$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153697.roa File: AS153697.roa (raw, json) Hash identifier: HmsHcDuUzsyYDiqi1akiiWTPBCeVhYnQJg4+STI2mog= Subject key identifier: C3:25:D7:61:10:10:2A:50:FD:01:47:04:6B:32:11:04:14:3D:CE:A2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 55E4EE30D0268F0A7833D47ED4382FD90E13AAF7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153697.roa Signing time: Tue 15 Apr 2025 02:39:13 +0000 ROA not before: Tue 15 Apr 2025 02:34:13 +0000 ROA not after: Tue 14 Apr 2026 02:39:13 +0000 asID: 153697 IP address blocks: 163.223.78.0/23 maxlen: 24 2001:df5:37c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:e4:ee:30:d0:26:8f:0a:78:33:d4:7e:d4:38:2f:d9:0e:13:aa:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 15 02:34:13 2025 GMT Not After : Apr 14 02:39:13 2026 GMT Subject: CN=C325D76110102A50FD0147046B321104143DCEA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:11:21:f6:66:03:d5:b4:b8:29:46:9f:1a:79: 44:78:39:ee:5b:70:23:dd:05:46:83:2f:bc:a9:5f: 7c:e3:aa:bc:8e:e9:a2:82:d8:3d:db:25:63:c0:c6: ef:57:f3:17:a6:67:4c:76:8e:3e:62:37:fe:3f:50: 51:c9:fe:6e:04:1b:62:16:55:ea:34:43:1d:75:ca: b4:23:f9:da:3d:b4:e4:ef:a1:62:84:c0:c0:96:31: 69:55:3b:ba:5c:fb:fa:2f:72:a9:24:f1:e4:69:9d: 42:0f:9b:94:72:92:46:bd:9d:d8:37:70:fd:f7:bb: a6:6d:0b:83:f3:81:de:13:b2:76:39:78:9c:b3:ac: d6:61:ee:0f:36:f6:2e:65:89:e8:59:45:81:50:c8: 22:f7:1e:63:99:f5:59:35:81:23:f5:2f:9e:e4:5c: 5f:46:90:44:fd:1a:12:10:34:ef:c0:73:05:28:3b: 8a:97:ee:23:22:21:76:14:81:a8:c3:0e:20:8d:cd: 4a:78:47:3d:d2:2e:ba:00:0d:97:38:72:ed:c9:49: 9b:83:81:e1:e4:46:1d:97:d2:cf:93:b1:aa:6e:24: c5:b6:cc:d5:0a:41:df:5e:bb:8b:9d:7d:be:81:95: 69:11:3e:11:c1:ee:0c:0e:4a:a7:47:33:4c:83:96: 39:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:25:D7:61:10:10:2A:50:FD:01:47:04:6B:32:11:04:14:3D:CE:A2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153697.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.223.78.0/23 IPv6: 2001:df5:37c0::/48 Signature Algorithm: sha256WithRSAEncryption 12:88:93:f6:d2:bb:90:ea:84:19:00:4d:8e:63:23:5b:27:2e: 2e:3e:cb:09:27:dc:66:10:b2:d1:69:39:f0:05:02:e8:7e:33: 54:81:4d:6d:05:95:fa:1a:92:aa:49:b9:f2:c5:56:21:7a:88: 1b:9c:cb:6b:9c:ed:4e:05:5d:3e:96:b4:85:62:91:2c:a6:95: b4:01:9c:4d:b7:4d:94:93:1b:41:57:9d:9b:3e:98:a7:78:77: 12:46:d7:c7:1b:06:79:c0:25:2d:e1:81:ae:64:ee:ee:fe:3d: 57:84:86:2f:bd:7d:17:fe:63:be:46:5c:04:11:71:83:ad:3b: 0d:1b:7c:62:82:a9:7a:42:c5:69:c2:4f:35:67:85:0e:d2:97: 8d:46:58:ea:4e:ef:e5:ac:ee:86:6e:da:06:8b:7e:ad:22:14: e6:8b:c4:00:46:4a:24:d9:58:c7:9c:4f:68:6d:23:97:cf:42: 80:73:94:37:0d:0a:88:c0:3e:79:b3:f9:4d:e4:e0:0f:94:d2: a5:cb:2b:bb:25:e2:b8:e7:3e:7b:10:ad:00:46:5f:1e:0a:c0: f4:d5:0f:f6:24:e5:d9:79:7f:cd:97:d8:05:1d:a3:17:5e:b7: 39:2c:b2:fe:84:df:f3:88:e1:11:46:fe:bb:e1:a8:f5:db:0d: ca:45:8a:b5 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUVeTuMNAmjwp4M9R+1Dgv2Q4TqvcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQxNTAyMzQxM1oX DTI2MDQxNDAyMzkxM1owMzExMC8GA1UEAxMoQzMyNUQ3NjExMDEwMkE1MEZEMDE0 NzA0NkIzMjExMDQxNDNEQ0VBMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALARIfZmA9W0uClGnxp5RHg57ltwI90FRoMvvKlffOOqvI7pooLYPdslY8DG 71fzF6ZnTHaOPmI3/j9QUcn+bgQbYhZV6jRDHXXKtCP52j205O+hYoTAwJYxaVU7 ulz7+i9yqSTx5GmdQg+blHKSRr2d2Ddw/fe7pm0Lg/OB3hOydjl4nLOs1mHuDzb2 LmWJ6FlFgVDIIvceY5n1WTWBI/UvnuRcX0aQRP0aEhA078BzBSg7ipfuIyIhdhSB qMMOII3NSnhHPdIuugANlzhy7clJm4OB4eRGHZfSz5Oxqm4kxbbM1QpB3167i519 voGVaRE+EcHuDA5Kp0czTIOWOQECAwEAAaOCAeEwggHdMB0GA1UdDgQWBBTDJddh EBAqUP0BRwRrMhEEFD3OojAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzY5Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAaPfTjAPBAIAAjAJAwcAIAEN9TfAMA0GCSqGSIb3DQEBCwUAA4IB AQASiJP20ruQ6oQZAE2OYyNbJy4uPssJJ9xmELLRaTnwBQLofjNUgU1tBZX6GpKq SbnyxVYheogbnMtrnO1OBV0+lrSFYpEsppW0AZxNt02UkxtBV52bPpineHcSRtfH GwZ5wCUt4YGuZO7u/j1XhIYvvX0X/mO+RlwEEXGDrTsNG3xigql6QsVpwk81Z4UO 0peNRljqTu/lrO6GbtoGi36tIhTmi8QARkok2VjHnE9obSOXz0KAc5Q3DQqIwD55 s/lN5OAPlNKlyyu7JeK45z57EK0ARl8eCsD01Q/2JOXZeX/Nl9gFHaMXXrc5LLL+ hN/ziOERRv674aj12w3KRYq1 -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:20 2025 by rpki-client on console.sobornost.net