$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152019.roa File: AS152019.roa (raw, json) Hash identifier: H10sgzVQH+hKqxpAAC+bHIO/PsQoFF4SHGjcLWBVrkE= Subject key identifier: 4E:1D:FB:6C:9C:89:19:3D:51:2A:49:BE:38:73:31:1A:FD:EA:E7:72 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2EDB8A285712ABDE5418ECFB1542941AE4019544 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152019.roa Signing time: Wed 24 Jan 2024 03:57:26 +0000 ROA not before: Wed 24 Jan 2024 03:52:26 +0000 ROA not after: Wed 22 Jan 2025 03:57:26 +0000 asID: 152019 IP address blocks: 180.131.130.0/24 maxlen: 24 2001:df3:6340::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:db:8a:28:57:12:ab:de:54:18:ec:fb:15:42:94:1a:e4:01:95:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 24 03:52:26 2024 GMT Not After : Jan 22 03:57:26 2025 GMT Subject: CN=4E1DFB6C9C89193D512A49BE3873311AFDEAE772 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:62:a6:13:ec:6b:fb:ff:7c:61:ed:e4:fd:68: 49:34:9e:92:68:c6:dc:d3:19:b6:2d:d8:15:73:3a: da:48:9c:f4:e2:61:7d:d8:65:6e:e5:5e:ee:9b:57: ed:a2:27:b2:94:1b:4e:8f:39:68:e9:db:88:88:44: 9f:d0:ec:30:94:df:6b:09:da:14:17:f3:a5:4e:2d: 8a:4c:98:50:12:13:dc:ec:e0:fa:6b:eb:95:57:39: 05:ea:b4:93:54:70:28:05:1e:19:db:1a:2e:b3:30: 38:5e:aa:e6:6a:fc:6f:a3:43:70:c0:62:8d:29:7b: 9d:ec:5a:1f:33:1a:c7:3a:08:da:3f:64:dc:71:0e: bf:44:05:ae:ac:23:46:2a:dd:1e:1e:46:7d:b6:19: 83:97:86:d8:b9:5d:b5:3c:07:59:6c:d5:27:d6:9e: 0f:a5:6d:b9:67:f4:22:4c:d6:96:60:dd:a8:6e:8a: 77:ea:7f:bc:77:95:a3:4d:76:e4:73:f0:ba:b4:41: 65:ba:fd:77:a7:71:15:a9:c1:8b:3b:68:f9:2b:c8: d6:ff:d2:9e:34:37:2a:fc:2c:6a:64:b4:45:26:13: 25:b3:04:29:03:f7:b8:94:da:63:db:e9:7c:80:50: 8e:3e:a6:de:10:04:76:f1:1f:5a:3c:68:4f:72:32: f6:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:1D:FB:6C:9C:89:19:3D:51:2A:49:BE:38:73:31:1A:FD:EA:E7:72 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152019.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.131.130.0/24 IPv6: 2001:df3:6340::/48 Signature Algorithm: sha256WithRSAEncryption 35:aa:49:97:10:df:50:d1:b0:22:1e:df:9f:04:4f:ad:a0:0e: 70:70:92:01:e8:11:61:9e:e0:14:14:89:a6:4d:33:14:b7:93: d9:37:b9:c0:03:a7:45:14:0a:35:31:f2:97:02:29:ba:10:03: 6f:79:99:da:2f:3d:c8:0e:15:9d:94:d7:ff:0d:56:b9:58:ef: ca:39:e8:4c:f5:31:be:67:95:67:91:5c:92:00:c1:ca:17:92: 40:6b:fd:b7:7b:99:95:da:a4:5b:d2:9e:c0:a6:7e:07:8a:03: 90:ac:92:46:35:b4:9d:12:7f:ba:f3:5b:13:5f:83:d9:cb:94: d7:ba:6a:4a:30:45:60:cd:b7:b6:65:ca:2d:b1:48:8e:46:0d: a1:89:12:97:9f:25:57:83:b8:ce:de:5a:5c:83:d4:20:93:a5: 07:63:a7:44:cd:eb:63:93:6a:07:32:a8:95:13:57:4d:31:af: 1f:f8:24:9c:9a:7c:fd:a9:54:e5:fa:49:83:b6:20:cf:df:1d: 51:8d:a6:f6:fd:d8:e1:ed:1e:3a:c1:a2:21:c9:93:8b:1f:85: d4:ff:6b:91:02:96:f4:73:96:3b:98:f6:fd:8c:ce:9e:6c:1d: 84:36:ea:91:df:a1:b1:df:0e:ca:77:93:88:5e:6f:6c:05:18: b8:1c:28:4a -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIULtuKKFcSq95UGOz7FUKUGuQBlUQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEyNDAzNTIyNloX DTI1MDEyMjAzNTcyNlowMzExMC8GA1UEAxMoNEUxREZCNkM5Qzg5MTkzRDUxMkE0 OUJFMzg3MzMxMUFGREVBRTc3MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAORiphPsa/v/fGHt5P1oSTSekmjG3NMZti3YFXM62kic9OJhfdhlbuVe7ptX 7aInspQbTo85aOnbiIhEn9DsMJTfawnaFBfzpU4tikyYUBIT3Ozg+mvrlVc5Beq0 k1RwKAUeGdsaLrMwOF6q5mr8b6NDcMBijSl7nexaHzMaxzoI2j9k3HEOv0QFrqwj RirdHh5GfbYZg5eG2LldtTwHWWzVJ9aeD6VtuWf0IkzWlmDdqG6Kd+p/vHeVo012 5HPwurRBZbr9d6dxFanBizto+SvI1v/SnjQ3KvwsamS0RSYTJbMEKQP3uJTaY9vp fIBQjj6m3hAEdvEfWjxoT3Iy9u0CAwEAAaOCAeEwggHdMB0GA1UdDgQWBBROHfts nIkZPVEqSb44czEa/erncjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjAxOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEALSDgjAPBAIAAjAJAwcAIAEN82NAMA0GCSqGSIb3DQEBCwUAA4IB AQA1qkmXEN9Q0bAiHt+fBE+toA5wcJIB6BFhnuAUFImmTTMUt5PZN7nAA6dFFAo1 MfKXAim6EANveZnaLz3IDhWdlNf/DVa5WO/KOehM9TG+Z5VnkVySAMHKF5JAa/23 e5mV2qRb0p7Apn4HigOQrJJGNbSdEn+681sTX4PZy5TXumpKMEVgzbe2ZcotsUiO Rg2hiRKXnyVXg7jO3lpcg9Qgk6UHY6dEzetjk2oHMqiVE1dNMa8f+CScmnz9qVTl +kmDtiDP3x1Rjab2/djh7R46waIhyZOLH4XU/2uRApb0c5Y7mPb9jM6ebB2ENuqR 36Gx3w7Kd5OIXm9sBRi4HChK -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:49 2024 by rpki-client on console-ams.rpki-client.org