$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153938.roa File: AS153938.roa (raw, json) Hash identifier: So9UGZfDxZEGgwo1MYUfrAAL8h5n4ChjyzRuVDVsuRM= Subject key identifier: B9:51:30:BA:40:A0:28:F5:8B:1F:E2:08:8D:FA:17:44:B5:0D:2E:AC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5470820EADA90E2E05BEE636C06F2CCAA7C02627 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153938.roa Signing time: Thu 05 Jun 2025 02:55:02 +0000 ROA not before: Thu 05 Jun 2025 02:50:02 +0000 ROA not after: Thu 04 Jun 2026 02:55:02 +0000 asID: 153938 IP address blocks: 2001:df5:94c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:70:82:0e:ad:a9:0e:2e:05:be:e6:36:c0:6f:2c:ca:a7:c0:26:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 5 02:50:02 2025 GMT Not After : Jun 4 02:55:02 2026 GMT Subject: CN=B95130BA40A028F58B1FE2088DFA1744B50D2EAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:bb:6a:3d:6a:03:08:9e:1e:69:1e:2d:e8:0d: 1f:f1:79:54:12:8b:10:aa:7f:31:94:24:1e:13:d9: f6:0b:80:91:ca:9d:5a:e4:dd:df:0e:82:47:91:e3: 08:3a:9e:f6:0e:01:8f:75:13:ae:de:14:a9:b9:36: a9:d7:03:80:d3:e5:2e:51:6c:1a:83:ac:b3:2f:c8: 36:9b:da:46:74:6f:a8:df:5f:11:80:da:47:2a:46: 93:f1:38:2c:61:74:e6:06:6f:71:67:21:24:a8:aa: eb:75:67:18:60:b1:73:f3:ab:bf:1d:f2:e2:29:85: 25:de:a2:5d:91:e1:42:c2:59:df:c0:d6:23:bb:30: b4:4d:6b:16:ab:2e:fa:6e:35:53:50:ee:79:37:11: f2:fa:c9:9b:2a:4e:da:7b:1c:96:03:40:41:8a:e4: 56:f7:05:80:cd:77:8c:c5:4a:0b:c6:7a:8a:47:79: db:26:b0:84:02:c4:b7:63:c5:a0:b7:fc:bd:4f:8e: 38:da:0e:be:ba:5e:47:17:f2:bf:24:f3:5f:ae:07: 85:e2:2b:75:59:11:d4:ba:d4:ab:99:00:09:d0:a6: 2f:1c:ee:30:35:96:01:95:bf:eb:58:56:50:bd:29: 69:b0:f7:46:ff:c6:b0:c1:74:60:b4:02:4a:3c:a3: 9b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:51:30:BA:40:A0:28:F5:8B:1F:E2:08:8D:FA:17:44:B5:0D:2E:AC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:94c0::/48 Signature Algorithm: sha256WithRSAEncryption 63:71:21:a5:a0:e9:34:e5:b5:a4:3e:8c:fc:7b:07:89:bc:df: 79:46:b6:c6:2b:4d:f1:1b:e0:56:ab:e9:5d:31:81:95:cc:74: 1e:9d:10:91:65:66:22:f2:a5:23:df:05:bf:f2:7a:79:14:e2: 26:e1:bc:3d:6c:33:16:73:e9:64:d6:2b:dd:82:6d:72:b2:95: ca:ca:71:32:f5:68:54:28:1d:bf:78:47:c2:70:cb:1b:20:99: 6f:93:fa:45:81:83:bf:3c:3f:79:55:78:1f:7d:9f:85:d8:03: 8e:f3:75:ab:6b:17:d4:14:ca:92:3a:2f:e8:cd:6e:a8:9a:e9: 13:5a:a6:35:34:95:cc:e0:11:1a:82:af:fe:f9:db:17:1c:21: 0a:b7:14:1b:18:0b:95:88:ed:06:38:5a:d1:20:2e:e8:0d:01: 56:ae:2b:68:0a:96:c3:1b:03:31:c1:65:39:83:c7:40:41:2a: ef:a3:95:5d:2f:44:d6:8b:ce:7e:0a:8b:b0:1f:7d:87:20:f2: 12:28:b7:49:da:dd:b9:3c:5e:aa:79:0f:ec:c3:11:c3:e3:34: 36:a8:b2:8f:d4:ec:69:93:17:7f:b5:77:4b:f1:7d:b7:af:ab: b1:9a:50:77:c5:6a:d8:f8:2b:27:5e:90:52:56:72:56:84:d9: 39:6c:57:68 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUVHCCDq2pDi4FvuY2wG8syqfAJicwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwNTAyNTAwMloX DTI2MDYwNDAyNTUwMlowMzExMC8GA1UEAxMoQjk1MTMwQkE0MEEwMjhGNThCMUZF MjA4OERGQTE3NDRCNTBEMkVBQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALu7aj1qAwieHmkeLegNH/F5VBKLEKp/MZQkHhPZ9guAkcqdWuTd3w6CR5Hj CDqe9g4Bj3UTrt4Uqbk2qdcDgNPlLlFsGoOssy/INpvaRnRvqN9fEYDaRypGk/E4 LGF05gZvcWchJKiq63VnGGCxc/Orvx3y4imFJd6iXZHhQsJZ38DWI7swtE1rFqsu +m41U1DueTcR8vrJmypO2nsclgNAQYrkVvcFgM13jMVKC8Z6ikd52yawhALEt2PF oLf8vU+OONoOvrpeRxfyvyTzX64HheIrdVkR1LrUq5kACdCmLxzuMDWWAZW/61hW UL0pabD3Rv/GsMF0YLQCSjyjm98CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBS5UTC6 QKAo9Ysf4giN+hdEtQ0urDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzkzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfWUwDANBgkqhkiG9w0BAQsFAAOCAQEAY3EhpaDpNOW1pD6M /HsHibzfeUa2xitN8RvgVqvpXTGBlcx0Hp0QkWVmIvKlI98Fv/J6eRTiJuG8PWwz FnPpZNYr3YJtcrKVyspxMvVoVCgdv3hHwnDLGyCZb5P6RYGDvzw/eVV4H32fhdgD jvN1q2sX1BTKkjov6M1uqJrpE1qmNTSVzOARGoKv/vnbFxwhCrcUGxgLlYjtBjha 0SAu6A0BVq4raAqWwxsDMcFlOYPHQEEq76OVXS9E1ovOfgqLsB99hyDyEii3Sdrd uTxeqnkP7MMRw+M0Nqiyj9TsaZMXf7V3S/F9t6+rsZpQd8Vq2PgrJ16QUlZyVoTZ OWxXaA== -----END CERTIFICATE-----Generated at Sat Jun 7 22:10:45 2025 by rpki-client