$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152018.roa File: AS152018.roa (raw, json) Hash identifier: cgQL155dZp+MLboYICiGpRDq2x1KM4MT4WSa2U5QKEg= Subject key identifier: 81:0C:1E:35:1C:64:E9:23:E0:FB:D7:86:E7:68:ED:33:81:09:C8:7A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1DB5FC350AF9D973C65BDEA5B1B19DA1040210B6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152018.roa Signing time: Thu 17 Oct 2024 09:02:22 +0000 ROA not before: Thu 17 Oct 2024 08:57:22 +0000 ROA not after: Thu 16 Oct 2025 09:02:22 +0000 asID: 152018 IP address blocks: 27.124.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:b5:fc:35:0a:f9:d9:73:c6:5b:de:a5:b1:b1:9d:a1:04:02:10:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 17 08:57:22 2024 GMT Not After : Oct 16 09:02:22 2025 GMT Subject: CN=810C1E351C64E923E0FBD786E768ED338109C87A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:3e:9d:2c:ec:a2:e4:b2:76:c7:13:5f:64:46: 1f:b9:27:07:da:4e:88:cf:74:4b:38:06:bf:ac:03: 1e:ab:4d:c8:a0:39:86:47:b4:89:5f:e4:57:12:9a: 33:e2:80:54:06:65:9e:ae:2e:fd:49:4a:1a:a9:d4: 2c:5b:a5:f7:bc:88:2d:a5:56:b5:0e:fc:9f:09:dd: 59:e2:26:55:b1:c5:1d:b6:0f:34:5a:de:ae:f3:fa: 12:fc:90:71:9d:81:81:7f:93:0e:cf:63:43:f6:59: df:e4:d5:8c:22:4d:e7:5a:b1:f8:2b:4e:fa:80:6e: 5c:a9:67:3d:69:0d:9f:f5:49:b8:61:62:8a:1a:ca: ec:d5:68:cb:eb:90:8d:41:6f:30:a1:f5:fa:24:3f: 51:f4:a1:aa:03:23:74:07:86:c4:5a:0e:02:ab:28: f6:81:aa:4c:e2:86:ea:1a:6d:89:b9:b5:5c:30:4e: 1d:56:bd:2b:44:41:19:70:87:7d:0f:fa:a7:d6:2a: 30:24:3b:44:bc:a5:36:c6:81:d1:5b:62:51:2d:6a: 33:47:53:40:34:d7:b2:66:ee:d9:c4:82:5c:d3:cd: 65:a1:fd:5e:fe:dd:3a:c1:bd:99:fb:ae:aa:49:a6: b0:be:e9:77:7c:1a:33:3c:79:de:99:8f:06:28:47: cf:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:0C:1E:35:1C:64:E9:23:E0:FB:D7:86:E7:68:ED:33:81:09:C8:7A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152018.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.124.68.0/23 Signature Algorithm: sha256WithRSAEncryption 38:75:cc:06:64:d6:96:6c:33:24:da:7f:54:fd:77:b2:ad:45: 81:91:e5:af:5f:c3:d5:73:ac:79:a7:23:79:7f:5d:a8:10:c2: d2:25:4e:0d:b9:52:87:29:29:19:3c:0d:f9:38:97:34:89:df: 99:85:59:5d:7d:2d:e3:e9:7d:4d:19:22:f7:78:0f:d5:dc:b6: d5:86:4d:61:89:93:df:c0:78:6b:70:f4:5f:18:45:13:0c:80: 82:3c:83:24:08:3b:8b:b4:9f:25:2f:79:53:68:47:c1:d0:6c: 1e:ef:c1:81:86:05:02:38:d1:e0:ff:be:c6:08:a0:08:91:8e: b2:47:e3:b1:f2:e4:bd:58:8a:59:11:7b:27:e7:69:da:8f:28: b7:7e:56:62:af:8e:b6:68:4d:d1:77:04:ef:6b:7f:b8:56:9d: 5c:a6:ff:5a:3f:26:61:c5:e7:63:99:92:37:b4:cb:31:07:68: ad:16:59:a9:26:b9:98:62:27:59:78:e8:80:07:7c:b7:bb:7a: c4:72:fd:1a:62:72:5f:10:fa:df:3a:0f:56:f9:f7:8c:c5:d4: f8:5f:8c:07:70:71:8d:a6:67:d6:dd:7b:12:ec:d4:fc:fd:bb: 0c:74:80:8e:bc:35:cd:61:54:a8:ed:7d:b1:98:1a:28:2e:aa: de:c6:4d:7d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUHbX8NQr52XPGW96lsbGdoQQCELYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxNzA4NTcyMloX DTI1MTAxNjA5MDIyMlowMzExMC8GA1UEAxMoODEwQzFFMzUxQzY0RTkyM0UwRkJE Nzg2RTc2OEVEMzM4MTA5Qzg3QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPE+nSzsouSydscTX2RGH7knB9pOiM90SzgGv6wDHqtNyKA5hke0iV/kVxKa M+KAVAZlnq4u/UlKGqnULFul97yILaVWtQ78nwndWeImVbHFHbYPNFrervP6EvyQ cZ2BgX+TDs9jQ/ZZ3+TVjCJN51qx+CtO+oBuXKlnPWkNn/VJuGFiihrK7NVoy+uQ jUFvMKH1+iQ/UfShqgMjdAeGxFoOAqso9oGqTOKG6hptibm1XDBOHVa9K0RBGXCH fQ/6p9YqMCQ7RLylNsaB0VtiUS1qM0dTQDTXsmbu2cSCXNPNZaH9Xv7dOsG9mfuu qkmmsL7pd3waMzx53pmPBihHz6UCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSBDB41 HGTpI+D714bnaO0zgQnIejAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjAxOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEARt8RDANBgkqhkiG9w0BAQsFAAOCAQEAOHXMBmTWlmwzJNp/VP13 sq1FgZHlr1/D1XOseacjeX9dqBDC0iVODblShykpGTwN+TiXNInfmYVZXX0t4+l9 TRki93gP1dy21YZNYYmT38B4a3D0XxhFEwyAgjyDJAg7i7SfJS95U2hHwdBsHu/B gYYFAjjR4P++xgigCJGOskfjsfLkvViKWRF7J+dp2o8ot35WYq+OtmhN0XcE72t/ uFadXKb/Wj8mYcXnY5mSN7TLMQdorRZZqSa5mGInWXjogAd8t7t6xHL9GmJyXxD6 3zoPVvn3jMXU+F+MB3BxjaZn1t17EuzU/P27DHSAjrw1zWFUqO19sZgaKC6q3sZN fQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:49 2024 by rpki-client on console-ams.rpki-client.org