$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45732.roa File: AS45732.roa (raw, json) Hash identifier: 1OlYXN6z9b77cThUUFYcgwGa9etcGjcEXgPp5qW+71E= Subject key identifier: 83:40:71:A4:4C:86:5B:D0:4D:5C:35:94:B1:F3:23:C7:98:1E:5D:8B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 19D028B312DEA67A883E3800600A601C7D81B24A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45732.roa Signing time: Mon 17 Mar 2025 11:00:00 +0000 ROA not before: Mon 17 Mar 2025 10:55:00 +0000 ROA not after: Mon 16 Mar 2026 11:00:00 +0000 asID: 45732 IP address blocks: 103.165.248.0/24 maxlen: 24 103.196.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:d0:28:b3:12:de:a6:7a:88:3e:38:00:60:0a:60:1c:7d:81:b2:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Mar 17 10:55:00 2025 GMT Not After : Mar 16 11:00:00 2026 GMT Subject: CN=834071A44C865BD04D5C3594B1F323C7981E5D8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d2:21:10:e9:02:9d:8b:da:83:ff:89:10:b1: 99:5e:3f:4b:86:03:d1:c8:03:c4:83:b4:60:3a:1f: 5d:ea:72:83:70:72:e6:1b:90:eb:8d:e0:93:1d:b9: ca:ee:39:35:ba:1f:aa:4e:1e:d3:6a:6d:a8:bd:69: 3b:71:59:2b:8a:47:e2:e1:b5:83:6e:d8:a2:40:e1: a7:28:73:97:8b:b9:dd:10:a6:29:57:50:6b:47:d0: 7f:36:d4:d0:4b:f3:ec:90:4f:b6:32:03:77:31:22: d0:2c:22:b1:65:ee:af:cc:20:6f:9d:5f:dc:29:57: e1:a7:e0:14:0c:a4:ba:a1:1f:6b:1f:98:cc:d9:4a: 06:39:2a:15:07:8c:09:cd:04:44:a9:03:64:8a:c5: 28:3f:e0:7d:d2:06:23:a1:a8:5b:5a:26:26:fd:96: 62:8a:db:6a:5a:11:70:8f:be:ed:07:7a:8d:25:1d: eb:9e:23:ef:af:1b:bb:22:c8:a2:f7:cd:ad:61:fe: dc:df:30:a6:e7:db:52:b7:2a:50:24:eb:06:08:ed: be:8d:16:7e:26:44:34:4a:d0:f3:a9:36:e9:7c:99: b4:17:91:0e:0a:f5:5a:71:d9:dd:05:aa:e8:eb:d5: 85:0c:d3:3b:25:5f:af:52:de:86:bc:ff:11:07:c9: ba:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:40:71:A4:4C:86:5B:D0:4D:5C:35:94:B1:F3:23:C7:98:1E:5D:8B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.248.0/24 103.196.166.0/23 Signature Algorithm: sha256WithRSAEncryption 70:28:ed:4e:9f:51:23:53:e1:cd:5b:3f:3f:28:ba:84:34:8c: 26:e3:d6:8a:f7:93:78:18:9a:aa:38:9d:71:b1:4f:4a:60:5a: 06:48:60:13:be:b5:f4:ae:79:34:8f:80:b2:b2:ea:48:c9:ae: ca:18:67:d5:f0:f6:e0:00:76:31:54:b8:e4:b7:3a:1a:2e:ad: 8c:72:93:ea:92:0b:f2:49:6e:4a:15:af:fc:56:f5:bb:74:77: 28:e8:83:49:42:7f:34:85:bf:ad:5c:9c:71:2e:a1:5e:30:4d: 66:c9:74:62:40:ae:3b:f2:e6:f2:2c:eb:fa:73:b5:1f:1b:d2: e8:33:38:ec:10:c3:5c:cf:77:f9:0e:a2:ad:23:65:e4:da:12: 72:8f:2a:46:ea:3a:a4:4f:93:49:13:14:ec:a8:e4:76:00:63: da:47:e9:ef:52:dc:ac:f1:6b:5b:4e:1f:5d:d2:a1:46:cc:01: b0:bf:73:a9:cb:91:d2:dc:89:85:7c:1e:dc:2d:45:14:30:e8: c3:07:90:2f:4e:a2:48:5a:93:30:34:92:94:02:27:65:37:68: a2:ee:47:bc:76:6b:c5:64:4e:0f:46:79:1e:d1:42:89:ef:42: 96:dd:3f:dd:26:6f:da:3c:a6:ea:8b:4b:1f:68:2f:1a:49:9d: 1d:4b:c1:fe -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUGdAosxLepnqIPjgAYApgHH2BskowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDMxNzEwNTUwMFoX DTI2MDMxNjExMDAwMFowMzExMC8GA1UEAxMoODM0MDcxQTQ0Qzg2NUJEMDRENUMz NTk0QjFGMzIzQzc5ODFFNUQ4QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK7SIRDpAp2L2oP/iRCxmV4/S4YD0cgDxIO0YDofXepyg3By5huQ643gkx25 yu45Nbofqk4e02ptqL1pO3FZK4pH4uG1g27YokDhpyhzl4u53RCmKVdQa0fQfzbU 0Evz7JBPtjIDdzEi0CwisWXur8wgb51f3ClX4afgFAykuqEfax+YzNlKBjkqFQeM Cc0ERKkDZIrFKD/gfdIGI6GoW1omJv2WYorbaloRcI++7Qd6jSUd654j768buyLI ovfNrWH+3N8wpufbUrcqUCTrBgjtvo0WfiZENErQ86k26XyZtBeRDgr1WnHZ3QWq 6OvVhQzTOyVfr1Lehrz/EQfJur0CAwEAAaOCAdUwggHRMB0GA1UdDgQWBBSDQHGk TIZb0E1cNZSx8yPHmB5dizAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzMyLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZ6X4AwQBZ8SmMA0GCSqGSIb3DQEBCwUAA4IBAQBwKO1On1EjU+HN Wz8/KLqENIwm49aK95N4GJqqOJ1xsU9KYFoGSGATvrX0rnk0j4CysupIya7KGGfV 8PbgAHYxVLjktzoaLq2McpPqkgvySW5KFa/8VvW7dHco6INJQn80hb+tXJxxLqFe ME1myXRiQK478ubyLOv6c7UfG9LoMzjsEMNcz3f5DqKtI2Xk2hJyjypG6jqkT5NJ ExTsqOR2AGPaR+nvUtys8WtbTh9d0qFGzAGwv3Opy5HS3ImFfB7cLUUUMOjDB5Av TqJIWpMwNJKUAidlN2ii7ke8dmvFZE4PRnke0UKJ70KW3T/dJm/aPKbqi0sfaC8a SZ0dS8H+ -----END CERTIFICATE-----Generated at Sat Apr 5 06:23:04 2025 by rpki-client