$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS4622.roa File: AS4622.roa (raw, json) Hash identifier: Qx4SZFihn5q1XAsYAboB743K1dBHjjpBGsZBrJwQ4X8= Subject key identifier: B2:C1:0A:FC:40:EB:CE:76:29:BD:AD:2C:A4:CB:E0:CC:7C:10:EB:51 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 164FE0B9D005B9958ED3A22D9449C31A77E68F24 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS4622.roa Signing time: Tue 01 Aug 2023 11:36:59 +0000 ROA not before: Tue 01 Aug 2023 11:31:59 +0000 ROA not after: Tue 30 Jul 2024 11:36:59 +0000 asID: 4622 IP address blocks: 203.119.13.0/24 maxlen: 24 203.119.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:4f:e0:b9:d0:05:b9:95:8e:d3:a2:2d:94:49:c3:1a:77:e6:8f:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 1 11:31:59 2023 GMT Not After : Jul 30 11:36:59 2024 GMT Subject: CN=B2C10AFC40EBCE7629BDAD2CA4CBE0CC7C10EB51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:cb:ac:71:b5:81:8b:6b:bc:06:49:ac:a1:bc: dc:fe:c7:6b:43:cb:4d:f3:fb:ea:a9:9a:92:af:90: ae:cd:cb:7f:a2:77:cd:84:ca:2e:ce:47:88:3c:17: 06:ba:fe:cc:c6:c7:e2:04:8a:df:4d:f7:ec:2c:60: 13:8c:ac:e4:4c:b2:b0:db:29:a0:3f:bd:1c:c8:dd: 13:11:62:73:29:26:61:cf:89:8e:24:6d:5a:3a:ff: 51:15:27:7a:57:6f:cc:81:57:f1:ce:0e:83:cf:51: 59:79:a0:41:76:d7:d3:ae:1c:ed:d5:16:7d:f4:d0: 49:4d:7c:a1:78:06:d8:ce:b9:a2:ff:a7:fb:18:62: 94:9a:5b:56:06:c6:63:ac:c8:61:13:d2:74:15:dd: 0b:c8:9e:e8:2e:5c:25:78:66:50:49:a5:aa:f5:45: 0c:e8:79:09:b3:42:de:f1:90:e3:f7:63:36:fa:86: 74:11:d4:ea:2e:f2:6e:e3:c8:d3:e0:81:bc:33:70: 38:c0:8a:78:cb:33:14:90:9f:b2:23:7b:6e:e8:b5: 38:97:3d:92:85:4e:6b:43:f1:6e:69:0a:ea:45:55: a3:ba:ff:d3:be:47:37:b3:4a:a1:4c:fd:e3:d7:81: 86:12:0f:5a:17:81:6b:84:ef:f4:ab:ed:b1:50:28: 64:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:C1:0A:FC:40:EB:CE:76:29:BD:AD:2C:A4:CB:E0:CC:7C:10:EB:51 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS4622.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.119.13.0/24 203.119.52.0/22 Signature Algorithm: sha256WithRSAEncryption 49:07:22:a7:57:7b:49:f2:24:22:1f:81:37:b2:ff:89:5b:fb: 78:9a:35:5e:a9:15:ac:a8:3d:d5:b7:e7:33:d9:65:bd:ab:c8: 41:c6:63:53:23:6d:3a:13:ed:dc:16:6b:9d:c2:63:0c:fc:c5: 0e:1a:6d:6b:38:92:06:dc:db:b1:70:d2:b6:41:54:44:06:f6: 9f:d1:5d:ee:96:62:33:51:83:bc:9f:2b:e6:e6:6b:e0:40:6f: f3:ce:74:2f:0e:d9:66:aa:1f:3e:2b:2b:6c:a1:ab:76:f0:94: 2e:64:6a:97:9c:ef:9c:13:8e:af:4d:ea:9a:4d:a7:e2:64:d2: 89:34:86:e6:9c:77:b8:a9:1b:09:b0:55:2e:78:05:33:2f:2d: ae:ed:69:94:2a:de:2a:9a:71:ec:09:ac:ef:fa:ca:d6:19:26: 0e:6a:e1:d8:b5:3c:d8:ff:5c:b8:be:0f:51:03:ff:72:01:60: 5f:99:90:2a:d8:73:5c:c5:e5:ea:c7:77:cd:8b:fe:c9:62:35: fc:6f:c6:e6:cd:f0:6b:66:ca:1c:2a:87:d8:1d:23:94:17:02: 32:9d:3d:c8:74:44:7a:02:dd:fe:06:10:bc:b0:4c:11:9b:42: a4:ff:5d:ed:6e:53:72:4b:65:57:9b:3a:59:ca:44:90:8d:3d: de:c0:fa:5c -----BEGIN CERTIFICATE----- MIIE4TCCA8mgAwIBAgIUFk/gudAFuZWO06ItlEnDGnfmjyQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgwMTExMzE1OVoX DTI0MDczMDExMzY1OVowMzExMC8GA1UEAxMoQjJDMTBBRkM0MEVCQ0U3NjI5QkRB RDJDQTRDQkUwQ0M3QzEwRUI1MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKPLrHG1gYtrvAZJrKG83P7Ha0PLTfP76qmakq+Qrs3Lf6J3zYTKLs5HiDwX Brr+zMbH4gSK30337CxgE4ys5EyysNspoD+9HMjdExFicykmYc+JjiRtWjr/URUn eldvzIFX8c4Og89RWXmgQXbX064c7dUWffTQSU18oXgG2M65ov+n+xhilJpbVgbG Y6zIYRPSdBXdC8ie6C5cJXhmUEmlqvVFDOh5CbNC3vGQ4/djNvqGdBHU6i7ybuPI 0+CBvDNwOMCKeMszFJCfsiN7bui1OJc9koVOa0PxbmkK6kVVo7r/075HN7NKoUz9 49eBhhIPWheBa4Tv9KvtsVAoZE8CAwEAAaOCAdQwggHQMB0GA1UdDgQWBBSywQr8 QOvOdim9rSyky+DMfBDrUTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFIGCCsGAQUFBwELBEYwRDBCBggrBgEFBQcwC4Y2cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ2MjIucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIE AgABMAwDBADLdw0DBALLdzQwDQYJKoZIhvcNAQELBQADggEBAEkHIqdXe0nyJCIf gTey/4lb+3iaNV6pFayoPdW35zPZZb2ryEHGY1MjbToT7dwWa53CYwz8xQ4abWs4 kgbc27Fw0rZBVEQG9p/RXe6WYjNRg7yfK+bma+BAb/POdC8O2WaqHz4rK2yhq3bw lC5kapec75wTjq9N6ppNp+Jk0ok0huacd7ipGwmwVS54BTMvLa7taZQq3iqacewJ rO/6ytYZJg5q4di1PNj/XLi+D1ED/3IBYF+ZkCrYc1zF5erHd82L/sliNfxvxubN 8Gtmyhwqh9gdI5QXAjKdPch0RHoC3f4GELywTBGbQqT/Xe1uU3JLZVebOlnKRJCN Pd7A+lw= -----END CERTIFICATE-----Generated at Fri May 3 04:42:29 2024 by rpki-client on console-fra.rpki-client.org