$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58820.roa File: AS58820.roa (raw, json) Hash identifier: 4Q3OYWUxoLljksZfS3lXkngGmN9xPqNmtqIauihwvQ8= Subject key identifier: 02:8B:9C:FF:57:D8:D5:02:07:DD:83:5A:F3:0B:6D:5B:8C:B0:51:90 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 47C387C87058DFD97E21EF194A94AFA675A88D37 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58820.roa Signing time: Tue 09 Jan 2024 04:00:26 +0000 ROA not before: Tue 09 Jan 2024 03:55:26 +0000 ROA not after: Tue 07 Jan 2025 04:00:26 +0000 asID: 58820 IP address blocks: 103.113.28.0/24 maxlen: 24 103.136.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 13:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:c3:87:c8:70:58:df:d9:7e:21:ef:19:4a:94:af:a6:75:a8:8d:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:26 2024 GMT Not After : Jan 7 04:00:26 2025 GMT Subject: CN=028B9CFF57D8D50207DD835AF30B6D5B8CB05190 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:48:eb:f5:32:2d:a8:e4:c5:f6:8c:0a:e8:16: 5c:15:03:81:ad:d0:a8:fe:75:00:b4:00:da:fa:70: 55:ad:1e:78:ba:10:2f:37:da:31:34:0a:b9:73:dc: 6d:ba:bf:35:11:02:99:68:0e:a0:b1:a0:7b:86:eb: e1:a9:50:e2:24:13:37:a9:c4:63:cc:07:cf:1b:cd: 68:70:6c:82:d1:18:3c:c9:d4:d3:2e:fa:6b:ac:61: 29:25:ed:47:39:a6:5e:f6:cf:f7:66:c3:5b:af:2d: d1:f5:d6:c8:48:b6:f2:10:b7:84:57:2d:d4:97:1d: 1d:e5:d1:b0:88:27:d8:21:fe:0f:67:9d:9f:ca:e0: a3:61:02:df:83:f8:d1:4e:d5:8e:4b:09:00:23:49: 40:14:2c:33:de:4f:89:3d:53:73:35:22:a2:98:56: ce:27:c5:1f:64:ec:a2:07:48:a4:6b:1c:d7:15:87: ba:d7:ab:33:c7:49:f6:34:18:e6:1f:74:4d:5f:88: 9a:e2:db:06:f8:ae:38:53:db:95:fc:1d:e1:32:7c: 2f:b0:2f:99:a0:5c:4a:71:b6:b8:04:4b:28:8f:9c: 05:17:ed:ad:7b:fd:a6:d4:7b:8a:3d:e7:58:fd:79: 0e:66:10:a1:24:5a:9e:cf:52:4e:c0:53:b4:48:b4: 1b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:8B:9C:FF:57:D8:D5:02:07:DD:83:5A:F3:0B:6D:5B:8C:B0:51:90 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58820.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.113.28.0/24 103.136.16.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:23:8c:10:79:f1:33:86:db:87:86:23:d4:78:4a:53:f4:1e: 26:1d:e9:aa:98:1c:aa:66:4f:94:bf:20:44:43:4b:e5:58:24: 04:c5:d9:68:ea:0f:0b:69:28:b8:b3:23:03:2f:d5:5a:25:18: ee:4a:af:46:5a:9c:81:9c:44:78:15:a4:06:91:04:be:ea:06: be:91:e3:fb:c1:61:61:aa:da:a2:02:d9:b3:4d:20:a1:db:26: ea:6c:dc:8c:99:82:58:b3:88:05:b4:76:5e:6f:89:4a:b2:c5: d4:25:22:95:4e:fc:e3:ff:65:97:33:8c:fd:06:69:e5:0e:76: ca:e5:9c:0b:f5:24:39:2a:b3:fc:99:a0:4e:26:4b:2d:75:bb: 09:1d:66:db:26:b8:2e:2b:84:50:8d:a1:03:57:4a:10:2a:3f: a7:c6:67:27:69:65:ca:d6:91:6f:3a:7d:42:d5:ec:d7:10:e1: 85:fc:7a:6c:34:57:a7:19:00:c2:7f:c2:f4:09:8f:d7:0a:46: ac:7d:ef:8c:b8:7f:49:dc:e8:07:1d:0e:ca:9d:70:1f:3f:f4: c2:76:99:dd:9d:f9:ae:b8:96:25:1d:8b:45:fd:8f:4d:29:af: 85:31:0a:82:b5:3b:04:a1:fd:3a:f9:94:69:ec:4b:aa:8d:40: d8:99:bc:5e -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUR8OHyHBY39l+Ie8ZSpSvpnWojTcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyNloX DTI1MDEwNzA0MDAyNlowMzExMC8GA1UEAxMoMDI4QjlDRkY1N0Q4RDUwMjA3REQ4 MzVBRjMwQjZENUI4Q0IwNTE5MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKdI6/UyLajkxfaMCugWXBUDga3QqP51ALQA2vpwVa0eeLoQLzfaMTQKuXPc bbq/NRECmWgOoLGge4br4alQ4iQTN6nEY8wHzxvNaHBsgtEYPMnU0y76a6xhKSXt RzmmXvbP92bDW68t0fXWyEi28hC3hFct1JcdHeXRsIgn2CH+D2edn8rgo2EC34P4 0U7VjksJACNJQBQsM95PiT1TczUiophWzifFH2TsogdIpGsc1xWHuterM8dJ9jQY 5h90TV+ImuLbBviuOFPblfwd4TJ8L7AvmaBcSnG2uARLKI+cBRftrXv9ptR7ij3n WP15DmYQoSRans9STsBTtEi0GxsCAwEAAaOCAdUwggHRMB0GA1UdDgQWBBQCi5z/ V9jVAgfdg1rzC21bjLBRkDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU4ODIwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZ3EcAwQCZ4gQMA0GCSqGSIb3DQEBCwUAA4IBAQBcI4wQefEzhtuH hiPUeEpT9B4mHemqmByqZk+UvyBEQ0vlWCQExdlo6g8LaSi4syMDL9VaJRjuSq9G WpyBnER4FaQGkQS+6ga+keP7wWFhqtqiAtmzTSCh2ybqbNyMmYJYs4gFtHZeb4lK ssXUJSKVTvzj/2WXM4z9BmnlDnbK5ZwL9SQ5KrP8maBOJkstdbsJHWbbJrguK4RQ jaEDV0oQKj+nxmcnaWXK1pFvOn1C1ezXEOGF/HpsNFenGQDCf8L0CY/XCkasfe+M uH9J3OgHHQ7KnXAfP/TCdpndnfmuuJYlHYtF/Y9NKa+FMQqCtTsEof06+ZRp7Euq jUDYmbxe -----END CERTIFICATE-----Generated at Tue May 7 12:21:43 2024 by rpki-client on console-fra.rpki-client.org