$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45304.roa File: AS45304.roa (raw, json) Hash identifier: eq9jy3nMRaXzE+EUP+ubu8V4OEzf9ZVAQ/kVMeqOMzs= Subject key identifier: 73:37:BF:D5:A5:5A:E5:74:EF:F8:0F:76:60:88:16:94:5D:3E:F0:0F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 51617FE70D924DAAD97E67E6809863A3E6A77CA0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45304.roa Signing time: Fri 26 Jul 2024 08:00:00 +0000 ROA not before: Fri 26 Jul 2024 07:55:00 +0000 ROA not after: Fri 25 Jul 2025 08:00:00 +0000 asID: 45304 IP address blocks: 203.189.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:61:7f:e7:0d:92:4d:aa:d9:7e:67:e6:80:98:63:a3:e6:a7:7c:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jul 26 07:55:00 2024 GMT Not After : Jul 25 08:00:00 2025 GMT Subject: CN=7337BFD5A55AE574EFF80F76608816945D3EF00F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:45:b2:3f:bc:1d:37:76:39:18:c5:25:ad:73: 0a:60:df:d8:85:9b:50:91:d4:ad:ad:d3:63:e0:fe: dd:3a:b4:3a:72:ad:b3:6d:c2:7c:77:e5:df:2a:7d: 6e:64:e2:79:2a:91:80:a2:9d:4e:7d:e0:3b:8a:07: 7a:b8:3f:3e:02:9f:f8:16:28:6a:86:6a:7a:ec:67: 6b:bc:ba:0f:90:b9:41:16:8c:1b:05:d4:9f:25:9f: ea:ef:6b:30:fd:18:9d:1a:77:98:9f:76:5d:e6:23: eb:72:9a:8e:1d:da:94:f6:2c:df:56:b7:db:6c:1f: 2e:37:b2:9c:10:88:3e:08:6a:e9:6e:ac:5b:05:ff: c9:ff:2d:d0:a4:c7:44:cc:da:0d:fb:cd:00:4f:bf: 0d:e2:bb:b5:73:5c:27:28:21:1a:2c:75:20:c2:4e: 02:e4:96:7a:84:d9:63:58:0c:30:dd:41:1e:b9:32: 82:b3:9a:e1:e8:2c:41:59:b4:27:53:63:1e:08:6c: 02:4e:d0:6b:8f:32:f9:17:03:69:ca:92:da:fd:0b: a1:81:45:cf:f4:aa:bf:88:66:65:1e:57:47:a2:58: 4a:b2:a1:64:98:12:e8:2d:5f:85:88:47:bc:92:7b: bc:87:4e:e4:57:85:1d:8a:d4:6b:42:e3:56:e1:13: 59:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:37:BF:D5:A5:5A:E5:74:EF:F8:0F:76:60:88:16:94:5D:3E:F0:0F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45304.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.189.120.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:3a:f1:0d:35:3b:35:be:d8:a9:3a:d2:f7:e7:c7:0d:25:c8: 2e:de:ae:9f:0d:f3:d3:ff:73:55:6f:d5:ed:ed:db:7e:82:c0: 53:46:a5:21:4a:17:47:14:80:8d:58:0f:e9:d5:f6:76:cc:78: e2:02:a3:35:96:81:59:48:d6:82:a4:ed:3d:7b:f0:5e:70:b7: 90:8e:90:a0:d5:a7:8d:f1:4f:72:d9:f1:5c:47:57:45:55:a1: 8f:07:3d:9c:82:f5:6e:1a:b7:7d:b7:e6:48:0e:e3:5e:ef:b5: c8:7b:38:bd:3f:8f:e7:76:8f:c5:d1:38:45:71:a6:c9:0f:b1: 41:d1:11:de:82:c4:fe:b7:cc:c4:18:ce:33:c0:5a:9d:20:23: 75:b6:3e:cb:7c:0c:e3:8d:5c:90:48:30:5a:40:93:aa:b0:a1: 73:57:2e:74:05:31:a5:b2:0b:8c:cb:2b:37:63:88:c8:63:cc: 3c:50:b9:64:95:40:28:65:ae:4b:48:a0:d8:64:3c:2f:8d:b9: 75:d2:40:77:73:33:09:39:ec:7b:57:ca:40:6a:56:48:ea:50: 37:78:b1:ac:6a:c4:f0:3b:10:c3:ca:33:c5:d5:2d:e8:e9:d5: f9:d1:cb:84:54:2b:0b:f5:15:c0:e0:e3:15:1d:12:e6:e0:71: 7b:00:fa:75 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUUWF/5w2STarZfmfmgJhjo+anfKAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcyNjA3NTUwMFoX DTI1MDcyNTA4MDAwMFowMzExMC8GA1UEAxMoNzMzN0JGRDVBNTVBRTU3NEVGRjgw Rjc2NjA4ODE2OTQ1RDNFRjAwRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKdFsj+8HTd2ORjFJa1zCmDf2IWbUJHUra3TY+D+3Tq0OnKts23CfHfl3yp9 bmTieSqRgKKdTn3gO4oHerg/PgKf+BYoaoZqeuxna7y6D5C5QRaMGwXUnyWf6u9r MP0YnRp3mJ92XeYj63Kajh3alPYs31a322wfLjeynBCIPghq6W6sWwX/yf8t0KTH RMzaDfvNAE+/DeK7tXNcJyghGix1IMJOAuSWeoTZY1gMMN1BHrkygrOa4egsQVm0 J1NjHghsAk7Qa48y+RcDacqS2v0LoYFFz/Sqv4hmZR5XR6JYSrKhZJgS6C1fhYhH vJJ7vIdO5FeFHYrUa0LjVuETWe0CAwEAAaOCAc8wggHLMB0GA1UdDgQWBBRzN7/V pVrldO/4D3ZgiBaUXT7wDzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1MzA0LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCy714MA0GCSqGSIb3DQEBCwUAA4IBAQAaOvENNTs1vtipOtL358cN Jcgu3q6fDfPT/3NVb9Xt7dt+gsBTRqUhShdHFICNWA/p1fZ2zHjiAqM1loFZSNaC pO09e/BecLeQjpCg1aeN8U9y2fFcR1dFVaGPBz2cgvVuGrd9t+ZIDuNe77XIezi9 P4/ndo/F0ThFcabJD7FB0RHegsT+t8zEGM4zwFqdICN1tj7LfAzjjVyQSDBaQJOq sKFzVy50BTGlsguMyys3Y4jIY8w8ULlklUAoZa5LSKDYZDwvjbl10kB3czMJOex7 V8pAalZI6lA3eLGsasTwOxDDyjPF1S3o6dX50cuEVCsL9RXA4OMVHRLm4HF7APp1 -----END CERTIFICATE-----Generated at Sun Feb 16 20:54:11 2025 by rpki-client