$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58485.roa File: AS58485.roa (raw, json) Hash identifier: dFftxVAeMLPmIjWmJ3GsHOK1FQxg3a1jtN8pmcErvIk= Subject key identifier: 4A:A3:AB:8E:0F:07:48:1D:19:58:50:20:27:4A:59:C5:5B:48:19:7E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 124CE11C49F58BB929D3AC6906C12A6A642180E8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58485.roa Signing time: Tue 10 Dec 2024 05:00:03 +0000 ROA not before: Tue 10 Dec 2024 04:55:03 +0000 ROA not after: Tue 09 Dec 2025 05:00:03 +0000 asID: 58485 IP address blocks: 103.247.21.0/24 maxlen: 24 103.247.22.0/24 maxlen: 24 103.247.23.0/24 maxlen: 24 2402:e100::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:4c:e1:1c:49:f5:8b:b9:29:d3:ac:69:06:c1:2a:6a:64:21:80:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:03 2024 GMT Not After : Dec 9 05:00:03 2025 GMT Subject: CN=4AA3AB8E0F07481D19585020274A59C55B48197E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:88:c6:06:01:13:b3:bb:ea:7c:10:24:ff:51: 42:be:ec:26:8f:f7:5b:0d:d0:e7:86:0f:aa:9f:bd: 51:39:f5:d3:b6:1f:dd:ee:15:bc:17:c5:4e:99:64: 94:5c:dd:21:90:39:83:cc:a0:14:29:62:36:05:eb: ef:5a:02:96:53:8b:b5:4e:5d:1f:3b:c5:8d:0d:e8: bb:ee:19:96:e5:f3:e1:97:db:51:73:c6:51:7e:96: fa:94:13:df:8d:df:41:77:b0:2f:86:58:00:34:8c: 77:00:7d:da:78:d2:71:22:cf:1a:16:b9:eb:6e:ad: 6c:40:27:cd:ce:d5:91:a1:31:8a:41:eb:07:14:25: a7:6c:b2:c6:6c:b4:55:4f:06:a1:fd:b1:ab:b9:e8: 6e:1b:bc:b3:8c:59:c2:a4:77:87:4f:dd:67:9b:5c: c4:dc:4b:94:ee:1b:90:4a:2f:2b:15:3b:a2:7d:ea: 7d:07:5f:d8:40:ac:3c:4e:7c:fd:03:05:4c:ae:b3: d6:ec:27:fa:7d:01:53:02:66:25:8e:65:cf:21:ca: 3c:26:07:4f:ac:f4:ae:63:55:46:cb:36:ae:3c:89: 9f:7f:bb:b9:36:5e:b3:fe:fa:02:88:47:59:67:66: 5d:61:65:bd:d4:51:8f:d8:e3:df:14:52:44:1b:12: dd:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:A3:AB:8E:0F:07:48:1D:19:58:50:20:27:4A:59:C5:5B:48:19:7E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58485.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.21.0-103.247.23.255 IPv6: 2402:e100::/32 Signature Algorithm: sha256WithRSAEncryption 7f:71:e4:67:13:0b:6c:03:b0:87:ae:f7:32:67:b4:06:bd:57: a1:ab:41:35:b8:75:4c:9f:cb:a2:f9:3c:75:0d:17:14:55:f6: 2e:f8:4a:c8:4a:f6:d9:a8:3c:dc:7b:df:ab:67:ae:93:4e:cb: 21:42:22:ce:d1:8d:b1:40:b0:b0:6d:15:11:77:de:a1:86:be: 1b:55:9a:b2:c8:a7:27:ed:48:27:0d:49:cf:d7:f8:34:83:6e: cd:11:d1:dd:3e:c8:bc:f0:e9:49:8b:42:28:68:5b:ca:b7:1f: d3:43:51:84:99:20:03:5a:7f:b1:95:b5:e5:5c:cb:58:e3:6a: 06:46:5d:47:23:d4:5f:e4:91:8f:72:03:67:9d:8d:7e:a8:f9: b3:27:4d:45:df:46:c9:bb:cf:f0:ff:8c:6f:c8:20:84:86:ac: 86:83:7d:44:da:28:f8:10:41:bb:55:bf:e4:b7:32:13:79:b7: dd:a1:d5:ce:98:21:c9:32:de:80:c9:cc:69:65:a9:c5:d9:83: 43:1f:8e:0c:76:fa:2e:d4:36:eb:ba:79:74:44:28:de:af:d3: e4:bf:a2:94:4a:13:a5:82:93:ae:95:0a:1c:fa:52:30:05:6d: 0e:b5:c5:9e:0f:9c:d3:29:55:a3:e0:69:23:15:bf:ee:ee:23: 91:eb:60:3f -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUEkzhHEn1i7kp06xpBsEqamQhgOgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUwM1oX DTI1MTIwOTA1MDAwM1owMzExMC8GA1UEAxMoNEFBM0FCOEUwRjA3NDgxRDE5NTg1 MDIwMjc0QTU5QzU1QjQ4MTk3RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANmIxgYBE7O76nwQJP9RQr7sJo/3Ww3Q54YPqp+9UTn107Yf3e4VvBfFTplk lFzdIZA5g8ygFCliNgXr71oCllOLtU5dHzvFjQ3ou+4ZluXz4ZfbUXPGUX6W+pQT 343fQXewL4ZYADSMdwB92njScSLPGha5626tbEAnzc7VkaExikHrBxQlp2yyxmy0 VU8Gof2xq7nobhu8s4xZwqR3h0/dZ5tcxNxLlO4bkEovKxU7on3qfQdf2ECsPE58 /QMFTK6z1uwn+n0BUwJmJY5lzyHKPCYHT6z0rmNVRss2rjyJn3+7uTZes/76AohH WWdmXWFlvdRRj9jj3xRSRBsS3YECAwEAAaOCAeYwggHiMB0GA1UdDgQWBBRKo6uO DwdIHRlYUCAnSlnFW0gZfjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU4NDg1LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTAU BAIAATAOMAwDBABn9xUDBANn9xAwDQQCAAIwBwMFACQC4QAwDQYJKoZIhvcNAQEL BQADggEBAH9x5GcTC2wDsIeu9zJntAa9V6GrQTW4dUyfy6L5PHUNFxRV9i74SshK 9tmoPNx736tnrpNOyyFCIs7RjbFAsLBtFRF33qGGvhtVmrLIpyftSCcNSc/X+DSD bs0R0d0+yLzw6UmLQihoW8q3H9NDUYSZIANaf7GVteVcy1jjagZGXUcj1F/kkY9y A2edjX6o+bMnTUXfRsm7z/D/jG/IIISGrIaDfUTaKPgQQbtVv+S3MhN5t92h1c6Y Icky3oDJzGllqcXZg0Mfjgx2+i7UNuu6eXREKN6v0+S/opRKE6WCk66VChz6UjAF bQ61xZ4PnNMpVaPgaSMVv+7uI5HrYD8= -----END CERTIFICATE-----Generated at Sat Apr 5 08:32:08 2025 by rpki-client