$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45325.roa File: AS45325.roa (raw, json) Hash identifier: QHS5FPg8j+B0hQesPvW9V0dAfqAmPBG7Wf5CxSRo8Og= Subject key identifier: E6:3A:B4:34:FB:4A:51:92:BB:C7:36:38:60:E6:4F:4F:0B:A8:AC:E7 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2739B413BA81A0DD73B08C0634A5070C1B760815 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45325.roa Signing time: Tue 09 Jan 2024 04:00:16 +0000 ROA not before: Tue 09 Jan 2024 03:55:16 +0000 ROA not after: Tue 07 Jan 2025 04:00:16 +0000 asID: 45325 IP address blocks: 103.151.140.0/24 maxlen: 24 103.151.141.0/24 maxlen: 24 2001:df7:880::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:39:b4:13:ba:81:a0:dd:73:b0:8c:06:34:a5:07:0c:1b:76:08:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:16 2024 GMT Not After : Jan 7 04:00:16 2025 GMT Subject: CN=E63AB434FB4A5192BBC7363860E64F4F0BA8ACE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:08:81:1d:c3:cd:d2:54:b4:09:ac:79:f9:b1: 86:87:69:ad:d4:ac:55:62:b5:b8:a3:8a:b4:8c:e9: b2:4b:12:6d:0e:a5:aa:46:97:81:58:11:58:73:76: 60:b7:13:e3:2a:fb:84:d0:68:1a:23:8a:77:0c:b0: 37:c9:4b:90:93:58:35:28:67:8f:50:11:a2:7a:6f: 06:d3:63:2b:da:39:51:10:dd:a2:fb:94:21:a7:5d: cb:c6:5c:c9:d1:af:5b:3e:a4:6f:40:32:54:44:a7: 60:73:b9:2f:bf:1d:11:72:37:49:ca:1b:a6:dc:5d: 81:1e:cd:d3:ca:65:16:66:33:01:07:2f:50:06:05: 95:1f:6f:8c:7f:cc:e3:11:71:c5:a2:ff:28:33:cf: a2:12:ac:75:70:f8:b0:ff:54:da:7a:19:10:e0:44: 3b:3b:c9:95:3b:cb:8a:54:63:5c:ef:c4:4b:34:8e: bf:f7:47:db:f5:82:c0:54:a3:04:c2:de:dd:87:b7: 1a:c3:75:fd:e8:57:af:fc:83:1a:6e:2d:25:cf:aa: aa:f3:5e:b1:4b:d5:b2:bd:de:fb:35:d6:84:8b:7a: e0:f0:76:5a:dc:12:bb:57:ff:c4:94:d9:c9:52:31: 8d:d9:80:32:39:98:2d:e3:49:0b:64:a7:b2:0b:fc: a5:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:3A:B4:34:FB:4A:51:92:BB:C7:36:38:60:E6:4F:4F:0B:A8:AC:E7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45325.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.140.0/23 IPv6: 2001:df7:880::/48 Signature Algorithm: sha256WithRSAEncryption 3c:ce:f4:93:e3:a1:33:d4:94:c7:04:df:2c:33:c4:52:eb:43: 76:e8:b4:66:da:49:5b:c6:8f:18:4d:8f:16:f4:e5:51:89:d3: 3a:b8:64:78:77:90:75:cb:02:d3:fd:87:5d:45:fd:b6:f6:0a: ad:a1:e6:ac:25:ad:f2:19:5a:68:50:54:38:b6:d9:1a:6c:ae: 28:ec:e4:b3:62:22:ab:b9:39:c4:3c:bc:52:83:25:b0:f0:42: 22:db:9c:7a:f3:07:b6:0f:ce:e0:ce:65:66:8c:cf:c4:a5:98: 59:75:9f:65:d2:02:de:90:07:21:bd:f1:c8:24:ac:20:9d:ce: 66:70:b7:d2:64:53:80:42:b6:bc:0b:39:54:e3:21:98:0c:c0: 9b:85:2b:f9:b5:aa:9b:1c:48:9c:8a:8c:04:70:fd:f2:15:3b: 22:c9:0d:64:5d:c1:eb:30:89:80:57:50:ac:62:58:8a:a0:73: af:3d:d5:c0:96:a0:b1:22:8d:97:21:b2:4c:9a:be:e9:ed:c6: b4:de:9e:26:ff:5c:30:0f:38:70:65:c6:7f:4b:41:16:ce:5c: 4c:31:bf:4a:e8:f0:42:9e:07:4e:56:da:e8:6e:72:6f:b6:54: 9d:ff:86:b1:1c:3b:36:d5:22:77:02:5d:18:3d:3c:f9:38:53: ac:d6:01:b8 -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgIUJzm0E7qBoN1zsIwGNKUHDBt2CBUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxNloX DTI1MDEwNzA0MDAxNlowMzExMC8GA1UEAxMoRTYzQUI0MzRGQjRBNTE5MkJCQzcz NjM4NjBFNjRGNEYwQkE4QUNFNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL8IgR3DzdJUtAmsefmxhodprdSsVWK1uKOKtIzpsksSbQ6lqkaXgVgRWHN2 YLcT4yr7hNBoGiOKdwywN8lLkJNYNShnj1ARonpvBtNjK9o5URDdovuUIaddy8Zc ydGvWz6kb0AyVESnYHO5L78dEXI3ScobptxdgR7N08plFmYzAQcvUAYFlR9vjH/M 4xFxxaL/KDPPohKsdXD4sP9U2noZEOBEOzvJlTvLilRjXO/ESzSOv/dH2/WCwFSj BMLe3Ye3GsN1/ehXr/yDGm4tJc+qqvNesUvVsr3e+zXWhIt64PB2WtwSu1f/xJTZ yVIxjdmAMjmYLeNJC2Snsgv8pScCAwEAAaOCAeAwggHcMB0GA1UdDgQWBBTmOrQ0 +0pRkrvHNjhg5k9PC6is5zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1MzI1LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5eMMA8EAgACMAkDBwAgAQ33CIAwDQYJKoZIhvcNAQELBQADggEB ADzO9JPjoTPUlMcE3ywzxFLrQ3botGbaSVvGjxhNjxb05VGJ0zq4ZHh3kHXLAtP9 h11F/bb2Cq2h5qwlrfIZWmhQVDi22Rpsrijs5LNiIqu5OcQ8vFKDJbDwQiLbnHrz B7YPzuDOZWaMz8SlmFl1n2XSAt6QByG98cgkrCCdzmZwt9JkU4BCtrwLOVTjIZgM wJuFK/m1qpscSJyKjARw/fIVOyLJDWRdweswiYBXUKxiWIqgc6891cCWoLEijZch skyavuntxrTenib/XDAPOHBlxn9LQRbOXEwxv0ro8EKeB05W2uhucm+2VJ3/hrEc OzbVIncCXRg9PPk4U6zWAbg= -----END CERTIFICATE-----Generated at Mon May 6 01:46:08 2024 by rpki-client on console-ams.rpki-client.org