$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45295.roa File: AS45295.roa (raw, json) Hash identifier: 0++jTfduSdyQ0TJ3wbZWqGLbnA4Qk4KFG+youRkWkwY= Subject key identifier: 6B:C5:B2:60:97:9F:15:79:3A:40:C6:FB:DD:E8:51:F3:71:CB:8C:0E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 193682982D635808810B6E306A97C4C5E8257B1C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45295.roa Signing time: Tue 19 Dec 2023 06:44:45 +0000 ROA not before: Tue 19 Dec 2023 06:39:45 +0000 ROA not after: Tue 17 Dec 2024 06:44:45 +0000 asID: 45295 IP address blocks: 103.21.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Sep 2024 23:48:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:36:82:98:2d:63:58:08:81:0b:6e:30:6a:97:c4:c5:e8:25:7b:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 19 06:39:45 2023 GMT Not After : Dec 17 06:44:45 2024 GMT Subject: CN=6BC5B260979F15793A40C6FBDDE851F371CB8C0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2a:fe:e9:1f:50:4e:74:cb:e6:f1:02:11:8b: ed:c0:60:4e:91:5b:57:af:0d:0d:45:32:70:82:b2: be:28:0f:e6:b4:b1:d6:d9:fa:ee:fb:d4:e4:38:29: c2:6f:5d:f3:2a:4c:ed:38:cd:1f:de:62:f5:a3:ee: 37:bc:eb:c3:0c:d3:82:9d:e0:00:b1:28:f1:6c:24: ec:91:09:71:3d:09:bc:52:6e:ad:20:59:51:d5:db: db:30:3b:90:c4:22:fb:b0:86:bf:1f:07:fa:55:81: 34:39:dc:0e:d1:5c:00:e9:8f:ca:f8:ca:69:61:dc: a3:6c:b3:7d:ec:40:c3:68:34:69:aa:f4:7c:db:95: b1:3b:f2:81:11:5a:80:25:2c:2e:52:82:5a:92:3a: b1:3c:9b:14:86:ae:e5:58:4f:f6:1f:7b:43:a9:1e: 73:b5:36:df:d5:ba:d7:fb:de:fc:a4:eb:71:3f:d9: 7b:55:a0:5e:df:4f:7f:f2:89:0e:22:6d:cc:e5:85: 92:db:5d:ab:45:da:9f:36:df:cb:cc:0a:68:6e:98: bd:5e:de:29:53:85:c8:c0:1a:e5:b9:2f:5b:8b:b4: 2b:b2:67:d4:e3:ab:16:ed:80:08:e4:b0:d2:2c:8e: 1a:45:b5:c3:87:a3:a5:4b:03:9d:f6:a5:d7:cf:6b: e4:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:C5:B2:60:97:9F:15:79:3A:40:C6:FB:DD:E8:51:F3:71:CB:8C:0E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45295.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.92.0/22 Signature Algorithm: sha256WithRSAEncryption 1c:fe:68:73:09:c6:80:4f:a2:f4:1a:82:8c:35:10:4e:ee:fc: 49:3f:86:f7:f9:56:22:dd:85:e1:1d:da:08:9e:4f:7b:46:0c: ea:9f:c8:e7:96:3b:ac:e1:31:0e:6f:bb:7f:a2:ff:8b:78:22: 52:81:eb:df:ff:4f:d1:82:27:d6:4a:5a:8b:a4:35:41:58:e6: b3:ad:38:86:0f:e2:b5:d6:e2:f1:6f:71:2f:b8:7c:67:07:f1: c7:c8:ac:d0:35:da:35:ab:09:f2:6f:ee:22:8b:de:b9:3f:72: 72:d5:bd:70:8c:0e:92:42:fd:e4:78:d8:d0:23:13:7b:84:7c: 2d:9a:39:ae:b5:6d:a6:73:27:7b:bf:d4:24:48:f2:b1:d0:86: 6c:9b:8a:a8:24:53:59:63:58:7e:72:3b:6e:58:15:8c:13:13: a4:f3:1c:84:ce:08:80:ea:ad:bd:1b:96:c9:94:ab:af:09:61: 9b:51:60:2c:9e:fa:71:e6:df:8e:62:60:93:4e:02:39:cb:cb: fe:8c:d1:57:b2:d5:e6:b6:da:82:13:2d:84:6b:ab:51:c5:33: 1a:37:c3:fa:94:e0:f0:e6:df:cb:86:5c:e6:1d:34:73:f1:db: 06:a2:1e:19:71:e8:47:76:88:58:c8:b3:80:20:bd:20:a6:58: 88:7f:a3:6d -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUGTaCmC1jWAiBC24wapfExeglexwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIxOTA2Mzk0NVoX DTI0MTIxNzA2NDQ0NVowMzExMC8GA1UEAxMoNkJDNUIyNjA5NzlGMTU3OTNBNDBD NkZCRERFODUxRjM3MUNCOEMwRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALQq/ukfUE50y+bxAhGL7cBgTpFbV68NDUUycIKyvigP5rSx1tn67vvU5Dgp wm9d8ypM7TjNH95i9aPuN7zrwwzTgp3gALEo8Wwk7JEJcT0JvFJurSBZUdXb2zA7 kMQi+7CGvx8H+lWBNDncDtFcAOmPyvjKaWHco2yzfexAw2g0aar0fNuVsTvygRFa gCUsLlKCWpI6sTybFIau5VhP9h97Q6kec7U239W61/ve/KTrcT/Ze1WgXt9Pf/KJ DiJtzOWFkttdq0Xanzbfy8wKaG6YvV7eKVOFyMAa5bkvW4u0K7Jn1OOrFu2ACOSw 0iyOGkW1w4ejpUsDnfal189r5LUCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBRrxbJg l58VeTpAxvvd6FHzccuMDjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1Mjk1LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZxVcMA0GCSqGSIb3DQEBCwUAA4IBAQAc/mhzCcaAT6L0GoKMNRBO 7vxJP4b3+VYi3YXhHdoInk97Rgzqn8jnljus4TEOb7t/ov+LeCJSgevf/0/RgifW SlqLpDVBWOazrTiGD+K11uLxb3EvuHxnB/HHyKzQNdo1qwnyb+4ii965P3Jy1b1w jA6SQv3keNjQIxN7hHwtmjmutW2mcyd7v9QkSPKx0IZsm4qoJFNZY1h+cjtuWBWM ExOk8xyEzgiA6q29G5bJlKuvCWGbUWAsnvpx5t+OYmCTTgI5y8v+jNFXstXmttqC Ey2Ea6tRxTMaN8P6lODw5t/LhlzmHTRz8dsGoh4ZcehHdohYyLOAIL0gpliIf6Nt -----END CERTIFICATE-----Generated at Sat Sep 21 00:24:54 2024 by rpki-client on console-fra.rpki-client.org