$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45700.roa File: AS45700.roa (raw, json) Hash identifier: U1g6IByW/SAeSS0XyCrgeDjdLnlaikrmazuSkcdeIII= Subject key identifier: 3C:A8:41:75:BD:22:57:17:34:6E:87:5C:80:AE:84:42:5A:0C:1B:7D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0DA3D82CDD3D5316A7C64A8D0835A98A0CFCDF9E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45700.roa Signing time: Mon 27 May 2024 16:44:58 +0000 ROA not before: Mon 27 May 2024 16:39:58 +0000 ROA not after: Mon 26 May 2025 16:44:58 +0000 asID: 45700 IP address blocks: 116.254.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 03:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:a3:d8:2c:dd:3d:53:16:a7:c6:4a:8d:08:35:a9:8a:0c:fc:df:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 27 16:39:58 2024 GMT Not After : May 26 16:44:58 2025 GMT Subject: CN=3CA84175BD225717346E875C80AE84425A0C1B7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:58:bc:a5:96:59:b3:d7:1f:58:e8:8a:3f:75: 47:22:d0:e1:e9:05:7f:38:98:fb:82:b0:7c:f9:60: 3f:0c:27:ef:2e:b0:1b:e8:f9:f1:c2:1e:da:79:1d: ac:94:04:f9:d9:a8:2c:cf:79:4c:30:ac:51:84:04: 7d:77:8b:af:c7:55:dc:cd:4a:31:9e:a0:80:8b:d5: 56:c8:85:19:e3:97:58:8c:4f:ec:57:f1:c7:be:9a: ae:72:ae:a6:f7:ca:b4:62:55:d3:e9:16:04:99:5b: 59:83:6d:fe:c6:f7:45:21:b6:0a:9d:cf:ec:93:c7: 8b:b1:c1:d9:fe:f6:8a:64:4a:a9:b1:81:30:ba:3e: 54:2e:91:d5:68:f0:17:3a:3d:bc:eb:e3:70:8d:4d: 73:b7:69:8c:96:4e:ba:7a:60:2d:98:2b:69:b3:22: d6:a8:36:60:17:19:d0:1d:8d:c9:8e:0d:b2:44:1e: d0:b4:5d:e1:96:21:8c:c6:d5:8e:4a:89:86:26:75: 1c:9e:77:d2:b8:34:c1:54:c5:72:d7:ae:ed:78:ec: 22:1b:2d:31:63:4d:d5:07:b6:2b:c5:2a:9b:95:62: 13:14:fb:8c:ce:4b:cc:8d:88:aa:2e:69:54:c2:a8: 66:af:fc:6b:f7:5a:af:94:0b:86:63:50:55:76:4d: a4:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:A8:41:75:BD:22:57:17:34:6E:87:5C:80:AE:84:42:5A:0C:1B:7D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45700.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.254.96.0/22 Signature Algorithm: sha256WithRSAEncryption 26:4a:98:5f:e0:22:e7:69:c9:ac:5e:d9:c9:b6:48:13:b1:56: 26:85:fb:b6:60:e4:f5:f3:79:e5:45:83:25:ca:9e:76:13:f8: 71:0e:30:f3:d6:ae:f8:fd:fb:56:f9:e4:88:21:b4:39:1b:8c: b4:46:2a:47:fe:b7:8d:2b:93:4a:dd:ee:10:9e:4f:2c:4c:52: 12:29:c2:94:b7:14:7d:11:f2:6b:03:5b:1c:40:36:15:99:a4: cb:40:24:d9:e2:b3:66:bb:ef:13:fa:f2:6b:9e:6b:05:27:da: 50:ec:37:1e:88:26:ab:bb:be:28:9c:20:e3:eb:a2:37:07:86: 65:7b:58:84:18:a5:68:c1:a4:56:1f:f7:15:0c:c8:09:2f:fb: 45:1a:95:b2:1a:04:9c:7b:a6:66:51:0a:4a:1c:5a:3a:02:eb: ac:f8:bb:30:8e:ab:e7:c2:1f:cc:50:2a:41:06:5f:6a:32:9e: 97:89:7d:8f:97:00:ae:9e:f2:1c:40:5f:3f:1e:61:37:59:b1: 53:56:fe:aa:86:e0:e7:42:37:f0:fb:be:4c:41:3a:96:ab:62: 10:6e:99:f8:5e:1f:43:ff:d2:b0:86:e1:be:16:b1:7c:18:72: 79:8a:db:ce:d1:ec:09:c0:47:ac:b2:3f:81:9d:a0:03:2f:bc: e1:82:12:ec -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUDaPYLN09UxanxkqNCDWpigz8354wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUyNzE2Mzk1OFoX DTI1MDUyNjE2NDQ1OFowMzExMC8GA1UEAxMoM0NBODQxNzVCRDIyNTcxNzM0NkU4 NzVDODBBRTg0NDI1QTBDMUI3RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOZYvKWWWbPXH1joij91RyLQ4ekFfziY+4KwfPlgPwwn7y6wG+j58cIe2nkd rJQE+dmoLM95TDCsUYQEfXeLr8dV3M1KMZ6ggIvVVsiFGeOXWIxP7Ffxx76arnKu pvfKtGJV0+kWBJlbWYNt/sb3RSG2Cp3P7JPHi7HB2f72imRKqbGBMLo+VC6R1Wjw Fzo9vOvjcI1Nc7dpjJZOunpgLZgrabMi1qg2YBcZ0B2NyY4NskQe0LRd4ZYhjMbV jkqJhiZ1HJ530rg0wVTFcteu7XjsIhstMWNN1Qe2K8Uqm5ViExT7jM5LzI2Iqi5p VMKoZq/8a/dar5QLhmNQVXZNpPMCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBQ8qEF1 vSJXFzRuh1yAroRCWgwbfTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzAwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCdP5gMA0GCSqGSIb3DQEBCwUAA4IBAQAmSphf4CLnacmsXtnJtkgT sVYmhfu2YOT183nlRYMlyp52E/hxDjDz1q74/ftW+eSIIbQ5G4y0RipH/reNK5NK 3e4Qnk8sTFISKcKUtxR9EfJrA1scQDYVmaTLQCTZ4rNmu+8T+vJrnmsFJ9pQ7Dce iCaru74onCDj66I3B4Zle1iEGKVowaRWH/cVDMgJL/tFGpWyGgSce6ZmUQpKHFo6 Auus+Lswjqvnwh/MUCpBBl9qMp6XiX2PlwCunvIcQF8/HmE3WbFTVv6qhuDnQjfw +75MQTqWq2IQbpn4Xh9D/9KwhuG+FrF8GHJ5itvO0ewJwEessj+BnaADL7zhghLs -----END CERTIFICATE-----Generated at Sun Jun 23 00:04:05 2024 by rpki-client on console-ams.rpki-client.org