$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152828.roa File: AS152828.roa (raw, json) Hash identifier: Q5XynFKfOSjwuTs3CQRiBD4QIPASpoJz74inBDsZJfs= Subject key identifier: 2B:5B:15:ED:3F:93:D2:C4:C2:67:A4:BE:FA:7B:E4:8B:64:18:99:97 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 38448F47554CB3D571BE8F10D28AD9517B5C30A0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152828.roa Signing time: Mon 08 Jul 2024 08:15:15 +0000 ROA not before: Mon 08 Jul 2024 08:10:15 +0000 ROA not after: Mon 07 Jul 2025 08:15:15 +0000 asID: 152828 IP address blocks: 103.182.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:44:8f:47:55:4c:b3:d5:71:be:8f:10:d2:8a:d9:51:7b:5c:30:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jul 8 08:10:15 2024 GMT Not After : Jul 7 08:15:15 2025 GMT Subject: CN=2B5B15ED3F93D2C4C267A4BEFA7BE48B64189997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4b:16:c1:44:14:b8:58:d1:f3:c1:b1:23:9a: ce:58:e1:57:bb:1c:de:3b:6d:25:05:00:fe:d2:12: ff:b9:77:31:a5:54:b1:27:08:4a:c2:dc:cb:e8:2a: 35:18:5e:7d:0c:2b:07:89:b9:7f:e6:b9:ed:f7:62: 81:0b:a9:aa:a9:47:42:22:9d:11:92:8f:13:e4:f0: be:0b:06:ab:f7:31:26:de:77:6e:34:a8:ee:5d:c3: 25:60:2e:80:76:25:4f:1c:cc:78:de:54:9c:87:90: ae:72:ec:9f:cb:2c:5e:62:a0:aa:74:32:75:58:b8: bb:07:fc:70:40:3e:a1:1b:da:e9:12:ca:f0:1a:18: ad:63:db:43:28:90:4c:03:3f:cd:d5:34:ab:0b:02: a1:fe:84:83:bd:aa:87:2c:ac:92:8a:79:d6:08:08: 00:a0:8f:d5:2c:ce:c6:b9:2c:fc:51:2b:6d:a5:07: 3a:38:22:2d:03:ee:59:fd:85:cc:eb:85:ac:68:5f: b3:7b:5d:9f:f7:a2:91:1a:04:ce:0d:59:23:7c:83: e8:f0:49:e3:c4:85:0f:6a:ee:07:e7:e6:8b:41:03: 01:f0:aa:dc:0a:18:3e:81:fd:23:1c:4b:f7:bf:75: 7c:75:51:4d:b2:d4:0a:56:7e:ba:db:0a:04:cb:03: fc:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:5B:15:ED:3F:93:D2:C4:C2:67:A4:BE:FA:7B:E4:8B:64:18:99:97 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152828.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.182.53.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:d7:a3:e3:4d:d2:39:aa:45:39:d1:33:2e:0b:a0:8f:cb:75: d8:06:2d:a6:d0:ae:51:ba:69:00:9c:d7:8a:03:85:85:a7:6b: 27:01:39:09:fc:11:6e:93:be:b6:c3:c2:70:bb:50:ee:54:af: ef:88:90:27:2b:48:ca:c9:22:db:f1:c7:4e:b3:dd:c9:ee:d8: 31:b7:1c:12:16:d1:a8:43:23:67:4e:bd:a6:45:82:d9:70:cb: 93:e4:66:14:86:4f:80:64:f0:20:49:45:88:7f:9b:5c:ef:ce: af:0c:09:d4:82:ec:c9:42:b2:80:90:76:a3:5b:d6:9b:f8:74: d6:ad:1a:ba:34:cf:6d:87:2c:5b:3f:bc:48:a0:06:5f:93:e8: 5d:b7:bb:3c:90:03:33:01:c2:92:ae:68:02:8f:43:ef:93:5b: 53:f9:c5:3b:f1:2e:40:c9:43:ef:62:23:b4:82:4f:35:08:eb: f0:dd:e7:07:c5:70:3a:3b:f3:e0:be:bb:8f:a8:95:df:0e:0d: 46:27:93:9b:65:66:d1:c3:43:2b:28:de:85:0b:d6:37:31:5d: 7f:e8:b8:ce:f5:86:63:fb:3c:7a:35:eb:9f:06:2d:da:d6:02: ae:36:47:32:a6:9d:79:91:d9:05:f1:c8:cb:34:f8:a1:ca:9d: f5:1f:69:60 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOESPR1VMs9Vxvo8Q0orZUXtcMKAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwODA4MTAxNVoX DTI1MDcwNzA4MTUxNVowMzExMC8GA1UEAxMoMkI1QjE1RUQzRjkzRDJDNEMyNjdB NEJFRkE3QkU0OEI2NDE4OTk5NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL5LFsFEFLhY0fPBsSOazljhV7sc3jttJQUA/tIS/7l3MaVUsScISsLcy+gq NRhefQwrB4m5f+a57fdigQupqqlHQiKdEZKPE+TwvgsGq/cxJt53bjSo7l3DJWAu gHYlTxzMeN5UnIeQrnLsn8ssXmKgqnQydVi4uwf8cEA+oRva6RLK8BoYrWPbQyiQ TAM/zdU0qwsCof6Eg72qhyyskop51ggIAKCP1SzOxrks/FErbaUHOjgiLQPuWf2F zOuFrGhfs3tdn/eikRoEzg1ZI3yD6PBJ48SFD2ruB+fmi0EDAfCq3AoYPoH9IxxL 9791fHVRTbLUClZ+utsKBMsD/CkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQrWxXt P5PSxMJnpL76e+SLZBiZlzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjgyOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGe2NTANBgkqhkiG9w0BAQsFAAOCAQEAPNej403SOapFOdEzLgug j8t12AYtptCuUbppAJzXigOFhadrJwE5CfwRbpO+tsPCcLtQ7lSv74iQJytIyski 2/HHTrPdye7YMbccEhbRqEMjZ069pkWC2XDLk+RmFIZPgGTwIElFiH+bXO/OrwwJ 1ILsyUKygJB2o1vWm/h01q0aujTPbYcsWz+8SKAGX5PoXbe7PJADMwHCkq5oAo9D 75NbU/nFO/EuQMlD72IjtIJPNQjr8N3nB8VwOjvz4L67j6iV3w4NRieTm2Vm0cND KyjehQvWNzFdf+i4zvWGY/s8ejXrnwYt2tYCrjZHMqadeZHZBfHIyzT4ocqd9R9p YA== -----END CERTIFICATE-----Generated at Sun Feb 16 20:36:28 2025 by rpki-client