$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45727.roa File: AS45727.roa (raw, json) Hash identifier: Whg3dL+C4rYTB2P4kMhBHNuEqVGKADdkOMvUM0sxxsA= Subject key identifier: F4:F7:75:78:0B:D6:A2:8F:21:93:DA:52:78:31:1F:0A:5F:84:41:59 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 10301C29600ACD47818D4CFB829E6CA1CD64A1A7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45727.roa Signing time: Mon 18 Nov 2024 11:00:00 +0000 ROA not before: Mon 18 Nov 2024 10:55:00 +0000 ROA not after: Mon 17 Nov 2025 11:00:00 +0000 asID: 45727 IP address blocks: 103.175.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:30:1c:29:60:0a:cd:47:81:8d:4c:fb:82:9e:6c:a1:cd:64:a1:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 18 10:55:00 2024 GMT Not After : Nov 17 11:00:00 2025 GMT Subject: CN=F4F775780BD6A28F2193DA5278311F0A5F844159 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:7a:d7:85:a5:7e:04:8f:7c:e0:da:64:4c:8d: 78:ae:44:27:f2:ef:a7:89:41:70:d6:93:2d:c0:e7: b9:42:b6:f7:f7:21:e5:89:54:a2:e4:d3:61:58:5d: 1c:5a:ee:2d:2a:50:4a:d7:b4:60:23:84:15:c1:77: 3c:cf:37:a8:78:05:02:a2:75:ba:12:e9:fb:91:e1: 80:d4:2d:c2:7b:0f:91:06:cf:22:ba:91:dc:58:b2: 03:d5:ab:d0:af:ed:7a:e4:e7:5f:0d:d7:2a:e4:b5: 55:d7:6d:29:05:8f:fd:be:34:f1:e0:9e:30:b8:db: 1e:ed:c5:78:5a:27:c3:40:c2:90:5e:6b:27:f8:50: 6c:ef:4b:7e:d1:bf:62:f7:2b:0d:59:cd:c9:de:be: a8:f7:ff:1e:af:91:90:e1:64:e2:ba:1e:f3:95:aa: 2e:2b:a0:9d:e7:55:d6:20:69:b4:f7:d3:cd:46:5a: 8a:55:40:d5:ef:2f:67:68:c2:2c:41:3b:5f:9e:d4: 0a:ab:27:a9:9b:6c:6b:23:cf:ef:db:b2:bd:e6:83: 1a:0a:40:b8:03:10:c6:12:92:22:84:d1:b0:18:65: 49:67:23:7b:ba:22:a3:a3:6f:e2:f6:4b:55:92:1c: d1:81:bc:fe:44:93:b8:a5:5e:52:50:ac:29:54:9e: ee:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:F7:75:78:0B:D6:A2:8F:21:93:DA:52:78:31:1F:0A:5F:84:41:59 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45727.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.211.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:e3:e7:4a:6e:97:96:80:a4:78:91:be:62:82:d2:f2:7e:8f: e8:9d:c0:55:3a:79:9f:6d:f2:f7:80:97:3b:ee:b3:82:84:b8: 45:59:f4:c7:4a:0c:a1:d9:95:44:88:ce:20:21:76:af:22:63: 7f:d2:c5:99:11:6b:e4:15:27:f7:16:bf:41:bc:26:81:65:bf: d3:79:44:a3:67:eb:53:80:27:fe:ce:63:21:2a:9e:b9:4d:a2: 5d:3e:2c:92:dc:56:2d:75:cf:75:db:fc:a9:65:6e:59:20:f2: 74:96:23:fd:27:a1:11:6c:0e:f1:67:a2:7e:c7:59:56:ff:99: 3f:a6:3c:08:7d:cb:f2:c3:42:7d:d3:79:06:3f:c2:b9:86:24: 08:f3:cb:44:e5:08:b5:e1:be:d5:a9:2f:dd:e3:25:4b:e1:6a: e1:7c:2f:b0:30:3e:66:a1:6a:6b:41:d7:7e:5e:c6:24:90:c3: d4:09:65:9a:76:ab:0d:ea:7d:50:78:fb:85:cf:5e:cb:47:bf: 5b:bd:12:8a:0c:be:0d:da:ee:0d:6b:be:78:00:bf:42:08:68: b0:89:05:22:b4:97:2c:20:e5:bc:e1:e9:25:bd:0f:d8:fc:c3: df:71:ab:17:c0:48:0f:f7:6f:1f:06:06:8d:0f:33:41:c8:20: 12:92:49:fd -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUEDAcKWAKzUeBjUz7gp5soc1koacwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTExODEwNTUwMFoX DTI1MTExNzExMDAwMFowMzExMC8GA1UEAxMoRjRGNzc1NzgwQkQ2QTI4RjIxOTNE QTUyNzgzMTFGMEE1Rjg0NDE1OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOx614WlfgSPfODaZEyNeK5EJ/Lvp4lBcNaTLcDnuUK29/ch5YlUouTTYVhd HFruLSpQSte0YCOEFcF3PM83qHgFAqJ1uhLp+5HhgNQtwnsPkQbPIrqR3FiyA9Wr 0K/teuTnXw3XKuS1VddtKQWP/b408eCeMLjbHu3FeFonw0DCkF5rJ/hQbO9LftG/ YvcrDVnNyd6+qPf/Hq+RkOFk4roe85WqLiugnedV1iBptPfTzUZailVA1e8vZ2jC LEE7X57UCqsnqZtsayPP79uyveaDGgpAuAMQxhKSIoTRsBhlSWcje7oio6Nv4vZL VZIc0YG8/kSTuKVeUlCsKVSe7psCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBT093V4 C9aijyGT2lJ4MR8KX4RBWTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzI3LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ6/TMA0GCSqGSIb3DQEBCwUAA4IBAQCO4+dKbpeWgKR4kb5igtLy fo/oncBVOnmfbfL3gJc77rOChLhFWfTHSgyh2ZVEiM4gIXavImN/0sWZEWvkFSf3 Fr9BvCaBZb/TeUSjZ+tTgCf+zmMhKp65TaJdPiyS3FYtdc912/ypZW5ZIPJ0liP9 J6ERbA7xZ6J+x1lW/5k/pjwIfcvyw0J903kGP8K5hiQI88tE5Qi14b7VqS/d4yVL 4WrhfC+wMD5moWprQdd+XsYkkMPUCWWadqsN6n1QePuFz17LR79bvRKKDL4N2u4N a754AL9CCGiwiQUitJcsIOW84eklvQ/Y/MPfcasXwEgP928fBgaNDzNByCASkkn9 -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:58 2024 by rpki-client on console-fra.rpki-client.org