$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58485.roa File: AS58485.roa (raw, json) Hash identifier: VtmmVPpnGcSVHFm/R/XSCskquPDx3ryGC0yFuvygd+8= Subject key identifier: 2E:F5:86:46:D7:DE:9A:91:53:71:39:90:2B:2F:AF:46:33:69:E4:A1 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 66925A37EC4EBE0E45939E37011C6858CC0C2BE8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58485.roa Signing time: Tue 09 Jan 2024 04:00:05 +0000 ROA not before: Tue 09 Jan 2024 03:55:05 +0000 ROA not after: Tue 07 Jan 2025 04:00:05 +0000 asID: 58485 IP address blocks: 103.247.21.0/24 maxlen: 24 103.247.22.0/24 maxlen: 24 103.247.23.0/24 maxlen: 24 2402:e100::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:92:5a:37:ec:4e:be:0e:45:93:9e:37:01:1c:68:58:cc:0c:2b:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:05 2024 GMT Not After : Jan 7 04:00:05 2025 GMT Subject: CN=2EF58646D7DE9A91537139902B2FAF463369E4A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b3:1d:d5:4f:0e:1b:17:f1:4e:a8:c3:21:4b: bc:ab:73:db:ea:f0:30:e9:35:97:bc:f6:ee:f4:19: 11:ef:0d:d0:f6:2b:23:92:15:85:96:82:a5:11:2b: 27:c2:90:f7:3b:a6:ea:fe:7f:60:aa:dd:f6:84:a6: 4e:b5:58:4f:c6:6c:3c:ea:78:8c:0c:92:1f:b0:94: b9:11:59:08:f3:e6:af:c7:7b:43:df:94:31:70:4b: 02:ae:2b:92:58:27:b3:7c:6e:69:7a:cf:4e:04:74: 8e:4f:93:43:46:f8:2e:13:3d:50:00:1c:05:fc:2c: 04:16:0c:c6:df:0f:22:e1:d8:96:ed:40:96:82:88: 68:3d:1a:5d:24:aa:02:9e:b0:73:ce:7f:4e:de:80: 1a:79:e9:bb:12:93:ff:3b:49:2e:59:b4:c0:fa:74: bb:5e:e5:8d:5d:95:30:99:e3:38:93:2d:7d:e1:1f: 13:af:d4:5f:d5:7c:b0:95:90:26:f2:c0:82:3d:6c: 16:1c:33:b0:c7:2d:62:e0:5e:ab:ab:dc:89:7e:51: 0e:d2:cc:1d:d2:71:29:08:b9:2a:16:50:ce:73:5d: 52:22:84:df:2e:a1:3b:5f:7e:e3:b9:b2:76:bc:8d: 97:af:73:37:58:57:9e:96:7d:b3:31:cf:16:2d:76: 13:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:F5:86:46:D7:DE:9A:91:53:71:39:90:2B:2F:AF:46:33:69:E4:A1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58485.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.21.0-103.247.23.255 IPv6: 2402:e100::/32 Signature Algorithm: sha256WithRSAEncryption 0a:dc:53:ca:17:8b:bc:7f:01:d1:1b:0d:82:eb:c8:f9:9a:16: ae:ed:95:89:72:25:91:1d:0a:ac:e5:e7:9c:43:b7:b7:c7:6b: 81:88:41:90:04:3e:1e:60:bd:da:ea:52:d4:31:8b:85:1f:80: 3d:99:84:83:32:d3:92:a4:11:43:b9:6d:ab:a3:03:b1:e2:fa: 10:f9:69:ff:6f:1d:ce:0e:ad:2b:2b:b9:6c:a3:cd:2d:0b:21: 8c:12:16:42:2e:7b:10:1f:27:98:7b:2b:17:4f:27:a7:f6:3d: 07:2d:0e:0f:64:f3:43:cc:f2:cc:74:23:92:f1:b3:1c:d5:d7: fe:74:97:20:51:b2:fb:06:51:b9:19:6e:7a:cb:dc:1f:c4:40: 7b:96:5d:23:c8:48:99:77:60:85:63:18:bd:4a:0a:81:4b:57: 61:a0:e5:8a:5f:a1:16:9f:89:ad:5a:f8:3a:71:d1:19:a8:03: 2c:bd:0f:58:66:f8:21:6e:d7:ef:54:30:e9:41:5b:12:c2:b7: dd:95:44:65:eb:4c:f4:0e:46:11:08:72:da:af:d3:6d:b0:3d: 00:c1:d0:f1:c5:4a:f7:6f:da:44:b6:d1:a5:d8:7f:98:8e:32: a0:f8:d3:43:59:96:30:f5:33:f3:c4:76:f7:19:e4:9a:be:e0: 64:e3:83:a1 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUZpJaN+xOvg5Fk543ARxoWMwMK+gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUwNVoX DTI1MDEwNzA0MDAwNVowMzExMC8GA1UEAxMoMkVGNTg2NDZEN0RFOUE5MTUzNzEz OTkwMkIyRkFGNDYzMzY5RTRBMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANmzHdVPDhsX8U6owyFLvKtz2+rwMOk1l7z27vQZEe8N0PYrI5IVhZaCpREr J8KQ9zum6v5/YKrd9oSmTrVYT8ZsPOp4jAySH7CUuRFZCPPmr8d7Q9+UMXBLAq4r klgns3xuaXrPTgR0jk+TQ0b4LhM9UAAcBfwsBBYMxt8PIuHYlu1AloKIaD0aXSSq Ap6wc85/Tt6AGnnpuxKT/ztJLlm0wPp0u17ljV2VMJnjOJMtfeEfE6/UX9V8sJWQ JvLAgj1sFhwzsMctYuBeq6vciX5RDtLMHdJxKQi5KhZQznNdUiKE3y6hO19+47my dryNl69zN1hXnpZ9szHPFi12E8sCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBQu9YZG 196akVNxOZArL69GM2nkoTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU4NDg1LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTAU BAIAATAOMAwDBABn9xUDBANn9xAwDQQCAAIwBwMFACQC4QAwDQYJKoZIhvcNAQEL BQADggEBAArcU8oXi7x/AdEbDYLryPmaFq7tlYlyJZEdCqzl55xDt7fHa4GIQZAE Ph5gvdrqUtQxi4UfgD2ZhIMy05KkEUO5baujA7Hi+hD5af9vHc4OrSsruWyjzS0L IYwSFkIuexAfJ5h7KxdPJ6f2PQctDg9k80PM8sx0I5LxsxzV1/50lyBRsvsGUbkZ bnrL3B/EQHuWXSPISJl3YIVjGL1KCoFLV2Gg5YpfoRafia1a+Dpx0RmoAyy9D1hm +CFu1+9UMOlBWxLCt92VRGXrTPQORhEIctqv022wPQDB0PHFSvdv2kS20aXYf5iO MqD400NZljD1M/PEdvcZ5Jq+4GTjg6E= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:28 2024 by rpki-client on console-fra.rpki-client.org