$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152020.roa File: AS152020.roa (raw, json) Hash identifier: YLb1O3k6+9R5a2nySLgVNM9Tv0BbQscohrjw9PD8HCY= Subject key identifier: CD:4C:0C:40:30:35:1A:67:23:E0:91:50:DD:8C:17:72:AC:91:71:D8 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 67809295968A064D64C3A90CBAE99E7A92940FA9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152020.roa Signing time: Wed 04 Dec 2024 04:00:00 +0000 ROA not before: Wed 04 Dec 2024 03:55:00 +0000 ROA not after: Wed 03 Dec 2025 04:00:00 +0000 asID: 152020 IP address blocks: 27.124.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:80:92:95:96:8a:06:4d:64:c3:a9:0c:ba:e9:9e:7a:92:94:0f:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 4 03:55:00 2024 GMT Not After : Dec 3 04:00:00 2025 GMT Subject: CN=CD4C0C4030351A6723E09150DD8C1772AC9171D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:01:c1:36:fe:d2:7a:9c:01:68:dd:61:29:3e: ed:7f:56:0d:ee:8b:fc:1d:24:2c:59:4f:5a:70:57: bd:98:3e:7b:cf:bb:d2:4e:42:da:e1:e4:e3:ec:34: 29:78:04:88:47:17:6f:3e:ef:fc:18:a4:6e:01:37: 0a:62:66:77:49:8c:6e:03:a4:64:20:d6:03:6d:b8: 92:f1:d3:0a:b3:b1:52:aa:3e:55:4c:07:46:ad:9e: 59:d6:f6:89:35:3a:4c:8c:16:7e:38:2a:b4:c6:d2: 94:96:94:df:be:e9:53:c0:05:ed:32:42:20:bc:df: db:ee:62:80:07:2f:4f:a1:ba:61:48:ab:95:86:a1: ec:a2:77:6f:c1:f7:53:fc:75:c4:7b:ce:24:4d:d2: 0c:38:e4:40:bf:97:74:df:4d:49:a5:d5:34:6f:93: 7c:6a:64:fa:d6:3e:b4:af:5b:2c:32:a5:68:78:64: a8:af:6b:a5:f5:7d:59:bb:1b:7d:c3:fd:53:d6:f3: 75:79:23:21:95:5c:9a:29:75:ef:c4:ea:28:3f:c2: 94:49:3f:ed:82:6d:ac:96:b4:32:26:b2:71:0e:e5: 50:56:89:8b:10:7b:25:13:b0:31:74:0c:5c:9e:ab: a9:d8:0a:dc:13:9c:b8:06:0c:81:59:4f:a4:db:68: 18:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:4C:0C:40:30:35:1A:67:23:E0:91:50:DD:8C:17:72:AC:91:71:D8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152020.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.124.79.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:ec:a9:0b:1d:ed:27:90:6d:6c:f8:e0:8a:e2:fa:71:cd:26: 5b:2f:8f:e0:08:3b:fe:85:ce:b3:a4:a6:13:eb:47:2e:ec:80: 7e:05:50:59:5b:05:e1:5a:2a:71:e9:23:5a:d9:3e:5a:15:14: 73:46:d5:7a:99:21:8e:77:1f:d0:99:5e:38:e6:c2:fc:0a:e4: 3e:cf:f4:49:0d:ef:2e:1a:50:13:a6:ab:85:47:ed:74:42:6b: 81:aa:68:1d:d5:49:dd:b9:e5:75:84:ec:ef:d6:cb:60:dd:15: cc:44:1d:64:69:f6:6e:2d:3a:34:8d:02:0d:8e:a4:0a:f0:ae: ea:11:20:0e:f6:2e:ff:f4:9e:bf:11:c9:df:ae:81:66:af:ef: e9:57:57:a6:54:38:c0:43:83:2d:f7:fd:5e:7c:0c:9b:de:f5: 9f:8d:69:2a:1d:3c:0f:88:73:83:72:3e:75:68:fc:e1:56:c8: 13:77:2d:2b:fc:31:8e:4f:88:50:d2:ea:8a:6b:52:30:9b:14: 0b:78:05:96:49:d6:fd:87:8b:e5:28:2d:3f:8d:c0:e7:2f:1e: 1f:eb:cc:a8:ec:0e:14:f3:6a:c0:5e:9a:0d:e9:7e:86:bf:5a: bf:a6:91:e0:f1:72:3c:ee:49:b2:9f:4f:60:a9:0e:56:e3:8a: f4:c4:d5:0c -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUZ4CSlZaKBk1kw6kMuumeepKUD6kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIwNDAzNTUwMFoX DTI1MTIwMzA0MDAwMFowMzExMC8GA1UEAxMoQ0Q0QzBDNDAzMDM1MUE2NzIzRTA5 MTUwREQ4QzE3NzJBQzkxNzFEODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMYBwTb+0nqcAWjdYSk+7X9WDe6L/B0kLFlPWnBXvZg+e8+70k5C2uHk4+w0 KXgEiEcXbz7v/BikbgE3CmJmd0mMbgOkZCDWA224kvHTCrOxUqo+VUwHRq2eWdb2 iTU6TIwWfjgqtMbSlJaU377pU8AF7TJCILzf2+5igAcvT6G6YUirlYah7KJ3b8H3 U/x1xHvOJE3SDDjkQL+XdN9NSaXVNG+TfGpk+tY+tK9bLDKlaHhkqK9rpfV9Wbsb fcP9U9bzdXkjIZVcmil178TqKD/ClEk/7YJtrJa0MiaycQ7lUFaJixB7JROwMXQM XJ6rqdgK3BOcuAYMgVlPpNtoGMcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTNTAxA MDUaZyPgkVDdjBdyrJFx2DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjAyMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEABt8TzANBgkqhkiG9w0BAQsFAAOCAQEAH+ypCx3tJ5BtbPjgiuL6 cc0mWy+P4Ag7/oXOs6SmE+tHLuyAfgVQWVsF4VoqcekjWtk+WhUUc0bVepkhjncf 0JleOObC/ArkPs/0SQ3vLhpQE6arhUftdEJrgapoHdVJ3bnldYTs79bLYN0VzEQd ZGn2bi06NI0CDY6kCvCu6hEgDvYu//SevxHJ366BZq/v6VdXplQ4wEODLff9XnwM m971n41pKh08D4hzg3I+dWj84VbIE3ctK/wxjk+IUNLqimtSMJsUC3gFlknW/YeL 5SgtP43A5y8eH+vMqOwOFPNqwF6aDel+hr9av6aR4PFyPO5Jsp9PYKkOVuOK9MTV DA== -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:30 2025 by rpki-client