$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56241.roa File: AS56241.roa (raw, json) Hash identifier: UhGWlSUmhvECB9qtS5TkBmsz/XFeIP6M3QvxJRnxsvg= Subject key identifier: 50:8D:02:B4:9D:DE:77:58:4E:21:71:4B:B0:6A:E7:53:DD:52:4D:F0 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0652590B3693A43579434EF59CF3604E2EAFFF85 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56241.roa Signing time: Tue 13 Aug 2024 04:00:00 +0000 ROA not before: Tue 13 Aug 2024 03:55:00 +0000 ROA not after: Tue 12 Aug 2025 04:00:00 +0000 asID: 56241 IP address blocks: 45.126.152.0/24 maxlen: 24 45.126.153.0/24 maxlen: 24 45.126.155.0/24 maxlen: 24 103.10.56.0/24 maxlen: 24 103.10.145.0/24 maxlen: 24 103.255.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:52:59:0b:36:93:a4:35:79:43:4e:f5:9c:f3:60:4e:2e:af:ff:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Aug 13 03:55:00 2024 GMT Not After : Aug 12 04:00:00 2025 GMT Subject: CN=508D02B49DDE77584E21714BB06AE753DD524DF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:2f:e7:63:83:f2:f6:06:2f:90:9c:9c:87:4c: 22:44:b4:c9:38:72:3a:9a:31:09:4c:44:5d:90:bb: 01:3f:d8:b5:00:8d:be:8b:67:83:e1:33:e0:e3:e6: 51:a0:f2:e2:8f:75:29:d7:4f:6d:6c:21:38:f8:b7: 89:0a:f4:2f:47:c6:48:42:89:22:e0:74:96:e2:5c: b1:38:c1:9e:f6:ec:8c:f1:4b:a1:ab:4d:d7:96:8c: 73:5c:5e:d4:f8:29:f6:9d:e9:04:a9:5b:57:e1:6c: 8d:01:c9:a6:2d:b0:03:ec:1b:28:f0:00:d0:a7:56: d2:1d:80:ba:b4:46:e3:5d:ba:6e:c2:6a:e6:3d:f4: 91:dc:40:22:dd:9c:1f:07:5b:b4:2d:c2:9c:0d:f8: 92:f9:a2:32:5c:e9:b1:b9:b7:07:83:a3:4e:60:7c: c1:7c:ae:68:cd:54:9b:51:82:3f:ee:75:9d:82:bf: 13:e6:14:cf:7b:19:36:16:45:9d:66:38:e2:d6:6e: 9e:14:4f:ab:ac:3c:9d:8c:11:61:c6:9c:de:cc:73: e7:b8:62:15:c5:a2:d4:bd:a3:c6:fb:9e:f0:8c:c6: b1:12:ad:90:04:bf:7f:d4:ac:22:66:2e:4e:a6:6e: 77:d8:b7:30:98:a3:71:4d:58:23:0c:e7:6f:16:db: de:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:8D:02:B4:9D:DE:77:58:4E:21:71:4B:B0:6A:E7:53:DD:52:4D:F0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56241.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.126.152.0/23 45.126.155.0/24 103.10.56.0/24 103.10.145.0/24 103.255.52.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:93:10:72:b6:05:4e:5d:c0:14:43:56:bd:b2:76:02:d4:bc: 2d:35:f3:1f:fd:db:8d:9b:20:2c:93:ad:dd:c0:8e:4e:b9:e7: b8:d2:a8:12:e6:a8:5c:9d:8c:67:e1:67:d5:62:2a:ff:f7:aa: 4f:7b:30:ce:a1:ef:00:69:11:8e:84:bd:fe:08:0b:47:fc:68: e5:72:b3:88:a0:fe:e1:a7:e3:10:c5:3f:ab:a7:1f:66:99:26: 19:68:e4:a7:ea:a3:ac:39:8c:79:7d:bb:07:8b:98:47:a1:72: 51:6b:bf:04:76:32:5f:29:5e:b3:f8:7c:00:dd:3a:7f:dc:00: 38:73:a6:62:ac:0a:ee:b4:76:60:fd:22:db:5a:9f:a8:58:8d: fc:ba:27:61:91:72:80:a8:4f:72:8d:3a:e8:d4:58:5f:a1:49: f4:2d:0c:4c:e4:dc:b9:3f:d9:42:3d:08:7c:2b:53:84:9d:dc: 4d:cc:4e:d5:9a:d4:d1:b2:fb:05:06:0f:a2:99:a4:ce:9a:d2: f1:a4:90:83:03:5c:41:43:fb:17:56:3e:0a:b4:8d:00:d5:2a: a8:0d:d0:1f:0b:13:34:10:f9:55:6e:f5:8e:8b:95:a0:9d:f3: 8d:7e:fb:45:ba:01:4b:4b:a9:48:57:bc:27:a7:20:6d:17:99: 02:87:e7:f7 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUBlJZCzaTpDV5Q071nPNgTi6v/4UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxMzAzNTUwMFoX DTI1MDgxMjA0MDAwMFowMzExMC8GA1UEAxMoNTA4RDAyQjQ5RERFNzc1ODRFMjE3 MTRCQjA2QUU3NTNERDUyNERGMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN8v52OD8vYGL5CcnIdMIkS0yThyOpoxCUxEXZC7AT/YtQCNvotng+Ez4OPm UaDy4o91KddPbWwhOPi3iQr0L0fGSEKJIuB0luJcsTjBnvbsjPFLoatN15aMc1xe 1Pgp9p3pBKlbV+FsjQHJpi2wA+wbKPAA0KdW0h2AurRG4126bsJq5j30kdxAIt2c HwdbtC3CnA34kvmiMlzpsbm3B4OjTmB8wXyuaM1Um1GCP+51nYK/E+YUz3sZNhZF nWY44tZunhRPq6w8nYwRYcac3sxz57hiFcWi1L2jxvue8IzGsRKtkAS/f9SsImYu TqZud9i3MJijcU1YIwznbxbb3ucCAwEAAaOCAecwggHjMB0GA1UdDgQWBBRQjQK0 nd53WE4hcUuwaudT3VJN8DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU2MjQxLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQBLX6YAwQALX6bAwQAZwo4AwQAZwqRAwQBZ/80MA0GCSqGSIb3DQEB CwUAA4IBAQB7kxBytgVOXcAUQ1a9snYC1LwtNfMf/duNmyAsk63dwI5Ouee40qgS 5qhcnYxn4WfVYir/96pPezDOoe8AaRGOhL3+CAtH/GjlcrOIoP7hp+MQxT+rpx9m mSYZaOSn6qOsOYx5fbsHi5hHoXJRa78EdjJfKV6z+HwA3Tp/3AA4c6ZirArutHZg /SLbWp+oWI38uidhkXKAqE9yjTro1FhfoUn0LQxM5Ny5P9lCPQh8K1OEndxNzE7V mtTRsvsFBg+imaTOmtLxpJCDA1xBQ/sXVj4KtI0A1SqoDdAfCxM0EPlVbvWOi5Wg nfONfvtFugFLS6lIV7wnpyBtF5kCh+f3 -----END CERTIFICATE-----Generated at Sun Feb 16 20:57:44 2025 by rpki-client