$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS17450.roa File: AS17450.roa (raw, json) Hash identifier: kdaRXV4/oBkG3OHj4ce8BGLMp3fjP55NuLiZpRKg8A4= Subject key identifier: D5:EE:4F:95:41:89:D5:F7:52:6D:0A:31:54:A5:18:39:F9:AB:06:88 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1BF90B8E58AC7C1285936775941AF0A5C576E4DF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS17450.roa Signing time: Wed 24 Jul 2024 04:43:39 +0000 ROA not before: Wed 24 Jul 2024 04:38:39 +0000 ROA not after: Wed 23 Jul 2025 04:43:39 +0000 asID: 17450 IP address blocks: 103.151.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:f9:0b:8e:58:ac:7c:12:85:93:67:75:94:1a:f0:a5:c5:76:e4:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 24 04:38:39 2024 GMT Not After : Jul 23 04:43:39 2025 GMT Subject: CN=D5EE4F954189D5F7526D0A3154A51839F9AB0688 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5a:35:2e:09:68:e3:65:c4:1f:f5:dd:6f:3f: d2:ee:af:73:48:65:3e:1d:03:1d:37:96:69:05:4f: 6a:9f:47:75:fa:57:8b:f4:e2:f5:8f:11:83:9f:bf: 01:7f:21:96:0c:53:f8:94:c3:0c:a5:ec:79:5e:61: 0a:f1:1d:f7:78:89:f3:81:6b:e0:a7:8c:e6:bf:da: ff:f5:a2:5b:0a:ec:9b:55:60:55:9c:60:ce:73:cc: d0:c3:2f:4f:7d:15:14:ec:e1:de:08:52:d4:c7:ea: ae:0e:3d:24:50:7c:d1:4f:a0:e6:46:f8:51:c8:07: eb:cf:e1:a2:24:bb:39:76:c2:34:09:07:0c:31:51: e5:66:f8:ea:05:0f:96:53:6d:74:c0:2e:c9:42:48: 8a:b4:19:db:be:bd:a7:96:98:0f:7d:78:71:a3:8e: f4:8d:0e:6f:1d:fb:d6:05:f6:15:84:f7:07:f7:7b: bc:98:e2:03:b9:e3:91:64:a4:4e:6e:c8:3a:e0:9d: c8:d2:16:25:c8:bb:75:d8:3c:29:34:4b:a5:56:40: 7f:3e:dc:0b:67:54:38:4e:05:a0:48:1d:6e:e7:86: 21:69:24:72:5f:fd:a3:6e:97:e7:63:f0:5c:60:27: 54:c7:50:59:29:7b:54:40:f7:20:0b:23:c3:2f:bd: e5:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:EE:4F:95:41:89:D5:F7:52:6D:0A:31:54:A5:18:39:F9:AB:06:88 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS17450.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.91.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:ac:18:5b:e6:b9:69:09:b1:a4:2d:3b:b4:e3:bd:0f:b1:99: c5:b0:92:9b:78:b6:00:9c:45:a6:de:16:a1:c5:e7:18:30:0b: 8e:33:af:ed:0a:c3:90:46:01:bc:e9:66:21:c3:eb:eb:b9:25: 7f:43:18:52:06:d2:43:07:d6:78:4a:ce:9e:0c:a7:54:73:a8: a3:91:af:d7:43:ad:d1:75:e9:fc:15:4b:68:76:88:a8:62:db: 5d:10:63:f7:34:57:d7:b6:ff:67:f5:99:8e:8d:84:0d:c7:6e: ee:ea:b3:91:6b:20:8f:39:dc:18:34:96:c7:69:8e:7b:5b:c1: 4f:4b:c3:8d:61:fb:61:6b:77:ac:63:cc:78:18:d9:6b:3f:f1: 1a:c1:c0:2d:ca:16:cb:72:4d:a6:06:ee:66:5b:12:4d:90:de: 70:db:65:0e:8e:09:1c:75:db:dd:7e:4d:b2:8d:db:15:73:79: 40:1e:c5:ca:80:25:3c:5c:1b:ee:23:ac:ff:55:a4:9d:f5:98: bc:53:0c:aa:b7:b7:a1:6a:b8:b2:90:3b:04:f9:f9:75:80:3b: 03:6a:62:7e:ca:15:a8:b5:9b:1a:04:ae:12:17:c3:89:7a:a0: f5:76:2e:f1:60:70:6b:b3:f1:fa:7e:83:81:53:8c:b4:2a:2e: 12:2e:32:40 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUG/kLjlisfBKFk2d1lBrwpcV25N8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcyNDA0MzgzOVoX DTI1MDcyMzA0NDMzOVowMzExMC8GA1UEAxMoRDVFRTRGOTU0MTg5RDVGNzUyNkQw QTMxNTRBNTE4MzlGOUFCMDY4ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMNaNS4JaONlxB/13W8/0u6vc0hlPh0DHTeWaQVPap9HdfpXi/Ti9Y8Rg5+/ AX8hlgxT+JTDDKXseV5hCvEd93iJ84Fr4KeM5r/a//WiWwrsm1VgVZxgznPM0MMv T30VFOzh3ghS1Mfqrg49JFB80U+g5kb4UcgH68/hoiS7OXbCNAkHDDFR5Wb46gUP llNtdMAuyUJIirQZ2769p5aYD314caOO9I0Obx371gX2FYT3B/d7vJjiA7njkWSk Tm7IOuCdyNIWJci7ddg8KTRLpVZAfz7cC2dUOE4FoEgdbueGIWkkcl/9o26X52Pw XGAnVMdQWSl7VED3IAsjwy+95VcCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBTV7k+V QYnV91JtCjFUpRg5+asGiDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE3NDUwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ5dbMA0GCSqGSIb3DQEBCwUAA4IBAQAPrBhb5rlpCbGkLTu0470P sZnFsJKbeLYAnEWm3hahxecYMAuOM6/tCsOQRgG86WYhw+vruSV/QxhSBtJDB9Z4 Ss6eDKdUc6ijka/XQ63Rden8FUtodoioYttdEGP3NFfXtv9n9ZmOjYQNx27u6rOR ayCPOdwYNJbHaY57W8FPS8ONYftha3esY8x4GNlrP/EawcAtyhbLck2mBu5mWxJN kN5w22UOjgkcddvdfk2yjdsVc3lAHsXKgCU8XBvuI6z/VaSd9Zi8Uwyqt7ehariy kDsE+fl1gDsDamJ+yhWotZsaBK4SF8OJeqD1di7xYHBrs/H6foOBU4y0Ki4SLjJA -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:50 2024 by rpki-client on console-ams.rpki-client.org