$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152020.roa File: AS152020.roa (raw, json) Hash identifier: 75zWLE59nnGc7UojF7IQ4KIHk1GawB2AEw2PuEx/WSw= Subject key identifier: A3:BC:38:40:A6:49:97:82:AE:26:51:0C:DA:44:27:33:E1:8D:2A:7D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1C907837DCC4B9C9030F6ADCA1ABF1E478FEFF8A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152020.roa Signing time: Wed 03 Jan 2024 03:51:29 +0000 ROA not before: Wed 03 Jan 2024 03:46:29 +0000 ROA not after: Wed 01 Jan 2025 03:51:29 +0000 asID: 152020 IP address blocks: 27.124.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:90:78:37:dc:c4:b9:c9:03:0f:6a:dc:a1:ab:f1:e4:78:fe:ff:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 3 03:46:29 2024 GMT Not After : Jan 1 03:51:29 2025 GMT Subject: CN=A3BC3840A6499782AE26510CDA442733E18D2A7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f3:ed:0a:3a:c3:d7:df:e8:31:de:87:92:7d: b8:9e:36:05:ae:83:2c:71:df:f1:ce:7f:73:95:9a: 1d:c4:95:9c:9b:b4:f7:7d:ed:f7:ab:8e:08:ad:74: 24:67:eb:b6:5b:59:e2:5c:e3:01:fd:05:73:01:47: 06:6c:35:33:be:a3:40:c0:6e:2e:ef:99:07:b5:8e: 54:8e:b8:fc:2a:50:3b:21:3e:73:bd:9c:52:ab:d2: ba:4a:f5:6f:51:66:af:9c:80:80:c1:cc:5f:c9:b0: cc:fd:7e:a6:b1:98:e6:cc:e2:b9:1a:46:d9:ac:29: 2b:08:2c:64:b5:bd:5d:7c:c8:5b:88:c0:60:6e:48: a9:e6:cb:99:ce:27:5c:c8:bb:24:9e:44:aa:ea:9f: 83:0a:d3:68:c7:e2:5d:5b:0c:31:c0:00:36:89:6d: d5:05:da:73:0e:20:cf:07:18:8c:ec:5c:12:a5:65: 15:27:37:94:54:11:de:06:99:3e:ea:bc:cd:6c:27: ff:21:cf:a9:0d:8d:a9:26:e4:72:a3:8e:8d:dc:42: 72:3b:c4:41:c2:14:c7:00:0f:7a:49:dd:6d:19:23: 88:c0:1c:0d:5a:79:92:dd:a4:b4:de:93:b3:d9:1b: 50:c9:75:79:cf:40:4c:90:9a:d2:17:f0:42:0a:33: df:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:BC:38:40:A6:49:97:82:AE:26:51:0C:DA:44:27:33:E1:8D:2A:7D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152020.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.124.79.0/24 Signature Algorithm: sha256WithRSAEncryption 48:38:d6:e4:1e:77:73:9d:ee:48:3d:1e:25:85:ef:58:bd:ee: 70:c6:af:60:71:b0:11:c9:de:b1:69:37:71:96:bb:fc:31:0f: 20:cb:dc:5f:2c:cd:30:fd:a8:07:cd:af:f4:dc:0f:eb:63:a7: ac:c7:db:e9:44:e9:0f:92:fd:1f:8f:35:16:49:8f:36:d8:18: 25:f2:b2:04:83:99:76:35:9a:2a:ca:89:7f:c0:60:d0:83:dd: b2:9f:3c:81:53:17:97:67:24:cc:37:98:45:9f:c8:fe:fe:0f: bb:a6:bd:6b:c5:bb:fc:e5:e7:ac:b6:2d:21:fa:ec:47:68:bb: ae:41:48:51:48:0a:7a:31:88:7a:2f:07:21:9e:9b:25:ab:90: 05:f9:5f:b6:0e:0a:20:47:fe:5a:dd:5c:33:38:10:6f:e6:a9: 2b:21:41:62:27:11:48:46:46:1f:91:d2:a9:32:01:9a:31:61: dc:05:4c:37:9a:d2:0d:56:6e:1b:76:5f:40:a6:c9:a5:65:07: 79:2d:42:0b:02:72:ec:c8:70:f5:54:c7:98:79:ae:00:5b:53: 4a:40:c1:02:1c:b5:8e:b1:f8:c6:9f:b6:9a:5e:70:ca:e5:c5: a3:31:14:db:87:c1:8a:77:47:17:fe:cf:47:de:8e:4e:0c:3f: bc:a1:c8:c5 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUHJB4N9zEuckDD2rcoavx5Hj+/4owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwMzAzNDYyOVoX DTI1MDEwMTAzNTEyOVowMzExMC8GA1UEAxMoQTNCQzM4NDBBNjQ5OTc4MkFFMjY1 MTBDREE0NDI3MzNFMThEMkE3RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKzz7Qo6w9ff6DHeh5J9uJ42Ba6DLHHf8c5/c5WaHcSVnJu0933t96uOCK10 JGfrtltZ4lzjAf0FcwFHBmw1M76jQMBuLu+ZB7WOVI64/CpQOyE+c72cUqvSukr1 b1Fmr5yAgMHMX8mwzP1+prGY5sziuRpG2awpKwgsZLW9XXzIW4jAYG5IqebLmc4n XMi7JJ5EquqfgwrTaMfiXVsMMcAANolt1QXacw4gzwcYjOxcEqVlFSc3lFQR3gaZ Puq8zWwn/yHPqQ2NqSbkcqOOjdxCcjvEQcIUxwAPekndbRkjiMAcDVp5kt2ktN6T s9kbUMl1ec9ATJCa0hfwQgoz32UCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSjvDhA pkmXgq4mUQzaRCcz4Y0qfTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjAyMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEABt8TzANBgkqhkiG9w0BAQsFAAOCAQEASDjW5B53c53uSD0eJYXv WL3ucMavYHGwEcnesWk3cZa7/DEPIMvcXyzNMP2oB82v9NwP62OnrMfb6UTpD5L9 H481FkmPNtgYJfKyBIOZdjWaKsqJf8Bg0IPdsp88gVMXl2ckzDeYRZ/I/v4Pu6a9 a8W7/OXnrLYtIfrsR2i7rkFIUUgKejGIei8HIZ6bJauQBflftg4KIEf+Wt1cMzgQ b+apKyFBYicRSEZGH5HSqTIBmjFh3AVMN5rSDVZuG3ZfQKbJpWUHeS1CCwJy7Mhw 9VTHmHmuAFtTSkDBAhy1jrH4xp+2ml5wyuXFozEU24fBindHF/7PR96OTgw/vKHI xQ== -----END CERTIFICATE-----Generated at Tue May 7 18:07:19 2024 by rpki-client on console-fra.rpki-client.org