$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58485.roa File: AS58485.roa (raw, json) Hash identifier: Ir4F1Lv083op0Hnau4U/NGqbGpq0kq7Iq1+ICVzoh68= Subject key identifier: CE:46:5D:C0:06:9A:4E:89:6A:A4:C9:92:33:B5:C5:3A:6E:61:60:E5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3AD4E0724D4B59277D3FA9B8A1DA02F134CF4101 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58485.roa Signing time: Thu 08 May 2025 06:56:14 +0000 ROA not before: Thu 08 May 2025 06:51:14 +0000 ROA not after: Thu 07 May 2026 06:56:14 +0000 asID: 58485 IP address blocks: 103.247.20.0/24 maxlen: 24 103.247.21.0/24 maxlen: 24 103.247.22.0/24 maxlen: 24 103.247.23.0/24 maxlen: 24 2402:e100::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:d4:e0:72:4d:4b:59:27:7d:3f:a9:b8:a1:da:02:f1:34:cf:41:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 8 06:51:14 2025 GMT Not After : May 7 06:56:14 2026 GMT Subject: CN=CE465DC0069A4E896AA4C99233B5C53A6E6160E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:94:af:e3:ae:f4:be:2a:59:a2:c8:6b:ff:01: bb:2a:e0:37:a2:8d:b8:9c:bc:c7:ad:94:04:16:69: e8:87:0d:89:d8:01:5d:e0:0c:0c:a0:b9:8f:63:04: 31:fa:df:ab:97:b8:f1:0f:3f:3b:c1:11:f4:ed:03: 3a:52:a0:68:26:5f:d4:84:04:58:e4:d3:ba:fe:4b: f9:48:76:22:de:35:d7:8f:a5:c2:13:b7:5b:b4:69: 99:bb:61:56:aa:6c:03:ca:65:b6:fe:4e:9b:2c:25: aa:67:25:74:5d:0e:10:53:90:2a:36:3f:a8:06:b7: da:70:25:86:bc:49:60:3f:af:bb:f0:94:32:7a:a4: 3e:72:4c:bb:8a:18:1b:28:93:1d:ff:84:78:05:3f: d5:05:f3:b2:fe:0f:0c:e2:bc:14:6b:c9:9a:0c:3b: f0:d6:3f:fa:92:b0:c3:e0:6a:f4:69:4b:00:c9:1f: ed:b8:e2:31:b2:7b:10:45:5d:5c:50:80:95:9c:88: c5:6a:67:02:c3:45:d4:d7:00:e6:a2:49:44:da:a7: 16:cb:bf:23:48:02:6f:d0:3b:07:bf:93:4e:09:a2: 1f:ca:56:46:f9:73:20:17:0e:2a:0d:ad:54:20:0c: 3f:05:d3:66:d1:95:80:87:99:87:45:50:18:ce:d4: 7a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:46:5D:C0:06:9A:4E:89:6A:A4:C9:92:33:B5:C5:3A:6E:61:60:E5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58485.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.20.0/22 IPv6: 2402:e100::/32 Signature Algorithm: sha256WithRSAEncryption 94:33:a2:7d:92:17:72:ae:ed:86:c5:19:84:f8:36:a0:2c:0c: 9e:e4:87:15:a1:a7:28:a4:da:9e:9a:0a:b6:84:ca:54:73:80: 01:14:ce:e1:54:ff:80:1b:a9:f1:f1:c4:42:ba:f7:f5:81:17: ee:08:ed:4d:2f:7a:6a:b8:40:a5:d5:6d:36:89:9a:d7:82:ef: fa:79:23:ee:d5:86:57:ab:ef:c9:c1:f6:83:6d:8c:d1:c3:55: 73:3d:62:46:eb:42:42:ed:c8:8b:a0:b4:51:44:1a:4c:cf:ad: 1e:10:de:19:53:dd:b6:eb:81:ed:b9:b6:53:a8:d4:c0:f8:89: 65:5d:60:11:91:ce:e4:00:4a:ac:ab:60:76:0d:28:ac:a6:f6: cd:3c:6b:d3:a8:29:bf:d7:5c:14:f9:12:d7:59:2b:06:47:34: 5b:25:93:76:af:b7:d0:11:5f:96:25:49:bb:6b:96:78:d9:b3: 4c:bd:28:a2:8f:f1:07:c8:83:3f:7c:2f:60:2c:ce:e3:b0:5b: 86:73:55:a9:bc:12:04:dc:63:80:a9:71:07:ab:4c:51:45:ac: 18:96:2c:84:ea:f2:7c:e0:96:57:2b:83:0e:63:2e:38:e1:95: d1:c4:02:f3:92:58:70:0e:87:15:18:b1:47:8a:d9:ef:b5:4a: 47:2b:e1:17 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgIUOtTgck1LWSd9P6m4odoC8TTPQQEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUwODA2NTExNFoX DTI2MDUwNzA2NTYxNFowMzExMC8GA1UEAxMoQ0U0NjVEQzAwNjlBNEU4OTZBQTRD OTkyMzNCNUM1M0E2RTYxNjBFNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANCUr+Ou9L4qWaLIa/8BuyrgN6KNuJy8x62UBBZp6IcNidgBXeAMDKC5j2ME Mfrfq5e48Q8/O8ER9O0DOlKgaCZf1IQEWOTTuv5L+Uh2It4114+lwhO3W7Rpmbth VqpsA8pltv5OmywlqmcldF0OEFOQKjY/qAa32nAlhrxJYD+vu/CUMnqkPnJMu4oY GyiTHf+EeAU/1QXzsv4PDOK8FGvJmgw78NY/+pKww+Bq9GlLAMkf7bjiMbJ7EEVd XFCAlZyIxWpnAsNF1NcA5qJJRNqnFsu/I0gCb9A7B7+TTgmiH8pWRvlzIBcOKg2t VCAMPwXTZtGVgIeZh0VQGM7UeocCAwEAAaOCAd4wggHaMB0GA1UdDgQWBBTORl3A BppOiWqkyZIztcU6bmFg5TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU4NDg1LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ/cUMA0EAgACMAcDBQAkAuEAMA0GCSqGSIb3DQEBCwUAA4IBAQCU M6J9khdyru2GxRmE+DagLAye5IcVoacopNqemgq2hMpUc4ABFM7hVP+AG6nx8cRC uvf1gRfuCO1NL3pquECl1W02iZrXgu/6eSPu1YZXq+/JwfaDbYzRw1VzPWJG60JC 7ciLoLRRRBpMz60eEN4ZU92264HtubZTqNTA+IllXWARkc7kAEqsq2B2DSispvbN PGvTqCm/11wU+RLXWSsGRzRbJZN2r7fQEV+WJUm7a5Z42bNMvSiij/EHyIM/fC9g LM7jsFuGc1WpvBIE3GOAqXEHq0xRRawYliyE6vJ84JZXK4MOYy444ZXRxALzklhw DocVGLFHitnvtUpHK+EX -----END CERTIFICATE-----Generated at Tue Jun 3 23:10:02 2025 by rpki-client