$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152072.roa File: AS152072.roa (raw, json) Hash identifier: EjidXHOuxrpqCLdbTx5wIiPqvyLgIw5ElezJbs2I8mY= Subject key identifier: CB:36:F8:6C:C9:56:79:8E:FF:01:C0:48:6D:26:13:17:5E:70:B3:E3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 54A4A613B244713C44D587D8A2B3D30A86748D66 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152072.roa Signing time: Tue 16 Jan 2024 02:21:16 +0000 ROA not before: Tue 16 Jan 2024 02:16:16 +0000 ROA not after: Tue 14 Jan 2025 02:21:16 +0000 asID: 152072 IP address blocks: 36.50.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:a4:a6:13:b2:44:71:3c:44:d5:87:d8:a2:b3:d3:0a:86:74:8d:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 16 02:16:16 2024 GMT Not After : Jan 14 02:21:16 2025 GMT Subject: CN=CB36F86CC956798EFF01C0486D2613175E70B3E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:31:48:8d:bb:37:e6:b8:5c:78:c5:8c:49:fc: a1:77:41:03:07:2f:dc:ce:7b:c2:29:bc:ee:66:69: 68:76:63:68:1e:8b:37:96:57:17:34:90:d1:30:e4: 27:62:26:4b:e4:d3:5e:e1:36:36:b0:1b:93:cb:90: c7:44:34:5e:b4:cf:66:91:35:db:6a:00:74:21:68: 2d:e9:27:aa:e8:83:c4:75:42:8e:6a:c4:e2:5f:a1: 56:97:4c:cb:c8:a0:f8:55:8c:d1:c1:71:4c:44:34: 1d:60:69:8a:b3:8a:92:84:11:3b:18:1f:a7:06:86: 24:e2:d1:a3:30:c7:ee:26:59:50:52:96:7b:33:5e: f7:69:ac:ce:47:1a:9e:4b:8e:5e:44:1e:b7:78:04: d8:e8:a5:b3:ee:ba:e5:ba:02:4e:5c:a3:97:bc:38: dd:7c:07:5e:81:87:e0:d5:5f:e2:a6:a0:c2:f8:92: b7:6c:26:d6:70:22:3b:2e:d9:e0:03:42:2d:6f:51: 18:ff:36:13:34:7e:98:8a:56:68:fd:4b:d3:24:13: 53:42:db:18:8e:9b:97:bd:fc:6a:e0:fb:09:4c:de: aa:07:fb:bb:5d:52:88:77:08:c1:40:90:7a:08:c0: c3:b6:47:71:88:1e:33:c8:4e:fe:b8:13:95:b9:a5: 65:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:36:F8:6C:C9:56:79:8E:FF:01:C0:48:6D:26:13:17:5E:70:B3:E3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152072.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.218.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:4b:a5:5e:40:dc:d9:ea:56:9f:9f:d2:81:31:88:c3:4a:fd: 68:28:af:c2:36:68:e4:c6:4a:f8:3b:de:88:61:f8:bc:96:07: 97:c0:94:5a:c0:21:6d:6f:cc:08:ec:e1:8a:f4:c5:74:ed:e9: c3:a9:cd:9d:10:06:2f:50:1c:c7:73:ab:b8:37:78:5f:21:e4: 0e:84:ef:c9:24:f6:c2:63:e1:1e:1b:bd:80:a4:bc:e9:0c:68: 07:9e:8e:ab:25:1e:4f:1e:78:1e:f5:bb:9c:6d:1c:ef:07:24: ce:e1:12:b8:24:76:b3:b0:cf:7e:9b:51:1c:8a:72:99:e1:4e: c3:83:cc:1f:f0:a0:d7:6e:dc:f3:bf:22:a7:6f:ad:74:36:85: 42:43:d6:22:48:d9:e7:3e:ab:ca:cb:26:59:be:c6:91:dc:d2: 59:82:f8:b9:35:bc:87:62:68:71:7f:56:de:b6:3b:1b:86:2c: 45:5b:5c:91:17:5e:ba:04:e5:a3:5a:5e:50:bd:74:53:9c:fb: a8:02:8d:d0:ad:25:e8:a2:72:9c:33:64:bb:8a:bc:3a:73:93: 65:9d:9d:3a:c6:73:ed:ca:dc:7b:f6:97:e5:aa:a5:81:b7:99: b1:1f:e8:7a:e2:31:17:fc:3d:5a:7b:2b:43:df:be:c6:14:f9: 1a:86:28:9c -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUVKSmE7JEcTxE1YfYorPTCoZ0jWYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExNjAyMTYxNloX DTI1MDExNDAyMjExNlowMzExMC8GA1UEAxMoQ0IzNkY4NkNDOTU2Nzk4RUZGMDFD MDQ4NkQyNjEzMTc1RTcwQjNFMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN8xSI27N+a4XHjFjEn8oXdBAwcv3M57wim87mZpaHZjaB6LN5ZXFzSQ0TDk J2ImS+TTXuE2NrAbk8uQx0Q0XrTPZpE122oAdCFoLeknquiDxHVCjmrE4l+hVpdM y8ig+FWM0cFxTEQ0HWBpirOKkoQROxgfpwaGJOLRozDH7iZZUFKWezNe92mszkca nkuOXkQet3gE2Oils+665boCTlyjl7w43XwHXoGH4NVf4qagwviSt2wm1nAiOy7Z 4ANCLW9RGP82EzR+mIpWaP1L0yQTU0LbGI6bl738auD7CUzeqgf7u11SiHcIwUCQ egjAw7ZHcYgeM8hO/rgTlbmlZd8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTLNvhs yVZ5jv8BwEhtJhMXXnCz4zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjA3Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACQy2jANBgkqhkiG9w0BAQsFAAOCAQEAOkulXkDc2epWn5/SgTGI w0r9aCivwjZo5MZK+DveiGH4vJYHl8CUWsAhbW/MCOzhivTFdO3pw6nNnRAGL1Ac x3OruDd4XyHkDoTvyST2wmPhHhu9gKS86QxoB56OqyUeTx54HvW7nG0c7wckzuES uCR2s7DPfptRHIpymeFOw4PMH/Cg127c878ip2+tdDaFQkPWIkjZ5z6ryssmWb7G kdzSWYL4uTW8h2JocX9W3rY7G4YsRVtckRdeugTlo1peUL10U5z7qAKN0K0l6KJy nDNku4q8OnOTZZ2dOsZz7crce/aX5aqlgbeZsR/oeuIxF/w9WnsrQ9++xhT5GoYo nA== -----END CERTIFICATE-----Generated at Wed May 8 10:06:55 2024 by rpki-client on console-ams.rpki-client.org