$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45288.roa File: AS45288.roa (raw, json) Hash identifier: xHHXNvO/7YF0DrNxEkEyMY7NlENrnow3MdzBDG7ygqs= Subject key identifier: 5C:49:F7:6C:12:28:F7:71:8D:98:76:80:9F:58:50:E5:32:D0:B9:F1 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3EF2131C0A1043BFDC8840502B34F021B329AB71 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45288.roa Signing time: Tue 11 Mar 2025 07:44:21 +0000 ROA not before: Tue 11 Mar 2025 07:39:21 +0000 ROA not after: Tue 10 Mar 2026 07:44:21 +0000 asID: 45288 IP address blocks: 202.164.222.0/23 maxlen: 24 202.164.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:f2:13:1c:0a:10:43:bf:dc:88:40:50:2b:34:f0:21:b3:29:ab:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Mar 11 07:39:21 2025 GMT Not After : Mar 10 07:44:21 2026 GMT Subject: CN=5C49F76C1228F7718D9876809F5850E532D0B9F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:48:2c:16:f0:6f:60:8c:7c:4d:4b:b1:40:61: 1b:f7:3d:6f:cc:3b:e0:eb:2e:e7:6d:de:f8:b8:b6: e8:99:39:bf:51:5d:31:b6:08:fb:32:7d:f0:58:de: c6:73:4b:f8:67:6f:12:eb:93:a9:5f:87:ed:9e:a2: f4:18:2e:44:94:1c:9e:05:3f:50:52:7c:1c:d9:a6: 94:f3:48:e8:cc:f7:8e:0e:de:4a:26:a3:0d:76:20: c1:4e:88:a9:93:d6:62:ab:78:4b:54:f0:83:7b:88: 72:ca:c0:d9:07:35:17:86:e9:8c:8c:fb:c5:ea:72: e8:7d:fe:fb:83:17:f6:f0:0c:d0:1d:1c:46:72:b5: ff:32:d3:f1:8a:a1:ff:58:95:b0:db:2e:74:2c:5b: ce:5e:88:a0:cc:65:e2:0d:d3:49:2f:78:1d:50:a4: 08:6c:8b:99:30:6d:de:92:ee:bb:b5:72:c2:a2:09: 1a:20:bc:25:1c:9e:20:18:68:dc:07:a0:d3:26:e6: 71:c9:34:e8:85:76:66:5d:b9:e3:41:5c:8b:9e:c8: e3:7c:d1:ca:a2:22:92:06:e7:dc:fe:ef:4e:7d:36: a9:87:be:cb:2a:89:46:1d:ad:63:f7:45:ab:45:93: 8d:cb:9c:81:99:0b:b0:71:00:a0:bb:a6:2e:b3:38: c2:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:49:F7:6C:12:28:F7:71:8D:98:76:80:9F:58:50:E5:32:D0:B9:F1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45288.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.164.222.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:9a:e7:a0:80:f6:eb:f5:b1:99:90:aa:72:fe:5c:33:97:24: fe:12:37:d3:a9:87:99:dd:a0:55:c2:d1:4e:f9:4e:11:29:8e: dd:b3:8e:64:e6:8b:f9:d2:74:a6:9a:19:3f:3b:b1:5a:eb:58: 34:8b:0b:32:57:5a:c7:fe:ef:ee:35:63:39:94:e4:6b:ce:42: d9:27:c5:46:5d:af:86:a0:d4:a2:5e:9d:e7:01:2f:ae:7a:ca: 96:89:4b:3b:eb:be:36:93:bd:7d:d5:3f:05:b5:23:af:4f:da: 01:e2:87:0b:8b:47:19:58:9d:3d:80:06:ef:e2:64:8d:be:6e: c1:f7:f8:ac:23:70:e1:92:e8:a8:42:ba:f2:ef:96:7a:8a:8b: e2:e6:d1:3a:8a:c3:6f:b6:f1:48:ef:54:2d:d3:41:ea:72:11: e8:06:4e:01:52:6d:a8:04:d4:9b:ea:1f:21:85:7f:59:2f:ba: b3:41:81:64:f4:39:9d:b5:3a:05:52:4f:a1:61:07:12:6a:7c: 12:f5:11:12:6e:90:9b:8d:c0:8e:72:16:c1:95:f3:6c:37:0f: b7:75:cd:11:fc:56:b8:58:3b:e1:c0:14:30:6f:58:d9:57:b6: 78:59:84:70:2c:dc:3d:f2:74:de:48:85:29:09:72:5b:4b:0e: 75:03:ed:ac -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUPvITHAoQQ7/ciEBQKzTwIbMpq3EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDMxMTA3MzkyMVoX DTI2MDMxMDA3NDQyMVowMzExMC8GA1UEAxMoNUM0OUY3NkMxMjI4Rjc3MThEOTg3 NjgwOUY1ODUwRTUzMkQwQjlGMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANBILBbwb2CMfE1LsUBhG/c9b8w74Osu523e+Li26Jk5v1FdMbYI+zJ98Fje xnNL+GdvEuuTqV+H7Z6i9BguRJQcngU/UFJ8HNmmlPNI6Mz3jg7eSiajDXYgwU6I qZPWYqt4S1Twg3uIcsrA2Qc1F4bpjIz7xepy6H3++4MX9vAM0B0cRnK1/zLT8Yqh /1iVsNsudCxbzl6IoMxl4g3TSS94HVCkCGyLmTBt3pLuu7VywqIJGiC8JRyeIBho 3Aeg0ybmcck06IV2Zl2540Fci57I43zRyqIikgbn3P7vTn02qYe+yyqJRh2tY/dF q0WTjcucgZkLsHEAoLumLrM4wusCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBRcSfds Eij3cY2YdoCfWFDlMtC58TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1Mjg4LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQByqTeMA0GCSqGSIb3DQEBCwUAA4IBAQAOmueggPbr9bGZkKpy/lwz lyT+EjfTqYeZ3aBVwtFO+U4RKY7ds45k5ov50nSmmhk/O7Fa61g0iwsyV1rH/u/u NWM5lORrzkLZJ8VGXa+GoNSiXp3nAS+uesqWiUs76742k7191T8FtSOvT9oB4ocL i0cZWJ09gAbv4mSNvm7B9/isI3DhkuioQrry75Z6iovi5tE6isNvtvFI71Qt00Hq chHoBk4BUm2oBNSb6h8hhX9ZL7qzQYFk9DmdtToFUk+hYQcSanwS9RESbpCbjcCO chbBlfNsNw+3dc0R/Fa4WDvhwBQwb1jZV7Z4WYRwLNw98nTeSIUpCXJbSw51A+2s -----END CERTIFICATE-----Generated at Sat Apr 5 08:32:10 2025 by rpki-client