$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152061.roa File: AS152061.roa (raw, json) Hash identifier: hW/7v40edtVBDJT1FzBlX4lkiuDUHqkRkS/oMFgsXzc= Subject key identifier: E5:54:AF:36:35:8C:27:9E:27:14:B3:93:1D:87:30:E1:A7:24:26:59 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 511E29475BD893CEC7B7BF61F4C8CCCD6609DB65 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152061.roa Signing time: Fri 03 Jan 2025 09:00:00 +0000 ROA not before: Fri 03 Jan 2025 08:55:00 +0000 ROA not after: Fri 02 Jan 2026 09:00:00 +0000 asID: 152061 IP address blocks: 113.192.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:1e:29:47:5b:d8:93:ce:c7:b7:bf:61:f4:c8:cc:cd:66:09:db:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jan 3 08:55:00 2025 GMT Not After : Jan 2 09:00:00 2026 GMT Subject: CN=E554AF36358C279E2714B3931D8730E1A7242659 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:95:d7:94:fa:4c:a5:d8:62:f6:5b:96:23:56: e2:f6:b9:75:0f:85:fd:92:6a:85:21:49:e0:ad:e6: 4b:ee:54:42:81:6d:2f:9d:2c:1e:7c:24:9d:e8:f7: 7b:a6:34:91:49:a9:af:77:cc:d7:5e:64:55:e1:21: f4:e9:17:a7:56:a1:11:c6:1d:9f:b6:63:4d:a4:18: bb:1b:09:fa:d3:23:78:dc:26:99:1e:95:85:07:5f: 4c:5b:3a:46:d2:03:2f:49:7e:7a:f5:66:10:46:b4: 2e:7f:b8:a9:36:90:ef:ff:fa:14:d0:bf:29:fd:65: 6e:fa:f6:91:d9:42:46:51:f5:97:a4:32:a0:8f:6f: fe:8b:01:e9:a8:63:18:43:29:09:20:9d:81:c0:f7: 81:75:62:53:b7:46:13:a0:14:df:5f:ca:8c:48:29: e2:bd:3c:70:14:d0:b5:66:e0:ca:9f:cc:6c:00:20: 7d:20:27:fc:b0:61:0f:d2:b8:3a:e6:8e:76:69:0b: e6:00:e5:f0:68:e7:21:3f:d8:ef:2f:74:68:0c:74: c6:ed:a4:8b:6a:51:2a:43:fa:a5:da:a7:5c:cb:26: b2:cd:77:8b:6c:3d:f3:bf:2c:3d:1e:41:9c:de:b8: dc:0b:b2:d2:36:61:de:5e:8f:56:e1:55:ab:81:d8: 05:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:54:AF:36:35:8C:27:9E:27:14:B3:93:1D:87:30:E1:A7:24:26:59 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152061.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 113.192.2.0/24 Signature Algorithm: sha256WithRSAEncryption 99:f6:14:93:03:3b:45:a6:73:02:70:65:8d:0b:58:b5:af:8f: fd:4a:40:6f:61:98:96:5a:08:26:22:0e:b7:b2:e7:4b:ab:ff: 25:dd:a6:de:a9:15:39:28:2e:75:a7:27:35:41:b2:78:4b:c1: 80:6b:bc:4c:af:09:b0:ef:62:c6:72:0a:1c:5d:3b:1f:3b:f0: 9a:b7:dd:b3:de:75:c2:63:9e:f1:fc:b4:93:ef:b4:7b:f0:6b: c7:27:21:35:8b:43:0b:c3:83:99:f9:2f:82:c5:74:25:ef:18: f4:a4:f4:94:fc:f2:e4:bb:fe:38:db:12:71:fe:53:e0:27:a6: 0d:9f:5b:fb:bf:71:5c:c7:19:63:64:13:ff:e3:a0:34:d7:9d: d6:08:ee:f9:cc:78:aa:d2:7f:68:25:e7:72:c3:f7:79:39:d0: 9f:81:8f:72:8b:ec:c3:a6:a3:3b:2e:b1:7d:fa:75:61:c0:6c: 84:4e:22:b7:a6:f6:bc:2c:d9:59:c4:fc:3d:b1:85:af:e5:a0: 13:68:12:8c:fd:68:4a:b9:5f:17:8f:cf:d6:c7:af:97:38:07: 2e:c5:36:2f:41:1f:1b:f8:d8:d9:42:67:38:67:e7:84:25:f7: be:99:6c:29:f8:8a:75:fc:70:37:f0:14:7e:e8:23:eb:97:d2: cd:0e:16:5a -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUUR4pR1vYk87Ht79h9MjMzWYJ22UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDEwMzA4NTUwMFoX DTI2MDEwMjA5MDAwMFowMzExMC8GA1UEAxMoRTU1NEFGMzYzNThDMjc5RTI3MTRC MzkzMUQ4NzMwRTFBNzI0MjY1OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL+V15T6TKXYYvZbliNW4va5dQ+F/ZJqhSFJ4K3mS+5UQoFtL50sHnwknej3 e6Y0kUmpr3fM115kVeEh9OkXp1ahEcYdn7ZjTaQYuxsJ+tMjeNwmmR6VhQdfTFs6 RtIDL0l+evVmEEa0Ln+4qTaQ7//6FNC/Kf1lbvr2kdlCRlH1l6QyoI9v/osB6ahj GEMpCSCdgcD3gXViU7dGE6AU31/KjEgp4r08cBTQtWbgyp/MbAAgfSAn/LBhD9K4 OuaOdmkL5gDl8GjnIT/Y7y90aAx0xu2ki2pRKkP6pdqnXMsmss13i2w9878sPR5B nN643Auy0jZh3l6PVuFVq4HYBdECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTlVK82 NYwnnicUs5MdhzDhpyQmWTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjA2MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHHAAjANBgkqhkiG9w0BAQsFAAOCAQEAmfYUkwM7RaZzAnBljQtY ta+P/UpAb2GYlloIJiIOt7LnS6v/Jd2m3qkVOSgudacnNUGyeEvBgGu8TK8JsO9i xnIKHF07Hzvwmrfds951wmOe8fy0k++0e/BrxychNYtDC8ODmfkvgsV0Je8Y9KT0 lPzy5Lv+ONsScf5T4CemDZ9b+79xXMcZY2QT/+OgNNed1gju+cx4qtJ/aCXncsP3 eTnQn4GPcovsw6ajOy6xffp1YcBshE4it6b2vCzZWcT8PbGFr+WgE2gSjP1oSrlf F4/P1sevlzgHLsU2L0EfG/jY2UJnOGfnhCX3vplsKfiKdfxwN/AUfugj65fSzQ4W Wg== -----END CERTIFICATE-----Generated at Sat Apr 5 06:20:11 2025 by rpki-client