$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152053.roa File: AS152053.roa (raw, json) Hash identifier: MCk8vbx3hopojVoRHjwMySJ+0gTiBUriAGfJEWued6s= Subject key identifier: C7:A2:56:AF:1A:49:49:EF:30:5F:AE:EA:95:BC:F4:E0:D2:A2:80:3D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 19589D061240CEBF1535B5E35579E40CE8B275EB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152053.roa Signing time: Tue 16 Apr 2024 03:59:38 +0000 ROA not before: Tue 16 Apr 2024 03:54:38 +0000 ROA not after: Tue 15 Apr 2025 03:59:38 +0000 asID: 152053 IP address blocks: 210.87.112.0/23 maxlen: 24 2001:df3:8f40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:58:9d:06:12:40:ce:bf:15:35:b5:e3:55:79:e4:0c:e8:b2:75:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 16 03:54:38 2024 GMT Not After : Apr 15 03:59:38 2025 GMT Subject: CN=C7A256AF1A4949EF305FAEEA95BCF4E0D2A2803D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:c7:74:8c:4e:4f:f5:ec:7d:84:4a:53:6a:ca: 28:43:bc:7e:9a:20:21:6b:9c:ca:00:c8:af:92:14: 8b:c1:a9:3c:60:4c:40:9a:d4:1e:f9:3b:0a:3a:68: f8:49:c7:7f:5d:a7:4f:d6:62:55:55:48:f6:ad:ab: bc:08:08:97:d3:cf:a5:ec:be:ac:b9:7c:17:51:b0: bf:de:1b:f8:94:f4:12:28:e0:ac:99:a2:a5:5f:f7: ff:2f:4a:21:18:c1:d9:f4:aa:85:97:81:36:46:8b: d1:55:be:d1:1a:ae:74:18:30:4f:0c:fa:61:55:55: 2a:9e:68:91:31:e9:20:8a:9b:77:13:19:e6:7f:7b: 22:a2:6e:68:f0:b9:f6:72:60:0e:13:58:b0:93:07: 7d:bd:bc:3a:fd:0e:d7:74:60:0f:87:b5:de:94:28: 76:a1:7d:25:16:49:d4:44:f5:6c:24:54:41:f7:50: ca:26:4d:68:f6:0f:84:f4:b2:95:93:f8:60:7c:7e: e9:20:9a:2e:50:5c:91:22:25:8a:6c:80:c0:f3:e0: fc:13:18:3c:b0:b5:3e:a6:fb:a5:0e:d4:c3:f9:18: 39:33:54:b8:2f:9a:c7:16:cc:08:e0:48:56:45:37: f0:a6:db:23:7a:b7:29:4e:d2:40:ab:6e:15:12:d6: aa:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:A2:56:AF:1A:49:49:EF:30:5F:AE:EA:95:BC:F4:E0:D2:A2:80:3D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152053.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.87.112.0/23 IPv6: 2001:df3:8f40::/48 Signature Algorithm: sha256WithRSAEncryption 57:6c:53:d5:f1:f6:64:72:92:c2:86:f4:b6:3b:8f:5d:76:50: 33:b7:df:2a:11:5c:0d:5d:e4:f7:b3:eb:98:33:d8:2d:06:ee: 18:05:73:2a:14:44:92:4d:f3:7c:4d:dc:1a:82:36:e2:e2:93: 08:8b:7f:84:5e:48:e8:24:9c:42:cb:06:3c:4f:cc:d3:08:cc: 85:13:48:20:7b:e2:f0:3e:f3:54:e6:ef:73:90:b3:6e:67:38: 68:f1:3c:23:db:7f:31:0a:e5:59:5c:a6:30:6b:6b:05:6d:1a: cc:69:7b:37:91:14:58:a9:72:73:5f:5d:c2:0c:ae:34:1f:8a: 41:25:62:e6:df:b4:52:0e:22:89:7c:5c:07:df:c8:b9:3b:7c: 87:32:78:b1:d6:81:40:b7:e4:6c:de:0c:e4:44:06:88:44:79: 39:b8:7a:4d:55:58:cd:03:8e:b5:1a:3d:0d:0d:a0:f6:f9:4b: 80:c4:4d:f4:e4:aa:d5:ea:a0:f1:fb:07:e3:0c:32:d6:98:75: f2:af:96:25:73:ce:56:21:f5:cf:1f:a4:bd:a9:84:25:ff:f2: 7a:72:31:40:d1:e7:7e:2d:77:39:dd:3d:17:74:6e:42:80:2d: de:7d:29:ef:8b:db:59:0e:d4:da:b2:0d:c1:1c:de:1d:16:a1: 61:34:9c:dc -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUGVidBhJAzr8VNbXjVXnkDOiydeswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQxNjAzNTQzOFoX DTI1MDQxNTAzNTkzOFowMzExMC8GA1UEAxMoQzdBMjU2QUYxQTQ5NDlFRjMwNUZB RUVBOTVCQ0Y0RTBEMkEyODAzRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOzHdIxOT/XsfYRKU2rKKEO8fpogIWucygDIr5IUi8GpPGBMQJrUHvk7Cjpo +EnHf12nT9ZiVVVI9q2rvAgIl9PPpey+rLl8F1Gwv94b+JT0EijgrJmipV/3/y9K IRjB2fSqhZeBNkaL0VW+0RqudBgwTwz6YVVVKp5okTHpIIqbdxMZ5n97IqJuaPC5 9nJgDhNYsJMHfb28Ov0O13RgD4e13pQodqF9JRZJ1ET1bCRUQfdQyiZNaPYPhPSy lZP4YHx+6SCaLlBckSIlimyAwPPg/BMYPLC1Pqb7pQ7Uw/kYOTNUuC+axxbMCOBI VkU38KbbI3q3KU7SQKtuFRLWqqcCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBTHolav GklJ7zBfruqVvPTg0qKAPTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjA1My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAdJXcDAPBAIAAjAJAwcAIAEN849AMA0GCSqGSIb3DQEBCwUAA4IB AQBXbFPV8fZkcpLChvS2O49ddlAzt98qEVwNXeT3s+uYM9gtBu4YBXMqFESSTfN8 Tdwagjbi4pMIi3+EXkjoJJxCywY8T8zTCMyFE0gge+LwPvNU5u9zkLNuZzho8Twj 238xCuVZXKYwa2sFbRrMaXs3kRRYqXJzX13CDK40H4pBJWLm37RSDiKJfFwH38i5 O3yHMnix1oFAt+Rs3gzkRAaIRHk5uHpNVVjNA461Gj0NDaD2+UuAxE305KrV6qDx +wfjDDLWmHXyr5Ylc85WIfXPH6S9qYQl//J6cjFA0ed+LXc53T0XdG5CgC3efSnv i9tZDtTasg3BHN4dFqFhNJzc -----END CERTIFICATE-----Generated at Wed May 8 17:45:23 2024 by rpki-client on console-ams.rpki-client.org