$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45706.roa File: AS45706.roa (raw, json) Hash identifier: B6ihKCRPQDO9IsiRwajpFYTY8pbnfZ9Ni+tJsMu812o= Subject key identifier: 2C:15:3E:87:CA:32:69:BF:0A:1B:02:40:72:A6:43:9C:85:B5:7D:91 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 19A5DD059F600E41CB3F543E72F1B76471CA43E9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45706.roa Signing time: Tue 22 Aug 2023 07:34:18 +0000 ROA not before: Tue 22 Aug 2023 07:29:18 +0000 ROA not after: Tue 20 Aug 2024 07:34:18 +0000 asID: 45706 IP address blocks: 103.244.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 02:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:a5:dd:05:9f:60:0e:41:cb:3f:54:3e:72:f1:b7:64:71:ca:43:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 22 07:29:18 2023 GMT Not After : Aug 20 07:34:18 2024 GMT Subject: CN=2C153E87CA3269BF0A1B024072A6439C85B57D91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:31:a9:04:89:97:c4:16:76:4b:2a:a0:f8:2d: ce:60:52:32:2c:d4:15:82:cd:9e:9d:a3:28:f4:95: a3:ee:3a:f0:45:7d:d6:75:41:d1:cd:a6:6f:61:1e: 20:44:3e:f3:64:a5:61:35:8f:2b:9c:76:76:39:af: 28:e7:9c:f8:ec:06:54:e4:e4:3f:05:64:59:14:95: 07:79:05:8a:0a:ac:ea:1b:ed:ea:02:c8:9d:34:69: 1d:6d:68:b3:a0:be:b7:62:b3:c8:e9:d5:fd:57:76: 05:c7:f6:a5:96:3f:7d:65:fd:af:6b:a3:99:cd:12: f4:5e:a3:6f:a0:18:90:89:92:68:a4:10:a1:26:fd: 0a:7b:d2:0b:9d:ca:69:51:89:57:a2:01:fb:ad:1f: c9:eb:3d:27:5c:90:a7:a2:3b:c2:92:cb:b3:32:9f: 2b:2a:f2:f3:c2:10:35:f6:5b:23:37:a3:f1:5b:ce: 47:a3:a6:fe:24:c6:13:92:8e:84:62:b8:96:42:9e: e1:a9:41:be:59:ff:f5:9d:1b:70:d2:a4:0d:62:a1: 35:9d:08:3f:28:13:1a:4a:60:6f:f5:5d:d1:f0:76: 58:7f:63:50:d2:6c:67:04:2e:3b:64:18:d0:0e:9b: 8e:36:35:c9:f4:ec:0c:3b:d2:24:cc:57:17:05:3b: a3:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:15:3E:87:CA:32:69:BF:0A:1B:02:40:72:A6:43:9C:85:B5:7D:91 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45706.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.216.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:11:e9:32:ff:c9:fb:fc:00:88:ee:64:99:09:14:3d:6a:2b: a8:32:1e:04:a7:33:9f:1d:76:d3:84:3e:af:96:d0:d8:9d:40: 09:be:55:46:ab:a2:a2:61:ad:dc:74:66:30:02:da:3a:c2:5b: d9:d2:7d:10:fa:55:43:25:1a:f0:e5:bb:45:77:96:96:c2:30: bc:e5:65:0e:09:ed:86:86:4c:3d:22:9e:30:16:44:95:b0:df: 47:5d:f7:ff:34:b8:73:1b:88:6d:b9:2b:c0:f0:9f:84:05:71: 5f:d9:cd:b0:f3:90:8d:06:8b:89:c1:1a:e6:13:9b:29:af:4a: dd:ef:b5:a1:9e:3b:fe:4e:ee:ce:1c:e2:50:cd:04:0a:81:68: 59:12:66:97:15:da:68:fe:92:65:b3:96:44:10:3c:7c:9f:b8: dd:dc:0d:f4:53:96:c9:2d:3b:48:0c:e9:50:8f:82:90:c0:46: 61:30:4a:bd:ee:a1:be:31:b5:b2:94:d2:77:b3:26:7b:67:a2: 71:13:ba:08:42:31:0f:b0:d0:4b:dc:8d:7f:e3:c5:97:88:d5: a1:50:81:f3:07:81:a9:93:f8:11:64:7b:30:7e:06:7a:c0:a1: 2c:e4:85:e4:91:04:2b:3f:82:89:55:50:58:de:7f:31:f3:0f: c5:8d:49:7a -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUGaXdBZ9gDkHLP1Q+cvG3ZHHKQ+kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgyMjA3MjkxOFoX DTI0MDgyMDA3MzQxOFowMzExMC8GA1UEAxMoMkMxNTNFODdDQTMyNjlCRjBBMUIw MjQwNzJBNjQzOUM4NUI1N0Q5MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK8xqQSJl8QWdksqoPgtzmBSMizUFYLNnp2jKPSVo+468EV91nVB0c2mb2Ee IEQ+82SlYTWPK5x2djmvKOec+OwGVOTkPwVkWRSVB3kFigqs6hvt6gLInTRpHW1o s6C+t2KzyOnV/Vd2Bcf2pZY/fWX9r2ujmc0S9F6jb6AYkImSaKQQoSb9CnvSC53K aVGJV6IB+60fyes9J1yQp6I7wpLLszKfKyry88IQNfZbIzej8VvOR6Om/iTGE5KO hGK4lkKe4alBvln/9Z0bcNKkDWKhNZ0IPygTGkpgb/Vd0fB2WH9jUNJsZwQuO2QY 0A6bjjY1yfTsDDvSJMxXFwU7o2sCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBQsFT6H yjJpvwobAkBypkOchbV9kTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzA2LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ/TYMA0GCSqGSIb3DQEBCwUAA4IBAQBOEeky/8n7/ACI7mSZCRQ9 aiuoMh4EpzOfHXbThD6vltDYnUAJvlVGq6KiYa3cdGYwAto6wlvZ0n0Q+lVDJRrw 5btFd5aWwjC85WUOCe2Ghkw9Ip4wFkSVsN9HXff/NLhzG4htuSvA8J+EBXFf2c2w 85CNBouJwRrmE5spr0rd77Whnjv+Tu7OHOJQzQQKgWhZEmaXFdpo/pJls5ZEEDx8 n7jd3A30U5bJLTtIDOlQj4KQwEZhMEq97qG+MbWylNJ3syZ7Z6JxE7oIQjEPsNBL 3I1/48WXiNWhUIHzB4Gpk/gRZHswfgZ6wKEs5IXkkQQrP4KJVVBY3n8x8w/FjUl6 -----END CERTIFICATE-----Generated at Sat Apr 27 10:13:11 2024 by rpki-client on console-ams.rpki-client.org