$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45288.roa File: AS45288.roa (raw, json) Hash identifier: kb1UvwsV+M18iKlSRYeqrcuBgNel9s+n1cG5F0USaVw= Subject key identifier: 1F:5A:37:19:AA:9B:BD:3E:27:12:6B:77:0E:BB:F0:B8:D6:53:61:43 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 508FA7ABFDB07DE7130AB2CA54240C26569B8001 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45288.roa Signing time: Fri 18 Oct 2024 06:37:05 +0000 ROA not before: Fri 18 Oct 2024 06:32:05 +0000 ROA not after: Fri 17 Oct 2025 06:37:05 +0000 asID: 45288 IP address blocks: 202.164.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:8f:a7:ab:fd:b0:7d:e7:13:0a:b2:ca:54:24:0c:26:56:9b:80:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 18 06:32:05 2024 GMT Not After : Oct 17 06:37:05 2025 GMT Subject: CN=1F5A3719AA9BBD3E27126B770EBBF0B8D6536143 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:87:74:72:47:7b:05:7d:d8:21:43:88:42:4b: 12:54:6f:35:c8:7e:2e:f8:a5:55:3f:36:5b:60:a3: be:0b:24:dc:c8:5d:6f:79:79:5c:3a:cf:91:2b:61: 09:fd:c9:8f:20:ad:1b:3e:69:db:4a:6d:04:ec:7e: ed:c5:79:e7:cb:b8:6f:54:b1:a1:d5:4b:b1:6a:96: 91:4f:4a:61:5b:b5:5d:cb:da:63:b1:04:b5:f8:68: 2a:3c:15:17:fd:b2:55:a8:c0:a6:b8:36:4a:3c:d2: 11:e1:8e:70:5f:e9:39:cb:b1:bc:44:cc:7f:22:31: 39:8e:b7:87:be:5d:24:55:d3:9c:11:b2:af:51:dd: 32:af:59:3a:ec:ab:a5:8c:a9:31:c8:60:5d:ed:99: 07:2e:c2:e3:ff:f0:df:32:24:ea:01:2e:e5:72:a8: b3:0a:b8:c9:7a:ed:60:8f:8f:f4:d1:41:fb:ab:46: b6:56:f0:82:df:32:d7:30:bf:04:0b:6c:19:8a:86: fd:9a:db:c2:d3:06:dc:a3:b1:c1:0d:6a:1b:f8:d7: e2:60:7a:c5:c6:76:67:13:bf:01:6f:b7:f0:67:f9: ea:5d:02:3b:d9:f7:25:b5:08:02:3b:61:1a:04:df: 6c:6c:4e:41:e2:56:3e:20:12:4e:51:b5:a1:52:7f: 72:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:5A:37:19:AA:9B:BD:3E:27:12:6B:77:0E:BB:F0:B8:D6:53:61:43 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45288.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.164.222.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:e9:2e:0e:84:31:20:5a:15:42:39:d0:55:ac:9b:ba:ac:36: 56:dc:b3:6d:34:c7:8e:54:1b:51:69:41:a4:3a:01:e3:47:6f: 1b:e7:06:17:d7:e9:98:bf:41:14:b1:aa:79:23:55:6d:68:ca: 16:6c:5e:86:7c:88:d0:92:2d:a2:a1:fb:18:a8:31:fc:e9:e0: 68:53:2e:6c:02:fe:b9:0a:04:e7:1f:e9:6e:d3:80:4d:8a:54: 5a:15:b2:a9:fe:2e:be:37:47:f2:8d:e8:9e:9a:53:d0:65:9a: e3:91:26:ac:19:2e:46:13:ec:44:c4:96:22:41:4f:71:bb:03: 54:2e:48:6c:6a:d1:eb:73:9e:f8:e7:e2:ff:34:ee:fa:7f:aa: 2d:d1:73:2b:91:12:56:70:91:ed:be:ab:ee:c0:4b:69:83:ef: a2:96:0b:8a:ce:3a:71:9d:12:d5:b3:9d:06:21:bc:7f:2c:8c: 5a:62:7c:90:eb:10:73:ee:22:6a:d5:57:ca:7e:4a:d5:a5:0d: 36:56:84:b8:29:2b:33:3b:80:42:60:3e:5e:86:fc:9c:da:6a: f3:8a:2f:a1:1d:fe:f7:64:dd:98:81:2c:ef:ad:1e:a2:3c:f9: 2a:ab:5c:b9:29:88:8a:8b:ec:f4:69:e3:62:f5:a9:11:7f:7c: d6:0d:cd:9e -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUUI+nq/2wfecTCrLKVCQMJlabgAEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxODA2MzIwNVoX DTI1MTAxNzA2MzcwNVowMzExMC8GA1UEAxMoMUY1QTM3MTlBQTlCQkQzRTI3MTI2 Qjc3MEVCQkYwQjhENjUzNjE0MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ2HdHJHewV92CFDiEJLElRvNch+LvilVT82W2Cjvgsk3Mhdb3l5XDrPkSth Cf3JjyCtGz5p20ptBOx+7cV558u4b1SxodVLsWqWkU9KYVu1XcvaY7EEtfhoKjwV F/2yVajAprg2SjzSEeGOcF/pOcuxvETMfyIxOY63h75dJFXTnBGyr1HdMq9ZOuyr pYypMchgXe2ZBy7C4//w3zIk6gEu5XKoswq4yXrtYI+P9NFB+6tGtlbwgt8y1zC/ BAtsGYqG/ZrbwtMG3KOxwQ1qG/jX4mB6xcZ2ZxO/AW+38Gf56l0CO9n3JbUIAjth GgTfbGxOQeJWPiASTlG1oVJ/clkCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBQfWjcZ qpu9PicSa3cOu/C41lNhQzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1Mjg4LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyqTeMA0GCSqGSIb3DQEBCwUAA4IBAQBN6S4OhDEgWhVCOdBVrJu6 rDZW3LNtNMeOVBtRaUGkOgHjR28b5wYX1+mYv0EUsap5I1VtaMoWbF6GfIjQki2i ofsYqDH86eBoUy5sAv65CgTnH+lu04BNilRaFbKp/i6+N0fyjeiemlPQZZrjkSas GS5GE+xExJYiQU9xuwNULkhsatHrc5745+L/NO76f6ot0XMrkRJWcJHtvqvuwEtp g++ilguKzjpxnRLVs50GIbx/LIxaYnyQ6xBz7iJq1VfKfkrVpQ02VoS4KSszO4BC YD5ehvyc2mrzii+hHf73ZN2YgSzvrR6iPPkqq1y5KYiKi+z0aeNi9akRf3zWDc2e -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:30 2024 by rpki-client on console-ams.rpki-client.org