$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152363.roa File: AS152363.roa (raw, json) Hash identifier: l3OEGiqwMHWp2wh0w/nehV9ES/13X1UfVsW+46Ek0ow= Subject key identifier: 9B:7C:5E:25:E2:1B:70:8C:BC:85:93:C6:63:53:9F:82:4B:45:48:EF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3C815C176F9A90676DA55FBD4FBDE65EB5BD72E2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152363.roa Signing time: Thu 24 Oct 2024 03:15:06 +0000 ROA not before: Thu 24 Oct 2024 03:10:06 +0000 ROA not after: Thu 23 Oct 2025 03:15:06 +0000 asID: 152363 IP address blocks: 2001:df4:1140::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:81:5c:17:6f:9a:90:67:6d:a5:5f:bd:4f:bd:e6:5e:b5:bd:72:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 24 03:10:06 2024 GMT Not After : Oct 23 03:15:06 2025 GMT Subject: CN=9B7C5E25E21B708CBC8593C663539F824B4548EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:36:69:0b:f3:5d:a2:41:41:51:ed:e0:95:ff: 9d:0f:8c:4f:65:43:43:4c:6e:1e:2e:de:29:cc:c9: de:85:5a:b4:c6:06:f2:64:c5:1c:c4:0c:18:ce:73: b6:f2:ea:9e:e5:80:3f:f9:bf:11:9b:de:b9:c1:c8: 3b:61:9d:bd:f5:a7:20:90:c5:76:06:3c:84:c8:58: 84:dc:e0:75:e8:fa:8f:62:3f:da:2d:50:58:f1:60: 05:a9:20:e6:7e:bd:26:7a:fc:5e:65:a3:6c:cc:4e: b2:9e:ad:38:44:14:39:dd:d9:cc:43:8c:e8:1a:bb: 48:55:18:e3:76:73:d0:ef:b5:31:51:8d:19:98:79: 55:cb:88:1d:b3:da:e0:60:cf:25:09:0e:89:11:bb: b9:1c:e3:f0:0e:8c:f1:f3:6d:be:2c:cb:01:22:e7: 59:1f:e2:8c:39:53:d8:ad:f8:7e:68:1f:ca:cc:19: 52:21:85:de:5f:08:31:e6:12:ab:0a:31:96:29:cf: b6:bc:d2:ed:af:c2:c1:b4:02:73:1f:2c:93:17:0a: 4a:01:9a:42:fd:91:41:48:5b:5f:9a:ba:c1:ff:18: f0:f5:6a:71:bd:9f:cc:1b:00:fb:78:e4:ae:1e:71: be:9d:51:0a:ae:a3:40:99:d6:83:aa:84:48:26:b7: b8:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:7C:5E:25:E2:1B:70:8C:BC:85:93:C6:63:53:9F:82:4B:45:48:EF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152363.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:1140::/48 Signature Algorithm: sha256WithRSAEncryption 87:bb:51:bb:b9:0d:4c:9c:a6:72:47:60:49:38:50:42:87:84: b1:63:b4:83:da:29:d1:4f:b3:e7:2c:fd:56:ea:81:d5:f8:36: ad:1e:d5:0a:77:0e:1a:e4:ec:e8:55:1f:67:87:ec:6f:a6:06: ea:c3:04:0e:03:4b:d5:a9:34:27:98:5e:a0:ff:99:e4:b8:de: 8d:79:51:b3:7b:79:6a:b2:a4:bb:6a:f3:81:55:48:6d:79:a8: e5:f5:c7:f1:ca:c2:70:e1:55:13:2c:b7:69:39:a6:c9:26:cc: 2c:d6:6d:2b:97:b5:19:08:33:a8:cf:41:af:e5:41:7f:32:1b: 0e:59:e3:ce:ba:98:ba:ad:78:ea:90:59:af:ab:d8:90:51:83: 2d:10:80:68:09:60:44:6f:8e:6e:93:24:35:e2:5d:20:88:48: 1a:e1:86:94:b6:88:e4:c0:ad:f8:e7:24:05:76:b1:03:40:1a: ff:0d:62:08:ec:6e:e1:cd:ca:78:9a:8c:7b:b1:4c:6f:a3:ce: 14:d9:48:04:f7:fa:ec:5e:3b:3b:ab:17:4c:73:d0:9c:85:fe: 89:ea:22:b9:53:f0:80:1f:1d:ec:f0:b6:a6:ea:79:5c:46:5b: 69:25:08:f3:c9:86:96:0d:b2:6d:1b:b0:38:89:5e:c3:ff:c4: c3:51:4a:ea -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUPIFcF2+akGdtpV+9T73mXrW9cuIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAyNDAzMTAwNloX DTI1MTAyMzAzMTUwNlowMzExMC8GA1UEAxMoOUI3QzVFMjVFMjFCNzA4Q0JDODU5 M0M2NjM1MzlGODI0QjQ1NDhFRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMk2aQvzXaJBQVHt4JX/nQ+MT2VDQ0xuHi7eKczJ3oVatMYG8mTFHMQMGM5z tvLqnuWAP/m/EZveucHIO2GdvfWnIJDFdgY8hMhYhNzgdej6j2I/2i1QWPFgBakg 5n69Jnr8XmWjbMxOsp6tOEQUOd3ZzEOM6Bq7SFUY43Zz0O+1MVGNGZh5VcuIHbPa 4GDPJQkOiRG7uRzj8A6M8fNtvizLASLnWR/ijDlT2K34fmgfyswZUiGF3l8IMeYS qwoxlinPtrzS7a/CwbQCcx8skxcKSgGaQv2RQUhbX5q6wf8Y8PVqcb2fzBsA+3jk rh5xvp1RCq6jQJnWg6qESCa3uJMCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSbfF4l 4htwjLyFk8ZjU5+CS0VI7zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjM2My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfQRQDANBgkqhkiG9w0BAQsFAAOCAQEAh7tRu7kNTJymckdg SThQQoeEsWO0g9op0U+z5yz9VuqB1fg2rR7VCncOGuTs6FUfZ4fsb6YG6sMEDgNL 1ak0J5heoP+Z5LjejXlRs3t5arKku2rzgVVIbXmo5fXH8crCcOFVEyy3aTmmySbM LNZtK5e1GQgzqM9Br+VBfzIbDlnjzrqYuq146pBZr6vYkFGDLRCAaAlgRG+ObpMk NeJdIIhIGuGGlLaI5MCt+OckBXaxA0Aa/w1iCOxu4c3KeJqMe7FMb6POFNlIBPf6 7F47O6sXTHPQnIX+ieoiuVPwgB8d7PC2pup5XEZbaSUI88mGlg2ybRuwOIlew//E w1FK6g== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:50 2024 by rpki-client on console-ams.rpki-client.org