$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152083.roa File: AS152083.roa (raw, json) Hash identifier: ZQ7a0i5I0ECaNHWzMvE7Dtgwsi+ij8i1SDc6pbUbRA4= Subject key identifier: E7:C6:6A:D1:55:25:AE:98:AF:3B:D5:DE:88:C5:B0:FA:98:A7:4D:CC Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 0AB904D5B7E98FF9A56B3C46278BBB73078463B9 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152083.roa Signing time: Thu 06 Feb 2025 10:44:47 +0000 ROA not before: Thu 06 Feb 2025 10:39:47 +0000 ROA not after: Thu 05 Feb 2026 10:44:47 +0000 asID: 152083 IP address blocks: 157.10.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 10:49:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:b9:04:d5:b7:e9:8f:f9:a5:6b:3c:46:27:8b:bb:73:07:84:63:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 6 10:39:47 2025 GMT Not After : Feb 5 10:44:47 2026 GMT Subject: CN=E7C66AD15525AE98AF3BD5DE88C5B0FA98A74DCC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:2e:85:1c:b9:69:4a:5c:a0:28:1d:6e:89:ba: 85:ac:c0:5c:c2:f2:73:79:03:a4:20:5c:07:bc:60: 9b:f3:86:08:5c:0a:0d:ae:57:9c:b4:d1:a2:b3:9b: 7f:cd:e6:28:5f:1c:47:82:94:fe:bd:28:af:fe:c0: 83:4b:30:a3:c8:8b:ea:65:65:ff:08:8e:26:6f:97: dd:85:8d:9c:34:27:87:b8:ad:1c:31:ff:6e:7e:c0: 7c:e9:1f:51:65:28:32:5f:4d:dc:45:38:9f:36:7b: 2d:f7:91:ea:2f:a1:17:e8:fe:2b:f1:b1:77:d1:17: cb:cf:3e:08:5f:4c:ae:00:74:e6:b8:9b:da:75:9a: 8a:48:97:ec:80:28:34:5a:08:c2:70:8e:76:87:d2: fb:0b:84:cb:de:f4:10:e3:70:e5:9f:1f:28:9a:c1: ac:44:88:47:2b:36:9d:99:09:01:2d:05:cc:13:44: fa:a6:aa:23:86:c9:69:90:60:2f:00:c5:02:25:fd: 9b:f9:c9:d7:df:59:4c:cb:4a:de:0f:61:fa:b3:3c: 0b:0f:ad:00:c3:66:8d:88:e6:fb:4c:09:83:2b:4e: 06:7c:83:49:37:a8:0e:09:1a:71:f8:ed:97:f9:34: c7:a2:eb:1e:a0:70:c9:9d:4a:17:ec:83:8a:0e:2e: ab:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:C6:6A:D1:55:25:AE:98:AF:3B:D5:DE:88:C5:B0:FA:98:A7:4D:CC X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152083.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.157.0/24 Signature Algorithm: sha256WithRSAEncryption 27:c0:1f:2f:06:42:79:3a:6a:5f:f7:3b:ee:63:e4:aa:6e:e1: eb:47:24:70:2e:05:5a:54:a5:f1:08:8c:fd:31:cf:46:b4:a3: a7:56:32:eb:38:7f:37:14:3c:0c:00:9c:b4:33:d1:30:8e:12: 04:b6:56:d7:5f:07:0e:89:c2:6d:f6:05:f2:96:80:3a:fc:5e: e9:a3:62:74:3f:f5:87:6d:19:6e:ed:98:50:c1:b6:c8:7f:d2: 56:e9:c9:e5:b9:93:47:71:0e:7d:b1:e0:1d:32:3c:25:3d:72: d4:cf:52:7d:34:1c:cc:83:f4:be:22:c8:55:0b:d9:43:79:6e: ab:6f:5f:33:e8:cb:85:a5:fa:c6:f3:ca:ac:77:6d:9a:e5:7c: ff:d2:82:33:4c:b4:92:68:6c:33:82:76:06:ad:08:d9:57:4d: 6e:57:ca:7c:49:30:3b:b6:63:f2:92:f3:1e:b1:2a:d7:29:16: 2a:f3:3f:60:6a:46:fe:dd:de:b3:a4:d3:07:44:ad:b1:e4:a7: a4:47:53:39:c0:22:82:b4:54:f1:be:67:36:7b:b6:81:6b:66: 67:02:03:e8:d3:63:62:71:69:ae:8a:be:5d:1f:8a:dd:82:8c: b8:29:a8:f1:2e:7e:5b:1e:08:bc:34:9b:33:07:5e:80:d8:50: 0c:40:aa:c5 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUCrkE1bfpj/mlazxGJ4u7cweEY7kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIwNjEwMzk0N1oX DTI2MDIwNTEwNDQ0N1owMzExMC8GA1UEAxMoRTdDNjZBRDE1NTI1QUU5OEFGM0JE NURFODhDNUIwRkE5OEE3NERDQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANsuhRy5aUpcoCgdbom6hazAXMLyc3kDpCBcB7xgm/OGCFwKDa5XnLTRorOb f83mKF8cR4KU/r0or/7Ag0swo8iL6mVl/wiOJm+X3YWNnDQnh7itHDH/bn7AfOkf UWUoMl9N3EU4nzZ7LfeR6i+hF+j+K/Gxd9EXy88+CF9MrgB05rib2nWaikiX7IAo NFoIwnCOdofS+wuEy970EONw5Z8fKJrBrESIRys2nZkJAS0FzBNE+qaqI4bJaZBg LwDFAiX9m/nJ199ZTMtK3g9h+rM8Cw+tAMNmjYjm+0wJgytOBnyDSTeoDgkacfjt l/k0x6LrHqBwyZ1KF+yDig4uqxUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTnxmrR VSWumK871d6IxbD6mKdNzDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MjA4My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAJ0KnTANBgkqhkiG9w0BAQsFAAOCAQEAJ8AfLwZCeTpqX/c77mPk qm7h60ckcC4FWlSl8QiM/THPRrSjp1Yy6zh/NxQ8DACctDPRMI4SBLZW118HDonC bfYF8paAOvxe6aNidD/1h20Zbu2YUMG2yH/SVunJ5bmTR3EOfbHgHTI8JT1y1M9S fTQczIP0viLIVQvZQ3luq29fM+jLhaX6xvPKrHdtmuV8/9KCM0y0kmhsM4J2Bq0I 2VdNblfKfEkwO7Zj8pLzHrEq1ykWKvM/YGpG/t3es6TTB0StseSnpEdTOcAigrRU 8b5nNnu2gWtmZwID6NNjYnFproq+XR+K3YKMuCmo8S5+Wx4IvDSbMwdegNhQDECq xQ== -----END CERTIFICATE-----Generated at Tue Nov 4 21:00:29 2025 by rpki-client