$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45727.roa File: AS45727.roa (raw, json) Hash identifier: iczAKmaUKBHbBZU64dhAkBU7RWqCybhYScz/7UrouCs= Subject key identifier: CF:F3:B7:39:05:2E:39:39:F8:3F:BC:91:79:20:81:8D:B7:A6:39:3C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 47127E0937E2634DEA7463D5F16F53990F44CB14 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45727.roa Signing time: Mon 18 Dec 2023 10:00:00 +0000 ROA not before: Mon 18 Dec 2023 09:55:00 +0000 ROA not after: Mon 16 Dec 2024 10:00:00 +0000 asID: 45727 IP address blocks: 103.175.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:12:7e:09:37:e2:63:4d:ea:74:63:d5:f1:6f:53:99:0f:44:cb:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 18 09:55:00 2023 GMT Not After : Dec 16 10:00:00 2024 GMT Subject: CN=CFF3B739052E3939F83FBC917920818DB7A6393C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:4a:99:ac:11:d4:46:2a:85:68:c1:f9:22:17: 90:65:60:67:63:54:29:58:ba:46:da:7a:55:5a:0e: 29:e1:71:d8:7d:e2:a1:34:38:dc:4f:4e:4f:a9:b1: 37:d0:3b:7f:2f:a5:b7:8f:61:3e:cb:29:7c:b3:23: 4c:2a:d6:1d:57:90:b6:48:1d:85:64:0d:d0:ca:49: a0:83:15:e7:d2:85:10:03:38:b4:ac:27:f3:44:41: 39:e2:60:f5:b3:b9:38:41:cd:6d:e2:6f:ca:62:8c: 6a:a4:a1:4b:4b:9c:e1:0d:21:b7:f5:63:09:a2:57: 73:83:6d:a9:f7:5c:30:e9:96:a0:98:87:cb:37:80: 62:4f:a4:8b:73:41:8c:f3:3c:a2:f0:87:6f:37:65: 4a:fe:12:8c:ac:e2:2e:37:da:75:32:16:c8:7f:e9: a7:ff:dd:42:85:6d:27:84:54:b5:63:f7:1d:2b:db: 13:83:05:fe:08:76:35:4e:56:63:38:1d:c6:f6:3e: 63:3d:73:e6:b2:93:b5:d9:0f:f3:5b:43:77:cb:ca: 76:77:e3:c0:86:3a:b7:df:94:62:51:f2:fb:12:19: e1:6c:aa:01:e6:d3:06:e7:a8:b3:af:5d:a4:ae:3f: e1:73:41:d1:93:a4:92:b3:84:ea:9f:c0:24:3c:2a: b3:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:F3:B7:39:05:2E:39:39:F8:3F:BC:91:79:20:81:8D:B7:A6:39:3C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45727.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.211.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:d5:d0:d7:94:4b:c2:b7:c2:42:d0:d8:a5:45:c9:70:35:ec: f7:0b:02:08:29:3c:b2:da:94:ef:88:cc:3b:f2:87:04:da:1a: 80:aa:15:69:78:f0:ab:07:e8:76:92:6a:14:b4:71:2b:c6:fc: fe:54:90:a3:6b:09:03:3f:a3:ad:a2:e7:a1:d9:3c:39:86:86: c2:98:13:cf:de:e2:f8:4a:11:9a:91:30:2b:de:9f:f0:9b:6f: 7a:7b:c7:b2:99:c7:03:0d:d6:1f:b4:da:a8:94:33:ef:a5:99: 70:89:6d:d6:87:83:e9:e2:80:ba:29:87:30:77:74:67:d0:1c: 1a:61:2d:69:23:7c:3c:5e:0f:d2:ec:24:ce:1d:bb:54:8b:1b: ce:63:e2:04:f5:3b:08:5d:14:d0:d2:fd:60:5a:a6:f4:2e:ae: d7:63:aa:66:c0:80:a2:6c:e0:c4:7e:8a:61:74:7f:e6:dd:12: a2:73:28:03:d5:f6:35:92:37:66:15:b2:3d:ce:e7:1c:82:a1: 0e:7d:17:09:07:b2:76:4d:b3:f4:64:1a:67:0b:12:0b:72:ff: b8:41:51:a5:11:fc:d5:5f:b2:16:e7:50:f5:db:95:8b:3b:3f: ae:fe:01:8a:56:e2:c2:5b:e9:74:31:e3:74:c8:f3:a9:92:75: 65:27:69:2c -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIURxJ+CTfiY03qdGPV8W9TmQ9EyxQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIxODA5NTUwMFoX DTI0MTIxNjEwMDAwMFowMzExMC8GA1UEAxMoQ0ZGM0I3MzkwNTJFMzkzOUY4M0ZC QzkxNzkyMDgxOERCN0E2MzkzQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANtKmawR1EYqhWjB+SIXkGVgZ2NUKVi6Rtp6VVoOKeFx2H3ioTQ43E9OT6mx N9A7fy+lt49hPsspfLMjTCrWHVeQtkgdhWQN0MpJoIMV59KFEAM4tKwn80RBOeJg 9bO5OEHNbeJvymKMaqShS0uc4Q0ht/VjCaJXc4NtqfdcMOmWoJiHyzeAYk+ki3NB jPM8ovCHbzdlSv4SjKziLjfadTIWyH/pp//dQoVtJ4RUtWP3HSvbE4MF/gh2NU5W YzgdxvY+Yz1z5rKTtdkP81tDd8vKdnfjwIY6t9+UYlHy+xIZ4WyqAebTBueos69d pK4/4XNB0ZOkkrOE6p/AJDwqs90CAwEAAaOCAc8wggHLMB0GA1UdDgQWBBTP87c5 BS45Ofg/vJF5IIGNt6Y5PDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzI3LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ6/TMA0GCSqGSIb3DQEBCwUAA4IBAQB+1dDXlEvCt8JC0NilRclw Nez3CwIIKTyy2pTviMw78ocE2hqAqhVpePCrB+h2kmoUtHErxvz+VJCjawkDP6Ot oueh2Tw5hobCmBPP3uL4ShGakTAr3p/wm296e8eymccDDdYftNqolDPvpZlwiW3W h4Pp4oC6KYcwd3Rn0BwaYS1pI3w8Xg/S7CTOHbtUixvOY+IE9TsIXRTQ0v1gWqb0 Lq7XY6pmwICibODEfophdH/m3RKicygD1fY1kjdmFbI9zuccgqEOfRcJB7J2TbP0 ZBpnCxILcv+4QVGlEfzVX7IW51D125WLOz+u/gGKVuLCW+l0MeN0yPOpknVlJ2ks -----END CERTIFICATE-----Generated at Wed May 8 18:12:18 2024 by rpki-client on console-fra.rpki-client.org