$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS64300.roa File: AS64300.roa (raw, json) Hash identifier: NVj1AtkY7+vFaZ9PqBBoGbMkSA9ezyFiYXTSFzTOgoI= Subject key identifier: 7D:8D:DA:BE:40:5C:DC:0A:77:D6:AA:6F:7D:37:0A:D6:11:1D:D3:DD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 14E994DE829BD3CA6361B499BFAABA688D18BE27 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS64300.roa Signing time: Thu 08 Aug 2024 08:00:00 +0000 ROA not before: Thu 08 Aug 2024 07:55:00 +0000 ROA not after: Thu 07 Aug 2025 08:00:00 +0000 asID: 64300 IP address blocks: 103.13.204.0/23 maxlen: 24 103.18.232.0/23 maxlen: 24 103.46.8.0/23 maxlen: 24 103.67.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:e9:94:de:82:9b:d3:ca:63:61:b4:99:bf:aa:ba:68:8d:18:be:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 8 07:55:00 2024 GMT Not After : Aug 7 08:00:00 2025 GMT Subject: CN=7D8DDABE405CDC0A77D6AA6F7D370AD6111DD3DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:4d:2b:5b:57:b5:f8:03:c8:35:ac:cb:84:b8: 1d:a8:df:35:93:5e:47:a6:5d:df:aa:38:58:85:59: 2f:73:08:43:79:9e:c6:17:3b:5a:49:c6:d7:30:40: 5f:24:85:63:7e:a4:82:8b:1c:bd:27:6f:79:a0:2d: d7:ef:ee:99:e1:6c:41:7d:8f:30:36:c4:bb:65:6d: 8d:0a:02:cb:e0:f8:84:08:de:54:51:1a:8c:fd:6a: dd:12:60:d9:2c:52:33:99:a6:3f:94:7f:0f:73:c2: d1:6d:bb:cf:df:f7:3b:98:d1:04:23:22:10:eb:2b: 8b:c4:53:00:38:ee:fa:b4:79:3a:42:22:0f:d2:28: a4:b3:48:31:87:65:66:1b:e8:2a:37:88:e4:31:bd: 54:de:9d:d0:e6:2f:43:14:f5:8b:dd:9f:cb:9a:df: 76:2f:17:ed:17:26:39:ff:31:d2:d0:30:45:d5:4b: b0:c6:3b:0b:87:2d:0d:ce:b5:92:19:c7:82:27:eb: a4:4b:0d:f6:76:9b:0c:59:9f:f6:6a:bd:5a:7a:7e: 78:03:cd:75:75:79:d5:31:c9:fa:7a:f6:25:fc:71: 53:58:82:5c:10:b1:0f:05:2c:c6:dd:73:10:f0:89: 1f:1c:d8:af:58:2d:fc:5e:2c:ad:05:e8:ab:ba:b4: 2a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:8D:DA:BE:40:5C:DC:0A:77:D6:AA:6F:7D:37:0A:D6:11:1D:D3:DD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS64300.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.13.204.0/23 103.18.232.0/23 103.46.8.0/23 103.67.46.0/23 Signature Algorithm: sha256WithRSAEncryption 59:02:21:da:19:e6:89:52:65:db:a8:92:94:2b:f2:21:7e:b5: ac:e3:fd:18:ab:b8:3d:55:58:21:7f:0f:5c:d2:ba:bf:76:35: c9:b3:aa:21:84:7c:0b:4c:fe:b9:26:68:ae:23:32:d1:d0:a6: c2:8c:0c:a0:d1:bc:b6:06:6a:69:42:91:38:62:59:69:34:5c: 45:6e:23:ee:d0:69:26:99:23:61:01:f6:7b:28:ef:42:e4:ad: 63:7b:10:89:16:f0:64:41:69:83:b2:66:6d:65:5a:a7:b6:46: 4d:c7:b4:04:22:1f:0c:ff:71:25:a4:92:fe:a5:99:1f:63:56: 8b:d2:f7:ae:dd:78:1b:62:b1:74:6a:90:21:f9:04:fd:fe:2b: f5:3e:68:1d:71:06:15:f1:43:fd:8d:cd:85:ba:18:cd:dd:8a: 8a:b1:04:25:a9:d4:5a:fe:9d:da:25:c1:d8:8c:c1:c0:da:22: 84:7d:a6:73:91:20:62:fb:9a:bd:13:70:fb:5c:0c:24:77:9c: f3:34:38:0d:33:60:a9:62:87:1e:5e:38:bf:4c:af:12:05:a1: 4e:9f:95:93:a4:a0:98:ee:57:eb:fe:80:89:7e:69:a5:c8:b6: a9:e4:b1:1f:bb:fb:8c:75:8e:38:cf:54:6f:8c:46:18:27:b9: 45:46:8d:34 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUFOmU3oKb08pjYbSZv6q6aI0YvicwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgwODA3NTUwMFoX DTI1MDgwNzA4MDAwMFowMzExMC8GA1UEAxMoN0Q4RERBQkU0MDVDREMwQTc3RDZB QTZGN0QzNzBBRDYxMTFERDNERDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAORNK1tXtfgDyDWsy4S4HajfNZNeR6Zd36o4WIVZL3MIQ3mexhc7WknG1zBA XySFY36kgoscvSdveaAt1+/umeFsQX2PMDbEu2VtjQoCy+D4hAjeVFEajP1q3RJg 2SxSM5mmP5R/D3PC0W27z9/3O5jRBCMiEOsri8RTADju+rR5OkIiD9IopLNIMYdl ZhvoKjeI5DG9VN6d0OYvQxT1i92fy5rfdi8X7RcmOf8x0tAwRdVLsMY7C4ctDc61 khnHgifrpEsN9nabDFmf9mq9Wnp+eAPNdXV51THJ+nr2JfxxU1iCXBCxDwUsxt1z EPCJHxzYr1gt/F4srQXoq7q0KnUCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBR9jdq+ QFzcCnfWqm99NwrWER3T3TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzY0MzAwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQBZw3MAwQBZxLoAwQBZy4IAwQBZ0MuMA0GCSqGSIb3DQEBCwUAA4IB AQBZAiHaGeaJUmXbqJKUK/IhfrWs4/0Yq7g9VVghfw9c0rq/djXJs6ohhHwLTP65 JmiuIzLR0KbCjAyg0by2BmppQpE4YllpNFxFbiPu0GkmmSNhAfZ7KO9C5K1jexCJ FvBkQWmDsmZtZVqntkZNx7QEIh8M/3ElpJL+pZkfY1aL0veu3XgbYrF0apAh+QT9 /iv1PmgdcQYV8UP9jc2FuhjN3YqKsQQlqdRa/p3aJcHYjMHA2iKEfaZzkSBi+5q9 E3D7XAwkd5zzNDgNM2CpYoceXji/TK8SBaFOn5WTpKCY7lfr/oCJfmmlyLap5LEf u/uMdY44z1RvjEYYJ7lFRo00 -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:50 2024 by rpki-client on console-ams.rpki-client.org