$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152056.roa File: AS152056.roa (raw, json) Hash identifier: D/yCGjDyUJGvvqaQH4JATDZEmTX0yCtbuvXIkG1+Tow= Subject key identifier: E4:CC:FA:0E:D1:85:82:58:85:8F:FC:85:E6:C1:7F:B9:5C:B5:83:8C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3DDA4CB39A65B3332A77350026DE008D1F9C9F66 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152056.roa Signing time: Mon 15 Jan 2024 07:55:51 +0000 ROA not before: Mon 15 Jan 2024 07:50:51 +0000 ROA not after: Mon 13 Jan 2025 07:55:51 +0000 asID: 152056 IP address blocks: 210.87.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:da:4c:b3:9a:65:b3:33:2a:77:35:00:26:de:00:8d:1f:9c:9f:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 15 07:50:51 2024 GMT Not After : Jan 13 07:55:51 2025 GMT Subject: CN=E4CCFA0ED1858258858FFC85E6C17FB95CB5838C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b4:00:da:32:98:bf:7a:2c:0c:25:3e:c3:c8: 54:32:91:3e:a0:76:75:a8:ff:ba:f9:b1:63:15:72: 91:d7:3b:50:31:62:35:1e:dd:56:af:b7:ed:1f:4d: 6e:1b:84:c8:99:26:bf:22:36:96:0b:42:aa:bd:6a: df:00:b0:31:d6:7e:f4:5a:ce:7e:46:9e:ca:81:09: a5:41:5d:18:ca:5e:b4:fd:8e:9d:74:3d:4d:71:5c: a8:73:89:c8:f2:df:66:24:d3:18:5a:92:f2:aa:cb: 2d:aa:0a:aa:b4:9e:c9:88:95:a0:9e:e0:00:aa:bd: ea:c1:4f:c0:5c:7f:6d:6d:78:b5:27:89:71:14:52: 5a:67:27:9c:04:54:bc:6f:b9:9b:37:63:6e:5a:58: 41:d2:24:42:7a:63:ab:e3:52:86:ab:5c:c7:55:fa: 8c:e6:0e:c9:f5:08:39:35:54:62:8c:ee:3c:6c:8f: 02:8d:4e:6d:69:b6:8d:0e:83:f2:53:f3:6a:97:0a: 38:18:68:12:bd:46:0c:b5:cb:9c:e9:75:27:b0:bf: 5a:ac:bc:06:74:8a:bf:00:54:ec:a1:b6:ab:5b:e7: 16:0b:e3:b4:68:94:12:f1:b9:58:0c:dc:e2:c3:05: df:d1:fd:03:0a:0d:34:4c:73:a7:63:9b:8c:45:4d: 5c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:CC:FA:0E:D1:85:82:58:85:8F:FC:85:E6:C1:7F:B9:5C:B5:83:8C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152056.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.87.120.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:fe:05:ce:e0:27:b8:09:9b:ad:fa:f9:19:80:3d:e3:50:d2: 06:0c:55:71:2e:27:00:8c:1e:bf:86:3c:f4:ff:15:aa:2e:8d: d9:99:e0:0e:7e:dc:b3:a2:85:06:e9:f8:92:ca:f4:71:86:af: 71:e8:5d:67:31:e1:50:78:25:98:1a:17:1c:37:52:25:0d:19: 07:b4:7f:8c:4b:4f:7c:de:47:33:29:36:bb:4d:3f:2b:15:7f: 8c:09:d1:4b:eb:b8:85:e1:a4:d2:61:82:f9:08:d5:f9:8f:c1: b8:84:c4:6a:59:91:c1:18:6b:5a:85:88:d8:93:d4:ee:1a:36: 42:f7:e9:d0:30:9c:ec:47:56:a0:0e:f7:51:01:0e:5b:e2:69: b3:05:ed:13:36:22:89:e0:71:58:fe:5a:4e:c6:58:12:73:b7: 0a:2c:47:21:49:c7:14:0a:94:ef:1e:2f:c7:06:0f:94:0f:69: bd:f3:d4:c0:a4:74:ee:6b:fe:55:da:93:b3:5b:15:38:2f:ea: df:aa:10:2c:a5:8d:e0:c5:b0:a4:79:a6:d6:b3:4b:e1:f7:bb: 78:6d:ac:96:8e:f0:20:10:85:fb:fc:b6:25:c8:f1:9c:73:a5: eb:34:4b:38:35:8a:c7:ce:09:61:19:11:ee:4e:63:6e:24:20: c5:6c:40:cb -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUPdpMs5plszMqdzUAJt4AjR+cn2YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExNTA3NTA1MVoX DTI1MDExMzA3NTU1MVowMzExMC8GA1UEAxMoRTRDQ0ZBMEVEMTg1ODI1ODg1OEZG Qzg1RTZDMTdGQjk1Q0I1ODM4QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMa0ANoymL96LAwlPsPIVDKRPqB2daj/uvmxYxVykdc7UDFiNR7dVq+37R9N bhuEyJkmvyI2lgtCqr1q3wCwMdZ+9FrOfkaeyoEJpUFdGMpetP2OnXQ9TXFcqHOJ yPLfZiTTGFqS8qrLLaoKqrSeyYiVoJ7gAKq96sFPwFx/bW14tSeJcRRSWmcnnARU vG+5mzdjblpYQdIkQnpjq+NShqtcx1X6jOYOyfUIOTVUYozuPGyPAo1ObWm2jQ6D 8lPzapcKOBhoEr1GDLXLnOl1J7C/Wqy8BnSKvwBU7KG2q1vnFgvjtGiUEvG5WAzc 4sMF39H9AwoNNExzp2ObjEVNXC0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTkzPoO 0YWCWIWP/IXmwX+5XLWDjDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjA1Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAdJXeDANBgkqhkiG9w0BAQsFAAOCAQEAP/4FzuAnuAmbrfr5GYA9 41DSBgxVcS4nAIwev4Y89P8Vqi6N2ZngDn7cs6KFBun4ksr0cYavcehdZzHhUHgl mBoXHDdSJQ0ZB7R/jEtPfN5HMyk2u00/KxV/jAnRS+u4heGk0mGC+QjV+Y/BuITE almRwRhrWoWI2JPU7ho2Qvfp0DCc7EdWoA73UQEOW+JpswXtEzYiieBxWP5aTsZY EnO3CixHIUnHFAqU7x4vxwYPlA9pvfPUwKR07mv+VdqTs1sVOC/q36oQLKWN4MWw pHmm1rNL4fe7eG2slo7wIBCF+/y2JcjxnHOl6zRLODWKx84JYRkR7k5jbiQgxWxA yw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org