$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS64300.roa File: AS64300.roa (raw, json) Hash identifier: kEUWjBxG+jZEZncUJXJu2eLqt6fC+jVcm7O46jQ0a0U= Subject key identifier: F9:CB:02:2F:6C:F4:F5:A9:CE:42:2F:75:B1:7B:A6:83:86:93:72:38 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4AC5F73A2536B9C5D0A4C6892D834FBE25F04985 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS64300.roa Signing time: Thu 07 Sep 2023 07:45:23 +0000 ROA not before: Thu 07 Sep 2023 07:40:23 +0000 ROA not after: Thu 05 Sep 2024 07:45:23 +0000 asID: 64300 IP address blocks: 103.13.204.0/23 maxlen: 24 103.18.232.0/23 maxlen: 24 103.46.8.0/23 maxlen: 24 103.67.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 13:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:c5:f7:3a:25:36:b9:c5:d0:a4:c6:89:2d:83:4f:be:25:f0:49:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 7 07:40:23 2023 GMT Not After : Sep 5 07:45:23 2024 GMT Subject: CN=F9CB022F6CF4F5A9CE422F75B17BA68386937238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7e:4b:42:8b:f1:c3:3e:a2:3c:ce:02:28:e8: a6:6d:a5:df:a4:e0:99:58:34:5f:61:5f:42:f9:42: 71:e8:55:5a:07:d5:51:d5:6c:80:98:97:24:e0:c5: 50:a2:42:07:ca:75:7f:c3:72:70:d2:56:5b:18:e9: 1c:64:19:0e:ed:77:23:0c:fc:2f:e3:5f:de:ce:cc: 27:ab:c6:03:fc:a2:3c:13:4d:41:d4:8d:bb:fe:a8: 71:f5:1a:d7:aa:ed:cf:7e:ba:d6:86:d3:7f:7d:fa: 0c:f3:50:0a:be:3a:d4:c3:45:64:d3:b5:11:a2:e8: 46:5b:6a:26:1b:de:bc:a2:ac:b6:cd:bc:3f:57:13: 25:cf:4a:3b:d5:16:7d:a1:80:6c:a5:0a:aa:92:21: bf:5b:35:1e:45:b0:f1:6c:5a:f7:2f:b0:c5:03:34: 07:b0:fc:af:7b:ea:0b:c9:f1:c8:37:91:39:60:3e: fd:cb:22:3e:c5:59:bd:9e:a6:05:2e:9f:33:e3:03: b6:0c:5f:90:8e:e5:04:6e:fa:26:1f:0f:f5:a9:6b: 1b:7a:9b:01:d1:de:cb:41:f1:4d:57:5a:2e:74:b8: 57:b6:3c:f5:09:e4:b8:73:d6:51:34:e1:4e:08:ed: 1a:51:41:29:09:c2:8d:a2:6d:31:f3:d2:ed:c3:b0: dc:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:CB:02:2F:6C:F4:F5:A9:CE:42:2F:75:B1:7B:A6:83:86:93:72:38 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS64300.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.13.204.0/23 103.18.232.0/23 103.46.8.0/23 103.67.46.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:f0:3f:e0:16:37:fe:1b:19:d9:f7:f1:27:20:b0:3f:3a:20: 11:85:14:9e:8a:c7:fd:d1:ab:46:bc:ab:c3:c1:fa:51:6d:77: 49:7c:cf:3d:71:3b:a4:fc:99:8b:f9:be:0c:d9:fc:7c:79:be: c9:8d:00:8d:a3:b5:54:03:47:97:6d:b1:b1:94:b4:38:9b:f6: e8:af:82:47:e0:45:65:3e:98:da:e0:31:46:f6:e5:0e:31:94: 11:97:cd:a4:58:59:96:34:58:91:7f:5c:81:d6:6b:84:de:63: 96:bf:7b:ea:e0:02:a4:1e:84:78:2b:ac:d6:b0:2e:66:45:48: 6d:1c:65:17:a9:2c:10:73:82:2d:40:2a:60:63:c3:c3:89:6a: 2d:c4:aa:d6:bb:96:fc:bd:ba:ea:40:99:10:b9:3d:26:4d:02: c8:0a:8e:d6:e4:6a:a1:3e:fc:01:07:e3:b6:8e:66:b3:43:9d: 72:4d:88:11:9c:32:4b:95:42:a6:ec:2c:d8:43:0f:d8:16:4d: c1:a6:34:de:e7:68:45:10:2b:52:38:09:07:7c:cf:e3:f0:4c: ce:80:3d:d0:8b:40:49:cf:61:e6:06:5f:03:b8:30:11:0b:1c: 63:57:4d:8c:53:b5:0e:ee:5b:d7:18:b7:cb:40:d6:ea:0d:de: bc:a2:62:39 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUSsX3OiU2ucXQpMaJLYNPviXwSYUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkwNzA3NDAyM1oX DTI0MDkwNTA3NDUyM1owMzExMC8GA1UEAxMoRjlDQjAyMkY2Q0Y0RjVBOUNFNDIy Rjc1QjE3QkE2ODM4NjkzNzIzODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALx+S0KL8cM+ojzOAijopm2l36TgmVg0X2FfQvlCcehVWgfVUdVsgJiXJODF UKJCB8p1f8NycNJWWxjpHGQZDu13Iwz8L+Nf3s7MJ6vGA/yiPBNNQdSNu/6ocfUa 16rtz3661obTf336DPNQCr461MNFZNO1EaLoRltqJhvevKKsts28P1cTJc9KO9UW faGAbKUKqpIhv1s1HkWw8Wxa9y+wxQM0B7D8r3vqC8nxyDeROWA+/csiPsVZvZ6m BS6fM+MDtgxfkI7lBG76Jh8P9alrG3qbAdHey0HxTVdaLnS4V7Y89QnkuHPWUTTh TgjtGlFBKQnCjaJtMfPS7cOw3DECAwEAAaOCAeEwggHdMB0GA1UdDgQWBBT5ywIv bPT1qc5CL3Wxe6aDhpNyODAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzY0MzAwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQBZw3MAwQBZxLoAwQBZy4IAwQBZ0MuMA0GCSqGSIb3DQEBCwUAA4IB AQAt8D/gFjf+GxnZ9/EnILA/OiARhRSeisf90atGvKvDwfpRbXdJfM89cTuk/JmL +b4M2fx8eb7JjQCNo7VUA0eXbbGxlLQ4m/bor4JH4EVlPpja4DFG9uUOMZQRl82k WFmWNFiRf1yB1muE3mOWv3vq4AKkHoR4K6zWsC5mRUhtHGUXqSwQc4ItQCpgY8PD iWotxKrWu5b8vbrqQJkQuT0mTQLICo7W5GqhPvwBB+O2jmazQ51yTYgRnDJLlUKm 7CzYQw/YFk3BpjTe52hFECtSOAkHfM/j8EzOgD3Qi0BJz2HmBl8DuDARCxxjV02M U7UO7lvXGLfLQNbqDd68omI5 -----END CERTIFICATE-----Generated at Tue May 7 12:21:43 2024 by rpki-client on console-fra.rpki-client.org