$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS18156.roa File: AS18156.roa (raw, json) Hash identifier: 9JSux76hSvVmX+1QA9ez4D7RNAXFnL4E8VbL5b9eKtw= Subject key identifier: AA:32:3D:DD:65:48:06:08:59:B1:12:E2:87:1B:67:56:A5:BD:D3:E2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1BC394CC5A6A181B6A45F3A452407341625495B7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS18156.roa Signing time: Wed 06 Mar 2024 02:59:40 +0000 ROA not before: Wed 06 Mar 2024 02:54:40 +0000 ROA not after: Wed 05 Mar 2025 02:59:40 +0000 asID: 18156 IP address blocks: 202.147.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:c3:94:cc:5a:6a:18:1b:6a:45:f3:a4:52:40:73:41:62:54:95:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 6 02:54:40 2024 GMT Not After : Mar 5 02:59:40 2025 GMT Subject: CN=AA323DDD6548060859B112E2871B6756A5BDD3E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0f:23:43:36:a7:bc:4d:b0:10:67:73:cb:2f: a0:0a:b0:5e:ed:42:4d:df:cc:16:74:2f:19:33:72: 56:2e:90:fd:eb:fc:6d:7c:5b:cd:ed:ef:17:ce:f6: fc:04:e7:ce:80:5a:df:b4:c4:2b:0f:5e:56:a6:21: 7f:ea:ab:ce:85:1b:ec:10:42:f8:ee:da:b3:5f:6c: 08:48:08:5f:aa:94:f3:f8:5f:ce:f1:3c:ee:b5:9f: a1:09:f0:32:7a:3f:8d:97:98:d6:a7:ed:80:52:fe: 90:3f:6a:f9:af:d3:fd:7d:7b:1e:78:ba:ea:9d:e4: cf:81:68:16:7e:15:2c:0d:62:25:9b:9b:4d:04:c0: 4f:2b:be:f6:44:c9:21:a3:02:e2:86:f2:09:49:b9: 50:41:a9:bf:88:f1:d0:48:a4:41:3a:96:c6:23:90: 63:bc:1a:fc:9f:59:1c:66:28:60:ea:6c:7b:54:0c: 26:f8:23:07:c7:35:d7:a5:56:5e:60:6f:61:38:59: 0e:88:60:15:70:ab:96:77:1f:ee:1c:48:d1:53:d5: bc:f2:13:9a:ea:16:49:08:b8:e4:35:67:58:36:f9: 59:dc:d8:06:2c:09:91:86:f0:cc:1d:00:a3:33:80: fb:31:df:ba:3b:78:09:d7:61:52:bd:89:ba:c1:d3: c0:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:32:3D:DD:65:48:06:08:59:B1:12:E2:87:1B:67:56:A5:BD:D3:E2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS18156.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.147.224.0/19 Signature Algorithm: sha256WithRSAEncryption 04:7a:a0:ef:17:3e:5d:f4:2c:c1:29:b8:1d:75:e5:58:04:06: 63:85:56:06:a2:90:a9:dc:9c:80:14:b7:56:2e:f3:7c:da:92: f5:31:d8:c1:e1:5f:c0:de:ae:c8:07:7d:8a:4e:9d:37:ca:bf: 5c:e8:76:8a:d6:ac:fe:06:3a:90:77:5b:a1:f2:05:07:b3:a1: b3:27:71:61:81:d7:71:72:bf:65:90:9e:77:e4:d5:db:7a:0f: ed:2c:b5:73:5a:0d:85:8d:5b:a1:f2:83:7b:df:db:17:15:9a: 57:56:f0:93:3f:9a:9a:8f:ff:85:c6:b8:ff:71:c3:f6:31:8c: 3b:ce:d6:47:84:67:6b:b0:da:e8:44:78:d6:ab:6c:e3:77:d3: 5a:52:50:06:19:43:9d:e7:c6:69:0b:e6:23:15:72:77:bb:eb: 98:85:7d:ed:b7:36:c8:83:46:b2:d3:a6:cf:ec:33:99:ea:d5: ae:5c:9a:5c:e5:76:8b:70:6d:64:e5:76:c8:7a:b0:50:ef:47: f7:a1:b7:78:4b:3d:32:ef:8e:b7:00:b3:b0:e0:f7:95:dc:c6: 88:a5:40:76:69:39:96:30:39:22:f6:a5:08:88:f6:67:ed:c1: 1b:40:2c:e1:4a:11:0c:d0:4c:ad:21:dd:0c:e9:f4:69:df:a5: 8d:b1:3e:71 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUG8OUzFpqGBtqRfOkUkBzQWJUlbcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMwNjAyNTQ0MFoX DTI1MDMwNTAyNTk0MFowMzExMC8GA1UEAxMoQUEzMjNEREQ2NTQ4MDYwODU5QjEx MkUyODcxQjY3NTZBNUJERDNFMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMUPI0M2p7xNsBBnc8svoAqwXu1CTd/MFnQvGTNyVi6Q/ev8bXxbze3vF872 /ATnzoBa37TEKw9eVqYhf+qrzoUb7BBC+O7as19sCEgIX6qU8/hfzvE87rWfoQnw Mno/jZeY1qftgFL+kD9q+a/T/X17Hni66p3kz4FoFn4VLA1iJZubTQTATyu+9kTJ IaMC4obyCUm5UEGpv4jx0EikQTqWxiOQY7wa/J9ZHGYoYOpse1QMJvgjB8c116VW XmBvYThZDohgFXCrlncf7hxI0VPVvPITmuoWSQi45DVnWDb5WdzYBiwJkYbwzB0A ozOA+zHfujt4CddhUr2JusHTwC8CAwEAAaOCAc8wggHLMB0GA1UdDgQWBBSqMj3d ZUgGCFmxEuKHG2dWpb3T4jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE4MTU2LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFypPgMA0GCSqGSIb3DQEBCwUAA4IBAQAEeqDvFz5d9CzBKbgddeVY BAZjhVYGopCp3JyAFLdWLvN82pL1MdjB4V/A3q7IB32KTp03yr9c6HaK1qz+BjqQ d1uh8gUHs6GzJ3Fhgddxcr9lkJ535NXbeg/tLLVzWg2FjVuh8oN739sXFZpXVvCT P5qaj/+Fxrj/ccP2MYw7ztZHhGdrsNroRHjWq2zjd9NaUlAGGUOd58ZpC+YjFXJ3 u+uYhX3ttzbIg0ay06bP7DOZ6tWuXJpc5XaLcG1k5XbIerBQ70f3obd4Sz0y7463 ALOw4PeV3MaIpUB2aTmWMDki9qUIiPZn7cEbQCzhShEM0EytId0M6fRp36WNsT5x -----END CERTIFICATE-----Generated at Wed May 8 15:17:45 2024 by rpki-client on console-fra.rpki-client.org