$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153554.roa File: AS153554.roa (raw, json) Hash identifier: Amhx0s0C7QejBHKjKuDaGegRtJEiuWnTM5KJY+qrYRE= Subject key identifier: E2:AC:2E:A0:E6:8C:97:6A:24:76:75:27:EB:BB:E8:F1:C7:76:AA:AB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 27E9CAEE93B1C1E84A10588CE11FB6D81839DFA4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153554.roa Signing time: Mon 03 Mar 2025 00:13:52 +0000 ROA not before: Mon 03 Mar 2025 00:08:52 +0000 ROA not after: Mon 02 Mar 2026 00:13:52 +0000 asID: 153554 IP address blocks: 2001:df4:e3c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:e9:ca:ee:93:b1:c1:e8:4a:10:58:8c:e1:1f:b6:d8:18:39:df:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Mar 3 00:08:52 2025 GMT Not After : Mar 2 00:13:52 2026 GMT Subject: CN=E2AC2EA0E68C976A24767527EBBBE8F1C776AAAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:14:05:84:4f:22:d6:9c:ca:9c:40:bc:9e:dc: c2:29:5d:41:44:2c:11:88:50:a2:fb:65:c9:ba:11: 68:a4:b4:32:44:d6:14:35:b2:68:f9:a1:a1:92:43: ed:c0:02:ff:00:77:40:5f:0f:4b:eb:cb:8b:28:0c: 1e:2b:f9:3d:15:05:19:9e:0d:a9:03:62:36:a2:0a: ed:cb:02:78:c7:dd:61:b8:24:26:23:51:83:6d:ae: 9f:5f:42:7d:e8:74:6e:f1:1e:78:9a:56:27:f1:19: c5:f1:87:24:a2:39:4b:76:71:8e:10:19:de:4d:fb: 00:0d:e6:6e:72:31:e2:8d:d4:80:ca:8b:b0:bf:26: 69:0e:27:83:1a:94:50:7c:6d:e7:e8:5f:f8:c3:b2: d1:4e:3a:a3:59:9b:f1:b0:9f:8f:11:94:15:de:86: f8:df:cb:f1:6a:3a:5f:5b:e7:3f:0d:0c:a0:40:0e: e6:2d:0a:27:89:09:20:5d:76:d6:0b:8b:32:0a:73: d7:c3:42:a6:5f:0f:11:62:45:d4:c8:f6:27:ae:ef: 1e:d6:0d:c9:bd:c3:9e:79:06:a6:7d:23:03:1a:49: f1:52:ec:9a:2a:10:1b:e2:44:8c:26:fc:51:12:98: b6:22:5d:d2:66:10:98:3f:eb:f1:b9:15:59:b9:63: af:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:AC:2E:A0:E6:8C:97:6A:24:76:75:27:EB:BB:E8:F1:C7:76:AA:AB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153554.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:e3c0::/48 Signature Algorithm: sha256WithRSAEncryption 80:be:c8:87:cf:98:ab:73:70:83:1d:38:1b:4f:da:23:0e:6c: 38:ae:a6:2c:48:77:11:60:86:18:2e:a6:62:46:2e:8b:d9:30: 5b:35:e1:88:17:0e:60:41:3e:c3:05:8e:1f:13:71:e6:d0:3c: 4c:05:50:62:b1:b5:a0:68:85:e8:f5:89:62:71:71:69:a9:47: ce:62:b6:c1:bf:29:25:5d:26:75:1b:50:95:23:21:bc:30:8d: cf:ac:3d:70:7a:c1:fc:82:a6:52:7f:53:ad:e2:17:09:eb:30: c5:36:ef:20:70:8c:48:e9:7d:ea:d2:e8:e0:a8:85:3b:96:db: 0f:5d:fa:aa:f7:e0:5e:81:79:67:94:eb:59:82:d6:59:32:fa: aa:5c:04:1e:6e:07:1c:04:d9:3f:1b:82:f1:25:ce:50:11:b4: e8:7f:05:89:38:f0:f1:3e:7f:7d:72:33:bc:43:2c:9a:85:f1: bd:60:f1:7d:b1:18:7b:79:7e:a4:5b:05:a8:33:ac:36:19:d0: 64:7f:3d:ed:e9:6f:26:7a:39:61:f2:c7:9a:7c:43:64:79:15: 6c:b8:0e:4e:b0:ba:20:ef:41:79:da:e2:a3:e4:70:b2:a3:54: 71:8f:e1:1a:3b:2c:8d:22:06:66:44:12:9d:52:b2:bc:16:76: c2:c8:fe:79 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUJ+nK7pOxwehKEFiM4R+22Bg536QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDMwMzAwMDg1MloX DTI2MDMwMjAwMTM1MlowMzExMC8GA1UEAxMoRTJBQzJFQTBFNjhDOTc2QTI0NzY3 NTI3RUJCQkU4RjFDNzc2QUFBQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJcUBYRPItacypxAvJ7cwildQUQsEYhQovtlyboRaKS0MkTWFDWyaPmhoZJD 7cAC/wB3QF8PS+vLiygMHiv5PRUFGZ4NqQNiNqIK7csCeMfdYbgkJiNRg22un19C feh0bvEeeJpWJ/EZxfGHJKI5S3ZxjhAZ3k37AA3mbnIx4o3UgMqLsL8maQ4ngxqU UHxt5+hf+MOy0U46o1mb8bCfjxGUFd6G+N/L8Wo6X1vnPw0MoEAO5i0KJ4kJIF12 1guLMgpz18NCpl8PEWJF1Mj2J67vHtYNyb3DnnkGpn0jAxpJ8VLsmioQG+JEjCb8 URKYtiJd0mYQmD/r8bkVWbljr+ECAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTirC6g 5oyXaiR2dSfru+jxx3aqqzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzU1NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfTjwDANBgkqhkiG9w0BAQsFAAOCAQEAgL7Ih8+Yq3Nwgx04 G0/aIw5sOK6mLEh3EWCGGC6mYkYui9kwWzXhiBcOYEE+wwWOHxNx5tA8TAVQYrG1 oGiF6PWJYnFxaalHzmK2wb8pJV0mdRtQlSMhvDCNz6w9cHrB/IKmUn9TreIXCesw xTbvIHCMSOl96tLo4KiFO5bbD136qvfgXoF5Z5TrWYLWWTL6qlwEHm4HHATZPxuC 8SXOUBG06H8FiTjw8T5/fXIzvEMsmoXxvWDxfbEYe3l+pFsFqDOsNhnQZH897elv Jno5YfLHmnxDZHkVbLgOTrC6IO9Bedrio+RwsqNUcY/hGjssjSIGZkQSnVKyvBZ2 wsj+eQ== -----END CERTIFICATE-----Generated at Sat Apr 5 06:23:55 2025 by rpki-client