$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152047.roa File: AS152047.roa (raw, json) Hash identifier: 1ggz80ryZwNcPVOi1aKz2B+FAIK8woixMBnnHxh7+kw= Subject key identifier: AF:9B:B7:28:16:F4:C8:BA:7E:D5:47:18:AD:A4:77:0D:E4:23:84:1B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 14D2FDA84280AFF4CC20598F2B52BA6378B6EBA4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152047.roa Signing time: Thu 18 Jan 2024 03:14:15 +0000 ROA not before: Thu 18 Jan 2024 03:09:15 +0000 ROA not after: Thu 16 Jan 2025 03:14:15 +0000 asID: 152047 IP address blocks: 210.79.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:d2:fd:a8:42:80:af:f4:cc:20:59:8f:2b:52:ba:63:78:b6:eb:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 18 03:09:15 2024 GMT Not After : Jan 16 03:14:15 2025 GMT Subject: CN=AF9BB72816F4C8BA7ED54718ADA4770DE423841B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:88:df:12:2d:ae:b9:bf:1f:1e:3f:6c:ce:66: 36:f7:6c:54:dc:6c:1e:07:c0:34:d4:eb:8a:e1:8f: 64:32:48:ad:6d:50:db:4f:0f:68:02:17:27:c6:77: 0d:bd:9d:a9:9d:af:62:44:2a:c4:87:19:94:17:82: 3c:9f:85:2a:73:f8:a1:e9:cb:c3:4a:3c:ea:11:8d: 09:a3:98:f8:05:be:51:13:a4:58:b3:bc:8e:a1:ed: e0:b7:14:37:c3:31:6a:8a:09:3f:bd:9b:f4:8a:19: df:48:3c:66:62:4b:5f:fe:5e:47:41:d6:cd:92:ac: 80:7b:d5:6d:eb:62:a4:5c:84:fa:f2:24:89:28:64: c1:05:03:ec:56:aa:b4:fa:e6:ab:d7:de:3c:cd:ea: c3:cc:ff:72:b4:6c:ad:38:86:e3:31:f0:cc:64:0a: 81:4a:3a:6e:95:93:38:35:68:ae:a7:39:51:a4:b4: 6b:ce:55:7b:55:8c:b1:a2:ce:80:83:91:8d:ba:6e: ca:91:f2:7e:76:38:9d:73:9f:b4:31:b1:07:cd:e1: b3:1b:c4:55:f6:89:2a:85:58:25:51:67:9d:a9:45: 90:f3:d1:d7:54:2c:c0:7f:4a:92:dc:65:6e:f7:c3: a4:8f:43:3e:f3:5c:31:0b:12:1b:e4:c0:f4:8d:ae: cb:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:9B:B7:28:16:F4:C8:BA:7E:D5:47:18:AD:A4:77:0D:E4:23:84:1B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152047.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.79.144.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:25:d7:32:f8:3a:d5:65:06:87:88:d5:e4:1a:14:13:1e:cc: 78:2d:82:ff:7e:ba:52:57:4d:d6:2f:39:2d:6c:90:42:d6:e7: 32:98:14:24:30:32:c3:30:5b:c1:9c:8a:77:bc:d5:2c:f5:ff: cc:88:cf:31:94:ec:38:d8:2b:77:8f:c8:db:34:01:ff:10:9a: 39:94:99:f0:26:73:dd:74:cb:ab:62:b9:67:fc:d6:88:3c:8e: 2b:40:bd:93:79:fb:fb:3f:26:9e:5a:1e:23:92:06:fb:72:54: ad:2d:a4:57:8e:2f:b6:70:f3:b5:cc:7a:df:ce:e8:d9:76:39: bc:f6:97:68:39:a4:1e:f1:09:66:b3:de:1d:24:77:c6:4e:0d: c9:18:cb:6b:87:4f:7e:ab:af:8d:5a:33:c4:de:4f:cd:25:f3: 83:c8:7d:0e:3c:8c:92:15:f1:59:99:97:ba:79:5d:ea:83:9a: 82:61:ee:0d:39:d1:1f:57:84:82:99:8f:8a:27:fe:cc:7b:fd: b6:ae:19:2c:a9:83:a8:28:03:98:b6:9e:f4:81:1d:ab:d3:b5: bb:37:31:3a:bc:ba:ef:3f:62:e3:67:85:c8:42:3f:70:18:12: ac:75:4a:99:95:02:61:64:e0:f0:9f:92:3a:8c:75:96:54:27: 2c:48:ee:a9 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUFNL9qEKAr/TMIFmPK1K6Y3i266QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExODAzMDkxNVoX DTI1MDExNjAzMTQxNVowMzExMC8GA1UEAxMoQUY5QkI3MjgxNkY0QzhCQTdFRDU0 NzE4QURBNDc3MERFNDIzODQxQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALmI3xItrrm/Hx4/bM5mNvdsVNxsHgfANNTriuGPZDJIrW1Q208PaAIXJ8Z3 Db2dqZ2vYkQqxIcZlBeCPJ+FKnP4oenLw0o86hGNCaOY+AW+UROkWLO8jqHt4LcU N8MxaooJP72b9IoZ30g8ZmJLX/5eR0HWzZKsgHvVbetipFyE+vIkiShkwQUD7Faq tPrmq9fePM3qw8z/crRsrTiG4zHwzGQKgUo6bpWTODVorqc5UaS0a85Ve1WMsaLO gIORjbpuypHyfnY4nXOftDGxB83hsxvEVfaJKoVYJVFnnalFkPPR11QswH9Kktxl bvfDpI9DPvNcMQsSG+TA9I2uy5cCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSvm7co FvTIun7VRxitpHcN5COEGzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjA0Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEANJPkDANBgkqhkiG9w0BAQsFAAOCAQEAGyXXMvg61WUGh4jV5BoU Ex7MeC2C/366UldN1i85LWyQQtbnMpgUJDAywzBbwZyKd7zVLPX/zIjPMZTsONgr d4/I2zQB/xCaOZSZ8CZz3XTLq2K5Z/zWiDyOK0C9k3n7+z8mnloeI5IG+3JUrS2k V44vtnDztcx6387o2XY5vPaXaDmkHvEJZrPeHSR3xk4NyRjLa4dPfquvjVozxN5P zSXzg8h9DjyMkhXxWZmXunld6oOagmHuDTnRH1eEgpmPiif+zHv9tq4ZLKmDqCgD mLae9IEdq9O1uzcxOry67z9i42eFyEI/cBgSrHVKmZUCYWTg8J+SOox1llQnLEju qQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org