$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153639.roa File: AS153639.roa (raw, json) Hash identifier: MyApNbLSldgQ+k9n0iToGSst+cyTcfT7PvXP8vnHkag= Subject key identifier: 7D:56:8C:3F:35:DD:F4:87:0C:75:73:70:24:1B:05:F7:48:FD:DE:64 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 661D81CF53A31730C2B78638608633278596ED1D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153639.roa Signing time: Mon 26 May 2025 04:44:36 +0000 ROA not before: Mon 26 May 2025 04:39:36 +0000 ROA not after: Mon 25 May 2026 04:44:36 +0000 asID: 153639 IP address blocks: 2001:df4:ebc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:1d:81:cf:53:a3:17:30:c2:b7:86:38:60:86:33:27:85:96:ed:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 26 04:39:36 2025 GMT Not After : May 25 04:44:36 2026 GMT Subject: CN=7D568C3F35DDF4870C757370241B05F748FDDE64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:39:ed:fc:2f:c0:ee:2f:7f:16:43:7c:56:d8: 59:bc:78:95:cf:ef:55:fc:48:56:9a:80:dd:e8:6d: 7b:0a:50:15:72:7f:68:e8:a8:5f:47:15:98:3f:ef: 7f:82:70:66:0c:d5:49:b1:60:fe:1b:43:c0:81:14: 97:5c:fa:09:c4:d2:e1:77:17:a9:fd:8e:c3:61:05: 4a:dc:9e:27:c5:d0:06:ef:71:46:82:b2:74:94:db: 4b:9e:4b:6b:c9:f8:e9:3c:37:28:27:ef:86:5c:a8: 7e:af:35:3a:d1:bb:2c:1f:d7:a4:73:4b:64:08:f2: 1c:fd:c1:b0:5a:4c:cc:47:d8:1c:23:bd:69:f9:d9: 61:a8:fd:0a:40:b5:37:f8:16:34:67:0a:b8:ca:68: 72:27:84:31:d9:4d:dd:c7:27:81:7b:43:9f:0d:b8: c6:74:c0:37:c2:c5:7d:44:28:b6:33:b7:ff:ac:0d: 0a:3c:00:68:95:31:e4:80:6c:f6:52:09:e7:6f:0a: 37:86:3f:7b:0d:fe:fe:67:2e:05:c8:7d:81:f8:37: ee:2b:40:31:61:b9:57:4b:40:e0:fc:b6:d7:6b:37: 1e:7d:03:c0:59:9f:a5:0f:1b:6e:3a:06:c6:df:e0: 25:d4:98:aa:e5:38:16:b4:20:9d:7f:44:22:79:e1: 6f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:56:8C:3F:35:DD:F4:87:0C:75:73:70:24:1B:05:F7:48:FD:DE:64 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:ebc0::/48 Signature Algorithm: sha256WithRSAEncryption 60:08:57:1a:c0:24:7a:53:a6:8d:6c:0b:c4:eb:96:3a:50:a6: 12:ce:8a:fb:15:1e:87:18:74:86:2e:d0:a4:03:d0:dc:6c:7f: 7a:a6:79:e3:91:99:4d:1f:5e:18:db:e0:28:f9:d7:97:d0:b7: 8b:c9:e2:a2:59:0b:b5:74:d0:96:01:d1:fd:0a:04:a7:f7:70: 60:7c:40:19:84:b0:ee:5d:b6:e8:a8:66:03:9c:62:04:f7:16: 71:e7:73:f6:0a:59:d5:c9:45:c7:1e:bf:70:ca:1b:eb:3d:1e: 4b:ad:b3:ab:9a:5b:64:b0:d6:24:a7:22:c4:3d:77:a0:9f:d7: ae:66:5c:4b:9f:32:9a:e6:50:8c:4c:da:c6:e2:cf:f2:0f:d3: e1:bd:95:ac:9c:6f:fc:97:1c:63:82:87:eb:2b:c2:90:0e:ff: b9:0c:ff:f3:5d:1c:e1:f6:23:c0:ce:06:d7:9c:53:8c:5d:13: 5e:8f:7e:c6:b9:c5:d7:be:98:49:98:6d:1b:cd:9f:3c:9e:9b: 2d:ef:48:06:09:3e:2f:72:3d:7b:83:52:4e:4d:60:a1:af:fb: 0d:00:f8:10:2a:1a:b6:c5:1e:84:dc:7e:ac:49:44:e3:23:29: cb:41:56:5e:f5:6e:4a:88:ae:f6:65:4a:3d:7a:9a:19:0c:4e: 44:d6:75:4a -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUZh2Bz1OjFzDCt4Y4YIYzJ4WW7R0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUyNjA0MzkzNloX DTI2MDUyNTA0NDQzNlowMzExMC8GA1UEAxMoN0Q1NjhDM0YzNURERjQ4NzBDNzU3 MzcwMjQxQjA1Rjc0OEZEREU2NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALE57fwvwO4vfxZDfFbYWbx4lc/vVfxIVpqA3ehtewpQFXJ/aOioX0cVmD/v f4JwZgzVSbFg/htDwIEUl1z6CcTS4XcXqf2Ow2EFStyeJ8XQBu9xRoKydJTbS55L a8n46Tw3KCfvhlyofq81OtG7LB/XpHNLZAjyHP3BsFpMzEfYHCO9afnZYaj9CkC1 N/gWNGcKuMpocieEMdlN3ccngXtDnw24xnTAN8LFfUQotjO3/6wNCjwAaJUx5IBs 9lIJ528KN4Y/ew3+/mcuBch9gfg37itAMWG5V0tA4Py212s3Hn0DwFmfpQ8bbjoG xt/gJdSYquU4FrQgnX9EInnhb4kCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBR9Vow/ Nd30hwx1c3AkGwX3SP3eZDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzYzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfTrwDANBgkqhkiG9w0BAQsFAAOCAQEAYAhXGsAkelOmjWwL xOuWOlCmEs6K+xUehxh0hi7QpAPQ3Gx/eqZ545GZTR9eGNvgKPnXl9C3i8niolkL tXTQlgHR/QoEp/dwYHxAGYSw7l226KhmA5xiBPcWcedz9gpZ1clFxx6/cMob6z0e S62zq5pbZLDWJKcixD13oJ/XrmZcS58ymuZQjEzaxuLP8g/T4b2VrJxv/JccY4KH 6yvCkA7/uQz/810c4fYjwM4G15xTjF0TXo9+xrnF176YSZhtG82fPJ6bLe9IBgk+ L3I9e4NSTk1goa/7DQD4ECoatsUehNx+rElE4yMpy0FWXvVuSoiu9mVKPXqaGQxO RNZ1Sg== -----END CERTIFICATE-----Generated at Tue Jun 3 23:14:09 2025 by rpki-client