$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152087.roa File: AS152087.roa (raw, json) Hash identifier: NvgtgG4P+0qnOxgRCIYwO8FDU9QfnUWHUkSrSGTGCG8= Subject key identifier: 54:C1:C1:A1:44:92:95:CF:04:64:27:0E:8A:94:CE:73:56:E6:F1:89 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 54524CF3DB2891D6DC789C9F8514E53F1BBB3E81 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152087.roa Signing time: Wed 25 Jun 2025 09:53:27 +0000 ROA not before: Wed 25 Jun 2025 09:48:27 +0000 ROA not after: Wed 24 Jun 2026 09:53:27 +0000 asID: 152087 IP address blocks: 43.241.246.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:52:4c:f3:db:28:91:d6:dc:78:9c:9f:85:14:e5:3f:1b:bb:3e:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 25 09:48:27 2025 GMT Not After : Jun 24 09:53:27 2026 GMT Subject: CN=54C1C1A1449295CF0464270E8A94CE7356E6F189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c4:6c:69:2a:b0:34:40:bf:7e:a3:07:ad:01: e7:d2:5f:0c:ac:f7:2c:48:ce:7b:81:fc:9a:24:3a: ce:da:4a:ec:ee:2d:c0:60:da:9e:31:44:f4:be:39: bb:a6:e6:78:80:cd:d5:33:26:76:62:58:da:f1:b7: 02:40:04:b2:d0:90:25:90:a9:76:35:be:72:00:59: ce:9a:29:cd:7e:0a:d1:b4:56:f1:43:bd:d4:94:a7: df:2a:51:db:d5:08:32:4f:3c:fb:59:23:d5:bd:3b: 1f:57:02:a1:26:42:ae:37:25:4b:3c:4b:88:0e:bc: cc:66:95:00:d3:cd:59:4d:92:c8:38:8e:eb:e4:25: 9d:97:72:b7:f6:af:8b:e7:b0:44:a2:48:2e:5b:aa: 27:53:81:97:40:64:2c:46:0d:6b:94:8a:45:c5:54: 07:c9:5c:f7:6b:51:5f:10:2d:05:e4:23:a7:14:9c: 64:4d:4f:b4:11:58:f6:4a:c9:7c:71:29:d4:4e:1a: 40:50:1e:8c:3e:25:7b:12:b7:a8:84:2f:75:e8:8a: 73:70:61:bc:49:68:4a:6c:6b:21:86:a2:5c:13:2d: 20:78:af:6f:97:33:72:58:73:61:e9:98:9e:fb:5c: 7f:7e:bc:90:cf:75:af:f6:0d:e1:c3:fc:d0:7d:d1: f7:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:C1:C1:A1:44:92:95:CF:04:64:27:0E:8A:94:CE:73:56:E6:F1:89 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152087.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.241.246.0/23 Signature Algorithm: sha256WithRSAEncryption 53:7c:df:09:9f:4f:5e:c0:0e:bb:87:7d:aa:29:14:cf:e6:a4: 17:1e:d8:9f:8b:5f:37:6e:24:b7:5d:79:5a:f6:c9:f0:d6:fa: ae:18:0b:0a:ce:6b:72:46:8f:27:73:1d:57:99:dc:9e:98:dc: e6:8c:20:71:67:7d:77:a3:c1:8e:28:68:13:9a:bd:2b:da:74: 88:ab:3e:a0:e3:c7:ca:aa:ba:fa:23:cd:2c:e2:a6:c8:eb:6f: c4:f4:60:e6:a2:6a:d8:d0:1a:d4:74:b1:08:06:17:6a:bd:93: 03:df:df:1e:d4:93:52:79:ac:26:27:2a:90:d2:3a:01:7a:a9: 32:ce:55:b2:ee:e5:ad:e9:99:bf:03:57:9d:03:c7:ba:e2:ee: 10:45:d5:43:41:75:b2:14:9a:be:99:f8:b5:75:dd:11:21:d0: c2:65:56:50:3c:91:70:5d:cd:07:89:e3:d1:f0:16:05:8b:38: 80:ff:d1:af:6e:69:0c:f2:10:a4:8e:d4:80:15:26:52:ca:9b: 8d:9d:f3:e6:04:33:48:f3:ea:19:de:ef:a0:36:8f:da:97:46: 80:82:3d:f0:25:18:89:76:9c:6f:5d:d0:d4:a3:8f:a5:f9:8f: df:02:59:00:1d:bd:9a:1d:7b:14:8a:d0:85:98:75:c1:ab:ea: be:4f:aa:61 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUVFJM89sokdbceJyfhRTlPxu7PoEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYyNTA5NDgyN1oX DTI2MDYyNDA5NTMyN1owMzExMC8GA1UEAxMoNTRDMUMxQTE0NDkyOTVDRjA0NjQy NzBFOEE5NENFNzM1NkU2RjE4OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMjEbGkqsDRAv36jB60B59JfDKz3LEjOe4H8miQ6ztpK7O4twGDanjFE9L45 u6bmeIDN1TMmdmJY2vG3AkAEstCQJZCpdjW+cgBZzpopzX4K0bRW8UO91JSn3ypR 29UIMk88+1kj1b07H1cCoSZCrjclSzxLiA68zGaVANPNWU2SyDiO6+QlnZdyt/av i+ewRKJILluqJ1OBl0BkLEYNa5SKRcVUB8lc92tRXxAtBeQjpxScZE1PtBFY9krJ fHEp1E4aQFAejD4lexK3qIQvdeiKc3BhvEloSmxrIYaiXBMtIHivb5czclhzYemY nvtcf368kM91r/YN4cP80H3R93kCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRUwcGh RJKVzwRkJw6KlM5zVubxiTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjA4Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEASvx9jANBgkqhkiG9w0BAQsFAAOCAQEAU3zfCZ9PXsAOu4d9qikU z+akFx7Yn4tfN24kt115WvbJ8Nb6rhgLCs5rckaPJ3MdV5ncnpjc5owgcWd9d6PB jihoE5q9K9p0iKs+oOPHyqq6+iPNLOKmyOtvxPRg5qJq2NAa1HSxCAYXar2TA9/f HtSTUnmsJicqkNI6AXqpMs5Vsu7lremZvwNXnQPHuuLuEEXVQ0F1shSavpn4tXXd ESHQwmVWUDyRcF3NB4nj0fAWBYs4gP/Rr25pDPIQpI7UgBUmUsqbjZ3z5gQzSPPq Gd7voDaP2pdGgII98CUYiXacb13Q1KOPpfmP3wJZAB29mh17FIrQhZh1wavqvk+q YQ== -----END CERTIFICATE-----Generated at Sun Jun 29 12:06:43 2025 by rpki-client