$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59282.roa File: AS59282.roa (raw, json) Hash identifier: +8Clo0XZVELEGmX91jg7yehFoVxXWqi+vQKHLrJ/AJs= Subject key identifier: DF:87:D3:29:5B:63:FC:1B:B6:37:AF:6B:6E:75:25:D2:D8:56:3C:96 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 11528E6BC9C8192EA00160953B554021BBDAB3F0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59282.roa Signing time: Wed 23 Aug 2023 04:51:14 +0000 ROA not before: Wed 23 Aug 2023 04:46:14 +0000 ROA not after: Wed 21 Aug 2024 04:51:14 +0000 asID: 59282 IP address blocks: 103.254.104.0/22 maxlen: 24 202.74.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:52:8e:6b:c9:c8:19:2e:a0:01:60:95:3b:55:40:21:bb:da:b3:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 23 04:46:14 2023 GMT Not After : Aug 21 04:51:14 2024 GMT Subject: CN=DF87D3295B63FC1BB637AF6B6E7525D2D8563C96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f3:bc:79:af:53:85:d6:62:d8:62:b3:c7:51: 93:ec:aa:27:14:16:e5:64:91:c8:6f:e3:83:a6:8c: 6e:e2:8d:d0:fd:de:15:0b:47:91:ef:38:43:06:d2: e6:ce:4d:1f:f7:9d:b3:1e:35:f9:26:02:57:74:c1: 97:6a:44:1e:ab:17:ff:ad:f5:53:a7:ee:01:45:fa: 95:e6:8e:bf:b1:ff:e8:90:bd:70:cb:1d:5e:0f:f1: 8b:f9:e2:20:14:52:cd:98:d1:dd:e0:80:d5:25:5d: 4f:d9:f2:0d:59:19:e9:98:34:29:c1:1e:a0:3d:e3: c8:e9:9b:e1:8a:61:d0:43:30:40:bb:b3:00:72:5f: e8:48:8b:b7:b6:7f:82:7f:24:67:5f:71:28:37:03: ba:78:47:1e:98:08:ee:af:5c:a9:64:7b:a6:f3:5c: c2:7a:34:46:99:24:fa:02:85:dc:d1:5e:eb:d0:c1: 2b:9d:1b:0a:28:ae:a2:3e:e2:7e:f2:93:71:b3:fe: 01:0b:f6:fc:ad:59:49:20:ba:6c:6c:02:b2:9d:dc: e5:5b:d8:39:a2:4a:65:8f:1d:20:54:7c:a7:49:ee: ec:8a:79:28:24:a4:7f:a5:c1:51:42:a2:7b:65:b7: 98:9b:66:a5:83:00:39:20:fb:39:46:67:6e:7a:6e: a6:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:87:D3:29:5B:63:FC:1B:B6:37:AF:6B:6E:75:25:D2:D8:56:3C:96 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59282.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.104.0/22 202.74.76.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:a4:a4:cc:ae:61:ba:51:1d:19:56:7b:37:83:a9:22:b7:cb: c4:6b:85:02:88:5c:b9:ac:c2:af:10:86:9d:73:e1:fb:11:85: 53:1a:92:7d:16:ad:ff:d1:80:b3:ee:35:fd:db:ab:71:12:e9: a7:5c:4b:58:82:5e:8b:a3:c3:e7:4b:34:e9:4a:cc:2e:f7:b9: 9a:42:26:46:a2:07:ea:01:49:e6:23:17:6a:2d:7c:2e:91:a3: 72:23:2c:5c:e0:de:73:8c:91:ad:67:8a:33:aa:08:6f:fa:fc: b6:47:0f:05:05:09:ce:81:8e:26:91:4d:08:68:1c:c6:12:5c: 83:78:4c:d1:b1:3c:21:8c:bf:75:97:58:9e:64:6e:6a:08:c2: ec:22:1f:cd:53:c5:9b:8d:cd:8c:27:11:44:1b:f4:13:be:92: 30:4e:ad:ed:c5:0b:01:96:d9:70:dd:48:be:e7:c4:44:a1:69: 70:bf:f8:a0:ff:77:d6:4d:67:e4:ab:75:ba:54:fd:f0:c8:73: bf:7a:86:f0:ff:50:fc:d5:78:e4:51:c1:68:b0:0a:2e:d4:81: 49:2d:78:cc:48:2c:15:08:17:8c:17:16:77:fb:96:ff:e4:b8: b1:a8:1e:73:72:13:9e:e1:5c:22:a4:82:69:0a:20:af:df:85: 56:4c:f0:32 -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUEVKOa8nIGS6gAWCVO1VAIbvas/AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgyMzA0NDYxNFoX DTI0MDgyMTA0NTExNFowMzExMC8GA1UEAxMoREY4N0QzMjk1QjYzRkMxQkI2MzdB RjZCNkU3NTI1RDJEODU2M0M5NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALTzvHmvU4XWYthis8dRk+yqJxQW5WSRyG/jg6aMbuKN0P3eFQtHke84QwbS 5s5NH/edsx41+SYCV3TBl2pEHqsX/631U6fuAUX6leaOv7H/6JC9cMsdXg/xi/ni IBRSzZjR3eCA1SVdT9nyDVkZ6Zg0KcEeoD3jyOmb4Yph0EMwQLuzAHJf6EiLt7Z/ gn8kZ19xKDcDunhHHpgI7q9cqWR7pvNcwno0Rpkk+gKF3NFe69DBK50bCiiuoj7i fvKTcbP+AQv2/K1ZSSC6bGwCsp3c5VvYOaJKZY8dIFR8p0nu7Ip5KCSkf6XBUUKi e2W3mJtmpYMAOSD7OUZnbnpups8CAwEAAaOCAdUwggHRMB0GA1UdDgQWBBTfh9Mp W2P8G7Y3r2tudSXS2FY8ljAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU5MjgyLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ/5oAwQCykpMMA0GCSqGSIb3DQEBCwUAA4IBAQAapKTMrmG6UR0Z Vns3g6kit8vEa4UCiFy5rMKvEIadc+H7EYVTGpJ9Fq3/0YCz7jX926txEumnXEtY gl6Lo8PnSzTpSswu97maQiZGogfqAUnmIxdqLXwukaNyIyxc4N5zjJGtZ4ozqghv +vy2Rw8FBQnOgY4mkU0IaBzGElyDeEzRsTwhjL91l1ieZG5qCMLsIh/NU8Wbjc2M JxFEG/QTvpIwTq3txQsBltlw3Ui+58REoWlwv/ig/3fWTWfkq3W6VP3wyHO/eobw /1D81XjkUcFosAou1IFJLXjMSCwVCBeMFxZ3+5b/5LixqB5zchOe4VwipIJpCiCv 34VWTPAy -----END CERTIFICATE-----Generated at Fri May 3 04:42:29 2024 by rpki-client on console-fra.rpki-client.org