$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45724.roa File: AS45724.roa (raw, json) Hash identifier: emOEQQAVvQBI8PmvA9eqhFZF3AAt+e6RBwCl00XCEbA= Subject key identifier: FB:73:E4:D0:C0:B2:45:66:29:67:DB:40:24:C5:04:8B:F3:4F:C0:3A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 50A65B87ADF07F3EEB06DA75B53BD9322F2E9F4C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45724.roa Signing time: Tue 10 Dec 2024 05:00:20 +0000 ROA not before: Tue 10 Dec 2024 04:55:20 +0000 ROA not after: Tue 09 Dec 2025 05:00:20 +0000 asID: 45724 IP address blocks: 2407:e5c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:a6:5b:87:ad:f0:7f:3e:eb:06:da:75:b5:3b:d9:32:2f:2e:9f:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:20 2024 GMT Not After : Dec 9 05:00:20 2025 GMT Subject: CN=FB73E4D0C0B245662967DB4024C5048BF34FC03A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:66:7c:64:e3:4c:68:29:a3:bd:6c:16:92:c5: 7b:07:a1:ae:81:83:e8:db:62:be:58:80:45:74:b0: 53:bb:23:42:c0:07:18:f9:e9:6f:e0:67:e8:c0:79: 38:b4:6d:6e:ee:fa:37:50:0c:29:b3:f0:c1:70:75: fa:37:b8:c7:fc:06:f4:b0:36:9c:63:9d:36:a8:00: a0:26:5c:2f:0f:4a:8c:df:7b:08:4a:85:42:5b:37: 34:11:13:1d:8b:17:f4:d9:e9:58:81:bc:f9:34:02: c9:52:7c:18:d3:41:d9:03:53:29:d3:8e:90:97:80: 97:c0:9b:5a:11:19:fe:c9:4f:ba:68:4f:f7:5f:d3: cb:20:77:26:0a:f8:45:4d:17:dc:a3:13:29:3f:55: 53:dc:f0:33:16:a8:d8:6e:87:ea:53:5f:24:cd:61: 2b:a8:b8:cf:dd:ce:13:2c:75:36:0a:f3:cd:91:39: 9b:49:44:64:c1:ad:e8:b7:36:f6:e0:0e:33:49:18: 65:ae:b1:16:8d:a2:da:48:79:ee:20:22:e0:ad:04: e7:d6:10:b5:2c:cf:44:53:b1:f7:6f:ee:1e:16:d6: 3a:9e:6f:bf:b1:1e:a9:ac:8f:9f:85:b7:f7:15:1e: a2:5f:bc:77:5d:77:8a:59:6f:00:a9:db:e8:75:ac: 41:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:73:E4:D0:C0:B2:45:66:29:67:DB:40:24:C5:04:8B:F3:4F:C0:3A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45724.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:e5c0::/32 Signature Algorithm: sha256WithRSAEncryption 07:c8:ee:27:ef:23:df:88:17:2e:cc:75:4d:9c:a6:80:73:46: 78:30:05:f1:35:cd:4c:43:16:e4:90:b5:5b:1c:e1:df:9f:f6: 6b:b7:8f:5d:ad:9c:7f:77:ed:89:13:2d:c4:e1:71:ee:34:79: 7c:d8:d3:67:11:57:4c:4d:b2:34:d4:8a:fa:59:04:57:53:9f: 44:57:80:c8:43:b1:26:94:88:03:8e:42:f8:55:c5:21:1a:67: 6d:4b:5b:97:9e:00:11:0d:d0:20:95:48:6e:d6:8b:25:9e:41: 8c:2c:6f:42:2a:39:6f:57:c5:81:35:48:1e:d0:84:39:b8:7f: 12:83:6b:66:e7:14:cf:85:52:81:5c:ab:de:43:6f:6e:86:f9: d8:e7:f8:c3:96:d2:fa:c9:07:7f:8d:ba:74:e0:3f:6b:31:af: 26:7b:5a:df:be:d1:fa:83:4c:7a:e1:7d:66:de:d3:5e:fb:8c: 1d:66:8c:7a:5a:c8:5d:dd:8b:f6:5d:14:bc:29:bf:4d:31:db: b8:a4:56:ba:6d:ee:79:96:41:ca:c5:15:93:c1:65:7f:b7:a4: eb:1d:33:24:79:e3:74:c6:e6:32:81:75:ee:72:ce:8a:ec:80: 87:12:5f:8c:e7:5b:92:89:25:1b:70:e3:1b:2d:a1:3c:98:dd: fc:16:9e:45 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUUKZbh63wfz7rBtp1tTvZMi8un0wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUyMFoX DTI1MTIwOTA1MDAyMFowMzExMC8GA1UEAxMoRkI3M0U0RDBDMEIyNDU2NjI5NjdE QjQwMjRDNTA0OEJGMzRGQzAzQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMBmfGTjTGgpo71sFpLFewehroGD6NtivliARXSwU7sjQsAHGPnpb+Bn6MB5 OLRtbu76N1AMKbPwwXB1+je4x/wG9LA2nGOdNqgAoCZcLw9KjN97CEqFQls3NBET HYsX9NnpWIG8+TQCyVJ8GNNB2QNTKdOOkJeAl8CbWhEZ/slPumhP91/TyyB3Jgr4 RU0X3KMTKT9VU9zwMxao2G6H6lNfJM1hK6i4z93OEyx1NgrzzZE5m0lEZMGt6Lc2 9uAOM0kYZa6xFo2i2kh57iAi4K0E59YQtSzPRFOx92/uHhbWOp5vv7EeqayPn4W3 9xUeol+8d113illvAKnb6HWsQV8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT7c+TQ wLJFZiln20AkxQSL80/AOjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzI0LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAflwDANBgkqhkiG9w0BAQsFAAOCAQEAB8juJ+8j34gXLsx1TZym gHNGeDAF8TXNTEMW5JC1Wxzh35/2a7ePXa2cf3ftiRMtxOFx7jR5fNjTZxFXTE2y NNSK+lkEV1OfRFeAyEOxJpSIA45C+FXFIRpnbUtbl54AEQ3QIJVIbtaLJZ5BjCxv Qio5b1fFgTVIHtCEObh/EoNrZucUz4VSgVyr3kNvbob52Of4w5bS+skHf426dOA/ azGvJnta377R+oNMeuF9Zt7TXvuMHWaMelrIXd2L9l0UvCm/TTHbuKRWum3ueZZB ysUVk8Flf7ek6x0zJHnjdMbmMoF17nLOiuyAhxJfjOdbkoklG3DjGy2hPJjd/Bae RQ== -----END CERTIFICATE-----Generated at Sun Feb 16 20:47:50 2025 by rpki-client