$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152056.roa File: AS152056.roa (raw, json) Hash identifier: I32sq5iWDBWyYrA3vhXjr8WtyVTdVV3maH7blJFdf+0= Subject key identifier: 81:CA:B7:81:0F:FB:56:34:E1:07:A6:15:A7:B1:E4:BB:B7:DB:CF:68 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3DD989EAC77867ECA8845B276B7FCE3FEBAD7CBE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152056.roa Signing time: Mon 16 Dec 2024 08:00:00 +0000 ROA not before: Mon 16 Dec 2024 07:55:00 +0000 ROA not after: Mon 15 Dec 2025 08:00:00 +0000 asID: 152056 IP address blocks: 210.87.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:d9:89:ea:c7:78:67:ec:a8:84:5b:27:6b:7f:ce:3f:eb:ad:7c:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 16 07:55:00 2024 GMT Not After : Dec 15 08:00:00 2025 GMT Subject: CN=81CAB7810FFB5634E107A615A7B1E4BBB7DBCF68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a8:8b:d3:75:72:74:8b:97:eb:c3:b5:34:d7: 48:c7:8b:ee:1b:1b:13:40:6f:a4:4c:f4:59:17:51: 6e:67:eb:71:62:9f:41:59:bf:10:c5:a5:cb:7f:4f: af:41:49:f1:b1:04:0b:d9:07:38:40:09:d1:df:95: 95:db:08:bf:fe:b2:66:bc:3d:1a:a1:9c:b5:f8:32: 21:f7:47:7a:e5:1a:e1:59:88:b6:79:14:49:ee:29: 9d:f7:da:d1:c3:a5:93:91:22:b2:f5:a4:e8:c4:5a: 29:7f:99:2f:fc:0e:4a:35:e8:52:4b:97:82:9b:35: 18:ef:45:5e:0b:82:4d:04:44:a2:05:66:86:69:68: a0:ee:ee:bb:e7:ad:6c:c2:ab:97:ab:48:3a:8d:96: 43:96:f5:1c:98:03:c5:d9:65:02:a4:c4:23:08:8e: 53:72:fa:72:d4:94:a9:86:91:6b:fe:5d:97:56:b8: a4:ea:c7:36:98:e4:21:20:b0:54:4c:bd:3a:c6:fa: 38:47:e9:80:28:a4:0c:21:3a:a9:fb:bb:45:db:6c: f7:6b:79:ef:2c:a7:0d:ad:d9:14:1b:a7:e0:b8:8b: 83:f6:35:6c:18:81:59:3f:c2:e2:eb:ac:85:65:73: d1:d2:c6:38:d7:1c:73:d5:60:8e:b1:e4:84:9c:6f: d6:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:CA:B7:81:0F:FB:56:34:E1:07:A6:15:A7:B1:E4:BB:B7:DB:CF:68 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152056.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.87.120.0/23 Signature Algorithm: sha256WithRSAEncryption 75:25:b1:49:69:7b:6f:b2:32:55:7b:9b:b7:4c:01:bb:1f:ef: a4:07:04:e6:d3:03:8d:a7:19:3c:55:98:d1:7c:78:a0:ef:2d: 24:10:38:b9:55:c9:4f:ad:ee:d3:a8:80:a8:2c:79:fa:a3:1a: e8:52:3e:bc:bc:fc:7c:75:10:cb:47:d0:9f:55:12:79:6c:ee: 11:65:b5:56:2b:fe:a8:53:a5:82:2b:9e:07:47:48:63:a3:74: 49:2a:84:81:e3:80:73:32:aa:a7:d7:22:72:c8:18:1c:4b:9c: 7c:c8:42:6a:27:5f:ff:3c:a3:e2:32:bb:bf:0e:36:be:93:69: d8:15:c5:be:19:ca:0b:0e:89:70:3b:2f:65:54:3a:03:75:c8: 9a:6e:4b:c9:73:a1:31:e7:e8:38:db:0d:e0:95:e1:d8:e8:97: be:c9:1b:75:48:4e:83:b4:72:82:49:8c:60:5d:d3:93:be:6e: 02:e4:c4:00:78:63:a5:33:73:4a:c9:84:6c:f4:cd:1b:f3:1e: 34:cc:22:e2:9f:80:59:f2:65:ae:20:0d:5f:0b:38:be:55:90: fc:ff:62:92:bf:5a:89:fb:bb:b5:d9:11:38:f2:d8:e1:d5:43: 17:bd:ed:90:5d:fa:9e:29:7d:3b:3d:53:7d:1d:20:38:34:16: a5:d5:33:4d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUPdmJ6sd4Z+yohFsna3/OP+utfL4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxNjA3NTUwMFoX DTI1MTIxNTA4MDAwMFowMzExMC8GA1UEAxMoODFDQUI3ODEwRkZCNTYzNEUxMDdB NjE1QTdCMUU0QkJCN0RCQ0Y2ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMGoi9N1cnSLl+vDtTTXSMeL7hsbE0BvpEz0WRdRbmfrcWKfQVm/EMWly39P r0FJ8bEEC9kHOEAJ0d+VldsIv/6yZrw9GqGctfgyIfdHeuUa4VmItnkUSe4pnffa 0cOlk5EisvWk6MRaKX+ZL/wOSjXoUkuXgps1GO9FXguCTQREogVmhmlooO7uu+et bMKrl6tIOo2WQ5b1HJgDxdllAqTEIwiOU3L6ctSUqYaRa/5dl1a4pOrHNpjkISCw VEy9Osb6OEfpgCikDCE6qfu7Rdts92t57yynDa3ZFBun4LiLg/Y1bBiBWT/C4uus hWVz0dLGONccc9VgjrHkhJxv1ucCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSByreB D/tWNOEHphWnseS7t9vPaDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjA1Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAdJXeDANBgkqhkiG9w0BAQsFAAOCAQEAdSWxSWl7b7IyVXubt0wB ux/vpAcE5tMDjacZPFWY0Xx4oO8tJBA4uVXJT63u06iAqCx5+qMa6FI+vLz8fHUQ y0fQn1USeWzuEWW1Viv+qFOlgiueB0dIY6N0SSqEgeOAczKqp9cicsgYHEucfMhC aidf/zyj4jK7vw42vpNp2BXFvhnKCw6JcDsvZVQ6A3XImm5LyXOhMefoONsN4JXh 2OiXvskbdUhOg7RygkmMYF3Tk75uAuTEAHhjpTNzSsmEbPTNG/MeNMwi4p+AWfJl riANXws4vlWQ/P9ikr9aifu7tdkROPLY4dVDF73tkF36nil9Oz1TfR0gODQWpdUz TQ== -----END CERTIFICATE-----Generated at Sat Apr 5 06:20:34 2025 by rpki-client