$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45708.roa File: AS45708.roa (raw, json) Hash identifier: BCyPVCkdZ+Nf6AicpCH1QswIDB5SeOFi/fbkEl9U3O4= Subject key identifier: 41:39:3A:E5:CF:71:D9:70:1E:4B:85:B0:33:08:4F:8F:F1:0D:E6:67 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 14D45CAF958E282A0B324A139E17B475B2514158 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45708.roa Signing time: Tue 09 Jan 2024 04:00:27 +0000 ROA not before: Tue 09 Jan 2024 03:55:27 +0000 ROA not after: Tue 07 Jan 2025 04:00:27 +0000 asID: 45708 IP address blocks: 112.140.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:d4:5c:af:95:8e:28:2a:0b:32:4a:13:9e:17:b4:75:b2:51:41:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:27 2024 GMT Not After : Jan 7 04:00:27 2025 GMT Subject: CN=41393AE5CF71D9701E4B85B033084F8FF10DE667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6a:6d:20:1d:42:3b:af:f7:38:49:82:4e:31: 01:7d:c6:77:80:4d:54:b8:21:37:c5:f8:6b:a7:10: 3b:2e:14:ac:f3:d7:f8:6a:79:8e:2d:2d:4d:5a:da: 20:3a:41:94:9b:f4:34:97:d1:8b:57:f9:fb:2f:02: 33:36:53:65:60:13:da:df:22:10:f3:93:42:66:f5: 49:2c:9c:1d:c2:57:9c:65:61:c9:37:d2:cc:8c:25: 7a:aa:8c:5f:44:f2:47:d3:33:a1:4e:ec:ea:6e:1b: bf:7e:7a:08:1e:73:96:08:57:65:10:01:03:7f:72: ce:d3:ce:b0:62:4d:3d:35:8e:f8:de:92:cd:0a:0e: 29:34:e3:ac:c7:7b:64:ee:8b:f8:40:ea:ad:b7:0d: 8a:0e:d2:e3:77:6c:f9:87:35:36:49:9d:2f:82:e9: e9:20:f1:20:25:a6:13:8a:fa:55:ea:9d:70:5d:02: 18:6a:99:e5:40:c7:f6:40:2d:29:8c:a3:25:a0:36: 9b:63:ea:cc:b6:9b:10:d8:8e:21:22:22:88:23:5f: bf:07:5f:12:b2:a5:b4:77:24:0a:01:43:3e:de:6f: 69:70:f3:94:1e:c5:c3:c5:a5:76:59:ac:07:a3:fc: 6d:77:86:48:b3:cd:f8:e7:48:26:3e:58:e4:63:06: 2b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:39:3A:E5:CF:71:D9:70:1E:4B:85:B0:33:08:4F:8F:F1:0D:E6:67 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45708.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 112.140.160.0/21 Signature Algorithm: sha256WithRSAEncryption 19:71:79:12:3e:4d:d4:0d:f0:76:b4:17:be:f3:55:f9:71:92: fc:88:e3:7a:6b:98:9b:fc:64:79:53:95:f5:bb:58:33:1d:39: c3:89:1b:0b:49:a0:b0:59:7a:53:ce:44:01:dd:31:df:e4:cd: 5b:1e:f2:0f:9b:fd:14:04:02:2a:e6:19:9b:b5:c9:03:18:e0: f4:a7:e5:3f:47:30:6a:ab:6f:3c:8d:a4:c9:49:55:86:c1:84: 34:5c:c8:2d:d5:3f:a7:3f:31:c5:c4:58:db:8c:f1:a4:e6:dc: e9:ed:03:5b:e6:86:65:20:1a:58:d7:61:c1:95:ac:cd:d4:45: b6:21:34:4e:43:50:ec:4b:49:d7:b2:77:70:e3:6d:a3:e5:b2: 95:fa:2a:8d:1a:dc:bf:ad:37:48:18:02:b5:53:9c:ea:6d:01: fa:d9:74:10:7f:12:d8:53:0e:71:d2:54:d8:b7:4e:9d:0f:d2: 32:28:59:9c:a2:79:fd:3d:4b:08:60:9e:da:a3:56:30:a4:5c: 4b:4c:aa:e7:17:20:3b:98:a1:12:1d:43:9d:36:b1:5f:20:b1: 0a:ff:f3:b7:21:5f:97:0d:15:c0:2e:43:83:e2:ee:9c:07:05: 7e:cd:c1:38:c8:68:ee:9d:c7:15:fc:84:9a:30:b4:07:82:95: 30:34:2e:ce -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUFNRcr5WOKCoLMkoTnhe0dbJRQVgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyN1oX DTI1MDEwNzA0MDAyN1owMzExMC8GA1UEAxMoNDEzOTNBRTVDRjcxRDk3MDFFNEI4 NUIwMzMwODRGOEZGMTBERTY2NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMlqbSAdQjuv9zhJgk4xAX3Gd4BNVLghN8X4a6cQOy4UrPPX+Gp5ji0tTVra IDpBlJv0NJfRi1f5+y8CMzZTZWAT2t8iEPOTQmb1SSycHcJXnGVhyTfSzIwleqqM X0TyR9MzoU7s6m4bv356CB5zlghXZRABA39yztPOsGJNPTWO+N6SzQoOKTTjrMd7 ZO6L+EDqrbcNig7S43ds+Yc1NkmdL4Lp6SDxICWmE4r6VeqdcF0CGGqZ5UDH9kAt KYyjJaA2m2PqzLabENiOISIiiCNfvwdfErKltHckCgFDPt5vaXDzlB7Fw8Wldlms B6P8bXeGSLPN+OdIJj5Y5GMGKwMCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBRBOTrl z3HZcB5LhbAzCE+P8Q3mZzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzA4LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDcIygMA0GCSqGSIb3DQEBCwUAA4IBAQAZcXkSPk3UDfB2tBe+81X5 cZL8iON6a5ib/GR5U5X1u1gzHTnDiRsLSaCwWXpTzkQB3THf5M1bHvIPm/0UBAIq 5hmbtckDGOD0p+U/RzBqq288jaTJSVWGwYQ0XMgt1T+nPzHFxFjbjPGk5tzp7QNb 5oZlIBpY12HBlazN1EW2ITROQ1DsS0nXsndw422j5bKV+iqNGty/rTdIGAK1U5zq bQH62XQQfxLYUw5x0lTYt06dD9IyKFmconn9PUsIYJ7ao1YwpFxLTKrnFyA7mKES HUOdNrFfILEK//O3IV+XDRXALkOD4u6cBwV+zcE4yGjunccV/ISaMLQHgpUwNC7O -----END CERTIFICATE-----Generated at Fri Apr 26 00:39:40 2024 by rpki-client on console-fra.rpki-client.org