$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152023.roa File: AS152023.roa (raw, json) Hash identifier: +i++/yUlD6LSf2IDO2NeRq+23GawYZa1r3BHNJsLnbc= Subject key identifier: 7B:B3:D4:5E:CD:04:FD:D2:9D:8B:F2:A0:44:D1:DA:FD:0A:DF:80:B0 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6742A0F8D135869DF6B9EED2B8A6E32E4EEA1CA9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152023.roa Signing time: Wed 25 Dec 2024 03:01:01 +0000 ROA not before: Wed 25 Dec 2024 02:56:01 +0000 ROA not after: Wed 24 Dec 2025 03:01:01 +0000 asID: 152023 IP address blocks: 45.123.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:42:a0:f8:d1:35:86:9d:f6:b9:ee:d2:b8:a6:e3:2e:4e:ea:1c:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 25 02:56:01 2024 GMT Not After : Dec 24 03:01:01 2025 GMT Subject: CN=7BB3D45ECD04FDD29D8BF2A044D1DAFD0ADF80B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:22:46:e4:72:d8:82:c9:56:0b:4d:fd:62:7d: 2e:d7:47:c5:fc:1e:ff:e2:0f:d3:de:21:83:8f:e4: 69:ec:62:3a:da:23:3b:87:9a:35:5b:93:0d:3a:a5: ca:41:c4:15:a2:52:94:ad:85:e2:6d:3b:7b:4d:8f: df:74:5f:96:21:07:b3:39:a1:96:96:d8:4f:6c:5f: 81:08:a9:fc:23:10:f9:a0:d8:9b:84:b6:5c:2a:49: 03:98:5f:96:61:4b:91:8c:e2:b2:f3:91:d5:96:fb: 42:c4:ca:00:63:95:a3:e2:a8:47:c6:b7:74:39:80: fa:34:7c:c0:bb:b5:09:b8:81:8c:56:e5:57:ec:5d: ca:45:af:fa:2d:7e:77:58:a9:a8:eb:f9:8a:1c:1e: 92:88:64:c5:e7:db:62:bd:2e:70:91:6d:de:8d:c5: 9c:d8:52:02:16:25:c9:63:3b:0b:8b:d1:a1:57:91: a0:f6:6c:78:df:c8:0f:9c:c9:80:a7:85:09:2e:fb: f9:e9:0c:94:24:37:ef:de:5a:28:c3:c5:4c:e0:7a: c4:d6:21:fc:c5:d5:72:06:f9:3a:f6:23:fa:b1:0a: eb:84:9f:66:e8:1a:ec:b0:23:6a:ac:b8:39:8b:e9: dc:3f:2a:2d:df:0c:45:7d:bc:e5:68:df:5b:0b:86: 73:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:B3:D4:5E:CD:04:FD:D2:9D:8B:F2:A0:44:D1:DA:FD:0A:DF:80:B0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152023.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.123.143.0/24 Signature Algorithm: sha256WithRSAEncryption 08:3f:a4:0a:c6:9d:53:0b:9d:fc:3d:03:24:c2:20:9f:37:66: 83:0c:d4:51:31:7c:7c:af:4e:5a:d6:6d:e6:d5:62:02:03:38: 4d:e9:7d:5e:d3:8c:a0:42:d3:29:8c:69:b4:52:68:e2:ad:01: 7d:27:66:d5:34:46:e1:c0:60:23:77:74:e6:96:2f:29:fe:b6: d3:37:91:08:23:b0:be:f2:99:37:b0:32:39:71:30:bb:a8:6d: c9:ff:86:16:4a:b9:4c:f9:45:e8:d9:03:69:da:ae:ce:73:ed: c4:03:b5:8d:7f:55:87:9e:b4:65:77:5c:45:ca:d3:ab:dc:e7: ec:8d:87:f9:ee:2c:a7:01:39:7e:65:9f:0e:ce:af:1d:0d:6e: 88:10:46:26:c7:e2:f6:26:f2:f2:34:f4:11:03:8c:a9:8d:f5: b1:b3:dc:de:20:5c:5a:b7:24:dd:61:93:80:1b:cc:1d:b9:be: c2:76:5e:63:fa:97:4b:8c:03:e4:de:8c:12:83:a5:13:11:b3: 6a:44:d3:3c:64:16:80:4b:a5:b8:49:e1:c2:21:17:56:47:db: 9f:ca:47:ea:d4:ce:60:68:17:f9:39:bc:9a:dd:eb:1a:6d:19: f6:a8:76:36:68:71:2c:fc:77:1b:33:37:17:7a:81:9e:8c:61: f1:b5:a5:d1 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUZ0Kg+NE1hp32ue7SuKbjLk7qHKkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIyNTAyNTYwMVoX DTI1MTIyNDAzMDEwMVowMzExMC8GA1UEAxMoN0JCM0Q0NUVDRDA0RkREMjlEOEJG MkEwNDREMURBRkQwQURGODBCMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO0iRuRy2ILJVgtN/WJ9LtdHxfwe/+IP094hg4/kaexiOtojO4eaNVuTDTql ykHEFaJSlK2F4m07e02P33RfliEHszmhlpbYT2xfgQip/CMQ+aDYm4S2XCpJA5hf lmFLkYzisvOR1Zb7QsTKAGOVo+KoR8a3dDmA+jR8wLu1CbiBjFblV+xdykWv+i1+ d1ipqOv5ihwekohkxefbYr0ucJFt3o3FnNhSAhYlyWM7C4vRoVeRoPZseN/ID5zJ gKeFCS77+ekMlCQ3795aKMPFTOB6xNYh/MXVcgb5OvYj+rEK64SfZuga7LAjaqy4 OYvp3D8qLd8MRX285WjfWwuGc5ECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR7s9Re zQT90p2L8qBE0dr9Ct+AsDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjAyMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAC17jzANBgkqhkiG9w0BAQsFAAOCAQEACD+kCsadUwud/D0DJMIg nzdmgwzUUTF8fK9OWtZt5tViAgM4Tel9XtOMoELTKYxptFJo4q0BfSdm1TRG4cBg I3d05pYvKf620zeRCCOwvvKZN7AyOXEwu6htyf+GFkq5TPlF6NkDadquznPtxAO1 jX9Vh560ZXdcRcrTq9zn7I2H+e4spwE5fmWfDs6vHQ1uiBBGJsfi9iby8jT0EQOM qY31sbPc3iBcWrck3WGTgBvMHbm+wnZeY/qXS4wD5N6MEoOlExGzakTTPGQWgEul uEnhwiEXVkfbn8pH6tTOYGgX+Tm8mt3rGm0Z9qh2NmhxLPx3GzM3F3qBnoxh8bWl 0Q== -----END CERTIFICATE-----Generated at Sun Feb 16 20:47:31 2025 by rpki-client