$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58389.roa File: AS58389.roa (raw, json) Hash identifier: yq7cbwloOZWerI8QoO9iK292fn4eE0ofXLXI5sNZrj4= Subject key identifier: 05:63:CB:2F:D8:7B:AC:C7:A2:34:79:4B:B3:7F:17:47:BB:5D:3C:1A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 38EDCAC8B59796A0AE444757FDC7D12C94DF88FD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58389.roa Signing time: Thu 03 Jul 2025 03:10:58 +0000 ROA not before: Thu 03 Jul 2025 03:05:58 +0000 ROA not after: Thu 02 Jul 2026 03:10:58 +0000 asID: 58389 IP address blocks: 114.198.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 18:35:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:ed:ca:c8:b5:97:96:a0:ae:44:47:57:fd:c7:d1:2c:94:df:88:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 3 03:05:58 2025 GMT Not After : Jul 2 03:10:58 2026 GMT Subject: CN=0563CB2FD87BACC7A234794BB37F1747BB5D3C1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:86:88:34:09:da:02:67:e0:e6:d2:d7:2f:81: d8:b2:31:e4:a4:06:2b:5d:ff:20:aa:02:04:4c:da: c0:32:de:08:dd:b2:ff:ec:30:5a:4a:ec:f2:9a:f9: e9:42:41:5d:d1:0e:5c:c7:ac:1e:b7:38:54:b2:58: af:ac:1b:a8:1d:18:f3:f8:96:5e:2d:ef:d6:f9:65: 18:2f:74:45:ea:d2:ef:cb:52:ca:d2:47:55:59:dc: 29:21:40:e1:7d:58:1e:7e:53:c0:61:27:3d:34:fb: a1:d0:c2:52:77:56:da:50:86:e3:a3:91:75:26:ab: 6e:12:90:9a:e4:5a:b6:e5:db:b0:26:9b:17:93:9e: aa:a4:dc:8f:a5:c2:37:33:56:09:f8:9a:f5:d1:e8: 23:53:52:e8:31:21:1f:74:0f:24:36:af:27:d8:05: 02:dd:6a:46:15:c2:15:f6:01:5b:df:64:67:ea:f8: a7:47:da:e8:1e:2d:4d:be:39:aa:cb:35:7d:7c:26: e5:81:5c:68:a3:78:76:40:48:44:d4:ae:3b:c6:5c: d8:51:03:45:f6:a3:89:5e:7a:30:68:06:49:fb:43: 98:40:91:c4:f8:ef:cd:11:fd:14:1f:41:a3:5e:e6: 2d:a9:b2:00:f6:d5:26:06:61:58:88:74:d6:2d:77: 40:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:63:CB:2F:D8:7B:AC:C7:A2:34:79:4B:B3:7F:17:47:BB:5D:3C:1A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58389.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.198.243.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:b1:e3:dc:35:0d:a7:9b:31:17:fa:59:4c:a5:f3:1b:77:79: 38:c6:29:ed:68:a8:ee:9c:48:27:2d:16:73:a7:9e:bd:f1:2b: 2d:98:4f:93:45:bd:74:4d:3a:4a:58:df:c7:1f:e0:92:93:73: 68:f1:57:62:a5:2b:e3:c9:82:b1:23:c9:e7:d5:41:bb:2c:36: 6b:eb:f6:9c:f3:c5:54:47:d1:d2:0c:3b:ef:e6:71:46:9f:1e: a5:3b:ed:ee:09:26:2c:20:35:26:67:9b:9c:b3:14:a3:4e:44: 86:30:28:13:64:20:1d:3f:58:f3:14:43:19:0f:1f:d0:d0:11: 38:6e:13:07:14:f7:6b:c0:24:d7:45:e8:ab:32:a9:c7:b3:6a: 6d:ba:02:db:e6:cc:38:08:0a:38:e2:9e:4e:de:dd:65:33:2b: 7a:32:b7:47:66:6f:d2:41:cf:64:ac:2b:f6:92:2e:1e:84:a1: 21:ff:be:63:32:e1:77:b3:53:6d:cb:24:1e:d3:91:79:59:cd: 63:86:df:3d:ef:63:ac:7a:4a:55:d0:99:19:48:3c:62:fd:bb: 51:5d:6a:eb:de:2a:5c:a0:42:41:fc:df:27:95:84:f7:e0:af: ac:43:51:b4:2e:f8:a7:5c:78:f4:f4:c2:89:93:70:d8:c1:c1: 45:20:41:28 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUOO3KyLWXlqCuREdX/cfRLJTfiP0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcwMzAzMDU1OFoX DTI2MDcwMjAzMTA1OFowMzExMC8GA1UEAxMoMDU2M0NCMkZEODdCQUNDN0EyMzQ3 OTRCQjM3RjE3NDdCQjVEM0MxQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALKGiDQJ2gJn4ObS1y+B2LIx5KQGK13/IKoCBEzawDLeCN2y/+wwWkrs8pr5 6UJBXdEOXMesHrc4VLJYr6wbqB0Y8/iWXi3v1vllGC90RerS78tSytJHVVncKSFA 4X1YHn5TwGEnPTT7odDCUndW2lCG46ORdSarbhKQmuRatuXbsCabF5OeqqTcj6XC NzNWCfia9dHoI1NS6DEhH3QPJDavJ9gFAt1qRhXCFfYBW99kZ+r4p0fa6B4tTb45 qss1fXwm5YFcaKN4dkBIRNSuO8Zc2FEDRfajiV56MGgGSftDmECRxPjvzRH9FB9B o17mLamyAPbVJgZhWIh01i13QFsCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBQFY8sv 2Husx6I0eUuzfxdHu108GjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU4Mzg5LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAcsbzMA0GCSqGSIb3DQEBCwUAA4IBAQBasePcNQ2nmzEX+llMpfMb d3k4xintaKjunEgnLRZzp5698SstmE+TRb10TTpKWN/HH+CSk3No8VdipSvjyYKx I8nn1UG7LDZr6/ac88VUR9HSDDvv5nFGnx6lO+3uCSYsIDUmZ5ucsxSjTkSGMCgT ZCAdP1jzFEMZDx/Q0BE4bhMHFPdrwCTXReirMqnHs2ptugLb5sw4CAo44p5O3t1l Myt6MrdHZm/SQc9krCv2ki4ehKEh/75jMuF3s1NtyyQe05F5Wc1jht8972OsekpV 0JkZSDxi/btRXWrr3ipcoEJB/N8nlYT34K+sQ1G0LvinXHj09MKJk3DYwcFFIEEo -----END CERTIFICATE-----Generated at Thu Jul 3 18:15:02 2025 by rpki-client