$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45700.roa File: AS45700.roa (raw, json) Hash identifier: edzDbT6lfz518nP5b7zW8tNBhbGOjajx7gHJKoQfV3M= Subject key identifier: 0B:88:7F:63:BB:7B:4B:E3:62:01:3C:01:D2:BC:5B:32:08:CC:B5:51 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 617C40B2140BA9C9CB43BD847E6122A1420CDAA0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45700.roa Signing time: Sat 14 Sep 2024 00:56:36 +0000 ROA not before: Sat 14 Sep 2024 00:51:36 +0000 ROA not after: Sat 13 Sep 2025 00:56:36 +0000 asID: 45700 IP address blocks: 27.131.248.0/22 maxlen: 24 116.254.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:7c:40:b2:14:0b:a9:c9:cb:43:bd:84:7e:61:22:a1:42:0c:da:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 14 00:51:36 2024 GMT Not After : Sep 13 00:56:36 2025 GMT Subject: CN=0B887F63BB7B4BE362013C01D2BC5B3208CCB551 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:53:9f:92:e5:e3:83:0d:3a:23:f6:10:d0:a0: 71:2c:c8:4f:bc:33:92:bf:f0:ed:be:48:32:a8:47: 73:be:2d:34:0d:fe:3c:79:b5:b5:8e:85:84:aa:cf: 96:e3:89:69:85:fe:ae:92:dd:ba:11:67:81:9e:93: 8a:63:0c:f3:a8:03:2e:18:d1:83:38:17:e8:21:65: 21:c4:1a:18:d6:25:af:51:b3:f8:61:e7:47:cb:ab: 24:37:b1:29:e9:88:ee:fc:c0:6f:e3:16:ae:07:52: 0a:24:f5:f2:5e:dc:64:49:ba:c2:01:68:ea:ae:e4: ea:55:15:8f:62:50:bb:19:45:b6:54:d4:96:5e:5b: 05:34:a7:ef:94:34:17:e3:4c:38:a8:14:e3:89:45: dc:bf:6a:5f:cb:0b:39:3f:85:24:41:da:15:44:d8: 9d:72:47:46:fe:39:c3:d0:2d:78:f0:84:a8:b3:e6: d0:36:05:07:01:bd:b0:16:d4:28:17:4f:8c:08:48: cd:51:69:86:99:74:9f:3a:1d:2c:2a:f9:18:4d:03: e7:59:88:bf:1d:9a:00:e9:ed:98:4a:ea:af:5f:c5: 90:3c:b6:2f:e7:c1:0d:cd:bc:b1:96:09:d2:9e:6e: af:d8:02:f7:ab:2e:15:25:c9:9d:7d:71:de:1d:ae: 37:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:88:7F:63:BB:7B:4B:E3:62:01:3C:01:D2:BC:5B:32:08:CC:B5:51 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45700.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.248.0/22 116.254.96.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:ab:52:60:b9:6f:f5:e2:86:0e:7b:18:28:25:f3:eb:ca:55: 96:fd:84:9b:d0:78:23:92:f4:b7:06:b3:36:f9:7a:a1:59:64: e0:e5:8b:0d:2a:36:f0:22:b4:0a:4c:e1:31:b2:1f:85:4f:f2: a6:30:b1:0e:65:4e:82:b6:96:59:ac:92:33:09:0b:2a:67:c7: d2:c5:7a:f2:d3:27:34:55:be:e4:62:e2:32:fa:92:6e:c4:13: 27:32:bb:56:5f:bb:35:da:81:ed:1c:27:2f:83:0d:ef:a0:55: 7d:c9:64:36:79:46:e3:0b:b7:f0:f8:2e:b7:8c:cc:41:fe:a7: da:6a:9d:59:27:55:a4:16:eb:06:13:c5:97:02:bc:44:75:96: ae:cf:26:f2:0c:ce:d0:53:4f:4b:0a:64:82:d4:77:13:d1:ff: d6:41:2d:aa:cc:74:cf:70:ce:bf:87:3c:5b:aa:99:f0:fb:a4: ff:08:2f:0d:4b:72:b0:2f:1e:30:76:64:58:d0:ca:c2:26:89: 0c:e3:15:fa:c5:09:18:07:4d:f3:21:83:37:c0:c7:28:f1:69: db:88:ce:ab:45:7c:2d:33:12:dd:ef:d6:d4:a5:a2:8d:c5:62: ea:0d:1e:b7:df:41:2b:40:50:e0:5b:90:79:c2:06:fa:79:33: 88:23:4c:54 -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUYXxAshQLqcnLQ72EfmEioUIM2qAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkxNDAwNTEzNloX DTI1MDkxMzAwNTYzNlowMzExMC8GA1UEAxMoMEI4ODdGNjNCQjdCNEJFMzYyMDEz QzAxRDJCQzVCMzIwOENDQjU1MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMBTn5Ll44MNOiP2ENCgcSzIT7wzkr/w7b5IMqhHc74tNA3+PHm1tY6FhKrP luOJaYX+rpLduhFngZ6TimMM86gDLhjRgzgX6CFlIcQaGNYlr1Gz+GHnR8urJDex KemI7vzAb+MWrgdSCiT18l7cZEm6wgFo6q7k6lUVj2JQuxlFtlTUll5bBTSn75Q0 F+NMOKgU44lF3L9qX8sLOT+FJEHaFUTYnXJHRv45w9AtePCEqLPm0DYFBwG9sBbU KBdPjAhIzVFphpl0nzodLCr5GE0D51mIvx2aAOntmErqr1/FkDy2L+fBDc28sZYJ 0p5ur9gC96suFSXJnX1x3h2uNxcCAwEAAaOCAdUwggHRMB0GA1UdDgQWBBQLiH9j u3tL42IBPAHSvFsyCMy1UTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzAwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCG4P4AwQCdP5gMA0GCSqGSIb3DQEBCwUAA4IBAQB/q1JguW/14oYO exgoJfPrylWW/YSb0HgjkvS3BrM2+XqhWWTg5YsNKjbwIrQKTOExsh+FT/KmMLEO ZU6CtpZZrJIzCQsqZ8fSxXry0yc0Vb7kYuIy+pJuxBMnMrtWX7s12oHtHCcvgw3v oFV9yWQ2eUbjC7fw+C63jMxB/qfaap1ZJ1WkFusGE8WXArxEdZauzybyDM7QU09L CmSC1HcT0f/WQS2qzHTPcM6/hzxbqpnw+6T/CC8NS3KwLx4wdmRY0MrCJokM4xX6 xQkYB03zIYM3wMco8WnbiM6rRXwtMxLd79bUpaKNxWLqDR6330ErQFDgW5B5wgb6 eTOII0xU -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:50 2024 by rpki-client on console-ams.rpki-client.org