$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45708.roa File: AS45708.roa (raw, json) Hash identifier: smTodC25bFDSEcc6cKlP/94SWKrKlc7HAZT1iO72Me4= Subject key identifier: C7:A8:28:F7:2A:F1:46:11:40:08:E6:68:FC:5B:62:24:2B:95:16:79 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 134FF278600F618D71F81B50FBDE645190EA7840 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45708.roa Signing time: Tue 10 Dec 2024 05:00:23 +0000 ROA not before: Tue 10 Dec 2024 04:55:23 +0000 ROA not after: Tue 09 Dec 2025 05:00:23 +0000 asID: 45708 IP address blocks: 112.140.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:4f:f2:78:60:0f:61:8d:71:f8:1b:50:fb:de:64:51:90:ea:78:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:23 2024 GMT Not After : Dec 9 05:00:23 2025 GMT Subject: CN=C7A828F72AF146114008E668FC5B62242B951679 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a6:9e:c7:2d:5b:df:bd:f3:7b:8b:0b:0c:f8: b5:03:69:79:22:55:2b:f2:ff:fb:df:50:c8:a2:d5: e1:d1:0f:27:cb:00:dc:25:aa:5d:7a:0f:24:ab:c4: 33:d0:a6:95:ab:51:8f:76:0f:be:6c:fe:40:df:94: 7a:54:bc:00:f5:a4:cd:92:c4:5c:ba:4f:ec:d4:b3: d5:9b:ca:35:90:12:a3:17:f9:42:43:43:f8:ff:c2: 51:c7:63:ea:55:c5:3a:b5:59:18:4a:4f:55:e8:d1: d1:23:68:46:76:f6:0b:b5:a4:a5:e1:a7:4c:65:17: aa:1c:4a:b1:71:f8:a6:1a:52:a6:0e:97:07:f9:72: 5d:04:95:66:f4:8b:24:ae:8c:9c:ba:51:74:f3:ae: 84:d4:08:ab:e7:ba:69:b5:fb:15:52:bb:49:f5:a9: c3:b3:03:f9:3a:d8:17:69:3d:c7:27:3e:e5:80:7d: 01:73:78:82:2b:c4:29:11:2a:8e:fb:1e:12:69:94: 36:8a:cd:bc:f0:46:9d:df:56:38:94:1f:68:ea:54: 7f:ed:be:6e:9b:e9:a9:c3:a5:4e:a5:6d:5d:78:f3: 9d:c8:ad:1f:03:83:3e:2e:d4:8a:0f:96:79:81:44: d7:34:9c:c1:c3:32:a4:cd:7f:4b:e8:e0:90:d9:15: 50:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:A8:28:F7:2A:F1:46:11:40:08:E6:68:FC:5B:62:24:2B:95:16:79 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45708.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 112.140.160.0/21 Signature Algorithm: sha256WithRSAEncryption 5f:c7:ee:8c:d0:3a:c7:75:3c:2f:4b:3a:d1:c6:2f:cd:53:e2: 71:ac:d7:33:a0:8b:b6:4c:17:1d:3a:c9:05:88:31:7b:86:4f: b6:37:5a:60:c8:85:e8:c5:5a:2c:7d:41:81:48:47:1e:10:7f: d8:03:ab:35:b1:9a:d6:b1:85:0e:e7:d2:70:66:38:27:b4:f8: b1:ef:1b:40:5d:70:05:c6:d7:6a:4e:be:65:4d:d3:b4:a1:8b: 0e:27:bc:b0:35:be:db:65:80:c7:c8:e8:c8:9f:03:5c:97:a7: 47:cb:ad:f9:77:f5:c7:72:93:b0:c1:74:13:b7:37:1b:a1:12: 7d:d3:a3:64:66:1d:31:02:06:35:88:60:c6:c0:f0:0b:af:d0: 08:54:fe:b4:e9:b3:3e:dd:32:c7:f3:a4:07:3c:d2:6b:2b:fe: 80:91:c7:90:4b:aa:57:b4:80:5d:b1:11:3f:2f:78:b5:61:c3: 4a:a3:33:2e:93:23:1b:51:ae:45:ac:2e:0b:cb:0a:7d:30:64: ab:03:62:ca:dc:41:f7:57:f1:39:34:07:35:d8:64:39:be:d0: e2:57:46:bd:2e:47:81:53:2b:25:7b:db:3e:23:09:34:41:31: 21:ed:3c:3f:c9:e9:1b:4b:c1:e0:48:6e:9c:24:12:a9:7c:cc: 9d:c9:04:ab -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUE0/yeGAPYY1x+BtQ+95kUZDqeEAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUyM1oX DTI1MTIwOTA1MDAyM1owMzExMC8GA1UEAxMoQzdBODI4RjcyQUYxNDYxMTQwMDhF NjY4RkM1QjYyMjQyQjk1MTY3OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANumnsctW9+983uLCwz4tQNpeSJVK/L/+99QyKLV4dEPJ8sA3CWqXXoPJKvE M9CmlatRj3YPvmz+QN+UelS8APWkzZLEXLpP7NSz1ZvKNZASoxf5QkND+P/CUcdj 6lXFOrVZGEpPVejR0SNoRnb2C7WkpeGnTGUXqhxKsXH4phpSpg6XB/lyXQSVZvSL JK6MnLpRdPOuhNQIq+e6abX7FVK7SfWpw7MD+TrYF2k9xyc+5YB9AXN4givEKREq jvseEmmUNorNvPBGnd9WOJQfaOpUf+2+bpvpqcOlTqVtXXjzncitHwODPi7Uig+W eYFE1zScwcMypM1/S+jgkNkVUPsCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBTHqCj3 KvFGEUAI5mj8W2IkK5UWeTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzA4LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDcIygMA0GCSqGSIb3DQEBCwUAA4IBAQBfx+6M0DrHdTwvSzrRxi/N U+JxrNczoIu2TBcdOskFiDF7hk+2N1pgyIXoxVosfUGBSEceEH/YA6s1sZrWsYUO 59JwZjgntPix7xtAXXAFxtdqTr5lTdO0oYsOJ7ywNb7bZYDHyOjInwNcl6dHy635 d/XHcpOwwXQTtzcboRJ906NkZh0xAgY1iGDGwPALr9AIVP606bM+3TLH86QHPNJr K/6AkceQS6pXtIBdsRE/L3i1YcNKozMukyMbUa5FrC4Lywp9MGSrA2LK3EH3V/E5 NAc12GQ5vtDiV0a9LkeBUysle9s+Iwk0QTEh7Tw/yekbS8HgSG6cJBKpfMydyQSr -----END CERTIFICATE-----Generated at Sun Feb 16 20:47:50 2025 by rpki-client