$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS46059.roa File: AS46059.roa (raw, json) Hash identifier: JMgZPP9l8yPxPb3UQ8zB7dJX1ZjIwSa+y/AknGZTtks= Subject key identifier: 80:CF:A8:A3:53:9C:8A:07:B5:38:46:9B:88:D9:10:98:DB:9A:56:24 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0ADAA8EDA419BD3ABA722545D4BF74CC92BDF5B4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS46059.roa Signing time: Tue 16 Jan 2024 04:00:00 +0000 ROA not before: Tue 16 Jan 2024 03:55:00 +0000 ROA not after: Tue 14 Jan 2025 04:00:00 +0000 asID: 46059 IP address blocks: 103.208.94.0/23 maxlen: 24 202.52.137.0/24 maxlen: 24 2405:c240::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:da:a8:ed:a4:19:bd:3a:ba:72:25:45:d4:bf:74:cc:92:bd:f5:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 16 03:55:00 2024 GMT Not After : Jan 14 04:00:00 2025 GMT Subject: CN=80CFA8A3539C8A07B538469B88D91098DB9A5624 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:93:76:b0:34:79:84:5a:6d:a1:cb:77:18:b6: 04:d0:5e:2b:37:9d:46:48:76:64:46:42:fb:ae:27: aa:5c:ae:ee:d3:17:bc:ee:70:f2:f4:cc:7e:ea:a5: 70:51:d2:66:35:d8:3e:69:1e:e1:71:91:56:38:07: 18:d5:b2:c3:13:48:a7:7d:f5:4f:34:28:c0:63:d6: 51:dc:de:91:5d:33:70:03:d7:d0:05:9a:7f:79:70: ea:3a:4c:54:0d:12:90:38:46:3d:c0:e2:3b:83:60: f9:6f:d6:ba:50:e8:94:cc:e8:79:e1:a0:17:7a:94: 9c:98:76:b0:6e:e0:9c:f2:4a:82:3f:d5:39:6e:74: 58:9f:d6:b7:ea:88:6a:c2:70:e1:49:35:84:ae:de: 9d:ca:49:21:ff:82:d4:03:fe:ff:5b:04:30:2e:eb: 09:40:8b:17:7e:c8:35:e8:e2:00:27:09:fe:6c:9d: 18:ce:5c:8c:71:79:db:f8:0c:f8:74:fc:a9:35:5c: e6:3d:ce:31:b1:32:be:a8:17:fc:d5:af:9a:34:e6: fb:5a:e1:2a:18:07:11:6d:c3:5e:5e:4c:b7:16:b1: 58:e9:24:ef:a3:27:8e:ac:e7:fd:2c:a7:a8:ab:7d: c7:3c:b2:3c:10:ac:2a:ec:c8:60:18:d1:66:ed:e0: 6a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:CF:A8:A3:53:9C:8A:07:B5:38:46:9B:88:D9:10:98:DB:9A:56:24 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS46059.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.208.94.0/23 202.52.137.0/24 IPv6: 2405:c240::/32 Signature Algorithm: sha256WithRSAEncryption 5e:cf:cd:03:46:55:b9:d8:98:07:1a:4d:02:e6:8d:04:d7:92: 0c:0b:69:41:67:85:bd:1c:5d:d8:f7:07:ee:f2:94:c5:c3:c7: b7:7a:97:bc:fb:68:0b:e5:ff:c4:87:e0:18:16:b3:a8:75:74: 70:a9:ad:61:49:bd:64:f3:1a:c1:96:fe:91:0f:62:16:61:38: 24:02:5f:c9:7c:02:19:51:ac:05:96:3d:dc:25:40:b9:b9:f0: d7:ce:6d:d7:fc:ac:74:40:4e:92:6e:15:a1:6a:58:14:1f:77: 12:04:35:f2:12:8f:ec:0e:49:95:78:04:2d:09:56:8e:16:18: 51:2d:0c:6f:8d:e7:85:4f:b3:46:8d:3d:86:26:82:6e:b6:b1: d9:f6:98:72:11:15:20:2b:da:5d:3e:b9:33:2e:79:f6:80:78: a2:65:ef:55:c7:15:d8:b4:59:73:8c:f7:88:21:21:33:32:fc: de:0f:67:18:9a:93:72:71:09:69:e8:08:f1:c2:38:7e:47:ca: 31:c2:25:1a:ec:6a:b3:76:77:50:b7:c9:37:45:a2:ab:f8:96: f0:2d:25:24:f7:55:28:47:09:ab:94:8f:e6:68:fe:86:a3:b4: 5f:f9:04:be:95:bb:5f:47:fc:c7:94:10:5f:fa:f0:d3:51:e9: 0c:68:18:97 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUCtqo7aQZvTq6ciVF1L90zJK99bQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExNjAzNTUwMFoX DTI1MDExNDA0MDAwMFowMzExMC8GA1UEAxMoODBDRkE4QTM1MzlDOEEwN0I1Mzg0 NjlCODhEOTEwOThEQjlBNTYyNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMiTdrA0eYRabaHLdxi2BNBeKzedRkh2ZEZC+64nqlyu7tMXvO5w8vTMfuql cFHSZjXYPmke4XGRVjgHGNWywxNIp331TzQowGPWUdzekV0zcAPX0AWaf3lw6jpM VA0SkDhGPcDiO4Ng+W/WulDolMzoeeGgF3qUnJh2sG7gnPJKgj/VOW50WJ/Wt+qI asJw4Uk1hK7encpJIf+C1AP+/1sEMC7rCUCLF37INejiACcJ/mydGM5cjHF52/gM +HT8qTVc5j3OMbEyvqgX/NWvmjTm+1rhKhgHEW3DXl5MtxaxWOkk76Mnjqzn/Syn qKt9xzyyPBCsKuzIYBjRZu3gavkCAwEAAaOCAeQwggHgMB0GA1UdDgQWBBSAz6ij U5yKB7U4RpuI2RCY25pWJDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ2MDU5LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBZ9BeAwQAyjSJMA0EAgACMAcDBQAkBcJAMA0GCSqGSIb3DQEBCwUA A4IBAQBez80DRlW52JgHGk0C5o0E15IMC2lBZ4W9HF3Y9wfu8pTFw8e3epe8+2gL 5f/Eh+AYFrOodXRwqa1hSb1k8xrBlv6RD2IWYTgkAl/JfAIZUawFlj3cJUC5ufDX zm3X/Kx0QE6SbhWhalgUH3cSBDXyEo/sDkmVeAQtCVaOFhhRLQxvjeeFT7NGjT2G JoJutrHZ9phyERUgK9pdPrkzLnn2gHiiZe9VxxXYtFlzjPeIISEzMvzeD2cYmpNy cQlp6Ajxwjh+R8oxwiUa7GqzdndQt8k3RaKr+JbwLSUk91UoRwmrlI/maP6Go7Rf +QS+lbtfR/zHlBBf+vDTUekMaBiX -----END CERTIFICATE-----Generated at Tue May 7 16:42:42 2024 by rpki-client on console-ams.rpki-client.org