$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45713.roa File: AS45713.roa (raw, json) Hash identifier: KtGj3jMs9fWOLsSMeImy4mRAssZCunVgvsERc4fYC/I= Subject key identifier: CB:02:89:C2:A0:39:27:FC:08:AD:38:9A:68:1B:F5:CA:49:04:9A:33 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1FE591C39249C6AF58DCF523EB93B2E373D292D4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45713.roa Signing time: Mon 26 Feb 2024 06:28:30 +0000 ROA not before: Mon 26 Feb 2024 06:23:30 +0000 ROA not after: Mon 24 Feb 2025 06:28:30 +0000 asID: 45713 IP address blocks: 103.7.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:e5:91:c3:92:49:c6:af:58:dc:f5:23:eb:93:b2:e3:73:d2:92:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 26 06:23:30 2024 GMT Not After : Feb 24 06:28:30 2025 GMT Subject: CN=CB0289C2A03927FC08AD389A681BF5CA49049A33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:4c:a3:b6:db:b2:53:9b:17:90:7d:85:27:ee: 30:36:bf:36:1c:ff:a9:e7:d1:ed:ae:2d:3f:f3:86: 6e:70:a8:72:f0:cb:39:ff:fb:72:2a:ea:93:84:db: e4:de:80:4c:ed:c7:e3:7f:ad:af:34:a0:44:80:05: 4f:9d:de:ad:67:e1:a9:4f:52:9d:28:b4:6c:b1:2d: bc:6f:e8:58:fc:82:cd:3b:f4:57:ef:19:7c:2c:09: ad:c7:f5:7f:0f:e2:e6:d9:75:48:a5:35:1e:3f:3f: 0a:f9:31:25:40:bd:69:47:27:1f:ad:13:29:80:5a: ba:8a:c9:07:0b:62:0b:63:64:a7:00:33:83:5d:d8: 1b:67:41:e1:79:5b:d9:ba:eb:0e:26:08:5e:fd:e2: 04:b7:8e:7e:d2:d5:08:9a:7e:48:03:cf:27:fe:d4: 3c:3d:dd:3c:47:82:14:80:c7:db:e1:28:9f:dc:02: 28:ef:7d:32:8c:39:15:de:af:67:36:38:0e:e6:bc: 03:c7:27:b2:0d:2f:24:16:3d:69:a6:0a:57:84:4c: 13:1d:89:38:c1:b0:7a:d8:6f:10:29:46:5b:23:a7: cd:e7:b6:2a:93:6c:1f:e6:93:03:bc:ce:c5:b5:79: 9a:de:75:89:7c:e1:c7:24:0f:14:3f:31:cc:ef:f8: ea:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:02:89:C2:A0:39:27:FC:08:AD:38:9A:68:1B:F5:CA:49:04:9A:33 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45713.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.7.187.0/24 Signature Algorithm: sha256WithRSAEncryption 92:a5:04:87:23:ff:ff:df:91:8f:a2:7c:3d:e1:14:26:66:3b: c1:ca:0b:79:13:63:40:fe:a1:ea:24:8a:12:1c:8e:5e:9a:6d: f1:69:50:7d:11:30:2a:6d:e9:ce:b1:77:df:95:20:49:b3:0e: 6b:b2:f9:40:1a:ff:fe:8d:20:4a:16:35:90:0a:50:3f:fa:fb: 17:9e:27:8f:53:ba:3b:b8:cb:8a:82:da:f1:5d:78:08:ab:e8: 77:8b:7e:03:77:27:9e:a5:1e:b6:5e:55:97:05:d5:5b:cb:19: a8:5d:c8:50:23:f8:32:c9:52:c4:1c:2b:15:f3:a6:49:45:a8: 7e:7e:f7:a7:66:18:ad:9c:94:9f:8f:df:0c:d3:ee:3c:05:65: 38:d7:11:ed:24:90:82:d4:7b:f5:25:f6:4f:d3:69:80:c5:7d: c5:b3:3d:f1:bb:c6:48:53:ec:2f:c6:c2:43:ee:7c:c2:66:b3: d4:d3:2d:ec:66:52:b4:c4:1d:cc:73:e7:07:50:c3:a4:ef:f0: e0:68:05:ed:8f:6b:53:d4:3b:a8:39:da:0d:52:b2:20:30:67: ea:f0:b0:b6:98:bd:ef:e8:bf:5f:bc:7a:0e:e9:bc:ff:1a:ec: ba:27:17:dd:2b:e0:8a:1f:d3:1f:8d:c7:19:f2:aa:ea:54:ff: b3:ee:a1:1a -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUH+WRw5JJxq9Y3PUj65Oy43PSktQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIyNjA2MjMzMFoX DTI1MDIyNDA2MjgzMFowMzExMC8GA1UEAxMoQ0IwMjg5QzJBMDM5MjdGQzA4QUQz ODlBNjgxQkY1Q0E0OTA0OUEzMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANpMo7bbslObF5B9hSfuMDa/Nhz/qefR7a4tP/OGbnCocvDLOf/7cirqk4Tb 5N6ATO3H43+trzSgRIAFT53erWfhqU9SnSi0bLEtvG/oWPyCzTv0V+8ZfCwJrcf1 fw/i5tl1SKU1Hj8/CvkxJUC9aUcnH60TKYBauorJBwtiC2NkpwAzg13YG2dB4Xlb 2brrDiYIXv3iBLeOftLVCJp+SAPPJ/7UPD3dPEeCFIDH2+Eon9wCKO99Mow5Fd6v ZzY4Dua8A8cnsg0vJBY9aaYKV4RMEx2JOMGwethvEClGWyOnzee2KpNsH+aTA7zO xbV5mt51iXzhxyQPFD8xzO/46lcCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBTLAonC oDkn/AitOJpoG/XKSQSaMzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzEzLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZwe7MA0GCSqGSIb3DQEBCwUAA4IBAQCSpQSHI///35GPonw94RQm ZjvBygt5E2NA/qHqJIoSHI5emm3xaVB9ETAqbenOsXfflSBJsw5rsvlAGv/+jSBK FjWQClA/+vsXniePU7o7uMuKgtrxXXgIq+h3i34DdyeepR62XlWXBdVbyxmoXchQ I/gyyVLEHCsV86ZJRah+fvenZhitnJSfj98M0+48BWU41xHtJJCC1Hv1JfZP02mA xX3Fsz3xu8ZIU+wvxsJD7nzCZrPU0y3sZlK0xB3Mc+cHUMOk7/DgaAXtj2tT1Duo OdoNUrIgMGfq8LC2mL3v6L9fvHoO6bz/Guy6JxfdK+CKH9MfjccZ8qrqVP+z7qEa -----END CERTIFICATE-----Generated at Wed May 8 04:37:59 2024 by rpki-client on console-fra.rpki-client.org