$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45715.roa File: AS45715.roa (raw, json) Hash identifier: fp8NdfHFP7zIzD2hP88oP9iu3pppqfATvAEyp+WrkWM= Subject key identifier: 30:3D:28:F5:69:67:A9:39:B1:F1:C4:90:B7:92:7E:EA:9E:C2:17:01 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0747D597D0C138DA69568C6BFD3189867C658395 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45715.roa Signing time: Tue 09 Jan 2024 04:00:04 +0000 ROA not before: Tue 09 Jan 2024 03:55:04 +0000 ROA not after: Tue 07 Jan 2025 04:00:04 +0000 asID: 45715 IP address blocks: 45.250.100.0/24 maxlen: 24 45.250.101.0/24 maxlen: 24 45.250.102.0/24 maxlen: 24 45.250.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:47:d5:97:d0:c1:38:da:69:56:8c:6b:fd:31:89:86:7c:65:83:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:04 2024 GMT Not After : Jan 7 04:00:04 2025 GMT Subject: CN=303D28F56967A939B1F1C490B7927EEA9EC21701 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1b:f2:d9:73:75:36:ae:03:bb:c7:18:47:53: 48:78:e1:f9:05:06:96:d8:65:39:c2:2f:35:1d:9c: cf:91:e9:58:b6:85:af:99:3a:86:23:bb:5a:78:70: 1f:b7:e6:d9:af:2a:9f:29:2f:15:75:bb:ee:7d:a3: c9:3a:f9:dd:ac:86:68:c8:30:ba:bb:de:ac:ab:ac: 6a:7d:ee:f0:cb:4b:bf:6f:5c:a2:22:36:56:50:2c: 1a:4c:b1:70:7e:f7:92:40:54:d9:50:40:00:b5:6c: fd:ef:91:79:f2:1d:8e:58:c7:e1:82:52:1f:88:2f: f5:04:cd:e6:11:35:4e:56:1b:96:ae:36:10:54:07: 33:82:bf:7d:6c:2b:4a:a3:16:01:64:6d:57:4e:22: 13:5f:85:8c:fd:18:20:e6:16:e2:a8:29:ce:51:8c: 51:62:61:01:33:c7:c1:3e:b4:75:c6:f4:54:ce:fb: ef:a6:90:af:82:dd:fb:78:6e:ee:21:9e:57:b9:61: 26:3f:95:87:eb:b8:77:00:bb:96:c4:04:7a:6f:64: 52:24:66:ff:9b:d1:8a:c8:d1:77:b2:b8:87:65:2d: 3e:f9:97:e1:04:94:39:e8:74:95:d5:38:f1:91:06: 2c:62:81:e1:eb:6e:0b:af:62:54:18:8d:59:80:64: 46:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:3D:28:F5:69:67:A9:39:B1:F1:C4:90:B7:92:7E:EA:9E:C2:17:01 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45715.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.250.100.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:72:44:15:00:e7:b7:e8:bc:af:3b:dc:59:68:5f:ba:92:6f: ce:d5:5a:36:4b:c8:95:6a:fc:3c:e7:3c:d1:a7:87:eb:df:03: ff:80:39:dd:bb:62:ff:68:c0:a8:01:42:b1:78:fe:2e:4f:15: 78:02:7c:9c:72:02:24:16:ba:8f:78:7d:1d:a5:8a:c7:98:95: 78:71:2a:f6:c5:1b:a2:45:b5:21:dd:a6:f8:66:9e:aa:cc:c6: f6:09:41:36:73:d4:7e:95:eb:21:1c:8b:04:34:c9:2e:74:b9: 8d:3c:57:af:ae:f1:ac:91:7a:53:ea:d6:56:7c:42:94:95:2c: e8:1d:75:68:db:38:a2:d8:d1:99:14:c4:62:73:c3:4f:75:4f: 65:3f:58:4c:33:53:e0:49:de:62:95:f0:40:0e:70:ac:ac:93: b8:71:e7:14:b7:5e:5e:35:1a:b9:93:4e:c4:c6:6a:b7:34:ec: ce:f8:03:71:3f:ca:ad:bf:83:4f:15:ff:8e:99:09:55:5e:be: a9:5c:a4:0d:27:ca:a4:d0:9e:f7:26:81:b3:5e:2a:3a:e8:02: c0:cb:aa:ea:58:ad:af:51:d8:61:97:9c:32:01:e5:de:92:88: 29:86:ff:98:1c:a4:46:20:92:b7:13:78:60:62:55:d1:ac:8c: 3a:e5:40:15 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUB0fVl9DBONppVoxr/TGJhnxlg5UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwNFoX DTI1MDEwNzA0MDAwNFowMzExMC8GA1UEAxMoMzAzRDI4RjU2OTY3QTkzOUIxRjFD NDkwQjc5MjdFRUE5RUMyMTcwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0b8tlzdTauA7vHGEdTSHjh+QUGlthlOcIvNR2cz5HpWLaFr5k6hiO7Wnhw H7fm2a8qnykvFXW77n2jyTr53ayGaMgwurverKusan3u8MtLv29coiI2VlAsGkyx cH73kkBU2VBAALVs/e+RefIdjljH4YJSH4gv9QTN5hE1TlYblq42EFQHM4K/fWwr SqMWAWRtV04iE1+FjP0YIOYW4qgpzlGMUWJhATPHwT60dcb0VM7776aQr4Ld+3hu 7iGeV7lhJj+Vh+u4dwC7lsQEem9kUiRm/5vRisjRd7K4h2UtPvmX4QSUOeh0ldU4 8ZEGLGKB4etuC69iVBiNWYBkRjMCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBQwPSj1 aWepObHxxJC3kn7qnsIXATAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzE1LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCLfpkMA0GCSqGSIb3DQEBCwUAA4IBAQBsckQVAOe36LyvO9xZaF+6 km/O1Vo2S8iVavw85zzRp4fr3wP/gDndu2L/aMCoAUKxeP4uTxV4AnyccgIkFrqP eH0dpYrHmJV4cSr2xRuiRbUh3ab4Zp6qzMb2CUE2c9R+leshHIsENMkudLmNPFev rvGskXpT6tZWfEKUlSzoHXVo2zii2NGZFMRic8NPdU9lP1hMM1PgSd5ilfBADnCs rJO4cecUt15eNRq5k07Exmq3NOzO+ANxP8qtv4NPFf+OmQlVXr6pXKQNJ8qk0J73 JoGzXio66ALAy6rqWK2vUdhhl5wyAeXekogphv+YHKRGIJK3E3hgYlXRrIw65UAV -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:30 2024 by rpki-client on console-ams.rpki-client.org