$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152018.roa File: AS152018.roa (raw, json) Hash identifier: 6rTYg8wWA2pIqYuYMDaxJ2ytxPjCYGgCLHGx2qe0O/k= Subject key identifier: 8F:2A:82:F0:51:73:F7:B3:BD:39:87:E6:2B:43:DD:97:B0:3D:08:72 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2214F2D138CEE79F7B7257984957919BEBE24494 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152018.roa Signing time: Thu 16 Nov 2023 09:01:45 +0000 ROA not before: Thu 16 Nov 2023 08:56:45 +0000 ROA not after: Thu 14 Nov 2024 09:01:45 +0000 asID: 152018 IP address blocks: 27.124.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:14:f2:d1:38:ce:e7:9f:7b:72:57:98:49:57:91:9b:eb:e2:44:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 16 08:56:45 2023 GMT Not After : Nov 14 09:01:45 2024 GMT Subject: CN=8F2A82F05173F7B3BD3987E62B43DD97B03D0872 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:08:6d:22:3d:52:93:67:af:14:99:02:7a:6e: 2c:1b:e7:5f:6e:96:8a:57:42:bc:6c:b0:c8:e8:de: 09:0f:86:9c:8f:9b:3a:1e:54:d1:09:99:ae:24:32: 10:a7:cf:12:b0:fe:ab:f0:b4:2b:7b:37:83:6b:fd: 73:4a:e1:52:75:b3:fd:a7:b4:fa:b6:fe:10:5f:46: bf:17:90:5a:65:1b:79:5b:1e:70:7a:97:ec:b0:f4: 9e:b1:f6:dc:f5:04:00:05:6b:18:ae:c2:00:57:94: ae:3c:28:19:ed:e8:17:66:40:91:94:48:c4:5f:f5: 31:d9:37:b2:73:8a:4d:77:d6:59:a4:32:c8:68:1c: 70:5a:aa:35:ea:54:6c:69:7a:8a:a7:20:22:dc:97: 5e:9e:a0:5c:a1:fb:3e:0c:a6:05:8b:4d:34:c1:3b: a7:28:61:47:39:94:a2:03:d6:bf:b0:ad:d2:48:68: b6:fe:32:95:c2:94:a8:f9:88:ab:0f:a0:f5:60:d2: e4:0f:b6:83:1c:75:d8:1b:2a:36:e6:81:9e:c2:eb: 93:c2:c6:8c:69:ab:06:b9:61:a8:ee:39:44:6a:fe: 27:77:81:63:be:00:e4:c8:0a:d6:bc:0b:ec:4a:00: b4:05:8d:29:34:93:32:85:fa:f5:cf:dc:dc:6b:c4: 6b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:2A:82:F0:51:73:F7:B3:BD:39:87:E6:2B:43:DD:97:B0:3D:08:72 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152018.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.124.68.0/23 Signature Algorithm: sha256WithRSAEncryption 21:40:26:bf:b9:01:77:71:44:51:dc:d6:26:32:ac:77:63:2d: a3:1c:dc:a9:52:7a:fd:05:f8:a3:d8:54:d9:f8:48:fa:eb:ca: da:99:14:dd:dd:e6:f8:40:e2:e9:0c:bb:21:b7:56:28:61:6e: 23:fd:50:56:d9:b1:8e:34:b1:cf:48:f4:4d:84:19:21:e3:d6: d1:5b:17:53:f2:4a:ac:c7:5e:57:0c:53:7a:ae:e1:ee:e7:8c: 8c:ba:16:08:f0:08:9c:2b:e9:7b:e8:5b:f3:7f:fc:8b:ba:c7: 96:df:11:3d:ab:07:f1:d8:13:60:1d:26:8a:f5:3e:98:9d:85: 58:ad:1d:33:d0:da:cc:79:55:fa:c2:79:d1:e3:00:93:9f:f0: 7f:58:be:70:5a:24:25:95:5e:e5:34:a9:11:49:01:74:09:3a: cb:f2:a8:68:21:c6:7c:e0:15:ec:c9:e1:1f:8c:95:5c:4d:1f: 64:9d:a8:f4:d9:c8:24:bf:b1:43:5b:15:b5:74:87:f5:c9:af: 84:9a:03:0e:87:f9:0e:da:1b:3e:3a:0e:a1:ac:8b:c2:d3:59: 06:55:88:12:c1:cf:a0:b9:f0:0a:fd:a2:ed:75:59:7e:9a:f3: af:8d:3e:e9:a7:c1:86:18:5f:3c:5d:97:70:e9:b6:fa:1a:72: 31:1a:7b:5a -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUIhTy0TjO5597cleYSVeRm+viRJQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTExNjA4NTY0NVoX DTI0MTExNDA5MDE0NVowMzExMC8GA1UEAxMoOEYyQTgyRjA1MTczRjdCM0JEMzk4 N0U2MkI0M0REOTdCMDNEMDg3MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKAIbSI9UpNnrxSZAnpuLBvnX26WildCvGywyOjeCQ+GnI+bOh5U0QmZriQy EKfPErD+q/C0K3s3g2v9c0rhUnWz/ae0+rb+EF9GvxeQWmUbeVsecHqX7LD0nrH2 3PUEAAVrGK7CAFeUrjwoGe3oF2ZAkZRIxF/1Mdk3snOKTXfWWaQyyGgccFqqNepU bGl6iqcgItyXXp6gXKH7PgymBYtNNME7pyhhRzmUogPWv7Ct0khotv4ylcKUqPmI qw+g9WDS5A+2gxx12BsqNuaBnsLrk8LGjGmrBrlhqO45RGr+J3eBY74A5MgK1rwL 7EoAtAWNKTSTMoX69c/c3GvEa2MCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSPKoLw UXP3s705h+YrQ92XsD0IcjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjAxOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEARt8RDANBgkqhkiG9w0BAQsFAAOCAQEAIUAmv7kBd3FEUdzWJjKs d2MtoxzcqVJ6/QX4o9hU2fhI+uvK2pkU3d3m+EDi6Qy7IbdWKGFuI/1QVtmxjjSx z0j0TYQZIePW0VsXU/JKrMdeVwxTeq7h7ueMjLoWCPAInCvpe+hb83/8i7rHlt8R PasH8dgTYB0mivU+mJ2FWK0dM9DazHlV+sJ50eMAk5/wf1i+cFokJZVe5TSpEUkB dAk6y/KoaCHGfOAV7MnhH4yVXE0fZJ2o9NnIJL+xQ1sVtXSH9cmvhJoDDof5Dtob PjoOoayLwtNZBlWIEsHPoLnwCv2i7XVZfprzr40+6afBhhhfPF2XcOm2+hpyMRp7 Wg== -----END CERTIFICATE-----Generated at Thu May 9 00:29:16 2024 by rpki-client on console-ams.rpki-client.org