$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152370.roa File: AS152370.roa (raw, json) Hash identifier: m1es6hGnv6gJKg+ULuKcipcwfLxCFb8af0YAui27UK8= Subject key identifier: A4:F6:30:EE:6D:F6:12:A0:B3:0A:17:E9:60:95:13:95:81:E7:86:04 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 259D2C46EFF738790D41F9419159CB50379782A2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152370.roa Signing time: Wed 12 Feb 2025 08:54:29 +0000 ROA not before: Wed 12 Feb 2025 08:49:29 +0000 ROA not after: Wed 11 Feb 2026 08:54:29 +0000 asID: 152370 IP address blocks: 103.215.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 00:45:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:9d:2c:46:ef:f7:38:79:0d:41:f9:41:91:59:cb:50:37:97:82:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 12 08:49:29 2025 GMT Not After : Feb 11 08:54:29 2026 GMT Subject: CN=A4F630EE6DF612A0B30A17E96095139581E78604 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:cd:a3:da:d1:70:90:e8:5f:8a:f8:34:9a:3d: 9b:e8:5b:93:d5:8c:c1:e9:85:c8:e5:1a:a7:d1:f4: 95:3a:d3:5b:ac:90:fb:67:7a:ff:a6:8b:6a:60:26: 84:f2:29:5c:00:e1:e1:73:d8:9d:57:6c:50:d4:f8: 44:ff:05:be:da:51:b9:db:5e:83:7b:5a:b4:a7:95: 73:0e:fe:bd:21:41:e6:9f:31:7e:a1:ec:c4:ec:06: 32:84:e8:c8:82:ed:f4:f7:b8:fc:a1:9c:b7:3f:20: d3:5e:6d:55:9e:4a:17:f2:a0:97:5f:04:cc:11:cd: a2:5c:29:02:fd:8b:16:ca:f2:9d:67:52:d5:b8:fe: fa:dc:1e:b0:37:49:88:12:39:01:75:64:19:59:9c: 07:b0:34:af:da:0f:39:a9:8f:c7:3c:3f:ec:28:9a: b2:20:7c:58:b4:a1:51:7d:51:dc:8e:cc:82:94:82: a0:00:ae:3d:f9:cf:c7:77:73:53:ce:cb:1b:4a:30: 5b:37:e4:c1:c7:1e:6d:4f:64:83:38:00:6f:a3:40: d0:8c:93:5c:81:a1:be:49:fb:70:80:1d:88:65:05: 06:87:0f:6e:bf:7f:b1:14:54:42:ed:54:b7:5c:3b: f1:55:58:ff:70:b2:73:0f:ab:65:10:52:48:06:12: 73:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:F6:30:EE:6D:F6:12:A0:B3:0A:17:E9:60:95:13:95:81:E7:86:04 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152370.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.215.70.0/24 Signature Algorithm: sha256WithRSAEncryption 33:57:30:a2:66:41:46:eb:84:b2:9e:23:27:54:b1:1a:e4:a0: 24:f3:c5:db:44:c2:89:d6:5f:d2:42:85:4d:58:36:ec:1e:14: 67:67:32:df:30:cd:7c:f4:53:f4:7a:98:76:05:47:f6:0b:7b: 00:1a:dd:a1:23:d4:0e:57:12:de:89:45:84:41:8c:c4:0b:75: cf:b9:47:bf:72:9d:2e:a2:c4:d3:be:af:e0:05:8f:dc:26:cc: 49:1b:95:9a:e8:7c:17:7a:46:4d:f4:38:d4:5b:5c:69:3a:d3: a6:f2:5f:ff:d9:ec:f7:48:39:e3:b8:02:f0:7e:47:fe:99:91: 19:97:68:61:64:d8:ee:c2:66:22:94:5f:a1:a2:b9:e8:1b:dc: 16:39:6a:a4:78:48:c1:92:35:6f:92:03:a3:ee:3b:26:34:1a: e2:22:90:37:d5:d3:0a:ff:fc:eb:4c:64:0a:0a:ec:94:60:27: 5e:94:b3:9d:56:65:68:6a:b8:82:bb:c2:5a:5b:1e:97:cc:c5: 4f:df:08:f9:17:88:2c:f1:44:28:c5:fb:ec:fb:63:9d:de:49: 5d:9d:58:e2:15:4b:cd:8d:3b:5a:3b:02:29:27:84:b7:19:66: b7:bd:3f:55:c7:bd:0f:21:68:8e:63:20:17:49:ef:d8:28:cf: db:24:b8:41 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUJZ0sRu/3OHkNQflBkVnLUDeXgqIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIxMjA4NDkyOVoX DTI2MDIxMTA4NTQyOVowMzExMC8GA1UEAxMoQTRGNjMwRUU2REY2MTJBMEIzMEEx N0U5NjA5NTEzOTU4MUU3ODYwNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAObNo9rRcJDoX4r4NJo9m+hbk9WMwemFyOUap9H0lTrTW6yQ+2d6/6aLamAm hPIpXADh4XPYnVdsUNT4RP8FvtpRudteg3tatKeVcw7+vSFB5p8xfqHsxOwGMoTo yILt9Pe4/KGctz8g015tVZ5KF/Kgl18EzBHNolwpAv2LFsrynWdS1bj++twesDdJ iBI5AXVkGVmcB7A0r9oPOamPxzw/7CiasiB8WLShUX1R3I7MgpSCoACuPfnPx3dz U87LG0owWzfkwccebU9kgzgAb6NA0IyTXIGhvkn7cIAdiGUFBocPbr9/sRRUQu1U t1w78VVY/3Cycw+rZRBSSAYScwkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSk9jDu bfYSoLMKF+lglROVgeeGBDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjM3MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfXRjANBgkqhkiG9w0BAQsFAAOCAQEAM1cwomZBRuuEsp4jJ1Sx GuSgJPPF20TCidZf0kKFTVg27B4UZ2cy3zDNfPRT9HqYdgVH9gt7ABrdoSPUDlcS 3olFhEGMxAt1z7lHv3KdLqLE076v4AWP3CbMSRuVmuh8F3pGTfQ41FtcaTrTpvJf /9ns90g547gC8H5H/pmRGZdoYWTY7sJmIpRfoaK56BvcFjlqpHhIwZI1b5IDo+47 JjQa4iKQN9XTCv/860xkCgrslGAnXpSznVZlaGq4grvCWlsel8zFT98I+ReILPFE KMX77Ptjnd5JXZ1Y4hVLzY07WjsCKSeEtxlmt70/Vce9DyFojmMgF0nv2CjP2yS4 QQ== -----END CERTIFICATE-----Generated at Wed Feb 19 21:56:55 2025 by rpki-client