$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58487.roa File: AS58487.roa (raw, json) Hash identifier: r5vBRL6+loYJ3s7fg4X7tjAPGcKL7wsZK/mLTQQXJqk= Subject key identifier: 11:0F:B6:FE:05:23:E1:04:A7:0E:25:C6:6E:F2:DE:2D:E5:D1:25:6F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 31539D47209A374AECFB783D90D505704684CE28 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58487.roa Signing time: Wed 02 Apr 2025 10:00:00 +0000 ROA not before: Wed 02 Apr 2025 09:55:00 +0000 ROA not after: Wed 01 Apr 2026 10:00:00 +0000 asID: 58487 IP address blocks: 202.10.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:53:9d:47:20:9a:37:4a:ec:fb:78:3d:90:d5:05:70:46:84:ce:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Apr 2 09:55:00 2025 GMT Not After : Apr 1 10:00:00 2026 GMT Subject: CN=110FB6FE0523E104A70E25C66EF2DE2DE5D1256F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e9:03:a2:03:38:34:8a:55:d3:b8:95:5a:da: 0e:59:e9:60:ec:5a:c3:d9:0b:af:97:4f:4d:1c:78: 2d:1f:19:61:a2:99:12:f5:c9:18:36:7f:1b:79:a9: 65:8c:a1:18:0d:3e:20:14:d7:45:f6:b0:29:82:2c: d6:78:52:ad:35:14:88:e5:94:a6:7a:74:0a:36:10: ee:c5:f4:29:4f:e1:52:b4:3c:b3:cd:d9:3c:8c:0f: 36:ab:08:92:a5:36:2b:80:f2:50:74:19:08:52:ea: d8:c1:2b:b1:26:f0:57:2b:36:41:bd:01:bd:5b:26: 08:4a:7f:2a:c5:a3:4e:f9:db:9c:fd:75:ff:26:4e: 14:33:f8:80:c3:4a:5b:79:da:2e:7a:30:94:3c:80: 4c:0d:ae:21:e4:92:c3:49:0b:ff:a4:4b:85:cf:fd: 55:bb:b5:75:07:43:52:b0:af:ea:33:c9:5b:40:96: c8:74:5d:21:b8:e6:56:2d:59:bf:a8:56:8e:42:3a: 85:30:38:bd:e0:1e:cb:ad:26:c7:83:2f:12:62:09: 0e:a4:df:88:24:40:bc:b7:cc:58:26:d4:6c:43:ac: 5c:ed:ec:84:7a:46:25:88:e2:39:2d:c7:1f:b9:d8: d5:53:91:12:e2:28:8b:d2:2f:d7:0f:81:98:b1:38: 6d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:0F:B6:FE:05:23:E1:04:A7:0E:25:C6:6E:F2:DE:2D:E5:D1:25:6F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58487.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.48.0/23 Signature Algorithm: sha256WithRSAEncryption 27:36:89:e9:50:d3:19:29:7a:99:97:1a:35:b6:85:60:d3:b4: a4:38:69:f0:a2:b0:70:2b:36:7a:d0:f5:2a:95:b6:59:87:09: 4a:63:0d:0d:9a:3f:96:ea:0e:75:99:ec:73:07:a6:b9:22:16: 74:0f:1d:e6:e6:b6:fd:4f:95:31:32:d1:3f:d7:4f:f8:fd:26: 43:70:74:26:a9:82:0b:a7:78:0d:19:f6:77:17:75:60:9d:43: a5:31:81:25:db:02:e9:0f:b7:cc:1d:b0:31:7b:58:96:c9:98: dd:60:3a:14:4c:83:51:52:47:64:74:0a:4d:c5:23:43:f5:a7: eb:8d:78:39:60:0f:2b:70:9b:c9:c6:70:f4:03:3a:37:b7:6a: 5d:cb:2a:df:83:69:9a:1a:98:0c:b5:d1:03:06:33:e4:12:87: 0a:35:b9:48:2e:c5:7e:60:ef:25:e5:31:87:51:c5:8f:91:44: 26:e7:91:52:c1:77:f4:be:bb:84:75:b1:a6:da:13:dc:ab:b6: 45:19:da:a1:79:31:4c:cf:2e:cf:36:47:48:6c:cf:67:30:d9: cf:f9:3a:4f:5c:37:2a:4e:1a:f7:99:7a:5a:36:22:a1:4b:ad: 7d:bb:dd:0e:3b:7b:5d:f5:4d:a6:f9:7a:a2:75:c4:97:71:81: e8:b3:ed:60 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUMVOdRyCaN0rs+3g9kNUFcEaEzigwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQwMjA5NTUwMFoX DTI2MDQwMTEwMDAwMFowMzExMC8GA1UEAxMoMTEwRkI2RkUwNTIzRTEwNEE3MEUy NUM2NkVGMkRFMkRFNUQxMjU2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALjpA6IDODSKVdO4lVraDlnpYOxaw9kLr5dPTRx4LR8ZYaKZEvXJGDZ/G3mp ZYyhGA0+IBTXRfawKYIs1nhSrTUUiOWUpnp0CjYQ7sX0KU/hUrQ8s83ZPIwPNqsI kqU2K4DyUHQZCFLq2MErsSbwVys2Qb0BvVsmCEp/KsWjTvnbnP11/yZOFDP4gMNK W3naLnowlDyATA2uIeSSw0kL/6RLhc/9Vbu1dQdDUrCv6jPJW0CWyHRdIbjmVi1Z v6hWjkI6hTA4veAey60mx4MvEmIJDqTfiCRAvLfMWCbUbEOsXO3shHpGJYjiOS3H H7nY1VOREuIoi9Iv1w+BmLE4bdcCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBQRD7b+ BSPhBKcOJcZu8t4t5dElbzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU4NDg3LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBygowMA0GCSqGSIb3DQEBCwUAA4IBAQAnNonpUNMZKXqZlxo1toVg 07SkOGnworBwKzZ60PUqlbZZhwlKYw0Nmj+W6g51mexzB6a5IhZ0Dx3m5rb9T5Ux MtE/10/4/SZDcHQmqYILp3gNGfZ3F3VgnUOlMYEl2wLpD7fMHbAxe1iWyZjdYDoU TINRUkdkdApNxSND9afrjXg5YA8rcJvJxnD0Azo3t2pdyyrfg2maGpgMtdEDBjPk EocKNblILsV+YO8l5TGHUcWPkUQm55FSwXf0vruEdbGm2hPcq7ZFGdqheTFMzy7P NkdIbM9nMNnP+TpPXDcqThr3mXpaNiKhS619u90OO3td9U2m+XqidcSXcYHos+1g -----END CERTIFICATE-----Generated at Sat Apr 5 06:20:11 2025 by rpki-client