$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45732.roa File: AS45732.roa (raw, json) Hash identifier: bfcnCv4OjBc7O5n0UmKPStMqjM80Nl2i83f3Gs+CsDE= Subject key identifier: D7:B2:4B:D5:4A:58:B5:97:55:82:5B:1F:63:08:CA:3B:F4:87:EA:1B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1D4CA43225456D2CE4F7C8F13CC81C0612D9F1B8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45732.roa Signing time: Mon 15 Apr 2024 11:00:00 +0000 ROA not before: Mon 15 Apr 2024 10:55:00 +0000 ROA not after: Mon 14 Apr 2025 11:00:00 +0000 asID: 45732 IP address blocks: 103.165.248.0/24 maxlen: 24 103.196.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:4c:a4:32:25:45:6d:2c:e4:f7:c8:f1:3c:c8:1c:06:12:d9:f1:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 15 10:55:00 2024 GMT Not After : Apr 14 11:00:00 2025 GMT Subject: CN=D7B24BD54A58B59755825B1F6308CA3BF487EA1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ba:94:58:3c:71:d3:31:7d:82:f1:05:f6:27: 87:59:35:1b:a4:5f:71:f1:bb:cb:9d:3c:6c:a2:2f: 56:59:30:de:50:4d:3d:3b:a3:64:bc:2a:55:9e:74: c9:8d:4f:a1:1b:14:f2:a3:29:9a:35:04:76:78:eb: 80:d8:ce:ce:0f:68:45:91:e9:2f:d5:40:0c:aa:d1: c1:1e:86:09:cd:59:bb:0a:c4:ec:5f:c7:78:3e:fd: 99:45:e5:f8:ce:9d:37:d2:b2:02:05:cc:16:61:3a: 8e:93:ae:18:53:bb:c3:39:eb:b1:73:07:34:ca:7b: 30:8e:b6:f3:bb:96:65:4b:d9:aa:f3:ee:1b:5b:55: dd:4a:59:26:53:e6:72:19:f7:31:85:af:22:96:fc: ed:d4:44:90:39:05:e9:c7:85:a8:ef:b1:02:d0:37: 25:70:b3:6f:1e:9a:ce:00:08:23:24:ba:b3:13:07: 72:12:e0:af:45:96:58:cc:ea:ce:99:4b:9d:05:04: 8b:7d:3e:d6:b3:70:47:b6:5b:2e:01:32:f2:f6:45: 4c:1d:be:7b:e4:9c:79:d1:16:d9:c5:33:36:99:78: ef:93:da:a3:3b:43:1e:8b:95:5b:c3:66:2f:7a:0e: 5e:d4:ce:08:da:a2:c1:d8:ce:25:7d:76:ce:f8:e4: 72:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:B2:4B:D5:4A:58:B5:97:55:82:5B:1F:63:08:CA:3B:F4:87:EA:1B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.248.0/24 103.196.166.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:07:40:ee:d0:3d:6e:66:29:cc:c5:92:7a:f1:72:3f:3c:20: 75:6b:4f:65:7e:e3:f8:c9:d1:01:f2:c4:e8:d3:cf:ff:81:1b: da:d3:9d:75:0d:38:bd:38:7c:16:53:98:43:0c:0e:46:01:f1: a9:e6:ee:ae:8f:f6:b3:8d:a3:98:9e:e5:00:02:75:f8:5f:93: 23:17:5d:d7:9f:b9:9c:9b:f8:44:6c:35:f8:11:2e:c5:6c:ed: 34:22:b7:44:4a:25:3f:86:bd:12:24:92:89:39:74:ae:90:97: dd:b4:2d:ef:7c:ee:9f:e9:a8:9d:ec:d2:17:5a:fc:f2:9b:2a: 3b:88:9c:c2:30:05:61:13:77:80:14:25:d8:ec:40:21:20:02: 4f:24:2d:fd:23:3a:9b:11:4c:a8:53:37:82:69:08:71:f7:84: bc:6e:7d:89:d0:27:f2:8e:25:1d:a9:3f:ee:a4:a5:54:b2:27: 32:26:7b:77:71:ff:7c:ae:cc:82:1b:14:ad:cb:f1:a0:57:dd: 66:95:e1:c6:4f:96:c0:c6:1c:8a:d4:b1:66:be:b1:8f:d1:79: f8:fc:c6:b9:8b:ab:5f:24:a8:93:af:34:ee:2b:4d:d9:59:56: 0d:29:34:b4:ae:cc:e1:64:ff:d5:93:51:20:a7:eb:c5:4f:64: dc:85:f7:aa -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUHUykMiVFbSzk98jxPMgcBhLZ8bgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQxNTEwNTUwMFoX DTI1MDQxNDExMDAwMFowMzExMC8GA1UEAxMoRDdCMjRCRDU0QTU4QjU5NzU1ODI1 QjFGNjMwOENBM0JGNDg3RUExQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMi6lFg8cdMxfYLxBfYnh1k1G6RfcfG7y508bKIvVlkw3lBNPTujZLwqVZ50 yY1PoRsU8qMpmjUEdnjrgNjOzg9oRZHpL9VADKrRwR6GCc1ZuwrE7F/HeD79mUXl +M6dN9KyAgXMFmE6jpOuGFO7wznrsXMHNMp7MI6287uWZUvZqvPuG1tV3UpZJlPm chn3MYWvIpb87dREkDkF6ceFqO+xAtA3JXCzbx6azgAIIyS6sxMHchLgr0WWWMzq zplLnQUEi30+1rNwR7ZbLgEy8vZFTB2+e+ScedEW2cUzNpl475PaoztDHouVW8Nm L3oOXtTOCNqiwdjOJX12zvjkcgsCAwEAAaOCAdUwggHRMB0GA1UdDgQWBBTXskvV Sli1l1WCWx9jCMo79IfqGzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzMyLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZ6X4AwQBZ8SmMA0GCSqGSIb3DQEBCwUAA4IBAQAMB0Du0D1uZinM xZJ68XI/PCB1a09lfuP4ydEB8sTo08//gRva0511DTi9OHwWU5hDDA5GAfGp5u6u j/azjaOYnuUAAnX4X5MjF13Xn7mcm/hEbDX4ES7FbO00IrdESiU/hr0SJJKJOXSu kJfdtC3vfO6f6aid7NIXWvzymyo7iJzCMAVhE3eAFCXY7EAhIAJPJC39IzqbEUyo UzeCaQhx94S8bn2J0CfyjiUdqT/upKVUsicyJnt3cf98rsyCGxSty/GgV91mleHG T5bAxhyK1LFmvrGP0Xn4/Ma5i6tfJKiTrzTuK03ZWVYNKTS0rszhZP/Vk1Egp+vF T2Tchfeq -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:58 2024 by rpki-client on console-fra.rpki-client.org