$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45706.roa File: AS45706.roa (raw, json) Hash identifier: TpBbXPT4+D+J1hS1s6slqAzATzkwQtWbbCLmOEHTDic= Subject key identifier: 98:AD:8F:32:29:DB:D8:FA:BD:54:30:E8:A5:89:DD:EA:A7:6F:25:39 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 343064CD75ED1EA904516690B73C2F4B68DE4104 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45706.roa Signing time: Tue 23 Jul 2024 08:00:00 +0000 ROA not before: Tue 23 Jul 2024 07:55:00 +0000 ROA not after: Tue 22 Jul 2025 08:00:00 +0000 asID: 45706 IP address blocks: 103.244.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:30:64:cd:75:ed:1e:a9:04:51:66:90:b7:3c:2f:4b:68:de:41:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 23 07:55:00 2024 GMT Not After : Jul 22 08:00:00 2025 GMT Subject: CN=98AD8F3229DBD8FABD5430E8A589DDEAA76F2539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f2:3b:54:90:19:67:e3:67:32:e7:84:15:7b: 03:97:5f:d7:8c:02:42:b6:6d:7c:26:44:4c:33:7b: ee:d5:d8:c8:82:53:e6:6e:c3:e1:65:42:31:fa:bb: 3c:fd:e2:68:58:8c:3c:f6:d1:77:46:79:10:2f:26: 97:4c:5b:91:c5:5e:a5:63:1d:2b:97:ed:6c:a5:d6: 27:ea:99:73:b2:fd:10:41:50:94:28:2f:bd:ac:ef: 97:ce:17:00:eb:6b:b6:80:91:88:8a:0a:0c:92:bf: b4:96:9a:a9:f7:03:cb:a0:d7:51:2f:6f:57:bd:0a: 60:84:69:9b:6a:e5:4c:09:f0:bd:84:a6:76:00:ee: 10:4b:b0:d8:5a:b5:11:6f:b9:a0:2d:24:60:08:7f: 4e:9d:d1:4e:79:45:46:f9:43:5c:46:c9:7f:85:9d: 86:e9:cd:37:a6:7c:19:d9:7c:e7:a1:74:73:90:ca: 17:22:99:2a:cf:71:40:1e:33:6e:a3:9e:fb:14:ac: 61:26:86:43:ef:77:28:23:b3:5a:47:32:02:3b:be: 19:b9:26:27:5c:10:e5:0d:0a:b8:26:01:9d:a6:3e: 2a:60:64:35:cf:c0:6a:90:f8:6d:59:62:70:fa:c4: 2f:54:f0:db:52:fd:62:3a:51:07:a5:ee:b0:0c:3d: 9e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:AD:8F:32:29:DB:D8:FA:BD:54:30:E8:A5:89:DD:EA:A7:6F:25:39 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45706.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.216.0/23 Signature Algorithm: sha256WithRSAEncryption 47:50:80:fc:ab:cd:71:a4:4b:d4:48:2f:71:69:9a:8d:00:60: 74:ed:e6:0d:56:14:e2:46:d3:01:ef:22:5f:89:44:93:b6:59: bf:ed:b2:30:6e:03:48:44:0d:8a:97:5a:c8:2f:8f:bb:72:73: 35:e6:95:c7:db:b1:5c:4f:65:a6:37:21:b3:29:e0:4f:d7:1d: 32:d0:ab:5b:ec:49:67:90:6b:e5:d7:12:ec:20:36:83:32:ff: 3a:ee:91:be:37:b2:b3:6b:1b:f7:36:fd:2e:3b:5f:8a:3c:53: 3e:7a:1a:16:6f:50:16:97:22:58:9d:87:ea:9a:0e:74:ab:e5: 25:a4:df:a8:70:89:f0:42:68:4e:95:26:19:13:c5:18:ef:ec: 90:bd:6f:8b:76:6a:c4:35:4b:c2:d7:d2:26:a0:30:af:9e:f4: 45:5b:52:75:22:99:77:bf:38:d5:c8:a0:fd:4a:83:2c:8f:43: 5d:97:03:6d:8f:e7:0a:4f:81:c6:7b:c1:53:f2:92:0d:6d:4e: 56:db:95:f6:06:73:5f:c2:f0:85:d0:b1:e3:fc:56:f6:86:90: 1f:45:db:d3:8c:41:c1:44:6e:e9:69:7c:06:2b:bc:dd:a4:10: 3f:27:e2:b9:f7:f0:d6:94:0e:dc:5d:7a:87:98:02:01:21:db: 60:3d:c3:e5 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUNDBkzXXtHqkEUWaQtzwvS2jeQQQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcyMzA3NTUwMFoX DTI1MDcyMjA4MDAwMFowMzExMC8GA1UEAxMoOThBRDhGMzIyOURCRDhGQUJENTQz MEU4QTU4OURERUFBNzZGMjUzOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALzyO1SQGWfjZzLnhBV7A5df14wCQrZtfCZETDN77tXYyIJT5m7D4WVCMfq7 PP3iaFiMPPbRd0Z5EC8ml0xbkcVepWMdK5ftbKXWJ+qZc7L9EEFQlCgvvazvl84X AOtrtoCRiIoKDJK/tJaaqfcDy6DXUS9vV70KYIRpm2rlTAnwvYSmdgDuEEuw2Fq1 EW+5oC0kYAh/Tp3RTnlFRvlDXEbJf4WdhunNN6Z8Gdl856F0c5DKFyKZKs9xQB4z bqOe+xSsYSaGQ+93KCOzWkcyAju+GbkmJ1wQ5Q0KuCYBnaY+KmBkNc/AapD4bVli cPrEL1Tw21L9YjpRB6XusAw9nokCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBSYrY8y KdvY+r1UMOilid3qp28lOTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzA2LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ/TYMA0GCSqGSIb3DQEBCwUAA4IBAQBHUID8q81xpEvUSC9xaZqN AGB07eYNVhTiRtMB7yJfiUSTtlm/7bIwbgNIRA2Kl1rIL4+7cnM15pXH27FcT2Wm NyGzKeBP1x0y0Ktb7ElnkGvl1xLsIDaDMv867pG+N7Kzaxv3Nv0uO1+KPFM+ehoW b1AWlyJYnYfqmg50q+UlpN+ocInwQmhOlSYZE8UY7+yQvW+LdmrENUvC19ImoDCv nvRFW1J1Ipl3vzjVyKD9SoMsj0NdlwNtj+cKT4HGe8FT8pINbU5W25X2BnNfwvCF 0LHj/Fb2hpAfRdvTjEHBRG7paXwGK7zdpBA/J+K59/DWlA7cXXqHmAIBIdtgPcPl -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:28 2024 by rpki-client on console-fra.rpki-client.org