$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45658.roa File: AS45658.roa (raw, json) Hash identifier: QRoSvkpQQI62N+NpHjovU5EvTx4mO3Caxvj78F0jyQE= Subject key identifier: 93:C5:24:FA:0D:24:92:AE:1C:0D:70:E1:8F:59:BE:73:63:AC:A4:79 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 39A79EDD36A8E27CE84B699F07E79A1E0E226929 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45658.roa Signing time: Mon 30 Dec 2024 10:27:29 +0000 ROA not before: Mon 30 Dec 2024 10:22:29 +0000 ROA not after: Mon 29 Dec 2025 10:27:29 +0000 asID: 45658 IP address blocks: 103.135.94.0/24 maxlen: 24 103.135.96.0/23 maxlen: 24 202.58.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:a7:9e:dd:36:a8:e2:7c:e8:4b:69:9f:07:e7:9a:1e:0e:22:69:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 30 10:22:29 2024 GMT Not After : Dec 29 10:27:29 2025 GMT Subject: CN=93C524FA0D2492AE1C0D70E18F59BE7363ACA479 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:8b:ce:b6:b5:e1:61:43:5d:5a:e8:5d:83:5c: cf:01:be:e0:f6:fd:2f:91:76:58:7b:04:c5:0e:e9: 1f:53:65:b5:2a:ae:f9:d9:3a:35:bd:45:3e:74:e1: fe:cb:17:5c:bb:64:ab:f9:b8:94:9a:0b:07:bf:25: 43:f2:7d:e7:7b:5c:f4:6f:ff:0c:da:4a:62:6b:71: 74:dc:0d:d0:0b:68:28:2f:db:b5:f4:12:77:8d:ea: a8:61:67:18:81:34:3b:d6:4a:d5:52:0a:85:fd:8f: 88:7b:dc:f0:a2:bb:2c:ab:b3:e0:a9:22:de:2d:c9: 5b:0a:6d:80:9f:7c:b8:6a:3e:a3:b1:92:93:7f:49: f2:dd:b2:99:3f:4a:20:0f:30:81:6b:64:c4:00:9e: cc:36:78:35:f2:a8:5b:58:a5:b1:51:36:dc:2d:8b: 0b:2e:98:06:16:4d:ca:db:61:ed:c6:ba:37:b8:a6: 63:2b:46:28:0c:7b:1c:8a:23:c5:85:91:f8:49:6d: 3a:bb:05:f3:a2:5a:37:d4:bc:93:8b:32:dd:a8:9d: fc:f0:e1:3b:e1:05:71:52:c8:a8:34:4d:f2:9e:d5: 47:12:d3:43:7a:ab:de:ba:8f:ba:9d:35:ac:f4:70: c2:3e:68:ec:23:8f:68:66:88:c5:fb:0d:60:9b:f6: 1c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:C5:24:FA:0D:24:92:AE:1C:0D:70:E1:8F:59:BE:73:63:AC:A4:79 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45658.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.135.94.0/24 103.135.96.0/23 202.58.124.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:59:6a:97:ca:bf:bc:f5:7d:b0:ea:4a:ae:87:c9:5e:b8:06: 84:8d:2e:3d:50:fc:3f:cb:47:46:26:bb:50:46:4b:82:26:02: a9:16:46:e6:51:fd:8b:a1:de:91:81:a6:c3:3e:9e:00:c9:3a: 34:18:69:15:51:8e:45:0d:16:0a:b5:02:59:1e:9e:cc:7f:7d: e3:64:17:80:ae:a1:2f:27:c0:f2:44:ea:1f:47:86:d0:d2:39: 88:08:b4:b8:44:f2:cb:02:38:89:62:f5:3b:24:15:1a:94:58: 92:a7:ee:06:57:ab:cd:06:72:16:50:80:71:eb:4c:80:37:0d: 2c:a0:7e:27:9a:fe:12:60:39:d1:6d:1d:7c:f6:5a:df:3c:36: d6:50:85:1e:73:dd:ef:47:96:58:87:22:d8:a8:ec:2b:f5:ef: b3:4b:a5:0f:6a:a6:52:8a:e4:cd:39:7e:db:c3:93:37:f1:1d: 89:ff:bc:e0:3e:d1:82:0a:d9:d2:92:0e:58:99:72:99:b9:e0: 08:8a:11:cd:1f:1f:01:9a:f8:0d:d8:49:57:60:8e:98:fe:7a: 90:bd:b7:d0:71:77:32:37:ca:5a:0d:a3:01:b8:ef:ed:3b:d4: f7:b2:92:4a:a0:50:7b:03:82:87:c8:51:64:07:ec:38:2c:6c: 8e:7e:27:6a -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUOaee3Tao4nzoS2mfB+eaHg4iaSkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIzMDEwMjIyOVoX DTI1MTIyOTEwMjcyOVowMzExMC8GA1UEAxMoOTNDNTI0RkEwRDI0OTJBRTFDMEQ3 MEUxOEY1OUJFNzM2M0FDQTQ3OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKaLzra14WFDXVroXYNczwG+4Pb9L5F2WHsExQ7pH1NltSqu+dk6Nb1FPnTh /ssXXLtkq/m4lJoLB78lQ/J953tc9G//DNpKYmtxdNwN0AtoKC/btfQSd43qqGFn GIE0O9ZK1VIKhf2PiHvc8KK7LKuz4Kki3i3JWwptgJ98uGo+o7GSk39J8t2ymT9K IA8wgWtkxACezDZ4NfKoW1ilsVE23C2LCy6YBhZNytth7ca6N7imYytGKAx7HIoj xYWR+EltOrsF86JaN9S8k4sy3aid/PDhO+EFcVLIqDRN8p7VRxLTQ3qr3rqPup01 rPRwwj5o7COPaGaIxfsNYJv2HGMCAwEAAaOCAdswggHXMB0GA1UdDgQWBBSTxST6 DSSSrhwNcOGPWb5zY6ykeTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NjU4LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAZ4deAwQBZ4dgAwQAyjp8MA0GCSqGSIb3DQEBCwUAA4IBAQAcWWqX yr+89X2w6kquh8leuAaEjS49UPw/y0dGJrtQRkuCJgKpFkbmUf2Lod6RgabDPp4A yTo0GGkVUY5FDRYKtQJZHp7Mf33jZBeArqEvJ8DyROofR4bQ0jmICLS4RPLLAjiJ YvU7JBUalFiSp+4GV6vNBnIWUIBx60yANw0soH4nmv4SYDnRbR189lrfPDbWUIUe c93vR5ZYhyLYqOwr9e+zS6UPaqZSiuTNOX7bw5M38R2J/7zgPtGCCtnSkg5YmXKZ ueAIihHNHx8BmvgN2ElXYI6Y/nqQvbfQcXcyN8paDaMBuO/tO9T3spJKoFB7A4KH yFFkB+w4LGyOfidq -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:54 2025 by rpki-client