$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152070.roa File: AS152070.roa (raw, json) Hash identifier: WNh87yRieFYE5AyDIFjacSeziR+VyYWunZTSuNQAY2M= Subject key identifier: CC:BC:CA:BB:DB:CE:AA:7E:29:4A:DB:3A:D3:B6:65:6F:F0:5F:CC:9E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5F1B702010894E74681882ACCD672C57EDD9EE9C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152070.roa Signing time: Thu 04 Jan 2024 03:25:37 +0000 ROA not before: Thu 04 Jan 2024 03:20:37 +0000 ROA not after: Thu 02 Jan 2025 03:25:37 +0000 asID: 152070 IP address blocks: 36.50.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:1b:70:20:10:89:4e:74:68:18:82:ac:cd:67:2c:57:ed:d9:ee:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 4 03:20:37 2024 GMT Not After : Jan 2 03:25:37 2025 GMT Subject: CN=CCBCCABBDBCEAA7E294ADB3AD3B6656FF05FCC9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6a:b2:ee:f5:6f:7a:e4:d8:f0:72:45:90:11: 85:8e:bd:84:d1:8f:f7:79:4c:8d:05:cd:63:68:b1: bb:72:f1:e3:c4:54:f5:40:d8:e9:e8:e1:d8:94:22: a2:a6:5f:f7:8e:60:0d:9e:71:50:14:49:ec:a6:84: 0c:40:c7:90:1d:11:d9:f4:3f:67:66:17:72:bc:05: 6d:7d:12:5c:43:d9:e9:9d:fc:4c:3a:c9:97:10:e5: 14:72:de:38:09:6c:88:90:c3:1e:05:83:ae:01:6c: 62:34:80:b1:f1:5d:11:04:40:d3:4b:3d:f4:f7:c3: 8e:e7:f3:af:b5:32:24:91:d8:19:5b:1c:8b:5f:7c: e9:93:04:a8:c2:3a:23:34:19:1a:03:f0:5b:83:9d: 11:46:e9:6d:3f:36:78:08:de:33:14:f6:ee:26:00: 36:90:c2:90:42:55:24:22:ca:2e:f8:bd:58:a8:f0: 01:8b:ea:02:eb:b1:79:6b:f2:1c:4c:7a:53:42:d6: e6:6b:6f:4c:fc:27:a0:84:8a:de:55:6a:89:eb:1c: 96:28:3d:37:62:fe:f8:87:c4:2c:f6:f2:35:b2:e8: d1:24:3d:0c:4c:2f:43:a4:b9:9b:34:40:31:e8:5e: df:55:2a:59:44:49:42:42:7e:a8:50:27:dd:02:26: 13:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:BC:CA:BB:DB:CE:AA:7E:29:4A:DB:3A:D3:B6:65:6F:F0:5F:CC:9E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152070.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.219.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:ef:37:8a:4d:0e:0a:2f:2d:71:47:0c:0c:a7:ab:0b:82:3a: aa:66:5f:ad:4e:fb:66:1c:72:fb:be:58:47:3b:b3:2c:49:4b: 6f:bf:a3:18:a3:f1:9d:7f:4d:5e:4d:63:4e:c9:a4:f4:68:3b: 2b:ee:77:77:42:47:96:73:8e:dc:41:f9:ee:20:56:de:bb:09: e2:05:48:e4:b2:27:b6:9b:55:45:99:41:bd:be:ae:72:f7:ef: a0:80:b9:65:70:4e:24:7c:42:a6:bf:10:3d:d5:03:67:88:9b: 97:59:46:3e:37:ac:16:87:16:88:60:00:59:11:50:8b:8b:c7: 65:37:46:00:3b:76:d7:c2:46:e1:8c:74:2f:d8:3b:3e:f2:d6: e7:16:96:54:1f:13:a9:54:ff:19:6e:d3:90:5e:a0:9c:16:b6: ec:ce:ba:f2:20:93:1f:49:63:84:a5:b8:81:ab:17:d2:0a:a2: 82:0a:a7:91:62:e3:3b:b8:f8:d8:c2:b5:7d:99:2e:dd:9d:f2: 2b:14:09:b2:42:0e:4c:bd:f7:6a:c9:ce:c3:6c:cd:f9:77:e3: fd:a2:f4:12:e7:70:46:8e:6b:d2:3f:53:d4:0c:1f:3f:de:28: 7b:16:1c:fd:cb:58:97:c2:fc:74:ba:6b:90:82:3c:59:31:3d: 64:bf:ba:d3 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUXxtwIBCJTnRoGIKszWcsV+3Z7pwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwNDAzMjAzN1oX DTI1MDEwMjAzMjUzN1owMzExMC8GA1UEAxMoQ0NCQ0NBQkJEQkNFQUE3RTI5NEFE QjNBRDNCNjY1NkZGMDVGQ0M5RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK1qsu71b3rk2PByRZARhY69hNGP93lMjQXNY2ixu3Lx48RU9UDY6ejh2JQi oqZf945gDZ5xUBRJ7KaEDEDHkB0R2fQ/Z2YXcrwFbX0SXEPZ6Z38TDrJlxDlFHLe OAlsiJDDHgWDrgFsYjSAsfFdEQRA00s99PfDjufzr7UyJJHYGVsci1986ZMEqMI6 IzQZGgPwW4OdEUbpbT82eAjeMxT27iYANpDCkEJVJCLKLvi9WKjwAYvqAuuxeWvy HEx6U0LW5mtvTPwnoISK3lVqiesclig9N2L++IfELPbyNbLo0SQ9DEwvQ6S5mzRA Mehe31UqWURJQkJ+qFAn3QImEyMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTMvMq7 286qfilK2zrTtmVv8F/MnjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjA3MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACQy2zANBgkqhkiG9w0BAQsFAAOCAQEAP+83ik0OCi8tcUcMDKer C4I6qmZfrU77Zhxy+75YRzuzLElLb7+jGKPxnX9NXk1jTsmk9Gg7K+53d0JHlnOO 3EH57iBW3rsJ4gVI5LIntptVRZlBvb6ucvfvoIC5ZXBOJHxCpr8QPdUDZ4ibl1lG PjesFocWiGAAWRFQi4vHZTdGADt218JG4Yx0L9g7PvLW5xaWVB8TqVT/GW7TkF6g nBa27M668iCTH0ljhKW4gasX0gqiggqnkWLjO7j42MK1fZku3Z3yKxQJskIOTL33 asnOw2zN+Xfj/aL0EudwRo5r0j9T1AwfP94oexYc/ctYl8L8dLprkII8WTE9ZL+6 0w== -----END CERTIFICATE-----Generated at Wed May 8 17:45:23 2024 by rpki-client on console-ams.rpki-client.org