$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45304.roa File: AS45304.roa (raw, json) Hash identifier: EtY0DlH3TRv3ON7ghaKeIfP+cGVcZlTA40li9vYFglo= Subject key identifier: AD:FA:D3:6F:F7:E8:EA:23:EE:CE:39:E6:7A:07:A0:10:5C:AE:9D:61 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0FD6B5B838985ACF780AF11AC8411D6CC53C5D85 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45304.roa Signing time: Fri 25 Aug 2023 07:01:33 +0000 ROA not before: Fri 25 Aug 2023 06:56:33 +0000 ROA not after: Fri 23 Aug 2024 07:01:33 +0000 asID: 45304 IP address blocks: 203.189.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:d6:b5:b8:38:98:5a:cf:78:0a:f1:1a:c8:41:1d:6c:c5:3c:5d:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 25 06:56:33 2023 GMT Not After : Aug 23 07:01:33 2024 GMT Subject: CN=ADFAD36FF7E8EA23EECE39E67A07A0105CAE9D61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0e:7f:57:32:34:fe:01:f8:5a:b7:1d:6f:73: 8c:0a:d6:7d:6c:d4:52:01:44:c7:93:53:81:3e:11: 1d:16:76:7d:6e:99:7e:2f:cb:e9:3c:99:23:38:7d: 00:c0:cd:90:05:2a:25:ae:72:0a:c0:f4:99:24:c4: 67:14:d8:5f:bb:95:d8:96:70:6f:fc:83:18:d1:be: 79:c4:4f:91:ee:54:97:18:2d:42:c8:27:3d:0a:8b: 23:c4:a8:27:f0:cd:fc:38:80:5d:51:c8:c6:b7:1a: 49:ff:8f:7c:bc:6c:c4:2b:ad:8d:6e:1a:fc:30:ff: 8f:65:b4:b3:ea:b4:0c:7b:38:df:cf:7c:b4:51:18: d2:64:a4:06:32:68:86:1e:22:a3:2a:7c:df:c2:f6: 60:5e:58:49:4f:07:de:f0:2f:d5:44:86:66:ec:40: e4:33:dc:0c:d3:c6:54:84:6e:67:91:82:83:41:24: 2d:99:8b:89:35:fb:23:3d:d3:63:85:bc:b6:08:71: 70:ab:14:c1:15:8f:63:1f:c6:ce:33:28:05:44:9d: 47:14:64:a6:76:81:1d:89:4b:72:56:99:ab:4b:fa: e5:22:53:ec:d3:a4:0c:3a:8d:1c:26:6a:c5:86:40: 65:fb:50:9c:ac:bf:ee:2f:db:1a:08:95:0f:d6:b0: ba:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:FA:D3:6F:F7:E8:EA:23:EE:CE:39:E6:7A:07:A0:10:5C:AE:9D:61 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45304.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.189.120.0/22 Signature Algorithm: sha256WithRSAEncryption 92:b5:f9:46:9f:f1:35:37:63:79:10:5a:ee:6a:09:ad:78:7d: 43:f1:26:98:ee:31:34:4f:c9:d0:21:a4:38:6b:7b:b7:32:40: 8d:12:88:13:2b:bc:b0:ad:3e:1a:b9:ca:65:fc:8c:ab:ed:5f: 40:03:ef:f9:50:9e:9d:9e:cc:25:40:fd:ff:cd:aa:49:98:59: cb:dd:44:54:57:e2:48:62:07:6d:e7:b7:3d:af:e6:54:e4:c7: aa:64:e9:86:20:a7:33:9f:ad:f6:a7:0b:c9:d5:3f:53:97:d1: d8:91:75:64:7c:27:b8:08:67:8d:24:cc:75:48:4f:82:c1:0a: b9:4f:b9:db:3b:3f:ed:9e:d2:5e:4c:fc:6b:7e:b4:95:e1:0b: 74:e2:aa:e8:21:3b:df:f3:3b:aa:d5:10:ee:55:33:3e:8e:3c: 0f:a1:a1:b4:c8:30:4c:e5:04:d2:91:8d:d1:38:be:db:cf:06: a7:3c:30:9a:30:2c:36:9c:ad:4a:40:9a:b6:a8:54:7b:15:7a: c4:f2:84:cb:12:8d:4c:cf:03:d9:af:26:5d:2c:a0:73:6d:de: 0d:58:b8:c8:dc:4b:19:81:1f:cb:27:8b:89:01:d2:bd:f9:e2: 8c:1f:6c:f3:11:5f:1c:3e:55:c2:45:5d:0e:a9:f0:5a:99:27: ff:25:86:18 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUD9a1uDiYWs94CvEayEEdbMU8XYUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgyNTA2NTYzM1oX DTI0MDgyMzA3MDEzM1owMzExMC8GA1UEAxMoQURGQUQzNkZGN0U4RUEyM0VFQ0Uz OUU2N0EwN0EwMTA1Q0FFOUQ2MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMYOf1cyNP4B+Fq3HW9zjArWfWzUUgFEx5NTgT4RHRZ2fW6Zfi/L6TyZIzh9 AMDNkAUqJa5yCsD0mSTEZxTYX7uV2JZwb/yDGNG+ecRPke5UlxgtQsgnPQqLI8So J/DN/DiAXVHIxrcaSf+PfLxsxCutjW4a/DD/j2W0s+q0DHs43898tFEY0mSkBjJo hh4ioyp838L2YF5YSU8H3vAv1USGZuxA5DPcDNPGVIRuZ5GCg0EkLZmLiTX7Iz3T Y4W8tghxcKsUwRWPYx/GzjMoBUSdRxRkpnaBHYlLclaZq0v65SJT7NOkDDqNHCZq xYZAZftQnKy/7i/bGgiVD9awur0CAwEAAaOCAc8wggHLMB0GA1UdDgQWBBSt+tNv 9+jqI+7OOeZ6B6AQXK6dYTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1MzA0LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCy714MA0GCSqGSIb3DQEBCwUAA4IBAQCStflGn/E1N2N5EFruagmt eH1D8SaY7jE0T8nQIaQ4a3u3MkCNEogTK7ywrT4aucpl/Iyr7V9AA+/5UJ6dnswl QP3/zapJmFnL3URUV+JIYgdt57c9r+ZU5MeqZOmGIKczn632pwvJ1T9Tl9HYkXVk fCe4CGeNJMx1SE+CwQq5T7nbOz/tntJeTPxrfrSV4Qt04qroITvf8zuq1RDuVTM+ jjwPoaG0yDBM5QTSkY3ROL7bzwanPDCaMCw2nK1KQJq2qFR7FXrE8oTLEo1MzwPZ ryZdLKBzbd4NWLjI3EsZgR/LJ4uJAdK9+eKMH2zzEV8cPlXCRV0OqfBamSf/JYYY -----END CERTIFICATE-----Generated at Wed May 8 22:46:44 2024 by rpki-client on console-ams.rpki-client.org