$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS46059.roa File: AS46059.roa (raw, json) Hash identifier: +ts06Bpe0bdccT415oSOLWB1rLZxcapTwbsEN2ZjJdQ= Subject key identifier: FF:26:7F:12:95:E8:9A:60:FE:4F:D5:EB:31:E1:D8:A6:F4:46:36:6C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: E45E62F54D97C3EC34173ED0A121D071295300 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS46059.roa Signing time: Tue 17 Dec 2024 04:00:00 +0000 ROA not before: Tue 17 Dec 2024 03:55:00 +0000 ROA not after: Tue 16 Dec 2025 04:00:00 +0000 asID: 46059 IP address blocks: 103.208.94.0/23 maxlen: 24 202.52.137.0/24 maxlen: 24 2405:c240::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: e4:5e:62:f5:4d:97:c3:ec:34:17:3e:d0:a1:21:d0:71:29:53:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 17 03:55:00 2024 GMT Not After : Dec 16 04:00:00 2025 GMT Subject: CN=FF267F1295E89A60FE4FD5EB31E1D8A6F446366C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:9c:fc:33:8c:b5:4d:95:c3:07:e6:4d:82:59: fa:a4:0c:15:87:e4:02:72:22:0c:97:30:0a:aa:57: 36:84:fc:70:67:d3:78:ec:8b:07:25:d6:b2:a2:8a: 4f:3b:a5:8f:50:07:76:d5:67:da:63:97:43:c6:75: 14:22:5c:50:79:46:97:8d:62:66:e1:7b:c2:3a:97: 30:f0:5a:d9:0b:8e:4c:f3:cd:7e:db:6a:2d:75:ba: 7a:1c:1d:62:61:d0:26:4c:7c:43:0a:4f:25:7b:4b: 74:44:c7:88:c0:2a:de:1f:01:f1:1c:92:65:37:2d: 56:98:0c:14:c3:98:39:91:3b:d7:42:da:51:16:44: eb:e1:6b:9c:bb:28:a5:33:bf:a3:dc:e7:07:a2:ec: 23:ad:0c:09:8c:a9:be:c6:29:40:b2:dd:fb:20:43: c5:a5:27:9c:4d:c3:81:d2:c6:cc:7c:ab:8a:ef:0a: 67:f4:47:53:42:c5:1d:0e:05:3f:28:ab:44:49:4b: 70:d7:ba:67:10:98:28:3c:fb:6a:27:0d:82:cc:b7: 1b:f5:20:68:4b:b7:96:d1:1e:74:0d:96:f6:9b:48: 71:7b:e6:82:fe:ff:6d:8d:d8:71:6b:f8:ba:39:21: 68:20:35:95:61:20:29:8f:98:93:58:e4:e5:50:b7: 32:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:26:7F:12:95:E8:9A:60:FE:4F:D5:EB:31:E1:D8:A6:F4:46:36:6C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS46059.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.208.94.0/23 202.52.137.0/24 IPv6: 2405:c240::/32 Signature Algorithm: sha256WithRSAEncryption 7f:7a:93:7e:e5:d9:53:61:b1:5c:80:cf:bf:fc:2d:83:4f:b6: 82:d3:0a:d5:d3:50:a0:30:32:2e:21:29:76:dc:43:66:be:88: 8d:eb:c9:44:60:11:ba:99:f0:e9:77:6e:f8:5a:b0:0f:a5:f8: 13:7d:21:db:ef:5c:d5:97:f9:12:64:88:87:97:d4:19:83:08: 74:7d:df:4e:d0:7c:56:d9:53:da:c6:51:03:03:33:81:86:be: 0a:50:7e:eb:02:34:fd:ac:57:8f:bb:7b:40:7d:63:74:b0:7f: dc:4d:24:47:c9:6f:2f:b6:61:e1:06:66:ca:e3:f5:ce:82:3a: 51:fe:b7:e8:c9:92:77:5d:2d:50:83:b6:fc:6c:13:d2:f3:46: 34:42:cb:89:5e:66:7e:de:4b:a7:de:5a:26:1c:82:21:95:d7: a6:dd:eb:17:52:09:1c:60:b1:93:af:56:8f:a0:b2:f4:76:a4: 5a:38:ac:4d:e4:74:1d:41:c3:92:57:41:6e:48:76:08:87:25: 4b:53:f2:cb:9c:1c:2b:ca:2a:54:94:29:06:c3:a8:e6:2c:7e: 49:01:3d:01:22:1a:00:dd:61:7e:2b:a0:a1:da:6a:1e:33:1a: 53:53:92:5c:fc:25:0b:7b:73:c7:92:91:c0:cc:c3:ea:e5:01: 40:c1:56:d1 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUAOReYvVNl8PsNBc+0KEh0HEpUwAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxNzAzNTUwMFoX DTI1MTIxNjA0MDAwMFowMzExMC8GA1UEAxMoRkYyNjdGMTI5NUU4OUE2MEZFNEZE NUVCMzFFMUQ4QTZGNDQ2MzY2QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOCc/DOMtU2VwwfmTYJZ+qQMFYfkAnIiDJcwCqpXNoT8cGfTeOyLByXWsqKK Tzulj1AHdtVn2mOXQ8Z1FCJcUHlGl41iZuF7wjqXMPBa2QuOTPPNfttqLXW6ehwd YmHQJkx8QwpPJXtLdETHiMAq3h8B8RySZTctVpgMFMOYOZE710LaURZE6+FrnLso pTO/o9znB6LsI60MCYypvsYpQLLd+yBDxaUnnE3DgdLGzHyriu8KZ/RHU0LFHQ4F PyirRElLcNe6ZxCYKDz7aicNgsy3G/UgaEu3ltEedA2W9ptIcXvmgv7/bY3YcWv4 ujkhaCA1lWEgKY+Yk1jk5VC3MvMCAwEAAaOCAeQwggHgMB0GA1UdDgQWBBT/Jn8S leiaYP5P1esx4dim9EY2bDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ2MDU5LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBZ9BeAwQAyjSJMA0EAgACMAcDBQAkBcJAMA0GCSqGSIb3DQEBCwUA A4IBAQB/epN+5dlTYbFcgM+//C2DT7aC0wrV01CgMDIuISl23ENmvoiN68lEYBG6 mfDpd274WrAPpfgTfSHb71zVl/kSZIiHl9QZgwh0fd9O0HxW2VPaxlEDAzOBhr4K UH7rAjT9rFePu3tAfWN0sH/cTSRHyW8vtmHhBmbK4/XOgjpR/rfoyZJ3XS1Qg7b8 bBPS80Y0QsuJXmZ+3kun3lomHIIhldem3esXUgkcYLGTr1aPoLL0dqRaOKxN5HQd QcOSV0FuSHYIhyVLU/LLnBwryipUlCkGw6jmLH5JAT0BIhoA3WF+K6Ch2moeMxpT U5Jc/CULe3PHkpHAzMPq5QFAwVbR -----END CERTIFICATE-----Generated at Sun Feb 16 20:47:42 2025 by rpki-client