$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58487.roa File: AS58487.roa (raw, json) Hash identifier: R0Qz2vSzEnvqwyrad1qv9hNUpxR+Xe5AOuNRYzIwyzU= Subject key identifier: 57:CA:0D:FA:9D:A9:53:57:A2:5D:B8:71:D6:91:C4:96:30:E1:10:86 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2F21EED5F929231092FD8A6639EF490A9EC08FFC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58487.roa Signing time: Wed 04 Mar 2026 10:00:00 +0000 ROA not before: Wed 04 Mar 2026 09:55:00 +0000 ROA not after: Wed 03 Mar 2027 10:00:00 +0000 asID: 58487 IP address blocks: 202.10.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Mar 2026 23:36:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:21:ee:d5:f9:29:23:10:92:fd:8a:66:39:ef:49:0a:9e:c0:8f:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 4 09:55:00 2026 GMT Not After : Mar 3 10:00:00 2027 GMT Subject: CN=57CA0DFA9DA95357A25DB871D691C49630E11086 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d2:74:2b:4e:ee:d7:24:8b:e3:2b:f6:2a:01: 4d:a2:36:86:50:9e:06:2c:c5:04:8b:89:51:1f:51: 3f:33:f8:d2:a3:02:01:0f:1b:b2:44:91:e3:dc:ed: 2e:c2:63:27:8e:f9:90:ef:ac:6c:82:f6:11:b2:b5: 3b:ae:e6:d0:ac:77:27:ef:f4:c4:d8:3a:6a:6f:f7: 12:61:de:25:eb:18:92:8e:cc:a3:2c:f7:e1:2f:fa: 32:49:50:dc:6d:fa:96:ef:a1:1e:e2:0c:db:5d:c8: 47:15:92:5d:e6:76:9c:a8:f3:8e:61:d0:06:57:e7: 19:40:3d:fc:7c:f2:61:b3:7f:ae:88:cc:86:db:5a: 69:09:4a:81:d9:1e:0a:e5:c5:76:9b:52:9b:ad:68: f2:58:ca:ed:e1:59:69:73:69:1f:66:f7:3e:32:86: 5a:36:46:ac:74:53:2f:7e:12:89:27:a0:95:37:db: 6f:00:52:cc:b9:45:f3:03:14:2d:76:af:d8:66:49: ca:c6:de:08:9c:39:c6:2c:04:b6:12:39:c2:94:86: e4:4b:81:48:cc:73:f9:74:b6:cb:04:71:87:db:e9: 0b:3e:11:5f:84:f0:8c:31:fe:28:d7:1a:62:5f:39: 15:6f:45:d7:1f:52:95:0f:0b:7f:83:f8:75:2e:28: f0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:CA:0D:FA:9D:A9:53:57:A2:5D:B8:71:D6:91:C4:96:30:E1:10:86 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58487.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.48.0/23 Signature Algorithm: sha256WithRSAEncryption 67:c5:44:ff:18:a7:9b:b6:06:df:b1:3c:df:85:d2:e3:da:b0: 74:84:48:db:3a:07:d0:3f:87:f3:f4:1f:68:6c:d0:ca:49:3d: 20:65:82:e5:24:a9:1c:c5:b6:6e:9f:07:1a:2f:8f:34:bc:a5: 00:8e:82:31:c6:81:6a:ee:44:fd:71:08:c3:ad:c4:9b:36:f3: b3:66:c1:62:79:7d:01:48:0c:72:87:40:9d:81:e4:12:8b:35: 58:be:94:18:e5:0b:52:76:7d:88:1c:1c:b7:62:ad:0c:14:e4: f3:d6:bd:b0:90:a7:2f:82:0e:bb:e6:64:56:40:20:5a:ce:78: 5e:b4:f2:ae:ef:b3:a9:6c:93:e4:6e:e6:a4:a3:86:09:37:b7: 25:b9:cd:42:59:ac:2f:dc:b3:80:08:6e:51:15:1a:bb:ce:c4: 89:ee:13:4a:26:23:6d:85:5c:d2:fa:ee:b3:eb:5d:e2:d9:2b: 0a:68:06:66:e7:2d:22:52:57:7b:eb:7b:d5:52:d1:fe:20:63: b2:e2:c9:1f:81:94:94:ed:b3:65:fa:74:4d:84:a7:01:ec:02: 63:be:cb:7f:74:84:42:50:b1:82:d2:94:c5:e8:31:ea:af:4c: 1f:6c:c4:16:f1:6a:ac:04:8b:e4:c2:f8:58:5f:f5:57:4a:d2: a2:79:d5:b1 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIULyHu1fkpIxCS/YpmOe9JCp7Aj/wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMwNDA5NTUwMFoX DTI3MDMwMzEwMDAwMFowMzExMC8GA1UEAxMoNTdDQTBERkE5REE5NTM1N0EyNURC ODcxRDY5MUM0OTYzMEUxMTA4NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANPSdCtO7tcki+Mr9ioBTaI2hlCeBizFBIuJUR9RPzP40qMCAQ8bskSR49zt LsJjJ475kO+sbIL2EbK1O67m0Kx3J+/0xNg6am/3EmHeJesYko7Moyz34S/6MklQ 3G36lu+hHuIM213IRxWSXeZ2nKjzjmHQBlfnGUA9/HzyYbN/rojMhttaaQlKgdke CuXFdptSm61o8ljK7eFZaXNpH2b3PjKGWjZGrHRTL34SiSeglTfbbwBSzLlF8wMU LXav2GZJysbeCJw5xiwEthI5wpSG5EuBSMxz+XS2ywRxh9vpCz4RX4TwjDH+KNca Yl85FW9F1x9SlQ8Lf4P4dS4o8I8CAwEAAaOCAc8wggHLMB0GA1UdDgQWBBRXyg36 nalTV6JduHHWkcSWMOEQhjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU4NDg3LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBygowMA0GCSqGSIb3DQEBCwUAA4IBAQBnxUT/GKebtgbfsTzfhdLj 2rB0hEjbOgfQP4fz9B9obNDKST0gZYLlJKkcxbZunwcaL480vKUAjoIxxoFq7kT9 cQjDrcSbNvOzZsFieX0BSAxyh0CdgeQSizVYvpQY5QtSdn2IHBy3Yq0MFOTz1r2w kKcvgg675mRWQCBaznhetPKu77OpbJPkbuako4YJN7cluc1CWawv3LOACG5RFRq7 zsSJ7hNKJiNthVzS+u6z613i2SsKaAZm5y0iUld763vVUtH+IGOy4skfgZSU7bNl +nRNhKcB7AJjvst/dIRCULGC0pTF6DHqr0wfbMQW8WqsBIvkwvhYX/VXStKiedWx -----END CERTIFICATE-----Generated at Thu Mar 19 21:34:43 2026 by rpki-client