$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152072.roa File: AS152072.roa (raw, json) Hash identifier: EQ2IKTwS5wrV+NWVOpuKwE0lALnxdhH5s15CEoZfYgg= Subject key identifier: E3:3B:2E:CB:C0:61:B9:CE:C2:92:8C:AC:FC:64:D7:F5:A5:C9:12:4B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 58E656358BD7B127959C4EE2C04633B46EF55619 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152072.roa Signing time: Tue 17 Dec 2024 03:00:00 +0000 ROA not before: Tue 17 Dec 2024 02:55:00 +0000 ROA not after: Tue 16 Dec 2025 03:00:00 +0000 asID: 152072 IP address blocks: 36.50.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:e6:56:35:8b:d7:b1:27:95:9c:4e:e2:c0:46:33:b4:6e:f5:56:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 17 02:55:00 2024 GMT Not After : Dec 16 03:00:00 2025 GMT Subject: CN=E33B2ECBC061B9CEC2928CACFC64D7F5A5C9124B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4a:46:21:e2:0d:d1:0e:d3:76:68:fc:c2:a2: ad:17:a9:06:b3:59:c7:8d:46:f4:89:93:3d:47:70: d2:16:7b:82:56:26:98:87:c6:49:d9:7f:bf:4b:ad: 5b:73:da:3a:71:74:67:13:60:da:ab:b2:a4:04:52: b1:aa:37:76:19:4f:57:cf:5c:41:db:98:9e:42:b0: 2e:70:a2:4c:58:56:79:d2:9d:6f:69:44:ce:6c:b9: c0:9e:c9:95:40:c6:c7:2d:f0:33:52:2e:22:e9:0e: 65:e3:1e:bc:af:71:09:6e:2f:1c:15:46:5e:f5:2e: 81:ae:97:f3:ad:ae:4b:4b:db:74:c9:64:fb:fa:14: 8b:52:4c:96:91:d0:c5:6e:41:eb:82:d4:ff:49:13: b3:c9:5b:5b:51:e7:d7:63:46:94:81:8f:f9:20:3a: 54:d4:da:cc:14:f9:8d:5a:ca:48:a5:b0:fd:6d:a9: 62:cd:b7:34:3b:82:0f:f2:d1:22:5a:c5:34:16:d0: 03:dd:a1:5d:44:6b:9c:5c:27:09:b5:2e:ba:9b:dd: c3:06:ea:7f:f3:56:72:28:bf:7f:85:f2:fa:08:a0: 36:64:50:1d:4b:b4:ed:53:44:fc:49:13:07:3e:f4: 52:33:be:b6:54:3e:45:cc:ed:a2:16:54:f6:ca:c3: 7f:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:3B:2E:CB:C0:61:B9:CE:C2:92:8C:AC:FC:64:D7:F5:A5:C9:12:4B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152072.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.218.0/24 Signature Algorithm: sha256WithRSAEncryption 01:4f:27:46:9c:95:b1:53:a3:62:44:aa:13:04:52:48:3d:ee: 60:1f:bf:32:1c:d5:6e:67:ce:2c:14:cf:64:d8:9f:a6:5a:af: 20:c0:9e:31:84:4b:37:e5:35:f5:8b:5d:75:46:76:72:af:43: fc:71:71:87:59:63:77:cb:7a:9c:fc:89:b5:71:7d:fd:80:2b: 61:1a:40:b8:73:34:a4:ff:29:8c:34:e1:86:94:60:26:6a:cb: e1:6c:06:fd:ab:16:64:04:7f:15:f8:29:39:1f:a0:bf:fd:77: eb:7c:fb:53:cc:38:74:f0:5b:64:98:be:c4:39:19:00:5e:e5: bb:b9:e3:31:3d:fb:be:5b:88:8c:87:3b:87:9b:e1:94:a9:fb: 06:4b:b9:f2:96:d6:46:ec:9e:5f:5e:52:20:a6:cf:8c:e8:22: 35:76:02:af:85:2a:72:bd:57:8f:24:b5:b6:df:ef:2a:9b:a5: 81:26:e7:66:66:83:bc:c1:26:8c:9a:19:ef:7a:4f:53:60:39: 3e:d1:f2:9e:1e:6a:ab:da:1f:99:9c:b6:10:2d:a8:05:05:0b: f5:5b:da:fb:f0:e3:95:29:8f:4c:23:17:71:55:ba:54:ad:37: d9:f7:41:4c:83:8b:e5:7c:b6:78:96:31:d3:93:e5:b4:59:c7: 64:4c:ad:e0 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUWOZWNYvXsSeVnE7iwEYztG71VhkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxNzAyNTUwMFoX DTI1MTIxNjAzMDAwMFowMzExMC8GA1UEAxMoRTMzQjJFQ0JDMDYxQjlDRUMyOTI4 Q0FDRkM2NEQ3RjVBNUM5MTI0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9KRiHiDdEO03Zo/MKirRepBrNZx41G9ImTPUdw0hZ7glYmmIfGSdl/v0ut W3PaOnF0ZxNg2quypARSsao3dhlPV89cQduYnkKwLnCiTFhWedKdb2lEzmy5wJ7J lUDGxy3wM1IuIukOZeMevK9xCW4vHBVGXvUuga6X862uS0vbdMlk+/oUi1JMlpHQ xW5B64LU/0kTs8lbW1Hn12NGlIGP+SA6VNTazBT5jVrKSKWw/W2pYs23NDuCD/LR IlrFNBbQA92hXURrnFwnCbUuupvdwwbqf/NWcii/f4Xy+gigNmRQHUu07VNE/EkT Bz70UjO+tlQ+RcztohZU9srDf90CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTjOy7L wGG5zsKSjKz8ZNf1pckSSzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjA3Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACQy2jANBgkqhkiG9w0BAQsFAAOCAQEAAU8nRpyVsVOjYkSqEwRS SD3uYB+/MhzVbmfOLBTPZNifplqvIMCeMYRLN+U19YtddUZ2cq9D/HFxh1ljd8t6 nPyJtXF9/YArYRpAuHM0pP8pjDThhpRgJmrL4WwG/asWZAR/FfgpOR+gv/1363z7 U8w4dPBbZJi+xDkZAF7lu7njMT37vluIjIc7h5vhlKn7Bku58pbWRuyeX15SIKbP jOgiNXYCr4Uqcr1XjyS1tt/vKpulgSbnZmaDvMEmjJoZ73pPU2A5PtHynh5qq9of mZy2EC2oBQUL9Vva+/DjlSmPTCMXcVW6VK032fdBTIOL5Xy2eJYx05PltFnHZEyt 4A== -----END CERTIFICATE-----Generated at Sat Apr 5 06:20:20 2025 by rpki-client