76 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3AB20A2156E4951486FD4907E47661CB2B9EDAED Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152003.roa Signing time: Tue 08 Oct 2024 05:00:00 +0000 ROA not before: Tue 08 Oct 2024 04:55:00 +0000 ROA not after: Tue 07 Oct 2025 05:00:00 +0000 asID: 152003 IP address blocks: 115.84.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:b2:0a:21:56:e4:95:14:86:fd:49:07:e4:76:61:cb:2b:9e:da:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 8 04:55:00 2024 GMT Not After : Oct 7 05:00:00 2025 GMT Subject: CN=64A3B9E7F5611D2BA13F48EA809CC8C187A38576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:2c:a8:b0:ef:27:72:61:b7:52:18:64:55:c4: e2:e9:09:f8:e3:6a:24:b5:66:e2:0b:43:e0:4c:37: 09:e9:49:17:19:7c:01:54:c9:bb:7f:2e:ff:19:67: 47:a4:e2:7d:1d:47:0e:ff:ce:7b:45:45:a0:5c:14: 8e:16:93:88:d7:94:5b:b4:cc:ec:92:49:68:d8:63: 9d:b3:2f:ab:3d:16:e5:91:01:17:ea:42:7e:67:7f: be:fa:65:92:ef:05:09:58:89:62:ad:ad:b6:f7:56: f7:6b:ae:44:9d:dd:fe:24:03:1e:ef:bc:02:0e:b5: cb:ef:a2:db:e4:11:e6:0c:25:3e:4e:9e:73:0a:fd: 2d:9a:8c:9f:d3:01:b9:eb:49:92:b7:be:e5:7b:be: 13:d6:0c:c0:89:b9:b3:8a:35:3b:6f:92:6b:a3:fa: c6:4a:2f:80:11:dd:6e:0c:bc:34:ef:a7:18:93:d3: e8:b3:fd:b1:e4:ce:55:3b:c1:84:b8:81:97:84:62: d2:5b:3b:5f:f2:24:08:e8:2a:97:20:8d:da:ea:87: a7:94:43:1a:5f:66:c6:9e:ec:9a:a8:09:8e:f6:45: b6:8e:65:e8:ce:2c:bb:ea:80:e7:99:86:a1:07:59: b7:ad:9e:7a:05:f4:53:55:e2:9b:eb:13:42:7c:e1: 74:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:A3:B9:E7:F5:61:1D:2B:A1:3F:48:EA:80:9C:C8:C1:87:A3:85:76 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152003.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.84.175.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:4e:19:92:81:82:cb:8f:89:9b:ff:1f:b0:da:26:a5:c2:e1: 04:31:59:65:15:93:4c:b6:03:4c:b1:74:09:77:da:bc:5b:0d: 78:5c:5e:4c:ed:0d:51:8b:74:6b:1a:ca:3f:ea:85:64:eb:77: cb:43:c3:ed:95:2e:10:f0:81:bf:4d:cf:85:64:70:7a:5c:cf: 9f:f9:19:7a:26:86:37:2f:67:75:fc:95:07:59:c5:95:79:82: 9f:01:47:ab:57:b6:35:e9:1b:20:76:98:d6:2b:f4:8a:5e:6d: d9:23:ff:28:4f:24:7b:45:5a:ea:a7:89:16:7a:ab:f4:11:c8: fa:70:ea:82:1c:fc:7a:07:90:47:72:11:67:4c:a5:dc:72:8a: fa:c3:84:3c:bd:b8:36:13:20:de:d6:04:54:4a:21:57:5a:f2: dc:b8:36:e9:f0:f0:fa:8a:21:31:7a:b5:0d:ab:c7:a0:28:b8: b7:eb:d6:e2:74:a5:7a:0c:95:8c:a7:cb:04:43:96:70:a5:66: 38:0f:48:b5:e8:3c:ea:c5:43:9d:91:b7:75:4b:4c:a8:d4:7c: ad:db:7d:db:5e:b6:c9:c8:95:3a:dd:52:16:35:a2:6d:45:37: 8c:3e:4d:22:a3:72:71:b0:94:0c:89:5b:f4:7c:bd:08:58:f4: 71:b0:e8:ee -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOrIKIVbklRSG/UkH5HZhyyue2u0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAwODA0NTUwMFoX DTI1MTAwNzA1MDAwMFowMzExMC8GA1UEAxMoNjRBM0I5RTdGNTYxMUQyQkExM0Y0 OEVBODA5Q0M4QzE4N0EzODU3NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJgsqLDvJ3Jht1IYZFXE4ukJ+ONqJLVm4gtD4Ew3CelJFxl8AVTJu38u/xln R6TifR1HDv/Oe0VFoFwUjhaTiNeUW7TM7JJJaNhjnbMvqz0W5ZEBF+pCfmd/vvpl ku8FCViJYq2ttvdW92uuRJ3d/iQDHu+8Ag61y++i2+QR5gwlPk6ecwr9LZqMn9MB uetJkre+5Xu+E9YMwIm5s4o1O2+Sa6P6xkovgBHdbgy8NO+nGJPT6LP9seTOVTvB hLiBl4Ri0ls7X/IkCOgqlyCN2uqHp5RDGl9mxp7smqgJjvZFto5l6M4su+qA55mG oQdZt62eegX0U1Xim+sTQnzhdJcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRko7nn 9WEdK6E/SOqAnMjBh6OFdjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjAwMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHNUrzANBgkqhkiG9w0BAQsFAAOCAQEAHE4ZkoGCy4+Jm/8fsNom pcLhBDFZZRWTTLYDTLF0CXfavFsNeFxeTO0NUYt0axrKP+qFZOt3y0PD7ZUuEPCB v03PhWRwelzPn/kZeiaGNy9ndfyVB1nFlXmCnwFHq1e2NekbIHaY1iv0il5t2SP/ KE8ke0Va6qeJFnqr9BHI+nDqghz8egeQR3IRZ0yl3HKK+sOEPL24NhMg3tYEVEoh V1ry3Lg26fDw+oohMXq1DavHoCi4t+vW4nSlegyVjKfLBEOWcKVmOA9Iteg86sVD nZG3dUtMqNR8rdt92162yciVOt1SFjWibUU3jD5NIqNycbCUDIlb9Hy9CFj0cbDo 7g== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:30 2024 by rpki-client on console-ams.rpki-client.org