$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153717.roa File: AS153717.roa (raw, json) Hash identifier: dnwcxF+uDfGOq+YPRE0tOaI0JNEoJpJdl91lGr9lTts= Subject key identifier: 07:95:DD:5E:D5:D5:83:36:60:CB:C9:50:04:AC:4B:75:85:FF:D3:0A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6B2743785EA2FB536B6E7D4F27E99B13F0C9E275 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153717.roa Signing time: Wed 26 Mar 2025 07:18:39 +0000 ROA not before: Wed 26 Mar 2025 07:13:39 +0000 ROA not after: Wed 25 Mar 2026 07:18:39 +0000 asID: 153717 IP address blocks: 163.223.142.0/23 maxlen: 24 2001:df5:4240::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:27:43:78:5e:a2:fb:53:6b:6e:7d:4f:27:e9:9b:13:f0:c9:e2:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 26 07:13:39 2025 GMT Not After : Mar 25 07:18:39 2026 GMT Subject: CN=0795DD5ED5D5833660CBC95004AC4B7585FFD30A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3c:f7:db:64:15:51:31:ba:4c:06:be:4e:b3: 8f:17:45:50:49:1b:cb:3f:f5:31:10:82:89:ba:8b: 91:d9:02:59:08:be:fe:1b:a0:52:b6:3a:bc:90:9d: 41:7b:7c:8c:a3:7b:0e:75:89:52:36:ed:d5:eb:c6: 88:d5:25:c8:10:61:42:a1:f7:4f:bf:4f:b9:74:0b: 53:9a:cb:d7:56:fb:cf:72:bb:1f:54:04:de:6c:04: ef:06:1b:b4:e4:4b:48:13:45:18:8d:74:47:50:e8: 54:8c:0e:28:a8:99:f9:2f:8a:c1:aa:5a:f8:7a:3c: fc:db:b0:ac:9c:6d:f9:2c:b1:eb:0a:76:c0:8f:ae: 2f:7e:84:2c:9a:c9:ec:05:f4:eb:fc:fa:0f:af:43: be:f5:b1:1d:0d:84:d1:c2:31:e5:af:20:d0:52:c1: 91:c1:66:65:36:a8:ee:b9:55:4a:37:b4:2b:32:fa: fe:0c:7e:b8:4d:0a:d6:1f:14:c0:cc:b0:2d:09:de: 27:ba:86:28:e1:20:9e:61:45:28:67:17:4b:21:e7: 57:27:2a:25:1f:48:fe:44:9a:97:1a:ad:b4:cc:c9: f6:1f:db:85:22:df:4f:07:c7:73:7f:40:55:ca:92: 60:5a:3e:b1:25:11:19:85:e4:35:d4:8d:7e:73:f5: 8f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:95:DD:5E:D5:D5:83:36:60:CB:C9:50:04:AC:4B:75:85:FF:D3:0A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153717.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.223.142.0/23 IPv6: 2001:df5:4240::/48 Signature Algorithm: sha256WithRSAEncryption 14:cb:86:39:c0:be:b9:06:10:06:19:7b:da:35:1a:91:49:47: d1:4f:f8:b8:43:49:d8:d9:f9:a6:26:9a:f6:47:ee:a6:b2:53: 0c:bc:82:44:48:25:dc:8a:a0:d3:1b:02:c3:c4:29:80:55:db: 61:fb:13:ee:d1:f1:b4:86:fe:f6:71:3b:d2:63:47:52:20:f8: 01:2e:69:74:e7:0a:9d:a8:a1:70:e1:29:dd:f8:e1:b5:5f:1f: 62:a0:d4:a0:80:a2:b5:5e:8d:70:4f:5d:75:51:ab:7e:98:3c: 13:58:2c:d0:06:b1:88:cf:21:83:42:9a:c7:f6:7d:08:87:61: 89:48:ba:b1:9f:87:0c:10:bf:32:67:7f:09:47:2a:5c:0f:dc: 6b:33:d9:e3:da:89:45:9b:4d:5f:d8:e5:6a:3f:89:f6:6a:a3: 50:21:8e:ee:a7:8c:6b:de:36:f3:8d:46:62:df:9c:5c:d5:91: 06:f7:7b:9c:75:62:86:32:14:34:af:4e:7e:e9:01:ca:d0:51: 09:9d:fe:8b:e5:04:15:56:46:3b:03:6a:c8:c1:d9:34:72:80: 6d:43:c4:2a:2d:74:eb:a8:e0:5e:44:4b:db:6f:e4:1f:59:29: 0d:52:b2:2c:61:70:4e:8e:c6:ac:30:e3:42:fd:b7:7e:3f:32: 56:2b:99:c6 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUaydDeF6i+1Nrbn1PJ+mbE/DJ4nUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDMyNjA3MTMzOVoX DTI2MDMyNTA3MTgzOVowMzExMC8GA1UEAxMoMDc5NURENUVENUQ1ODMzNjYwQ0JD OTUwMDRBQzRCNzU4NUZGRDMwQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL8899tkFVExukwGvk6zjxdFUEkbyz/1MRCCibqLkdkCWQi+/hugUrY6vJCd QXt8jKN7DnWJUjbt1evGiNUlyBBhQqH3T79PuXQLU5rL11b7z3K7H1QE3mwE7wYb tORLSBNFGI10R1DoVIwOKKiZ+S+Kwapa+Ho8/NuwrJxt+Syx6wp2wI+uL36ELJrJ 7AX06/z6D69DvvWxHQ2E0cIx5a8g0FLBkcFmZTao7rlVSje0KzL6/gx+uE0K1h8U wMywLQneJ7qGKOEgnmFFKGcXSyHnVycqJR9I/kSalxqttMzJ9h/bhSLfTwfHc39A VcqSYFo+sSURGYXkNdSNfnP1j8sCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBQHld1e 1dWDNmDLyVAErEt1hf/TCjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzcxNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAaPfjjAPBAIAAjAJAwcAIAEN9UJAMA0GCSqGSIb3DQEBCwUAA4IB AQAUy4Y5wL65BhAGGXvaNRqRSUfRT/i4Q0nY2fmmJpr2R+6mslMMvIJESCXciqDT GwLDxCmAVdth+xPu0fG0hv72cTvSY0dSIPgBLml05wqdqKFw4Snd+OG1Xx9ioNSg gKK1Xo1wT111Uat+mDwTWCzQBrGIzyGDQprH9n0Ih2GJSLqxn4cMEL8yZ38JRypc D9xrM9nj2olFm01f2OVqP4n2aqNQIY7up4xr3jbzjUZi35xc1ZEG93ucdWKGMhQ0 r05+6QHK0FEJnf6L5QQVVkY7A2rIwdk0coBtQ8QqLXTrqOBeREvbb+QfWSkNUrIs YXBOjsasMONC/bd+PzJWK5nG -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:20 2025 by rpki-client on console.sobornost.net