$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45724.roa File: AS45724.roa (raw, json) Hash identifier: 1118vqh7siLGo69VS8OPTwmBLtyz1ut/us8Qj7V0AJU= Subject key identifier: CB:1C:31:32:F4:30:17:08:F5:FA:51:1F:C2:48:D8:CA:2B:4D:5C:81 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0CF0F1F7BDDDAE93DF6DA654CF3A418D06B88CA4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45724.roa Signing time: Tue 09 Jan 2024 04:00:24 +0000 ROA not before: Tue 09 Jan 2024 03:55:24 +0000 ROA not after: Tue 07 Jan 2025 04:00:24 +0000 asID: 45724 IP address blocks: 2407:e5c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:f0:f1:f7:bd:dd:ae:93:df:6d:a6:54:cf:3a:41:8d:06:b8:8c:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:24 2024 GMT Not After : Jan 7 04:00:24 2025 GMT Subject: CN=CB1C3132F4301708F5FA511FC248D8CA2B4D5C81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ce:6a:f0:ce:cc:46:bd:33:7f:4b:bc:30:2f: d8:9f:f3:a5:d8:1e:63:4f:07:cd:a8:08:6c:67:4c: 73:7d:18:4e:3b:f3:b6:5e:53:12:ad:f3:8d:20:fb: c7:7e:e0:2b:e1:53:92:81:bc:a3:26:b7:4b:7d:d4: 97:53:14:ad:4b:cc:7b:03:b7:e0:ed:27:07:12:98: 84:f5:e4:b8:a0:5f:b9:b6:c8:ef:32:2a:35:ac:6f: 31:7c:c5:a9:2c:62:16:15:84:cf:57:4a:fc:2c:12: 5a:15:84:fe:93:e7:ef:e9:75:f4:5c:5d:af:9f:0a: 46:67:a1:41:31:a2:e5:fc:9c:c8:dd:38:d4:a5:f7: b8:0a:73:31:66:74:b6:46:36:03:9d:f5:e0:9c:d1: a5:de:90:49:e9:18:32:41:ec:51:04:1c:92:c8:86: 80:36:48:9b:c6:47:15:43:77:ba:fe:cc:63:a2:61: 36:4f:1c:99:af:63:d5:77:46:eb:df:1f:40:4a:03: e4:ff:87:41:d7:ef:39:50:de:77:62:af:8c:d4:b1: c7:6f:42:41:13:12:04:ea:12:1f:6f:b8:f3:2c:d5: 2e:09:f1:a9:10:f1:62:22:71:9a:ec:eb:19:cc:7b: 80:8e:36:ea:6a:49:8a:0f:9b:87:08:6d:b0:11:6f: 24:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:1C:31:32:F4:30:17:08:F5:FA:51:1F:C2:48:D8:CA:2B:4D:5C:81 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45724.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:e5c0::/32 Signature Algorithm: sha256WithRSAEncryption 63:93:6a:3f:50:d6:e5:ec:ef:08:59:79:2c:12:cf:96:d6:d1: 79:94:d8:d3:ff:3e:c8:a3:ef:c4:af:fb:da:4d:60:c6:39:a8: d1:e5:43:19:c4:b8:e7:45:8e:cf:53:e5:fe:06:f1:b3:70:b9: 86:f3:5c:26:7d:9f:3e:5e:95:38:f4:67:a5:d8:81:f3:e8:ea: b6:ce:1f:98:6d:34:70:23:83:8d:d4:d1:c9:23:2c:26:83:01: a3:3d:eb:bd:d0:ea:69:b0:7c:c4:bf:12:0d:b2:fa:ca:8f:d7: d6:60:d9:49:53:37:2e:4f:66:d1:01:14:13:fb:9c:04:32:58: a1:09:bc:ba:81:5c:02:7c:6e:28:bb:5b:d3:1d:fb:8e:c4:62: ac:a6:41:bd:e8:ce:fe:20:98:78:09:60:65:ff:0c:b4:73:3f: df:28:31:94:1f:f1:99:33:12:f5:2b:30:aa:69:2a:6a:44:9c: 40:9a:02:35:ac:64:d9:b0:c3:1a:31:f4:6d:b6:56:85:51:a1: 4c:35:cd:6e:8b:48:f0:47:61:99:2c:3e:67:8f:d2:58:4b:51: 72:1e:c9:ca:a1:1c:08:01:53:0b:0a:83:d4:89:6d:89:89:f7: 3f:52:38:f6:fc:f1:2f:90:71:9f:71:9a:ac:fc:c9:5b:15:4e: 77:12:71:4e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUDPDx973drpPfbaZUzzpBjQa4jKQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyNFoX DTI1MDEwNzA0MDAyNFowMzExMC8GA1UEAxMoQ0IxQzMxMzJGNDMwMTcwOEY1RkE1 MTFGQzI0OEQ4Q0EyQjRENUM4MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK7OavDOzEa9M39LvDAv2J/zpdgeY08HzagIbGdMc30YTjvztl5TEq3zjSD7 x37gK+FTkoG8oya3S33Ul1MUrUvMewO34O0nBxKYhPXkuKBfubbI7zIqNaxvMXzF qSxiFhWEz1dK/CwSWhWE/pPn7+l19Fxdr58KRmehQTGi5fycyN041KX3uApzMWZ0 tkY2A5314JzRpd6QSekYMkHsUQQcksiGgDZIm8ZHFUN3uv7MY6JhNk8cma9j1XdG 698fQEoD5P+HQdfvOVDed2KvjNSxx29CQRMSBOoSH2+48yzVLgnxqRDxYiJxmuzr Gcx7gI426mpJig+bhwhtsBFvJKcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTLHDEy 9DAXCPX6UR/CSNjKK01cgTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzI0LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAflwDANBgkqhkiG9w0BAQsFAAOCAQEAY5NqP1DW5ezvCFl5LBLP ltbReZTY0/8+yKPvxK/72k1gxjmo0eVDGcS450WOz1Pl/gbxs3C5hvNcJn2fPl6V OPRnpdiB8+jqts4fmG00cCODjdTRySMsJoMBoz3rvdDqabB8xL8SDbL6yo/X1mDZ SVM3Lk9m0QEUE/ucBDJYoQm8uoFcAnxuKLtb0x37jsRirKZBvejO/iCYeAlgZf8M tHM/3ygxlB/xmTMS9SswqmkqakScQJoCNaxk2bDDGjH0bbZWhVGhTDXNbotI8Edh mSw+Z4/SWEtRch7JyqEcCAFTCwqD1IltiYn3P1I49vzxL5Bxn3GarPzJWxVOdxJx Tg== -----END CERTIFICATE-----Generated at Wed May 8 09:50:41 2024 by rpki-client on console-fra.rpki-client.org