$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS18156.roa File: AS18156.roa (raw, json) Hash identifier: LF2ataLdbfXz7Q4g0ZtOPGn7AdV7uq07PfTQWXbyehg= Subject key identifier: 3A:B0:5D:06:E4:2C:15:44:92:CD:03:2B:2D:2D:8A:6F:12:33:02:4A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3C80EA5F0660F257628797C9AB144BD485F9B296 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS18156.roa Signing time: Wed 05 Feb 2025 03:00:00 +0000 ROA not before: Wed 05 Feb 2025 02:55:00 +0000 ROA not after: Wed 04 Feb 2026 03:00:00 +0000 asID: 18156 IP address blocks: 202.147.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:80:ea:5f:06:60:f2:57:62:87:97:c9:ab:14:4b:d4:85:f9:b2:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 5 02:55:00 2025 GMT Not After : Feb 4 03:00:00 2026 GMT Subject: CN=3AB05D06E42C154492CD032B2D2D8A6F1233024A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:dc:4c:6c:86:be:5c:63:2d:80:ca:6b:0f:ee: 09:0d:15:03:65:54:3c:0e:08:79:e9:c1:0b:a0:7d: 5e:94:2a:1c:44:d4:60:45:b6:61:6d:9f:c8:b7:be: 9e:b3:de:f9:28:f4:7a:50:15:ac:1a:95:bf:6b:50: bc:b0:03:27:43:a1:fd:b2:cc:e0:02:de:3b:4c:d5: d1:7a:f2:03:9a:32:b7:05:7a:a6:4f:93:5b:46:16: 4e:c6:38:bf:dd:19:43:a8:30:a8:1f:a7:f7:cb:8b: f6:5a:81:49:9c:8e:3c:d8:fe:9b:35:89:ad:31:24: 78:d1:a7:66:27:ab:a6:05:6f:01:00:32:bf:03:82: 6c:57:02:47:db:00:81:aa:d7:0b:a5:62:dc:4c:d9: f3:5e:e1:9a:8c:59:ee:c4:7b:0c:d7:68:1d:b3:e4: 43:4f:31:c1:9b:72:f4:d3:dc:6b:89:42:a0:24:8b: bf:65:6f:0f:ff:9e:ce:c3:d6:84:31:e9:2f:19:f0: 5b:94:7a:27:7a:09:ef:48:25:e8:f5:af:3f:6a:2d: cc:ad:58:76:16:25:94:4e:1a:02:da:c1:04:14:90: 88:71:16:d8:65:0a:18:20:a6:6e:b5:2c:ea:3f:d5: b4:f2:a9:ea:6f:5b:44:85:52:53:56:92:28:96:1f: dc:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:B0:5D:06:E4:2C:15:44:92:CD:03:2B:2D:2D:8A:6F:12:33:02:4A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS18156.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.147.224.0/19 Signature Algorithm: sha256WithRSAEncryption 96:b9:e2:4d:a3:b4:2c:db:aa:93:54:60:7f:16:ea:90:11:0b: 94:5b:aa:52:b3:30:6d:7f:61:84:03:65:d9:00:bc:19:58:2f: 04:99:a3:1f:b1:3c:08:29:5a:13:23:d4:0b:b6:14:4b:22:3f: 35:de:57:46:06:70:cf:30:2f:23:18:2e:c1:f9:65:de:ac:2c: aa:b0:1c:e5:55:ba:d7:41:8f:e0:33:23:3f:12:71:38:1c:04: 9f:ff:c9:f4:5a:a4:c6:6c:b4:c6:d8:5d:68:76:e8:99:c9:36: 77:84:58:e8:3c:7f:9b:0d:00:04:9a:1c:7c:8a:e3:b6:c9:e8: 22:6d:e1:df:b9:f0:18:ab:80:b9:27:79:ca:c5:b7:64:49:88: 15:8a:f4:7b:03:b1:d6:50:06:b1:82:1a:2a:6f:96:40:0e:b1: e7:b8:47:e1:d7:0b:bc:ca:a6:da:aa:fc:38:28:7d:87:db:e1: b6:b3:65:ee:78:70:d7:7f:c7:6f:0f:c5:8d:95:a0:21:22:be: 98:1c:ec:74:a5:24:8f:af:d2:49:25:27:88:5c:2b:e4:c3:32: 0a:2b:35:7f:75:52:14:1f:e7:07:12:88:92:68:63:ec:f8:93: 48:df:90:4b:9b:98:fa:61:b0:0f:31:58:a5:3b:2a:3e:c0:6b: c3:2c:3b:46 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUPIDqXwZg8ldih5fJqxRL1IX5spYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIwNTAyNTUwMFoX DTI2MDIwNDAzMDAwMFowMzExMC8GA1UEAxMoM0FCMDVEMDZFNDJDMTU0NDkyQ0Qw MzJCMkQyRDhBNkYxMjMzMDI0QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKbcTGyGvlxjLYDKaw/uCQ0VA2VUPA4IeenBC6B9XpQqHETUYEW2YW2fyLe+ nrPe+Sj0elAVrBqVv2tQvLADJ0Oh/bLM4ALeO0zV0XryA5oytwV6pk+TW0YWTsY4 v90ZQ6gwqB+n98uL9lqBSZyOPNj+mzWJrTEkeNGnZierpgVvAQAyvwOCbFcCR9sA garXC6Vi3EzZ817hmoxZ7sR7DNdoHbPkQ08xwZty9NPca4lCoCSLv2VvD/+ezsPW hDHpLxnwW5R6J3oJ70gl6PWvP2otzK1YdhYllE4aAtrBBBSQiHEW2GUKGCCmbrUs 6j/VtPKp6m9bRIVSU1aSKJYf3FUCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBQ6sF0G 5CwVRJLNAystLYpvEjMCSjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE4MTU2LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFypPgMA0GCSqGSIb3DQEBCwUAA4IBAQCWueJNo7Qs26qTVGB/FuqQ EQuUW6pSszBtf2GEA2XZALwZWC8EmaMfsTwIKVoTI9QLthRLIj813ldGBnDPMC8j GC7B+WXerCyqsBzlVbrXQY/gMyM/EnE4HASf/8n0WqTGbLTG2F1oduiZyTZ3hFjo PH+bDQAEmhx8iuO2yegibeHfufAYq4C5J3nKxbdkSYgVivR7A7HWUAaxghoqb5ZA DrHnuEfh1wu8yqbaqvw4KH2H2+G2s2XueHDXf8dvD8WNlaAhIr6YHOx0pSSPr9JJ JSeIXCvkwzIKKzV/dVIUH+cHEoiSaGPs+JNI35BLm5j6YbAPMVilOyo+wGvDLDtG -----END CERTIFICATE-----Generated at Sun Feb 16 20:38:48 2025 by rpki-client