$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153577.roa File: AS153577.roa (raw, json) Hash identifier: JoYJ7V4iDAtH8+hDcG2MYu/FI+/Y5n929JdY2qF+u2I= Subject key identifier: 8F:94:6F:2C:BB:C6:CA:42:AC:74:A7:9A:D2:EC:3E:E8:38:A3:82:AC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 669A60F8E7E17517509DC9289B36F73540EBED53 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153577.roa Signing time: Wed 30 Apr 2025 04:45:55 +0000 ROA not before: Wed 30 Apr 2025 04:40:55 +0000 ROA not after: Wed 29 Apr 2026 04:45:55 +0000 asID: 153577 IP address blocks: 163.61.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 14:41:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:9a:60:f8:e7:e1:75:17:50:9d:c9:28:9b:36:f7:35:40:eb:ed:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 30 04:40:55 2025 GMT Not After : Apr 29 04:45:55 2026 GMT Subject: CN=8F946F2CBBC6CA42AC74A79AD2EC3EE838A382AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:06:96:b0:8f:36:84:08:24:45:0c:26:30:75: f0:13:1e:8d:e0:56:d2:31:4d:0e:6f:b8:59:38:e6: a7:92:c4:f2:c6:50:0e:ed:1e:9f:84:cc:9d:73:fb: 12:2c:65:b8:fd:0f:5c:db:d5:84:44:81:7a:6f:43: 3a:e3:9b:70:88:ec:09:ab:76:fa:b5:f2:ba:4b:e2: 78:73:2d:f8:1c:00:f4:24:9b:94:d9:61:92:a2:7e: a9:46:34:3f:f3:e9:66:02:16:eb:02:c9:1f:5e:67: 21:c0:b2:58:39:51:76:87:17:21:01:9f:97:f4:d4: b3:77:ba:61:c4:c4:e7:62:1f:f7:94:ff:5a:2d:aa: ac:ef:c7:a3:6e:16:11:f7:92:5b:79:95:1f:07:f9: 33:25:89:ca:69:de:ff:b6:7d:fe:d7:d2:f5:0c:86: ca:8c:c0:88:8f:58:8a:2f:89:61:74:7e:dd:eb:67: 18:a8:25:52:98:b4:f6:74:84:98:0e:bc:ad:b9:79: a0:6f:3e:ad:b0:ea:b4:a8:51:34:5a:e2:bb:d6:64: e3:eb:f9:85:f8:eb:f0:cc:1c:11:34:15:24:b4:ae: 3b:a9:22:05:49:62:0c:d5:d6:2a:27:8e:14:da:38: bc:51:ef:96:a7:65:4e:e2:eb:10:4b:08:ac:89:96: 5e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:94:6F:2C:BB:C6:CA:42:AC:74:A7:9A:D2:EC:3E:E8:38:A3:82:AC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153577.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.61.54.0/24 Signature Algorithm: sha256WithRSAEncryption 06:44:69:30:66:28:53:a9:56:ad:bd:62:dc:12:d6:52:fa:b9: 1c:8d:db:cb:ce:74:7a:76:aa:7f:b8:16:cc:2d:4a:24:b1:0c: c5:f9:ee:48:ad:b9:d6:0d:cf:34:2b:5a:a2:bb:26:02:1b:c4: 9d:88:b1:23:6c:79:a8:8e:51:2c:5a:19:e2:10:f5:7a:f0:e3: 27:63:51:fd:2e:fc:3c:97:78:7f:91:7c:52:2b:85:c9:70:89: f8:fd:61:b8:6a:41:8b:5d:1c:70:e8:c8:d5:2d:a6:22:65:e3: 9c:83:06:b3:6c:63:c6:b3:70:7c:a9:26:a9:9c:bf:c2:4c:7e: 53:93:fb:d2:07:ed:60:65:cc:9e:93:f9:e3:11:bb:fc:30:61: 95:85:de:5a:d7:6e:b9:4b:ed:00:ed:11:93:24:98:8e:44:f1: 3f:32:6f:68:90:a6:b7:b0:96:01:b1:d6:5e:22:ea:2c:0f:5d: 58:1f:d2:3c:ed:45:19:99:1b:ba:2b:16:f1:b9:b1:fe:af:c0: 28:dc:e7:d6:22:49:13:62:ec:00:60:10:a6:53:c0:53:57:cb: cc:02:24:f8:0e:26:3e:4f:a0:ad:cc:85:92:e0:53:ff:89:44: ec:a8:73:34:bb:32:35:6f:fd:7a:62:dc:a3:0f:74:06:a7:3c: cb:99:36:7e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUZppg+OfhdRdQnckomzb3NUDr7VMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQzMDA0NDA1NVoX DTI2MDQyOTA0NDU1NVowMzExMC8GA1UEAxMoOEY5NDZGMkNCQkM2Q0E0MkFDNzRB NzlBRDJFQzNFRTgzOEEzODJBQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKIGlrCPNoQIJEUMJjB18BMejeBW0jFNDm+4WTjmp5LE8sZQDu0en4TMnXP7 EixluP0PXNvVhESBem9DOuObcIjsCat2+rXyukvieHMt+BwA9CSblNlhkqJ+qUY0 P/PpZgIW6wLJH15nIcCyWDlRdocXIQGfl/TUs3e6YcTE52If95T/Wi2qrO/Ho24W EfeSW3mVHwf5MyWJymne/7Z9/tfS9QyGyozAiI9Yii+JYXR+3etnGKglUpi09nSE mA68rbl5oG8+rbDqtKhRNFriu9Zk4+v5hfjr8MwcETQVJLSuO6kiBUliDNXWKieO FNo4vFHvlqdlTuLrEEsIrImWXqECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSPlG8s u8bKQqx0p5rS7D7oOKOCrDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzU3Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKM9NjANBgkqhkiG9w0BAQsFAAOCAQEABkRpMGYoU6lWrb1i3BLW Uvq5HI3by850enaqf7gWzC1KJLEMxfnuSK251g3PNCtaorsmAhvEnYixI2x5qI5R LFoZ4hD1evDjJ2NR/S78PJd4f5F8UiuFyXCJ+P1huGpBi10ccOjI1S2mImXjnIMG s2xjxrNwfKkmqZy/wkx+U5P70gftYGXMnpP54xG7/DBhlYXeWtduuUvtAO0RkySY jkTxPzJvaJCmt7CWAbHWXiLqLA9dWB/SPO1FGZkbuisW8bmx/q/AKNzn1iJJE2Ls AGAQplPAU1fLzAIk+A4mPk+grcyFkuBT/4lE7KhzNLsyNW/9emLcow90Bqc8y5k2 fg== -----END CERTIFICATE-----Generated at Wed May 7 02:23:08 2025 by rpki-client