$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45298.roa File: AS45298.roa (raw, json) Hash identifier: JRCVU5MVBr4xDQSp91yoAqpAF+BEoHAtCfzwY/3IB4Q= Subject key identifier: 83:04:45:86:1E:08:EB:1E:7A:02:15:6D:57:0D:C8:81:65:A3:AE:75 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2F1933EA9FE8410565B11D09D65782497D8E0B69 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45298.roa Signing time: Thu 03 Oct 2024 04:00:00 +0000 ROA not before: Thu 03 Oct 2024 03:55:00 +0000 ROA not after: Thu 02 Oct 2025 04:00:00 +0000 asID: 45298 IP address blocks: 103.228.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:19:33:ea:9f:e8:41:05:65:b1:1d:09:d6:57:82:49:7d:8e:0b:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 3 03:55:00 2024 GMT Not After : Oct 2 04:00:00 2025 GMT Subject: CN=830445861E08EB1E7A02156D570DC88165A3AE75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:0d:0a:d7:f7:c6:8c:3a:9c:e8:65:fc:92:1c: 69:b1:31:23:35:67:b1:60:a8:5d:d6:28:96:18:22: 15:1d:e8:04:df:67:f6:ae:48:bc:23:dc:24:6a:29: 26:ba:b8:d1:8c:4c:21:63:03:72:06:90:5b:85:20: de:f0:7b:46:6b:65:1f:db:95:f1:5b:07:f4:a0:cb: 56:ce:93:33:aa:77:f4:15:15:a0:81:11:b7:54:a7: 75:4c:41:d7:0d:ec:aa:37:d4:19:56:77:b9:e2:cc: 6d:e8:4d:05:a3:a3:b1:78:1d:dd:78:3e:b4:5d:3e: 0f:7e:f9:f7:53:36:f7:3c:29:de:f8:4b:d6:e5:d2: 4c:4b:31:cf:2e:f4:f7:58:3d:35:91:5f:82:98:e6: 82:25:a2:ec:06:46:03:00:f2:ec:63:e8:fd:74:41: 1e:5e:eb:8f:77:76:8d:52:17:1f:e8:44:79:37:d9: 2c:2a:25:cc:ce:12:b1:e5:e2:81:9e:bb:5a:7a:92: 8f:ea:61:ab:10:3b:05:ed:86:a4:a3:4c:e2:47:83: 82:80:67:b7:6a:a1:9f:34:46:72:fa:81:b6:9c:7c: 6d:93:5f:1e:5a:58:c7:88:37:b7:a4:18:83:d9:79: f5:8c:b1:d3:89:c9:86:24:fc:dc:8b:b0:cc:ab:9b: 36:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:04:45:86:1E:08:EB:1E:7A:02:15:6D:57:0D:C8:81:65:A3:AE:75 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45298.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.228.8.0/24 Signature Algorithm: sha256WithRSAEncryption 84:a8:ef:c1:92:3d:f5:4e:20:ce:7f:95:ec:cd:fa:be:bd:a6: 59:7c:27:e0:c2:8d:8b:9d:12:b7:61:66:0c:be:41:6f:50:bd: 01:bb:c3:a3:cc:1f:3c:7d:2a:15:83:51:77:7d:6c:a2:42:08: c9:88:4f:fc:07:56:34:a4:b0:40:53:63:37:8e:76:7c:d1:b9: d5:f6:15:2c:a1:fa:97:f3:e3:5e:e3:22:81:9c:62:a9:5b:44: 20:09:53:21:66:4b:af:3f:ce:45:c0:1b:a6:15:c7:fd:15:81: 6d:e3:da:3b:21:3d:aa:1f:f5:9b:c1:85:eb:58:25:9d:de:a7: a6:ec:a5:6b:f5:bf:71:9e:4f:37:46:b2:df:93:a7:2b:56:be: 27:24:64:bf:fa:73:71:91:1d:56:e4:94:10:4c:36:c7:f1:48: 14:48:6b:80:3a:0c:e4:6d:49:a3:71:95:88:56:93:60:2c:e1: 30:c4:7c:43:cf:41:79:a4:e5:32:67:e4:0b:5d:a3:d1:02:5f: 53:ec:f3:0e:34:7d:ec:53:60:b6:1f:d6:23:cf:b4:a9:42:2b: 77:e0:41:3e:aa:e8:e6:79:95:dd:14:35:b8:52:df:4d:06:f2: e8:7d:c7:70:33:1d:20:06:d4:9c:ee:71:83:1e:cd:9a:38:86: a2:46:57:ee -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIULxkz6p/oQQVlsR0J1leCSX2OC2kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAwMzAzNTUwMFoX DTI1MTAwMjA0MDAwMFowMzExMC8GA1UEAxMoODMwNDQ1ODYxRTA4RUIxRTdBMDIx NTZENTcwREM4ODE2NUEzQUU3NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPYNCtf3xow6nOhl/JIcabExIzVnsWCoXdYolhgiFR3oBN9n9q5IvCPcJGop Jrq40YxMIWMDcgaQW4Ug3vB7RmtlH9uV8VsH9KDLVs6TM6p39BUVoIERt1SndUxB 1w3sqjfUGVZ3ueLMbehNBaOjsXgd3Xg+tF0+D37591M29zwp3vhL1uXSTEsxzy70 91g9NZFfgpjmgiWi7AZGAwDy7GPo/XRBHl7rj3d2jVIXH+hEeTfZLColzM4SseXi gZ67WnqSj+phqxA7Be2GpKNM4keDgoBnt2qhnzRGcvqBtpx8bZNfHlpYx4g3t6QY g9l59Yyx04nJhiT83IuwzKubNmsCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBSDBEWG HgjrHnoCFW1XDciBZaOudTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1Mjk4LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ+QIMA0GCSqGSIb3DQEBCwUAA4IBAQCEqO/Bkj31TiDOf5Xszfq+ vaZZfCfgwo2LnRK3YWYMvkFvUL0Bu8OjzB88fSoVg1F3fWyiQgjJiE/8B1Y0pLBA U2M3jnZ80bnV9hUsofqX8+Ne4yKBnGKpW0QgCVMhZkuvP85FwBumFcf9FYFt49o7 IT2qH/WbwYXrWCWd3qem7KVr9b9xnk83RrLfk6crVr4nJGS/+nNxkR1W5JQQTDbH 8UgUSGuAOgzkbUmjcZWIVpNgLOEwxHxDz0F5pOUyZ+QLXaPRAl9T7PMONH3sU2C2 H9Yjz7SpQit34EE+qujmeZXdFDW4Ut9NBvLofcdwMx0gBtSc7nGDHs2aOIaiRlfu -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:28 2024 by rpki-client on console-fra.rpki-client.org