$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45700.roa File: AS45700.roa (raw, json) Hash identifier: uQsna9IViAMbe7EyKtgsKJZDerLyVWQxWSUm0xT8TXo= Subject key identifier: 3D:A8:C9:02:47:01:46:4B:88:4D:B1:19:AC:C2:3C:5A:57:74:27:09 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 79215FF5ED56A6AC4A64D82BF8573F2D041FC8F8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45700.roa Signing time: Mon 06 Jan 2025 07:50:06 +0000 ROA not before: Mon 06 Jan 2025 07:45:06 +0000 ROA not after: Mon 05 Jan 2026 07:50:06 +0000 asID: 45700 IP address blocks: 27.131.248.0/22 maxlen: 24 116.254.96.0/22 maxlen: 24 202.65.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:21:5f:f5:ed:56:a6:ac:4a:64:d8:2b:f8:57:3f:2d:04:1f:c8:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jan 6 07:45:06 2025 GMT Not After : Jan 5 07:50:06 2026 GMT Subject: CN=3DA8C9024701464B884DB119ACC23C5A57742709 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3e:17:c0:20:70:b6:70:f7:ee:e0:7a:9b:45: da:4a:66:d8:69:b9:49:72:e1:dd:39:ac:f5:4f:a1: 72:a3:ba:4a:ef:3d:8b:80:d6:e7:17:fe:ab:70:ee: 39:b7:ef:d2:35:11:48:6d:70:fd:c9:b1:75:79:f9: ba:5c:db:cf:2f:aa:ae:79:77:dc:40:ad:d8:06:3f: fc:2e:18:4e:11:42:68:fa:51:49:a4:4c:bc:b3:06: 56:3e:b5:80:6a:14:b3:88:50:03:fb:28:dd:23:64: a1:c8:40:32:50:d0:ba:69:f5:a9:25:7f:b3:e5:ad: 7f:15:6d:8c:81:6b:b9:45:38:bb:26:30:b8:1b:e2: 19:31:48:e7:d4:b7:cf:07:05:aa:cd:8a:f2:15:b3: 3f:b9:a2:f3:bf:0d:2e:4d:f0:cf:c7:44:61:aa:99: 5d:eb:9e:5e:08:26:b8:3f:b5:bf:44:40:1b:5d:fa: 49:f0:66:62:95:02:f9:fe:93:ab:4b:37:58:df:5f: c6:8e:59:0c:1d:33:5f:e7:f6:da:74:a0:c3:6b:af: 02:9a:21:93:fc:86:80:6d:a5:ae:2c:3d:64:56:b1: 3b:92:e2:41:fb:5d:bc:9d:7d:2d:d5:e7:55:45:ba: 29:a5:af:63:f8:71:82:7f:ce:e1:71:a9:30:7e:9a: c2:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:A8:C9:02:47:01:46:4B:88:4D:B1:19:AC:C2:3C:5A:57:74:27:09 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45700.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.248.0/22 116.254.96.0/22 202.65.224.0/20 Signature Algorithm: sha256WithRSAEncryption 96:ac:51:85:c4:02:26:fa:25:2a:a0:ea:ec:aa:e1:ec:20:2c: a0:18:e0:7d:4a:94:48:76:3a:85:8b:9f:ea:79:c5:63:59:ce: 1e:56:aa:ac:54:a7:a4:b5:d4:c1:42:b6:3e:b0:bb:d0:ac:4a: 7b:ca:8c:0e:ad:9e:3d:c6:9b:64:3e:5e:1a:58:58:c9:8d:3d: 77:c1:9b:44:48:f9:6f:9d:aa:27:e3:da:91:cd:c9:10:30:5e: db:a5:91:36:c0:85:df:c7:1e:00:a1:da:4f:ad:2e:89:9f:16: f7:69:ad:29:18:e7:8d:49:da:d3:8d:bc:df:59:ce:b2:dc:12: 50:4b:52:4a:67:c3:f4:7b:40:58:49:ab:a3:c4:03:d6:35:4d: 1e:0e:60:3b:2e:b0:e8:1f:7f:85:52:05:3e:3c:24:52:64:05: cd:d5:eb:69:97:a5:2e:f0:46:bb:17:3b:83:6c:95:a3:48:48: a9:b2:f7:19:31:66:1c:f1:95:a1:d9:4d:f4:46:a3:6c:05:56: 7b:d1:80:f3:a3:9c:8e:52:9d:fa:90:62:ad:2a:8c:cf:55:a7: ca:73:bc:98:43:e4:fd:b6:4e:83:6d:a2:e5:e7:dd:22:02:ff: 33:3a:44:6e:c2:36:82:c8:9b:44:1b:29:b2:cb:bb:40:59:71: 9a:77:3b:ca -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUeSFf9e1WpqxKZNgr+Fc/LQQfyPgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDEwNjA3NDUwNloX DTI2MDEwNTA3NTAwNlowMzExMC8GA1UEAxMoM0RBOEM5MDI0NzAxNDY0Qjg4NERC MTE5QUNDMjNDNUE1Nzc0MjcwOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALc+F8AgcLZw9+7geptF2kpm2Gm5SXLh3Tms9U+hcqO6Su89i4DW5xf+q3Du Obfv0jURSG1w/cmxdXn5ulzbzy+qrnl33ECt2AY//C4YThFCaPpRSaRMvLMGVj61 gGoUs4hQA/so3SNkochAMlDQumn1qSV/s+WtfxVtjIFruUU4uyYwuBviGTFI59S3 zwcFqs2K8hWzP7mi878NLk3wz8dEYaqZXeueXggmuD+1v0RAG136SfBmYpUC+f6T q0s3WN9fxo5ZDB0zX+f22nSgw2uvApohk/yGgG2lriw9ZFaxO5LiQftdvJ19LdXn VUW6KaWvY/hxgn/O4XGpMH6awtECAwEAAaOCAdswggHXMB0GA1UdDgQWBBQ9qMkC RwFGS4hNsRmswjxaV3QnCTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzAwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCG4P4AwQCdP5gAwQEykHgMA0GCSqGSIb3DQEBCwUAA4IBAQCWrFGF xAIm+iUqoOrsquHsICygGOB9SpRIdjqFi5/qecVjWc4eVqqsVKektdTBQrY+sLvQ rEp7yowOrZ49xptkPl4aWFjJjT13wZtESPlvnaon49qRzckQMF7bpZE2wIXfxx4A odpPrS6Jnxb3aa0pGOeNSdrTjbzfWc6y3BJQS1JKZ8P0e0BYSaujxAPWNU0eDmA7 LrDoH3+FUgU+PCRSZAXN1etpl6Uu8Ea7FzuDbJWjSEipsvcZMWYc8ZWh2U30RqNs BVZ70YDzo5yOUp36kGKtKozPVafKc7yYQ+T9tk6DbaLl590iAv8zOkRuwjaCyJtE Gymyy7tAWXGadzvK -----END CERTIFICATE-----Generated at Sat Apr 5 06:24:32 2025 by rpki-client