$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/AS45700.roa File: AS45700.roa (raw, json) Hash identifier: cp2rZrJf6e0mq/R0te/rkN2OATdL4cqCz7ZSa3GPTRk= Subject key identifier: E0:63:BA:2F:1C:FA:1D:80:9E:48:90:96:BE:C7:9A:2A:02:52:A3:40 Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512 Certificate serial: 6B01611287839148148F604186FEB32F2DBFA11A Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/AS45700.roa Signing time: Thu 18 Apr 2024 02:45:48 +0000 ROA not before: Thu 18 Apr 2024 02:40:48 +0000 ROA not after: Thu 17 Apr 2025 02:45:48 +0000 asID: 45700 IP address blocks: 119.11.204.0/23 maxlen: 23 119.11.204.0/24 maxlen: 24 119.11.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:01:61:12:87:83:91:48:14:8f:60:41:86:fe:b3:2f:2d:bf:a1:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512 Validity Not Before: Apr 18 02:40:48 2024 GMT Not After : Apr 17 02:45:48 2025 GMT Subject: CN=E063BA2F1CFA1D809E489096BEC79A2A0252A340 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:28:95:4c:e5:0b:e0:15:4e:22:b3:db:7d:14: d6:89:40:ae:47:ae:c1:c5:ce:14:47:e0:39:f6:ce: fd:e3:34:91:94:0b:06:26:b6:8a:33:93:11:dc:f3: f8:56:3a:c8:93:a0:71:22:ce:cc:87:0e:27:ef:6e: 88:bf:27:3c:8a:ce:7b:58:5f:fc:95:98:1c:71:14: 32:43:d9:8d:50:63:11:3a:0a:56:a4:02:ac:9e:3e: 62:bc:1c:7f:b9:d2:89:92:7a:41:fd:1c:c6:ea:c8: df:88:ab:38:f1:15:54:fc:79:f6:8c:45:32:28:bf: ff:12:e8:e4:50:1e:88:20:d5:c1:9a:86:79:b4:5e: 2b:dd:d5:f7:19:14:3f:dc:39:2d:0f:ea:fd:98:67: 9c:4a:ee:42:90:41:19:24:f7:13:10:1e:7f:d8:ff: c9:4f:9f:e6:56:50:cf:5a:b1:06:83:c2:56:70:1b: 93:1a:6d:30:e3:85:81:ff:61:b7:9b:30:23:d1:98: 13:22:ee:41:f6:6c:f8:c2:a0:fe:32:0f:8e:e4:51: 12:1e:96:60:1e:bc:f5:fb:07:c5:66:6e:3c:d1:28: ca:94:4d:29:f6:da:a1:85:1b:14:c9:c4:d1:7f:78: 2d:a5:b6:5f:b5:d7:98:27:05:26:04:b4:bd:5a:1f: 85:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:63:BA:2F:1C:FA:1D:80:9E:48:90:96:BE:C7:9A:2A:02:52:A3:40 X509v3 Authority Key Identifier: keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/AS45700.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.11.204.0/23 Signature Algorithm: sha256WithRSAEncryption 33:a8:84:84:f9:30:37:e7:03:3a:cf:d8:b5:64:1f:c2:90:c4: eb:75:97:bf:d6:a0:ed:8b:d6:8b:26:5c:d3:13:ba:db:81:04: 64:f8:6d:2e:06:9a:39:90:e7:38:53:73:bc:26:6d:a0:ce:86: b2:ad:cd:06:9a:11:16:70:11:96:45:1d:f6:08:44:f1:a0:96: 1d:23:e4:8a:c3:1e:4b:75:9e:6d:8b:9c:97:36:19:e1:85:0c: 7a:3f:bf:17:43:5b:39:61:02:ae:9d:17:7b:4d:4d:00:3f:42: 1a:67:15:67:53:dc:d2:18:4a:1a:d7:39:39:13:a1:6c:47:47: 38:c1:75:bc:07:ec:56:f2:e8:83:f5:11:9f:ab:21:74:51:0f: 28:c4:36:04:0e:b2:38:0b:29:87:41:02:2b:15:b2:81:e7:4b: ac:46:7a:ca:57:ba:e3:ee:59:06:dc:3b:6c:11:e6:97:45:aa: b9:f3:92:6f:f2:f5:fe:7d:76:3e:37:d4:72:68:fb:51:b1:7d: 0c:3a:89:94:93:61:c7:c0:b9:3f:cd:7a:06:49:c9:ef:19:24: 0f:b5:3b:a0:3f:a5:0d:74:0d:2e:aa:a6:22:0f:36:f4:44:88: 9f:f6:3b:4f:9d:b8:26:ce:d4:a1:30:c5:ff:1c:71:99:8e:a9: b7:0c:c4:c8 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUawFhEoeDkUgUj2BBhv6zLy2/oRowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI5ODY2NTA4RDZENjI0NTIzRURBRDJBMERFMUU4MkFF MkMzQjUxMjAeFw0yNDA0MTgwMjQwNDhaFw0yNTA0MTcwMjQ1NDhaMDMxMTAvBgNV BAMTKEUwNjNCQTJGMUNGQTFEODA5RTQ4OTA5NkJFQzc5QTJBMDI1MkEzNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDKJVM5QvgFU4is9t9FNaJQK5H rsHFzhRH4Dn2zv3jNJGUCwYmtoozkxHc8/hWOsiToHEizsyHDifvboi/JzyKzntY X/yVmBxxFDJD2Y1QYxE6ClakAqyePmK8HH+50omSekH9HMbqyN+IqzjxFVT8efaM RTIov/8S6ORQHogg1cGahnm0Xivd1fcZFD/cOS0P6v2YZ5xK7kKQQRkk9xMQHn/Y /8lPn+ZWUM9asQaDwlZwG5MabTDjhYH/YbebMCPRmBMi7kH2bPjCoP4yD47kURIe lmAevPX7B8VmbjzRKMqUTSn22qGFGxTJxNF/eC2ltl+115gnBSYEtL1aH4WlAgMB AAGjggH+MIIB+jAdBgNVHQ4EFgQU4GO6Lxz6HYCeSJCWvseaKgJSo0AwHwYDVR0j BBgwFoAUIphmUI1tYkUj7a0qDeHoKuLDtRIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZmI3MDgxOC0yMzY2LTQyZTAtOWRiZC0yNTQzODEwNjllNTcvMC8yMjk4NjY1MDhE NkQ2MjQ1MjNFREFEMkEwREUxRTgyQUUyQzNCNTEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI5ODY2NTA4RDZENjI0NTIzRURBRDJBMERFMUU4MkFFMkMz QjUxMi5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jl cG8tcnBraS5pZG5pYy5uZXQvcmVwby8yZmI3MDgxOC0yMzY2LTQyZTAtOWRiZC0y NTQzODEwNjllNTcvMC9BUzQ1NzAwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBdwvMMA0GCSqGSIb3DQEB CwUAA4IBAQAzqISE+TA35wM6z9i1ZB/CkMTrdZe/1qDti9aLJlzTE7rbgQRk+G0u Bpo5kOc4U3O8Jm2gzoayrc0GmhEWcBGWRR32CETxoJYdI+SKwx5LdZ5ti5yXNhnh hQx6P78XQ1s5YQKunRd7TU0AP0IaZxVnU9zSGEoa1zk5E6FsR0c4wXW8B+xW8uiD 9RGfqyF0UQ8oxDYEDrI4CymHQQIrFbKB50usRnrKV7rj7lkG3DtsEeaXRaq585Jv 8vX+fXY+N9RyaPtRsX0MOomUk2HHwLk/zXoGScnvGSQPtTugP6UNdA0uqqYiDzb0 RIif9jtPnbgmztShMMX/HHGZjqm3DMTI -----END CERTIFICATE-----Generated at Thu Nov 21 09:17:19 2024 by rpki-client on console-fra.rpki-client.org