$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45715.roa File: AS45715.roa (raw, json) Hash identifier: MqX9/8LnBIP0S8LtuyUP+YMt/m07+F8CA3r/EfW3owo= Subject key identifier: 86:83:DB:D0:C4:AB:F8:CC:F9:78:2D:87:F3:1F:B7:FB:1C:55:C3:4F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0DAB2BFEA1615429BB70BDF146B2A1CD2853E10C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45715.roa Signing time: Tue 10 Dec 2024 05:00:02 +0000 ROA not before: Tue 10 Dec 2024 04:55:02 +0000 ROA not after: Tue 09 Dec 2025 05:00:02 +0000 asID: 45715 IP address blocks: 45.250.100.0/24 maxlen: 24 45.250.101.0/24 maxlen: 24 45.250.102.0/24 maxlen: 24 45.250.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:ab:2b:fe:a1:61:54:29:bb:70:bd:f1:46:b2:a1:cd:28:53:e1:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:02 2024 GMT Not After : Dec 9 05:00:02 2025 GMT Subject: CN=8683DBD0C4ABF8CCF9782D87F31FB7FB1C55C34F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:f2:b9:52:29:fa:cc:65:fe:cd:1c:f5:9b:96: 98:00:c0:8d:9f:2a:f4:88:0c:30:d8:4e:68:c2:c3: 0e:ab:e6:63:45:0b:a8:eb:a2:8f:e3:e5:ce:96:13: 4f:c8:53:bd:5e:8b:0e:7b:7e:5a:2f:7f:02:30:d2: 4d:d6:f9:2e:94:57:24:04:72:fb:f5:23:39:87:42: fd:bf:da:a3:1b:ea:05:1f:50:2f:79:3d:37:52:af: 93:15:9f:29:29:f8:45:98:e1:e4:25:8e:61:eb:32: 64:70:f4:96:4c:cb:4c:20:51:48:aa:b6:87:62:c7: 94:8d:8b:ae:41:72:f3:29:6f:d7:25:8a:51:b2:23: 61:93:47:28:52:f5:c6:70:1c:b9:84:9a:3d:db:95: 41:a8:2c:c9:40:57:fd:6b:cb:49:c4:2e:3e:55:a8: 0e:45:e4:1a:67:2d:62:3d:ce:51:52:fb:48:86:8f: 50:28:44:6d:60:d3:40:19:b3:15:ac:04:a2:e3:ee: ba:3b:2e:23:21:1d:58:b4:54:f6:b1:16:60:9d:a4: b9:16:d1:fe:7a:30:05:c1:fe:1d:70:af:32:7b:0b: f4:09:95:32:85:6a:b1:83:6f:2d:93:2c:5a:49:84: dd:c9:3c:ee:cc:f1:90:ff:15:7c:4a:42:8f:c1:11: 2c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:83:DB:D0:C4:AB:F8:CC:F9:78:2D:87:F3:1F:B7:FB:1C:55:C3:4F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45715.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.250.100.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:9e:5b:7b:b3:74:c9:ce:ff:21:c2:9f:15:82:04:c5:a8:f5: 84:3e:e3:86:33:55:c8:11:cf:e7:76:19:ae:23:59:df:17:b2: 32:2a:69:a7:8e:34:85:59:0f:d3:2b:0f:e9:f7:90:6e:75:bf: 49:19:87:6b:16:ec:5e:2b:b9:8d:33:3e:52:cd:1f:c9:3e:a9: 3f:1a:60:bf:24:a6:10:95:20:bb:c1:6a:f0:a5:85:ed:e2:12: 91:3c:f5:51:c9:58:76:d2:3f:ed:51:34:13:61:b2:a5:45:c7: 2e:00:0b:8c:7d:8a:ed:45:2a:df:ea:9e:09:3d:96:fb:ac:4a: 6b:dc:7a:f9:46:f8:95:92:db:cd:0a:f5:6d:37:e1:7c:62:54: a3:67:22:a0:9e:35:5a:f0:85:b1:9c:d1:8f:31:7e:65:8f:05: c5:52:2c:ae:7a:11:d5:16:bc:69:74:14:7f:08:62:07:60:ac: f4:8e:eb:e3:5b:c7:f5:91:7c:a4:9b:ca:de:47:b3:af:1f:c7: a0:0f:38:8f:af:1e:4c:17:8c:aa:7a:c8:7f:3f:0e:1b:7f:22: 98:02:63:b8:2c:a8:58:4a:24:b1:ad:c3:a6:5d:56:57:5a:8a: 22:0e:21:49:3f:91:4e:30:21:da:02:0e:5f:3c:99:de:b2:69: f1:f0:0b:88 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUDasr/qFhVCm7cL3xRrKhzShT4QwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUwMloX DTI1MTIwOTA1MDAwMlowMzExMC8GA1UEAxMoODY4M0RCRDBDNEFCRjhDQ0Y5Nzgy RDg3RjMxRkI3RkIxQzU1QzM0RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJryuVIp+sxl/s0c9ZuWmADAjZ8q9IgMMNhOaMLDDqvmY0ULqOuij+PlzpYT T8hTvV6LDnt+Wi9/AjDSTdb5LpRXJARy+/UjOYdC/b/aoxvqBR9QL3k9N1KvkxWf KSn4RZjh5CWOYesyZHD0lkzLTCBRSKq2h2LHlI2LrkFy8ylv1yWKUbIjYZNHKFL1 xnAcuYSaPduVQagsyUBX/WvLScQuPlWoDkXkGmctYj3OUVL7SIaPUChEbWDTQBmz FawEouPuujsuIyEdWLRU9rEWYJ2kuRbR/nowBcH+HXCvMnsL9AmVMoVqsYNvLZMs WkmE3ck87szxkP8VfEpCj8ERLNkCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBSGg9vQ xKv4zPl4LYfzH7f7HFXDTzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzE1LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCLfpkMA0GCSqGSIb3DQEBCwUAA4IBAQBNnlt7s3TJzv8hwp8VggTF qPWEPuOGM1XIEc/ndhmuI1nfF7IyKmmnjjSFWQ/TKw/p95Budb9JGYdrFuxeK7mN Mz5SzR/JPqk/GmC/JKYQlSC7wWrwpYXt4hKRPPVRyVh20j/tUTQTYbKlRccuAAuM fYrtRSrf6p4JPZb7rEpr3Hr5RviVktvNCvVtN+F8YlSjZyKgnjVa8IWxnNGPMX5l jwXFUiyuehHVFrxpdBR/CGIHYKz0juvjW8f1kXykm8reR7OvH8egDziPrx5MF4yq esh/Pw4bfyKYAmO4LKhYSiSxrcOmXVZXWooiDiFJP5FOMCHaAg5fPJnesmnx8AuI -----END CERTIFICATE-----Generated at Sat Apr 5 06:23:06 2025 by rpki-client