$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45295.roa File: AS45295.roa (raw, json) Hash identifier: ObXH82pNk+VCYV7LJAlKH+dZ6V1AkikiAREz0v4QwkA= Subject key identifier: 6B:D1:A2:18:6F:09:98:21:4E:D4:ED:11:5C:1B:6E:FA:AA:AA:73:68 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4788150EE344DC9ECB50D0951AEDF1107C07DF6E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45295.roa Signing time: Tue 19 Nov 2024 07:00:00 +0000 ROA not before: Tue 19 Nov 2024 06:55:00 +0000 ROA not after: Tue 18 Nov 2025 07:00:00 +0000 asID: 45295 IP address blocks: 103.21.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:88:15:0e:e3:44:dc:9e:cb:50:d0:95:1a:ed:f1:10:7c:07:df:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Nov 19 06:55:00 2024 GMT Not After : Nov 18 07:00:00 2025 GMT Subject: CN=6BD1A2186F0998214ED4ED115C1B6EFAAAAA7368 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2c:c5:40:19:1d:cf:7b:98:7a:76:f3:9c:f6: 20:23:df:cc:f5:de:78:1f:93:3d:ce:18:8e:92:98: bd:3c:59:45:23:f0:15:4e:2c:76:29:0e:46:3b:e0: 6b:18:fa:e9:f5:9b:03:eb:70:9d:4a:00:a8:49:9a: 39:d6:2c:c5:2c:0b:d8:ed:4d:0c:f2:f9:41:ba:8b: b8:60:0c:ee:2b:8a:3b:06:19:c7:26:ea:bf:d3:7a: 00:c6:77:cd:f9:9c:1c:41:99:9c:de:c2:7d:ac:7d: a5:95:fb:db:d2:15:7a:a3:1e:cf:4d:d8:98:8f:9d: 2b:92:1b:9b:da:02:6d:85:43:1c:1b:e2:ab:2f:72: 49:0b:dd:88:c8:1e:93:b5:b8:39:e3:f6:1d:1d:a6: 35:04:ad:0c:5a:30:ce:a7:93:8e:b4:3c:79:aa:0f: 56:82:46:a2:d4:76:8d:09:c6:3d:cd:60:85:8a:ad: 08:5f:61:3f:07:af:e9:46:2b:12:30:67:53:69:c5: 1c:0e:7c:f9:64:f6:af:78:36:b9:c5:3b:65:f3:eb: a9:1a:95:14:75:5d:8d:71:46:ed:3b:7f:f7:86:d3: 8e:a0:ef:c5:ae:4a:80:b3:e8:20:52:92:d8:0a:2a: d0:3d:35:06:ad:c5:f2:68:8b:30:13:98:1a:dd:99: 62:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:D1:A2:18:6F:09:98:21:4E:D4:ED:11:5C:1B:6E:FA:AA:AA:73:68 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45295.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.92.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:5e:fc:11:2b:14:d8:dc:0d:6a:5f:5d:52:3c:71:40:ee:45: a9:5f:c6:68:37:79:4e:46:ba:9f:3f:e9:3b:53:e1:8e:47:0f: 44:e5:5e:39:c5:9e:74:41:4d:96:ac:2c:11:5d:0b:79:94:81: f4:ea:b5:de:b3:38:32:ab:83:f0:58:14:13:be:68:c4:17:dd: 9d:dd:6c:f4:c4:3b:bc:df:7c:91:7e:cb:05:48:34:48:38:09: d2:7a:93:49:4b:50:d1:28:2b:ee:97:5c:5d:1c:11:ff:68:0e: 83:ab:b3:22:e8:2e:ca:7d:b5:a8:82:f4:c4:c8:05:fa:a8:72: 14:3f:e4:9e:40:c9:3a:d5:6f:4e:ef:6b:cc:6b:6b:55:3f:ae: c4:8d:e3:6c:e9:b1:8d:16:ff:da:c5:e6:f4:e2:cc:02:8f:28: 01:30:00:0d:d2:9c:3a:bd:eb:d7:e9:37:67:d4:19:18:60:ed: 74:3e:64:73:9b:6e:cf:a8:7a:d0:42:1b:ed:b9:5b:d4:f0:71: 20:2c:f3:40:60:09:d9:16:75:ba:33:f5:20:47:9b:f2:36:05: c6:1b:5b:da:8e:87:d4:91:2f:43:c2:2f:cf:68:5d:1b:2f:37: a7:f9:91:8a:47:df:2b:f0:1d:d3:a4:22:19:70:8d:6d:63:2e: ed:62:2b:1e -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUR4gVDuNE3J7LUNCVGu3xEHwH324wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTExOTA2NTUwMFoX DTI1MTExODA3MDAwMFowMzExMC8GA1UEAxMoNkJEMUEyMTg2RjA5OTgyMTRFRDRF RDExNUMxQjZFRkFBQUFBNzM2ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMksxUAZHc97mHp285z2ICPfzPXeeB+TPc4YjpKYvTxZRSPwFU4sdikORjvg axj66fWbA+twnUoAqEmaOdYsxSwL2O1NDPL5QbqLuGAM7iuKOwYZxybqv9N6AMZ3 zfmcHEGZnN7Cfax9pZX729IVeqMez03YmI+dK5Ibm9oCbYVDHBviqy9ySQvdiMge k7W4OeP2HR2mNQStDFowzqeTjrQ8eaoPVoJGotR2jQnGPc1ghYqtCF9hPwev6UYr EjBnU2nFHA58+WT2r3g2ucU7ZfPrqRqVFHVdjXFG7Tt/94bTjqDvxa5KgLPoIFKS 2Aoq0D01Bq3F8miLMBOYGt2ZYksCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBRr0aIY bwmYIU7U7RFcG276qqpzaDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1Mjk1LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZxVcMA0GCSqGSIb3DQEBCwUAA4IBAQAdXvwRKxTY3A1qX11SPHFA 7kWpX8ZoN3lORrqfP+k7U+GORw9E5V45xZ50QU2WrCwRXQt5lIH06rXeszgyq4Pw WBQTvmjEF92d3Wz0xDu833yRfssFSDRIOAnSepNJS1DRKCvul1xdHBH/aA6Dq7Mi 6C7KfbWogvTEyAX6qHIUP+SeQMk61W9O72vMa2tVP67EjeNs6bGNFv/axeb04swC jygBMAAN0pw6vevX6Tdn1BkYYO10PmRzm27PqHrQQhvtuVvU8HEgLPNAYAnZFnW6 M/UgR5vyNgXGG1vajofUkS9Dwi/PaF0bLzen+ZGKR98r8B3TpCIZcI1tYy7tYise -----END CERTIFICATE-----Generated at Sun Feb 16 20:39:31 2025 by rpki-client