$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS4622.roa File: AS4622.roa (raw, json) Hash identifier: iry3uVta/IGZ6bKtOLGMpkT10OlI2iyWsQVsRXqH91Y= Subject key identifier: EA:96:64:7F:18:20:10:4E:19:6F:C3:42:21:9F:97:F3:8A:F4:76:5B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6CBA60A86CD2589C9FF18839D542D9505B63CA84 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS4622.roa Signing time: Tue 02 Jul 2024 12:00:10 +0000 ROA not before: Tue 02 Jul 2024 11:55:10 +0000 ROA not after: Tue 01 Jul 2025 12:00:10 +0000 asID: 4622 IP address blocks: 203.119.13.0/24 maxlen: 24 203.119.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:ba:60:a8:6c:d2:58:9c:9f:f1:88:39:d5:42:d9:50:5b:63:ca:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 2 11:55:10 2024 GMT Not After : Jul 1 12:00:10 2025 GMT Subject: CN=EA96647F1820104E196FC342219F97F38AF4765B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b7:2c:fa:d8:ae:1c:2b:6b:15:15:63:96:81: 84:e2:d5:cd:33:5a:f5:3b:92:65:b0:d8:fd:7b:75: 3c:8f:fe:a0:ca:ee:a8:ca:2a:f1:f9:33:80:69:13: 65:5b:ac:4e:35:e6:68:ae:0e:c4:d7:fe:0e:1a:83: 05:e5:39:94:23:b3:89:a4:71:34:59:0b:93:c4:85: d6:c1:56:27:0f:3d:91:82:c9:90:fc:c5:c0:57:89: 6b:27:b9:46:7e:43:b6:e3:e2:33:c3:55:11:a9:c8: 68:1e:4e:12:e6:d2:99:e6:55:51:d7:53:9e:54:44: 0c:99:9f:1b:a1:62:02:b9:05:74:e7:c8:b9:22:10: 8b:28:91:b9:3c:5d:89:76:a6:9d:7b:b2:42:36:f6: 64:76:da:75:f4:ed:fd:bb:08:03:dd:c6:62:84:a0: 92:92:e8:9a:74:ec:e8:86:17:0f:10:54:b7:0a:c9: b1:e3:6c:a5:f0:81:bf:e5:83:78:1f:79:3b:18:72: fc:8f:fa:89:01:b8:e0:7a:41:89:e6:c2:08:31:62: c4:fb:39:f3:17:32:fb:f2:92:ba:e6:46:b2:94:3d: 60:60:d4:81:69:ec:3c:b1:50:58:57:4e:f5:a9:ef: 4c:ec:98:7b:bc:dd:ab:8d:12:ab:99:f9:ac:f6:ec: 62:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:96:64:7F:18:20:10:4E:19:6F:C3:42:21:9F:97:F3:8A:F4:76:5B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS4622.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.119.13.0/24 203.119.52.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:c8:1b:c9:2d:22:b1:c5:70:be:8e:c6:e6:cb:fa:9a:61:10: c3:e7:0e:48:16:71:77:cd:98:d8:e7:82:28:ed:b6:13:e7:23: 4c:80:9e:e2:b1:38:2d:8b:77:38:4d:e3:69:60:38:38:9e:f9: f0:55:4d:7f:36:6d:ad:1e:42:d2:67:78:b2:9b:69:b9:e8:ca: 02:dd:e0:5f:67:57:99:f2:59:c5:9a:57:78:43:3d:42:a6:52: aa:fd:ee:e2:32:50:14:b3:5c:a7:99:dd:83:3e:2b:38:55:cc: 35:2e:46:7f:4f:d8:bc:42:72:a9:91:8c:8a:c3:a1:20:96:d5: 51:15:22:cc:77:9d:11:e4:4c:b0:d0:47:c2:90:5d:8b:c7:6c: 6b:75:51:70:68:f9:af:4d:86:2a:60:81:2d:9d:0e:2e:4a:02: ee:24:af:66:28:51:ce:6c:84:94:ae:3d:08:98:fe:14:7e:39: 1a:33:34:5a:a1:57:68:6e:62:fc:e8:e4:cd:9f:f5:71:e3:2e: 5a:f7:21:c3:8a:de:a0:5c:25:cc:5a:d2:12:b2:b9:94:88:64: 90:e4:82:4b:d9:1b:4d:18:80:44:3f:eb:d4:04:75:a7:82:e2: a7:7b:8c:43:17:06:35:53:d3:c1:63:fd:d3:73:a8:d2:6c:7d: 13:fb:d5:97 -----BEGIN CERTIFICATE----- MIIE4TCCA8mgAwIBAgIUbLpgqGzSWJyf8Yg51ULZUFtjyoQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMjExNTUxMFoX DTI1MDcwMTEyMDAxMFowMzExMC8GA1UEAxMoRUE5NjY0N0YxODIwMTA0RTE5NkZD MzQyMjE5Rjk3RjM4QUY0NzY1QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMa3LPrYrhwraxUVY5aBhOLVzTNa9TuSZbDY/Xt1PI/+oMruqMoq8fkzgGkT ZVusTjXmaK4OxNf+DhqDBeU5lCOziaRxNFkLk8SF1sFWJw89kYLJkPzFwFeJaye5 Rn5DtuPiM8NVEanIaB5OEubSmeZVUddTnlREDJmfG6FiArkFdOfIuSIQiyiRuTxd iXamnXuyQjb2ZHbadfTt/bsIA93GYoSgkpLomnTs6IYXDxBUtwrJseNspfCBv+WD eB95Oxhy/I/6iQG44HpBiebCCDFixPs58xcy+/KSuuZGspQ9YGDUgWnsPLFQWFdO 9anvTOyYe7zdq40Sq5n5rPbsYgkCAwEAAaOCAdQwggHQMB0GA1UdDgQWBBTqlmR/ GCAQThlvw0Ihn5fzivR2WzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFIGCCsGAQUFBwELBEYwRDBCBggrBgEFBQcwC4Y2cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ2MjIucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIE AgABMAwDBADLdw0DBALLdzQwDQYJKoZIhvcNAQELBQADggEBADrIG8ktIrHFcL6O xubL+pphEMPnDkgWcXfNmNjngijtthPnI0yAnuKxOC2LdzhN42lgODie+fBVTX82 ba0eQtJneLKbabnoygLd4F9nV5nyWcWaV3hDPUKmUqr97uIyUBSzXKeZ3YM+KzhV zDUuRn9P2LxCcqmRjIrDoSCW1VEVIsx3nRHkTLDQR8KQXYvHbGt1UXBo+a9Nhipg gS2dDi5KAu4kr2YoUc5shJSuPQiY/hR+ORozNFqhV2huYvzo5M2f9XHjLlr3IcOK 3qBcJcxa0hKyuZSIZJDkgkvZG00YgEQ/69QEdaeC4qd7jEMXBjVT08Fj/dNzqNJs fRP71Zc= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:50 2024 by rpki-client on console-ams.rpki-client.org