$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45735.roa File: AS45735.roa (raw, json) Hash identifier: JvsC7DoOoQaZcBeohZNORXPUxvLvges+QooLxlGE8XA= Subject key identifier: 57:58:CF:4D:94:C2:31:89:D7:BE:F6:DB:CD:AF:4F:CC:05:9C:CE:83 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 08FA3618E9FA7CEA3A4F73483131514023E887FD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45735.roa Signing time: Mon 30 Oct 2023 02:33:16 +0000 ROA not before: Mon 30 Oct 2023 02:28:16 +0000 ROA not after: Mon 28 Oct 2024 02:33:16 +0000 asID: 45735 IP address blocks: 103.151.162.0/23 maxlen: 24 2406:1b40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:fa:36:18:e9:fa:7c:ea:3a:4f:73:48:31:31:51:40:23:e8:87:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 30 02:28:16 2023 GMT Not After : Oct 28 02:33:16 2024 GMT Subject: CN=5758CF4D94C23189D7BEF6DBCDAF4FCC059CCE83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0e:89:e2:0c:fa:67:3a:0f:09:cb:60:f7:70: cf:a4:e4:f2:3a:5d:42:d4:6d:67:87:f1:e2:87:5e: 32:96:50:58:f3:1c:76:0b:ed:39:71:15:4a:de:e9: bc:91:01:cc:96:67:f0:ba:64:3f:7a:7a:48:b4:3e: fd:85:b0:ce:a4:08:0a:58:3f:71:e0:d6:b1:06:5f: 4d:fa:fc:5b:4f:3a:63:52:e1:c2:ae:77:01:f2:92: d7:4b:8d:f3:7c:4f:0f:c5:b1:da:d6:2b:33:93:9f: a7:7d:1d:f0:ad:f4:5c:36:73:3b:36:9c:91:5d:8d: 33:f3:10:98:95:19:2d:81:f8:90:64:32:3d:21:2a: d3:f2:8c:c5:50:14:c4:56:14:83:f9:a7:22:f6:69: e8:7b:5d:63:83:cf:f1:8f:49:ef:53:cc:94:72:b9: 10:bb:61:e2:87:04:de:b7:28:c1:b0:57:ed:26:93: aa:8e:be:29:80:a3:f8:9d:51:99:2e:3a:88:25:d7: 04:93:2a:21:4b:10:43:ca:86:17:1e:14:6b:e7:c1: 63:40:88:30:c3:60:9c:37:1a:5e:f0:49:02:a8:44: 58:bd:97:54:6c:a2:22:de:92:e5:bc:5a:ea:8b:a3: b8:fe:72:52:bc:0d:85:7d:1b:bb:a7:13:c0:95:dc: e4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:58:CF:4D:94:C2:31:89:D7:BE:F6:DB:CD:AF:4F:CC:05:9C:CE:83 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.162.0/23 IPv6: 2406:1b40::/32 Signature Algorithm: sha256WithRSAEncryption 0e:73:ce:17:97:5f:96:ec:f7:1f:43:52:c3:34:7f:e1:63:1c: 69:d6:a7:61:5a:11:e9:0d:b0:4d:cb:00:b1:37:46:fe:51:84: 15:d6:63:2f:c5:aa:35:d8:e5:4a:95:fd:ae:3e:d3:c4:5b:9f: 36:b5:ba:8d:51:58:68:91:93:f8:82:74:3a:28:bf:90:51:a9: fb:23:ab:d5:1c:87:3d:93:6b:ba:c2:03:48:76:48:16:e1:23: c8:a0:b0:04:29:fc:54:d8:ad:43:7c:c8:e2:38:8c:60:61:0b: e0:ea:5c:32:6d:7e:c2:8d:0d:ba:e6:df:15:4e:0f:76:3e:fa: e7:18:b5:35:e9:47:f7:2a:30:b2:5e:46:ff:4d:90:dc:44:11: 69:7f:b8:97:03:b3:05:6f:51:20:ed:e9:b7:99:3e:93:04:4e: 64:32:18:1e:25:d0:7a:02:1c:2f:e6:dc:ee:f0:79:d6:af:f5: 6b:63:6d:89:4b:10:8a:f9:f2:09:d3:d8:24:b9:5a:06:59:f9: c5:d7:4a:bb:15:22:24:3c:fd:26:fb:62:fb:72:77:6c:06:b6: da:5a:58:b3:8b:03:a7:9a:7d:e1:ea:98:c9:22:bd:ac:bf:31: 51:1e:a6:43:8f:29:33:55:5d:fb:d3:52:d0:79:d6:4c:83:2e: c4:f4:8c:40 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgIUCPo2GOn6fOo6T3NIMTFRQCPoh/0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAzMDAyMjgxNloX DTI0MTAyODAyMzMxNlowMzExMC8GA1UEAxMoNTc1OENGNEQ5NEMyMzE4OUQ3QkVG NkRCQ0RBRjRGQ0MwNTlDQ0U4MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANsOieIM+mc6DwnLYPdwz6Tk8jpdQtRtZ4fx4odeMpZQWPMcdgvtOXEVSt7p vJEBzJZn8LpkP3p6SLQ+/YWwzqQIClg/ceDWsQZfTfr8W086Y1Lhwq53AfKS10uN 83xPD8Wx2tYrM5Ofp30d8K30XDZzOzackV2NM/MQmJUZLYH4kGQyPSEq0/KMxVAU xFYUg/mnIvZp6HtdY4PP8Y9J71PMlHK5ELth4ocE3rcowbBX7SaTqo6+KYCj+J1R mS46iCXXBJMqIUsQQ8qGFx4Ua+fBY0CIMMNgnDcaXvBJAqhEWL2XVGyiIt6S5bxa 6oujuP5yUrwNhX0bu6cTwJXc5LcCAwEAAaOCAd4wggHaMB0GA1UdDgQWBBRXWM9N lMIxide+9tvNr0/MBZzOgzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzM1LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ5eiMA0EAgACMAcDBQAkBhtAMA0GCSqGSIb3DQEBCwUAA4IBAQAO c84Xl1+W7PcfQ1LDNH/hYxxp1qdhWhHpDbBNywCxN0b+UYQV1mMvxao12OVKlf2u PtPEW582tbqNUVhokZP4gnQ6KL+QUan7I6vVHIc9k2u6wgNIdkgW4SPIoLAEKfxU 2K1DfMjiOIxgYQvg6lwybX7CjQ265t8VTg92PvrnGLU16Uf3KjCyXkb/TZDcRBFp f7iXA7MFb1Eg7em3mT6TBE5kMhgeJdB6Ahwv5tzu8HnWr/VrY22JSxCK+fIJ09gk uVoGWfnF10q7FSIkPP0m+2L7cndsBrbaWliziwOnmn3h6pjJIr2svzFRHqZDjykz VV3701LQedZMgy7E9IxA -----END CERTIFICATE-----Generated at Fri May 3 04:42:28 2024 by rpki-client on console-fra.rpki-client.org