$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152036.roa File: AS152036.roa (raw, json) Hash identifier: NmRxZnRHFqkg8IOFX6OhNJqg83ld7TU4gBwDXt/jkB4= Subject key identifier: 52:2A:1E:D8:8E:B6:27:4D:53:9D:8B:FF:80:DE:2E:8D:78:D7:DE:D2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 09751CF7868AB1601B3C7DF73382E9E4D148D08B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152036.roa Signing time: Tue 17 Dec 2024 09:00:00 +0000 ROA not before: Tue 17 Dec 2024 08:55:00 +0000 ROA not after: Tue 16 Dec 2025 09:00:00 +0000 asID: 152036 IP address blocks: 2001:df3:5d40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:75:1c:f7:86:8a:b1:60:1b:3c:7d:f7:33:82:e9:e4:d1:48:d0:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 17 08:55:00 2024 GMT Not After : Dec 16 09:00:00 2025 GMT Subject: CN=522A1ED88EB6274D539D8BFF80DE2E8D78D7DED2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3f:80:98:d4:50:74:39:60:1c:87:14:68:1c: 54:83:86:25:d1:60:a4:96:88:3c:eb:bd:c1:68:b8: d3:3b:f6:67:cc:50:11:fd:5c:b7:8e:a4:14:32:54: 29:7e:d3:11:7f:8e:dc:64:d9:cb:4b:60:05:7e:9e: c1:a9:de:51:a6:12:9c:1f:8d:f0:ae:1c:5e:0f:38: 8b:64:e2:54:95:42:f5:b5:33:81:91:52:08:05:b7: 65:30:21:ec:38:12:6c:f5:85:32:96:1c:a1:54:85: e9:24:40:14:14:d7:63:df:8b:99:a1:32:fa:55:87: 78:10:b1:7a:d5:ec:aa:60:d9:72:37:34:37:58:00: 04:d7:92:de:f3:1e:15:01:90:27:d4:ce:91:54:9e: fe:9f:23:87:a4:68:18:82:92:18:35:3c:d3:63:1e: 07:28:66:03:23:a9:cf:0a:05:b5:ba:b9:3e:ee:7c: 09:db:3e:a2:56:8d:b1:8f:9c:46:89:87:bf:e0:8f: ee:63:dc:b6:02:31:2c:2c:aa:eb:61:61:c7:6d:a2: 55:c1:d3:00:64:a4:98:94:44:fb:21:20:a1:b9:af: f2:34:16:1c:1c:40:e0:e0:06:02:e6:c3:24:7e:9c: 7a:33:1c:a9:71:5f:08:a7:0f:53:61:b2:f4:a3:49: 17:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:2A:1E:D8:8E:B6:27:4D:53:9D:8B:FF:80:DE:2E:8D:78:D7:DE:D2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:5d40::/48 Signature Algorithm: sha256WithRSAEncryption 32:f5:b8:73:6a:96:28:5f:e6:69:b1:ec:cd:24:e2:ce:62:7f: 19:e5:97:48:ac:e0:02:a9:fa:dc:8e:c9:96:82:fc:5d:ac:8d: d4:6c:c7:7b:63:11:2f:ac:6f:1d:53:4b:e4:56:51:ff:c2:c4: 2a:9b:e6:a6:e8:dc:bf:ec:fe:5e:34:cc:f9:aa:25:30:dd:b1: 09:42:cd:a0:e1:98:2b:76:01:59:7d:1e:30:aa:19:e7:00:d9: e0:6e:8b:bb:89:10:0f:46:fe:f1:03:f5:0e:e8:a4:36:c9:c4: cb:cb:20:33:00:f2:f1:35:db:4b:8f:bb:63:11:da:b8:7c:b2: 25:c0:53:d9:17:05:1e:ea:57:0f:93:4b:75:9f:f4:af:a1:a0: d7:8a:44:bf:38:01:c8:8f:2c:54:33:c8:6a:84:eb:f3:6e:a2: db:f2:1c:5e:c4:ae:93:7b:25:67:79:77:e9:c6:b3:4b:86:b6: 80:d6:97:47:bb:fc:3d:50:0c:15:c2:34:5f:4f:d3:4f:d3:41: 22:8b:aa:0f:ab:ed:d5:06:c0:9e:93:d7:55:4c:98:90:d5:03: 2e:fd:06:56:16:8c:c1:23:e6:60:30:63:9b:44:13:b8:07:bf: d2:ca:a2:da:3e:87:78:83:a4:50:51:0a:0c:f5:3e:10:ca:63: 0d:ad:8a:4a -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUCXUc94aKsWAbPH33M4Lp5NFI0IswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxNzA4NTUwMFoX DTI1MTIxNjA5MDAwMFowMzExMC8GA1UEAxMoNTIyQTFFRDg4RUI2Mjc0RDUzOUQ4 QkZGODBERTJFOEQ3OEQ3REVEMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMk/gJjUUHQ5YByHFGgcVIOGJdFgpJaIPOu9wWi40zv2Z8xQEf1ct46kFDJU KX7TEX+O3GTZy0tgBX6ewaneUaYSnB+N8K4cXg84i2TiVJVC9bUzgZFSCAW3ZTAh 7DgSbPWFMpYcoVSF6SRAFBTXY9+LmaEy+lWHeBCxetXsqmDZcjc0N1gABNeS3vMe FQGQJ9TOkVSe/p8jh6RoGIKSGDU802MeByhmAyOpzwoFtbq5Pu58Cds+olaNsY+c RomHv+CP7mPctgIxLCyq62Fhx22iVcHTAGSkmJRE+yEgobmv8jQWHBxA4OAGAubD JH6cejMcqXFfCKcPU2Gy9KNJF0sCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRSKh7Y jrYnTVOdi/+A3i6NeNfe0jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjAzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfNdQDANBgkqhkiG9w0BAQsFAAOCAQEAMvW4c2qWKF/mabHs zSTizmJ/GeWXSKzgAqn63I7JloL8XayN1GzHe2MRL6xvHVNL5FZR/8LEKpvmpujc v+z+XjTM+aolMN2xCULNoOGYK3YBWX0eMKoZ5wDZ4G6Lu4kQD0b+8QP1DuikNsnE y8sgMwDy8TXbS4+7YxHauHyyJcBT2RcFHupXD5NLdZ/0r6Gg14pEvzgByI8sVDPI aoTr826i2/IcXsSuk3slZ3l36cazS4a2gNaXR7v8PVAMFcI0X0/TT9NBIouqD6vt 1QbAnpPXVUyYkNUDLv0GVhaMwSPmYDBjm0QTuAe/0sqi2j6HeIOkUFEKDPU+EMpj Da2KSg== -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:20 2025 by rpki-client on console.sobornost.net