$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152769.roa File: AS152769.roa (raw, json) Hash identifier: BDEhwREP+dRjNBzlwJ/fLFiItbuLCQ+/kf0grxcKp48= Subject key identifier: DB:F6:E2:74:44:24:C4:AB:B0:45:04:9E:7F:31:51:90:2B:19:98:23 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3D564F1F04E04AD267DD8AC7E51C9201EF4DC8DB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152769.roa Signing time: Fri 14 Feb 2025 09:54:06 +0000 ROA not before: Fri 14 Feb 2025 09:49:06 +0000 ROA not after: Fri 13 Feb 2026 09:54:06 +0000 asID: 152769 IP address blocks: 117.18.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:56:4f:1f:04:e0:4a:d2:67:dd:8a:c7:e5:1c:92:01:ef:4d:c8:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 14 09:49:06 2025 GMT Not After : Feb 13 09:54:06 2026 GMT Subject: CN=DBF6E2744424C4ABB045049E7F3151902B199823 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f6:ea:6a:b1:a6:5b:6b:52:dd:20:a3:4f:86: 13:7a:75:28:9c:c3:e5:72:42:e8:7c:ae:55:17:c8: 27:ab:00:46:20:10:80:4b:22:70:40:e1:1e:df:aa: 45:ba:85:3f:5c:a3:a0:c6:46:3b:f1:06:7a:01:bc: 22:34:65:31:50:91:be:27:69:81:10:e5:88:80:de: df:11:99:0c:ee:da:a8:07:72:0d:89:43:6a:37:55: 4a:53:d1:29:0e:10:17:50:7c:ff:a1:7b:c8:4c:e5: 44:ad:53:da:30:01:a6:c3:7c:81:b9:66:69:3a:53: b5:8a:7f:ac:b0:e3:b5:04:b0:ea:98:c7:4e:79:43: 23:05:6a:7d:f3:c8:cc:97:2a:e8:f3:58:5f:84:1d: 0f:d7:fe:a3:3b:77:77:fe:d7:25:c5:a1:45:1c:f0: e6:c1:91:f9:db:74:f3:27:4b:c9:51:4d:40:9f:c7: c3:bf:36:23:d8:5e:83:b8:91:6b:31:06:43:8d:d6: 30:64:c7:90:da:a3:26:02:c4:8b:28:5b:e6:98:df: c3:66:de:75:c8:0c:60:7e:f7:0c:ea:0d:2f:12:f8: 35:b9:b7:74:be:0a:67:ce:70:d7:56:2c:b3:43:7b: 5d:d1:a3:1b:9d:4c:0e:28:d8:0d:5b:08:1e:3d:54: 5e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:F6:E2:74:44:24:C4:AB:B0:45:04:9E:7F:31:51:90:2B:19:98:23 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152769.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.18.16.0/22 Signature Algorithm: sha256WithRSAEncryption 66:40:ee:c7:c2:be:04:64:46:ee:d5:11:d4:b1:66:3f:03:89: 0e:83:5f:ee:ea:ec:73:23:24:ff:63:b5:4c:d4:6b:de:eb:54: c1:a0:a4:af:09:ef:99:c8:b1:73:db:5f:fa:74:19:c0:10:a9: dc:ce:7f:f4:81:aa:d3:d3:77:46:ae:8b:b3:d8:69:61:3b:c2: f8:80:26:ae:a3:80:de:eb:5f:0e:ad:09:2a:4e:90:dc:17:6d: d2:53:51:cc:d1:af:de:e6:84:cd:63:b5:f3:cc:0d:c8:b8:c8: ce:f9:7d:64:2d:7a:4c:24:03:15:1f:e0:14:57:fc:88:86:54: d2:44:0b:f0:36:07:bd:14:e5:a8:3a:41:4b:82:6c:b7:7b:a1: 20:16:18:fc:43:09:3e:9f:7b:b1:e8:54:55:b3:94:36:69:41: 0a:55:30:26:47:83:4d:5a:9d:80:59:30:e8:24:b5:be:a2:bd: 40:50:39:91:a7:9c:ef:26:3b:4b:be:b9:1a:e3:91:e3:ca:ee: d0:83:a3:30:9b:f8:ca:35:48:d1:9d:bf:6b:e4:f6:39:d2:b0: b9:44:67:52:29:8f:4f:90:57:f8:54:d2:bb:f1:f6:68:5a:9f: af:88:45:0d:da:f8:b0:e4:15:51:d1:92:7a:a6:ba:d0:f5:cd: 54:3b:ee:91 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUPVZPHwTgStJn3YrH5RySAe9NyNswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIxNDA5NDkwNloX DTI2MDIxMzA5NTQwNlowMzExMC8GA1UEAxMoREJGNkUyNzQ0NDI0QzRBQkIwNDUw NDlFN0YzMTUxOTAyQjE5OTgyMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANr26mqxpltrUt0go0+GE3p1KJzD5XJC6HyuVRfIJ6sARiAQgEsicEDhHt+q RbqFP1yjoMZGO/EGegG8IjRlMVCRvidpgRDliIDe3xGZDO7aqAdyDYlDajdVSlPR KQ4QF1B8/6F7yEzlRK1T2jABpsN8gblmaTpTtYp/rLDjtQSw6pjHTnlDIwVqffPI zJcq6PNYX4QdD9f+ozt3d/7XJcWhRRzw5sGR+dt08ydLyVFNQJ/Hw782I9heg7iR azEGQ43WMGTHkNqjJgLEiyhb5pjfw2bedcgMYH73DOoNLxL4Nbm3dL4KZ85w11Ys s0N7XdGjG51MDijYDVsIHj1UXg0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTb9uJ0 RCTEq7BFBJ5/MVGQKxmYIzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1Mjc2OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAnUSEDANBgkqhkiG9w0BAQsFAAOCAQEAZkDux8K+BGRG7tUR1LFm PwOJDoNf7urscyMk/2O1TNRr3utUwaCkrwnvmcixc9tf+nQZwBCp3M5/9IGq09N3 Rq6Ls9hpYTvC+IAmrqOA3utfDq0JKk6Q3Bdt0lNRzNGv3uaEzWO188wNyLjIzvl9 ZC16TCQDFR/gFFf8iIZU0kQL8DYHvRTlqDpBS4Jst3uhIBYY/EMJPp97sehUVbOU NmlBClUwJkeDTVqdgFkw6CS1vqK9QFA5kaec7yY7S765GuOR48ru0IOjMJv4yjVI 0Z2/a+T2OdKwuURnUimPT5BX+FTSu/H2aFqfr4hFDdr4sOQVUdGSeqa60PXNVDvu kQ== -----END CERTIFICATE-----Generated at Sat Apr 5 06:26:58 2025 by rpki-client