$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45735.roa File: AS45735.roa (raw, json) Hash identifier: P2Nl9AuBlGgjuMuz3j7xJx0wk8xavMcfW1qbFpHZ7/g= Subject key identifier: 35:79:14:F2:DA:AE:2D:23:59:CE:35:C3:DD:68:9A:F5:2E:38:93:7F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4E077A39A2083D53985274C1F7E733D7C719F635 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45735.roa Signing time: Mon 30 Sep 2024 03:00:00 +0000 ROA not before: Mon 30 Sep 2024 02:55:00 +0000 ROA not after: Mon 29 Sep 2025 03:00:00 +0000 asID: 45735 IP address blocks: 103.151.162.0/23 maxlen: 24 2406:1b40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:07:7a:39:a2:08:3d:53:98:52:74:c1:f7:e7:33:d7:c7:19:f6:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 30 02:55:00 2024 GMT Not After : Sep 29 03:00:00 2025 GMT Subject: CN=357914F2DAAE2D2359CE35C3DD689AF52E38937F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:48:7b:cf:2c:e9:29:a9:f3:7f:0d:40:87:a2: 4a:51:3f:f5:34:b6:36:55:c4:0a:45:38:67:0d:d2: 32:3d:c4:ea:ee:f6:f7:bb:6b:d7:e7:9e:09:f2:ca: 88:a8:9f:54:11:d6:60:ba:0e:55:62:64:ac:ae:52: 84:27:e4:7d:9a:f5:d4:ec:43:e2:13:7e:bc:42:fc: ae:1d:b5:bc:04:8b:32:9a:a3:b8:20:e8:6d:cb:5b: 18:93:81:91:c2:9a:4b:42:f7:02:9d:79:0a:ac:b0: 59:85:9d:c3:9b:f2:0c:3b:34:cb:97:27:db:c6:19: 0f:dc:1b:cb:36:e9:2f:5d:6d:c1:0c:5f:e4:0b:84: 4e:9f:16:4f:79:b1:0a:33:61:fd:7e:bc:47:1b:5b: 1f:8f:4d:fa:93:82:aa:16:71:35:94:10:b6:2c:c8: 10:9f:ed:ad:f7:46:cc:a2:7d:5f:38:2c:a0:cb:96: 6f:5a:02:45:d8:68:0f:5c:d2:84:d6:53:d6:ec:c2: 33:6a:b0:da:73:d5:05:10:f3:a7:1e:cf:11:b9:af: aa:3e:1f:92:b4:4e:a2:5e:64:c5:7f:38:58:f4:38: 15:6a:87:e6:af:94:fd:da:7d:2b:34:5e:5b:e9:ad: 72:95:02:35:64:88:97:0f:8c:33:8f:f0:5a:9b:e7: 19:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:79:14:F2:DA:AE:2D:23:59:CE:35:C3:DD:68:9A:F5:2E:38:93:7F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.162.0/23 IPv6: 2406:1b40::/32 Signature Algorithm: sha256WithRSAEncryption 18:e3:a0:52:a7:0b:a3:b7:a2:87:29:17:ae:bb:e5:ba:b7:14: 6f:a5:b3:26:0b:f9:bf:91:13:16:fa:62:16:ef:f5:60:d7:5f: 3d:03:c2:e3:cb:ef:2f:44:20:f9:4d:ab:90:e5:5e:b3:f2:d3: 5a:20:b4:c7:ea:72:ad:0b:01:cf:09:84:b2:0c:ca:b3:13:1c: 94:ca:a0:c9:4b:56:a3:ef:2f:5d:0e:ef:a3:28:e0:22:02:62: 49:6e:e4:3a:7b:53:ba:32:5c:d3:dc:97:c2:61:29:73:81:11: 9f:0b:aa:a4:93:df:87:8b:38:0d:18:ec:18:c5:bf:51:dd:04: de:2f:c7:8f:7b:00:30:8b:17:a4:f6:19:ec:db:70:d5:c7:8e: 19:9c:0e:38:a3:af:dd:9c:1c:85:30:db:f7:6f:58:2d:b7:6e: dd:58:69:ce:4d:83:a2:9e:1d:45:71:cd:d8:b6:c2:60:0e:b4: db:71:5f:3d:11:e1:9a:8d:99:52:7d:ef:fe:92:7e:3c:16:52: 70:58:77:51:91:c9:f7:10:d2:2f:7f:5a:11:1f:4d:5c:23:a6: 24:11:09:8f:de:04:01:b3:87:65:74:28:3f:6a:55:64:05:55: 43:7f:1a:ae:ae:0a:89:03:11:b1:e1:f1:20:e2:b4:52:11:a0: 1d:f3:f3:e9 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgIUTgd6OaIIPVOYUnTB9+cz18cZ9jUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkzMDAyNTUwMFoX DTI1MDkyOTAzMDAwMFowMzExMC8GA1UEAxMoMzU3OTE0RjJEQUFFMkQyMzU5Q0Uz NUMzREQ2ODlBRjUyRTM4OTM3RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOhIe88s6Smp838NQIeiSlE/9TS2NlXECkU4Zw3SMj3E6u7297tr1+eeCfLK iKifVBHWYLoOVWJkrK5ShCfkfZr11OxD4hN+vEL8rh21vASLMpqjuCDobctbGJOB kcKaS0L3Ap15CqywWYWdw5vyDDs0y5cn28YZD9wbyzbpL11twQxf5AuETp8WT3mx CjNh/X68RxtbH49N+pOCqhZxNZQQtizIEJ/trfdGzKJ9XzgsoMuWb1oCRdhoD1zS hNZT1uzCM2qw2nPVBRDzpx7PEbmvqj4fkrROol5kxX84WPQ4FWqH5q+U/dp9KzRe W+mtcpUCNWSIlw+MM4/wWpvnGWECAwEAAaOCAd4wggHaMB0GA1UdDgQWBBQ1eRTy 2q4tI1nONcPdaJr1LjiTfzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzM1LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ5eiMA0EAgACMAcDBQAkBhtAMA0GCSqGSIb3DQEBCwUAA4IBAQAY 46BSpwujt6KHKReuu+W6txRvpbMmC/m/kRMW+mIW7/Vg1189A8Ljy+8vRCD5TauQ 5V6z8tNaILTH6nKtCwHPCYSyDMqzExyUyqDJS1aj7y9dDu+jKOAiAmJJbuQ6e1O6 MlzT3JfCYSlzgRGfC6qkk9+HizgNGOwYxb9R3QTeL8ePewAwixek9hns23DVx44Z nA44o6/dnByFMNv3b1gtt27dWGnOTYOinh1Fcc3YtsJgDrTbcV89EeGajZlSfe/+ kn48FlJwWHdRkcn3ENIvf1oRH01cI6YkEQmP3gQBs4dldCg/alVkBVVDfxqurgqJ AxGx4fEg4rRSEaAd8/Pp -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:28 2024 by rpki-client on console-fra.rpki-client.org