$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152828.roa File: AS152828.roa (raw, json) Hash identifier: fqXbhrTTyKSauOIVHbDwTR2bvHTzx+CxNOv/yt6G+Ig= Subject key identifier: 1D:21:16:89:54:B4:22:8B:A1:89:11:01:9A:0D:C2:F5:29:09:DB:5D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0BFD7370632A596324B39EC9C71B9CBF96708E5B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152828.roa Signing time: Mon 09 Jun 2025 09:00:00 +0000 ROA not before: Mon 09 Jun 2025 08:55:00 +0000 ROA not after: Mon 08 Jun 2026 09:00:00 +0000 asID: 152828 IP address blocks: 103.182.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:fd:73:70:63:2a:59:63:24:b3:9e:c9:c7:1b:9c:bf:96:70:8e:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 9 08:55:00 2025 GMT Not After : Jun 8 09:00:00 2026 GMT Subject: CN=1D21168954B4228BA18911019A0DC2F52909DB5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7b:a6:8f:87:8b:87:1b:18:95:43:c7:90:60: 75:21:c6:5f:bf:8e:4f:b8:23:6d:8c:bf:64:f0:ee: 33:ec:a9:46:d8:f2:db:92:9e:2c:00:17:94:1e:b0: 7e:df:61:84:1e:3a:c9:0b:d9:16:d6:ca:7a:6d:db: 44:43:ac:8c:0b:dd:14:c7:18:2e:47:34:88:de:82: a9:4b:f1:e6:fe:15:7a:02:e5:2e:86:5e:66:41:68: 77:50:51:b8:85:8f:d1:6b:0b:24:33:1a:58:3d:98: 0d:26:c8:50:a1:85:ba:fe:66:a6:d8:ec:e2:b4:b3: 4c:4f:2a:82:fc:18:70:bf:b0:08:47:42:64:22:5f: 70:35:dc:eb:83:98:67:75:5c:f8:91:81:f9:46:c2: e9:e9:4a:94:2a:8b:88:ad:86:02:c1:d9:29:8a:85: 41:91:4f:0f:ba:37:e0:15:b5:45:01:90:e2:7a:04: 00:11:19:09:41:a5:67:84:88:9e:b6:c9:2a:4d:d4: 3d:10:14:39:8b:5c:f5:36:37:83:e0:d7:25:c0:8f: 84:b9:1b:e2:a1:ac:45:68:84:73:5b:7f:8a:f4:30: 90:ae:e1:08:1b:cb:66:d3:9b:6e:b6:85:92:28:58: ef:8e:a1:53:69:d4:c1:14:42:80:69:db:64:2e:e1: 63:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:21:16:89:54:B4:22:8B:A1:89:11:01:9A:0D:C2:F5:29:09:DB:5D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152828.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.182.53.0/24 Signature Algorithm: sha256WithRSAEncryption 13:27:ad:ff:2d:6a:0d:60:47:8b:24:a6:42:69:a1:49:4c:82: 13:49:59:7c:11:f1:90:8d:25:90:0d:8b:79:76:a6:86:ea:ef: 4b:41:72:ed:d4:05:dd:03:29:3a:44:a3:fb:db:43:ac:0d:d6: 71:60:2f:11:3c:6d:e2:8e:fd:d8:73:16:c2:94:ed:f9:4a:4f: 8d:20:92:0b:57:fd:d6:ff:f6:52:04:fb:32:a9:16:5f:a7:78: d5:ff:17:28:86:9d:a5:21:22:f9:57:5c:6d:37:e6:82:29:89: 74:af:f2:6c:fa:a6:a3:65:bc:da:a5:53:7b:5d:1c:e8:c2:f7: 1c:d8:5d:a0:ca:ac:24:eb:53:7e:e6:89:4a:7e:93:ed:6d:da: 32:f5:07:8b:d0:00:30:75:bf:d4:37:c0:eb:6e:0d:41:ec:83: 1c:a5:4a:e9:dd:7e:7e:48:cb:3e:e6:6c:ea:46:42:e4:64:b5: 12:96:b3:7d:67:bd:44:9d:12:ca:87:4b:e1:3a:73:3f:04:36: f1:54:08:0f:5b:25:09:e0:23:f8:48:b2:86:5c:8e:be:96:d8: 29:50:7b:05:e1:95:4b:b8:1c:88:42:a8:cf:33:d7:16:13:5b: 1d:ee:7a:3e:99:3f:9d:e8:67:5d:d8:7d:dc:9e:7d:de:5a:a5: 65:23:cd:8d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUC/1zcGMqWWMks57Jxxucv5ZwjlswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwOTA4NTUwMFoX DTI2MDYwODA5MDAwMFowMzExMC8GA1UEAxMoMUQyMTE2ODk1NEI0MjI4QkExODkx MTAxOUEwREMyRjUyOTA5REI1RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALV7po+Hi4cbGJVDx5BgdSHGX7+OT7gjbYy/ZPDuM+ypRtjy25KeLAAXlB6w ft9hhB46yQvZFtbKem3bREOsjAvdFMcYLkc0iN6CqUvx5v4VegLlLoZeZkFod1BR uIWP0WsLJDMaWD2YDSbIUKGFuv5mptjs4rSzTE8qgvwYcL+wCEdCZCJfcDXc64OY Z3Vc+JGB+UbC6elKlCqLiK2GAsHZKYqFQZFPD7o34BW1RQGQ4noEABEZCUGlZ4SI nrbJKk3UPRAUOYtc9TY3g+DXJcCPhLkb4qGsRWiEc1t/ivQwkK7hCBvLZtObbraF kihY746hU2nUwRRCgGnbZC7hY78CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQdIRaJ VLQii6GJEQGaDcL1KQnbXTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjgyOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGe2NTANBgkqhkiG9w0BAQsFAAOCAQEAEyet/y1qDWBHiySmQmmh SUyCE0lZfBHxkI0lkA2LeXamhurvS0Fy7dQF3QMpOkSj+9tDrA3WcWAvETxt4o79 2HMWwpTt+UpPjSCSC1f91v/2UgT7MqkWX6d41f8XKIadpSEi+VdcbTfmgimJdK/y bPqmo2W82qVTe10c6ML3HNhdoMqsJOtTfuaJSn6T7W3aMvUHi9AAMHW/1DfA624N QeyDHKVK6d1+fkjLPuZs6kZC5GS1EpazfWe9RJ0SyodL4TpzPwQ28VQID1slCeAj +EiyhlyOvpbYKVB7BeGVS7gciEKozzPXFhNbHe56Ppk/nehnXdh93J593lqlZSPN jQ== -----END CERTIFICATE-----Generated at Sun Jun 29 12:09:10 2025 by rpki-client