$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38154.roa File: AS38154.roa (raw, json) Hash identifier: Pb2g86VpvnPUluAqaul8qfwYkGED4gfdXglhXuy+b0M= Subject key identifier: 55:B9:66:03:CA:19:AA:E9:E9:F2:4D:B2:D3:29:FB:F0:32:FA:C9:20 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2A46365DC57990141418AA2C5E9E4C45097C22E9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38154.roa Signing time: Tue 21 Jan 2025 03:00:00 +0000 ROA not before: Tue 21 Jan 2025 02:55:00 +0000 ROA not after: Tue 20 Jan 2026 03:00:00 +0000 asID: 38154 IP address blocks: 2401:78a0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:46:36:5d:c5:79:90:14:14:18:aa:2c:5e:9e:4c:45:09:7c:22:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jan 21 02:55:00 2025 GMT Not After : Jan 20 03:00:00 2026 GMT Subject: CN=55B96603CA19AAE9E9F24DB2D329FBF032FAC920 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:44:b3:c0:99:e8:c1:ff:d6:2c:58:eb:aa:8d: 60:b6:b4:0a:8d:89:fc:8f:90:8b:a2:b2:1c:a4:60: 6c:90:d5:58:84:b8:ed:9e:47:b7:45:a7:a1:3d:9c: 56:5e:db:0d:ac:9e:44:d3:45:49:35:be:c0:28:f7: 17:95:0b:db:22:11:9d:65:96:56:cc:ae:01:c4:0f: a3:db:72:ad:21:46:7f:6f:8c:8f:50:b7:9d:a7:4d: d7:61:41:89:f2:0e:58:dc:65:4d:30:e3:af:40:74: a5:71:a1:6e:57:49:a1:3d:ae:95:6b:ac:b8:11:a3: 2e:1e:b7:67:45:62:d4:08:cd:5a:dc:7a:77:9a:3d: 36:5a:dc:5b:b0:6a:2f:56:87:23:21:25:63:08:cd: 0f:1f:38:a2:41:dd:16:b3:48:09:93:17:39:3d:a8: 87:3b:ca:9e:37:69:12:a5:e9:82:25:30:cd:af:21: 73:4d:6c:89:0e:84:8a:84:df:ed:13:9d:90:07:f1: f8:a5:e0:e1:af:f4:73:45:b4:63:80:80:0b:17:03: fa:64:b9:bd:90:17:ca:58:ff:a0:c4:69:d1:b1:41: 5b:33:da:8a:68:16:27:4f:12:78:1d:75:b4:92:a3: 7c:e3:f8:80:ae:7a:e0:a9:13:3d:be:c0:63:eb:87: 63:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:B9:66:03:CA:19:AA:E9:E9:F2:4D:B2:D3:29:FB:F0:32:FA:C9:20 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38154.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:78a0::/32 Signature Algorithm: sha256WithRSAEncryption 43:6a:9a:1d:53:17:fb:b2:5f:b7:b6:55:e5:00:db:cb:32:69: f4:d1:62:e1:93:bb:8f:96:8b:4e:45:59:7c:85:e8:1b:43:f0: 67:43:01:e0:6e:c5:0e:e4:d9:0c:08:2a:9b:b9:9e:f1:a2:6c: 07:11:4a:e9:2f:f6:a5:b1:b6:32:61:33:ec:58:39:ac:b7:b9: d6:72:fa:bb:47:13:9b:9f:d9:16:94:1b:41:29:be:7c:05:70: 53:c1:8c:d3:e5:f0:07:57:e2:a8:13:ea:48:54:89:23:53:83: 86:70:b3:0a:bc:ff:f8:27:14:c8:da:1e:f5:1f:0d:c3:52:f7: 1f:ea:f1:10:29:92:62:7f:2e:de:05:29:05:91:63:44:72:e3: e5:82:41:8b:5c:98:5d:ab:44:c2:8c:d0:fb:fd:ca:eb:28:9d: 80:7f:06:45:7a:a9:40:22:d9:9c:78:ad:22:ff:12:42:13:8a: 07:e5:bb:46:d7:13:59:3d:92:8f:31:8c:5b:6f:00:d7:85:50: 91:8b:a5:5c:45:92:6b:a8:c0:bb:21:09:5b:e8:85:00:ff:8e: 6b:47:7f:6e:47:ea:1f:75:a9:94:52:94:47:fd:0a:87:7d:d6: d1:fe:e4:01:e1:2b:69:56:a2:08:6e:c0:e9:44:78:7f:d9:f5: 5a:c2:52:f9 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUKkY2XcV5kBQUGKosXp5MRQl8IukwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDEyMTAyNTUwMFoX DTI2MDEyMDAzMDAwMFowMzExMC8GA1UEAxMoNTVCOTY2MDNDQTE5QUFFOUU5RjI0 REIyRDMyOUZCRjAzMkZBQzkyMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANVEs8CZ6MH/1ixY66qNYLa0Co2J/I+Qi6KyHKRgbJDVWIS47Z5Ht0WnoT2c Vl7bDayeRNNFSTW+wCj3F5UL2yIRnWWWVsyuAcQPo9tyrSFGf2+Mj1C3nadN12FB ifIOWNxlTTDjr0B0pXGhbldJoT2ulWusuBGjLh63Z0Vi1AjNWtx6d5o9NlrcW7Bq L1aHIyElYwjNDx84okHdFrNICZMXOT2ohzvKnjdpEqXpgiUwza8hc01siQ6EioTf 7ROdkAfx+KXg4a/0c0W0Y4CACxcD+mS5vZAXylj/oMRp0bFBWzPaimgWJ08SeB11 tJKjfOP4gK564KkTPb7AY+uHY3cCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRVuWYD yhmq6enyTbLTKfvwMvrJIDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzM4MTU0LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAF4oDANBgkqhkiG9w0BAQsFAAOCAQEAQ2qaHVMX+7Jft7ZV5QDb yzJp9NFi4ZO7j5aLTkVZfIXoG0PwZ0MB4G7FDuTZDAgqm7me8aJsBxFK6S/2pbG2 MmEz7Fg5rLe51nL6u0cTm5/ZFpQbQSm+fAVwU8GM0+XwB1fiqBPqSFSJI1ODhnCz Crz/+CcUyNoe9R8Nw1L3H+rxECmSYn8u3gUpBZFjRHLj5YJBi1yYXatEwozQ+/3K 6yidgH8GRXqpQCLZnHitIv8SQhOKB+W7RtcTWT2SjzGMW28A14VQkYulXEWSa6jA uyEJW+iFAP+Oa0d/bkfqH3WplFKUR/0Kh33W0f7kAeEraVaiCG7A6UR4f9n1WsJS +Q== -----END CERTIFICATE-----Generated at Sun Feb 16 20:53:36 2025 by rpki-client