$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS46044.roa File: AS46044.roa (raw, json) Hash identifier: 8LzEC3R9l052uwBVZOnaixSty1GBlfL0EwmUP+mmWUg= Subject key identifier: D7:CE:E2:BC:ED:BD:5D:86:D3:46:F1:03:4A:64:BB:FB:85:CE:96:04 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2136C0F67AEB87796AFB438AAA7FE88BAF7BBE69 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS46044.roa Signing time: Tue 09 Jan 2024 04:00:04 +0000 ROA not before: Tue 09 Jan 2024 03:55:04 +0000 ROA not after: Tue 07 Jan 2025 04:00:04 +0000 asID: 46044 IP address blocks: 111.223.252.0/22 maxlen: 24 2405:9940::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:36:c0:f6:7a:eb:87:79:6a:fb:43:8a:aa:7f:e8:8b:af:7b:be:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:04 2024 GMT Not After : Jan 7 04:00:04 2025 GMT Subject: CN=D7CEE2BCEDBD5D86D346F1034A64BBFB85CE9604 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:53:35:02:ee:10:33:cb:51:9e:15:58:af:74: 49:e9:7c:c2:a2:6f:79:45:6e:08:43:fc:31:8f:fe: 12:5b:14:1e:9a:82:e7:ac:cf:7a:a9:57:6f:45:5a: af:1a:ad:88:7e:eb:85:c7:dc:d1:b4:52:71:84:b5: c8:8b:92:de:89:1b:fc:48:40:45:09:5a:e6:b2:01: b8:81:bc:fc:20:9b:8e:66:bb:45:84:db:9d:da:ef: c5:00:fb:d8:23:f0:d8:20:f9:cb:98:c6:7c:7b:ef: 1d:d0:16:43:d4:e3:64:82:19:df:72:1b:a9:fa:29: 4e:f8:bf:49:65:40:ea:af:b9:45:22:02:ce:fc:ea: 86:cb:5c:9f:a7:c6:c1:1d:65:8b:ff:e3:eb:65:f1: 85:29:be:7b:56:e6:9c:ad:d8:f6:04:7a:35:83:0d: 2b:0d:b8:0d:52:9e:d2:48:bd:f8:81:08:2a:02:70: 64:1e:f5:ea:56:56:32:87:e4:27:d7:be:71:89:6e: 25:ab:06:fb:b8:8e:b0:0a:54:eb:5c:e9:be:b7:bd: 9f:a9:f4:85:5a:58:ca:d2:83:61:2d:d1:f2:2a:12: 3d:6f:a3:9b:d8:cc:33:38:ff:37:4b:e3:70:44:ee: 66:c9:51:f3:19:81:00:93:76:b9:02:76:eb:7f:fd: 54:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:CE:E2:BC:ED:BD:5D:86:D3:46:F1:03:4A:64:BB:FB:85:CE:96:04 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS46044.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 111.223.252.0/22 IPv6: 2405:9940::/32 Signature Algorithm: sha256WithRSAEncryption 05:34:ee:98:51:01:b4:51:05:6b:bd:7a:b0:c0:e5:f8:c2:92: c6:4b:9b:42:31:89:b2:b8:8e:fb:ad:1a:ee:76:cd:34:2b:27: 85:13:e1:ea:d0:59:a0:08:fb:35:83:da:fa:24:86:08:8f:19: 4f:ea:de:a4:3e:63:ce:9c:78:e3:66:db:0a:4f:a3:87:8f:b6: 22:87:17:34:56:cf:32:f6:e3:8f:ab:d3:03:5c:f2:00:05:77: 7b:31:13:e3:28:cd:f0:83:f8:f8:fd:56:3f:d6:0d:38:d1:f5: 91:48:b9:91:b5:eb:26:d2:3e:26:db:7f:5f:f2:c6:6f:ce:ae: 21:5b:35:9a:65:9e:84:00:d6:0d:1e:c7:5b:ad:62:c7:11:09: b3:9b:15:78:8d:9c:9a:1d:22:3c:70:fc:6a:cb:e1:30:e3:fe: f0:84:b2:24:f6:86:24:4b:fd:9c:26:53:40:e4:d2:bb:91:b7: 3f:19:82:3e:0f:b1:43:45:2c:e3:19:d2:87:20:d2:7b:5a:51: 44:72:75:f4:1f:06:af:20:f1:34:a4:59:64:c9:8a:01:19:31: 74:87:cb:1d:8d:8e:0a:2e:aa:cb:0b:fc:8f:93:78:64:d0:65: c1:3e:4b:67:09:11:27:a5:d8:11:f2:dd:4a:60:3b:16:76:94: 5b:8a:84:2d -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgIUITbA9nrrh3lq+0OKqn/oi697vmkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwNFoX DTI1MDEwNzA0MDAwNFowMzExMC8GA1UEAxMoRDdDRUUyQkNFREJENUQ4NkQzNDZG MTAzNEE2NEJCRkI4NUNFOTYwNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKJTNQLuEDPLUZ4VWK90Sel8wqJveUVuCEP8MY/+ElsUHpqC56zPeqlXb0Va rxqtiH7rhcfc0bRScYS1yIuS3okb/EhARQla5rIBuIG8/CCbjma7RYTbndrvxQD7 2CPw2CD5y5jGfHvvHdAWQ9TjZIIZ33IbqfopTvi/SWVA6q+5RSICzvzqhstcn6fG wR1li//j62XxhSm+e1bmnK3Y9gR6NYMNKw24DVKe0ki9+IEIKgJwZB716lZWMofk J9e+cYluJasG+7iOsApU61zpvre9n6n0hVpYytKDYS3R8ioSPW+jm9jMMzj/N0vj cETuZslR8xmBAJN2uQJ263/9VO8CAwEAAaOCAd4wggHaMB0GA1UdDgQWBBTXzuK8 7b1dhtNG8QNKZLv7hc6WBDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ2MDQ0LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCb9/8MA0EAgACMAcDBQAkBZlAMA0GCSqGSIb3DQEBCwUAA4IBAQAF NO6YUQG0UQVrvXqwwOX4wpLGS5tCMYmyuI77rRruds00KyeFE+Hq0FmgCPs1g9r6 JIYIjxlP6t6kPmPOnHjjZtsKT6OHj7Yihxc0Vs8y9uOPq9MDXPIABXd7MRPjKM3w g/j4/VY/1g040fWRSLmRtesm0j4m239f8sZvzq4hWzWaZZ6EANYNHsdbrWLHEQmz mxV4jZyaHSI8cPxqy+Ew4/7whLIk9oYkS/2cJlNA5NK7kbc/GYI+D7FDRSzjGdKH INJ7WlFEcnX0HwavIPE0pFlkyYoBGTF0h8sdjY4KLqrLC/yPk3hk0GXBPktnCREn pdgR8t1KYDsWdpRbioQt -----END CERTIFICATE-----Generated at Fri May 3 03:08:32 2024 by rpki-client on console-ams.rpki-client.org