$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152395.roa File: AS152395.roa (raw, json) Hash identifier: HzhROD2TM3OEa152RAMQvgII7RaiaO0pOyh+0Zk/uSA= Subject key identifier: 6E:DF:0C:0C:4F:E9:EE:4F:84:75:2C:56:90:E3:D7:83:52:5B:C2:77 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1699705817879C48033B4682FCAE0B01C0ACEC88 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152395.roa Signing time: Fri 15 Mar 2024 03:33:56 +0000 ROA not before: Fri 15 Mar 2024 03:28:56 +0000 ROA not after: Fri 14 Mar 2025 03:33:56 +0000 asID: 152395 IP address blocks: 2001:df3:84c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:99:70:58:17:87:9c:48:03:3b:46:82:fc:ae:0b:01:c0:ac:ec:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 15 03:28:56 2024 GMT Not After : Mar 14 03:33:56 2025 GMT Subject: CN=6EDF0C0C4FE9EE4F84752C5690E3D783525BC277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e2:9e:69:91:59:44:9a:f2:9e:ae:f3:24:23: dd:60:be:c3:f5:e1:ac:03:25:8b:3a:6c:9a:c4:de: 33:c6:b5:e6:7c:b2:92:66:51:b4:49:dc:7b:0f:29: 52:fd:a5:7f:60:ec:37:0a:a3:b3:07:5a:f3:91:40: 80:56:05:35:cb:c8:56:87:12:1f:bf:ff:df:51:e5: 11:8b:57:15:3c:2a:21:0f:b9:df:e9:18:f7:36:6e: 02:5a:02:43:9e:68:0e:3d:95:0f:e4:e0:9c:05:4a: 77:86:2d:f1:9d:19:f5:3a:06:72:c9:ed:04:ca:6c: c7:22:14:0e:51:89:36:ad:de:2f:df:c8:fe:50:7d: 0b:03:06:51:eb:48:ae:a8:b4:06:0f:9a:85:38:14: 6c:c9:6b:fe:e7:d1:d7:b5:b6:c9:9b:69:e6:2c:fe: f5:dd:e4:5f:cb:03:93:83:15:4e:fc:c0:5a:c0:e8: 2f:0f:ee:49:27:36:fb:0a:dd:00:fb:99:0b:f0:ee: cb:a0:6f:34:1a:70:9c:5b:f9:27:70:bd:63:99:78: 9f:99:2e:dd:10:00:9a:38:75:b1:bc:4b:11:f1:26: cd:ab:d5:0f:49:a1:dc:9c:88:a7:29:81:66:ab:58: 5d:b2:d3:09:4e:6d:9b:87:46:91:7d:3e:f2:37:a3: 48:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:DF:0C:0C:4F:E9:EE:4F:84:75:2C:56:90:E3:D7:83:52:5B:C2:77 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152395.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:84c0::/48 Signature Algorithm: sha256WithRSAEncryption 86:74:b5:d6:89:3e:75:ec:e8:c6:cd:bc:88:94:d6:39:a0:bd: 02:11:41:69:7c:63:63:b8:98:38:21:73:fd:29:20:ea:f4:56: 89:36:b2:21:5b:ae:0e:7a:fa:09:dd:0a:7e:1c:bb:ea:cb:b8: 3c:aa:98:6e:f3:cf:75:cf:5f:b0:a7:11:55:ac:9e:03:37:6d: 33:c9:c2:9c:c7:a6:6d:5e:a4:f6:50:45:7c:34:b1:08:c4:46: bd:41:da:0c:fe:97:18:9a:f4:dc:10:5c:f6:25:aa:77:bf:6e: 6d:ae:09:14:1b:59:75:51:26:5a:a0:41:87:e0:b1:55:c4:b7: 56:25:ee:d6:1e:ca:59:9d:95:f9:c9:1c:12:d9:6d:70:56:8b: 0a:f6:ba:41:b3:6c:2a:79:de:60:1d:e2:54:7b:4b:96:79:f7: 63:32:d6:2e:ac:ff:31:f2:d0:e5:1d:66:18:40:9b:5d:06:bc: 1e:5d:36:fb:b0:5a:7b:f2:b3:ce:99:d4:f3:4b:01:dc:1d:47: 65:9e:e2:cc:fb:f7:15:c1:c2:56:8b:92:97:21:26:62:fb:57: c0:c2:60:06:7e:0a:e8:65:87:9e:a8:a7:2b:8b:e1:8e:1d:5b: 07:07:13:b2:4a:17:00:9b:ae:55:5e:88:ad:a7:c1:91:3c:e9: 76:39:2a:73 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUFplwWBeHnEgDO0aC/K4LAcCs7IgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMxNTAzMjg1NloX DTI1MDMxNDAzMzM1NlowMzExMC8GA1UEAxMoNkVERjBDMEM0RkU5RUU0Rjg0NzUy QzU2OTBFM0Q3ODM1MjVCQzI3NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKLinmmRWUSa8p6u8yQj3WC+w/XhrAMlizpsmsTeM8a15nyykmZRtEncew8p Uv2lf2DsNwqjswda85FAgFYFNcvIVocSH7//31HlEYtXFTwqIQ+53+kY9zZuAloC Q55oDj2VD+TgnAVKd4Yt8Z0Z9ToGcsntBMpsxyIUDlGJNq3eL9/I/lB9CwMGUetI rqi0Bg+ahTgUbMlr/ufR17W2yZtp5iz+9d3kX8sDk4MVTvzAWsDoLw/uSSc2+wrd APuZC/Duy6BvNBpwnFv5J3C9Y5l4n5ku3RAAmjh1sbxLEfEmzavVD0mh3JyIpymB ZqtYXbLTCU5tm4dGkX0+8jejSAMCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRu3wwM T+nuT4R1LFaQ49eDUlvCdzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjM5NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfOEwDANBgkqhkiG9w0BAQsFAAOCAQEAhnS11ok+dezoxs28 iJTWOaC9AhFBaXxjY7iYOCFz/Skg6vRWiTayIVuuDnr6Cd0Kfhy76su4PKqYbvPP dc9fsKcRVayeAzdtM8nCnMembV6k9lBFfDSxCMRGvUHaDP6XGJr03BBc9iWqd79u ba4JFBtZdVEmWqBBh+CxVcS3ViXu1h7KWZ2V+ckcEtltcFaLCva6QbNsKnneYB3i VHtLlnn3YzLWLqz/MfLQ5R1mGECbXQa8Hl02+7Bae/KzzpnU80sB3B1HZZ7izPv3 FcHCVouSlyEmYvtXwMJgBn4K6GWHnqinK4vhjh1bBwcTskoXAJuuVV6IrafBkTzp djkqcw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:50 2024 by rpki-client on console-ams.rpki-client.org