$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58487.roa File: AS58487.roa (raw, json) Hash identifier: G2BYn7ctriijBi6Xfp3xUMqwt/hH38pDDL57We7MYhk= Subject key identifier: 6D:2D:37:62:0E:E7:D7:9B:56:4B:4D:05:EC:17:D0:DE:C8:C4:6C:63 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 57D7414F8EABCD18B55B22D169A1542D71F6E247 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58487.roa Signing time: Wed 01 May 2024 10:00:00 +0000 ROA not before: Wed 01 May 2024 09:55:00 +0000 ROA not after: Wed 30 Apr 2025 10:00:00 +0000 asID: 58487 IP address blocks: 202.10.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:d7:41:4f:8e:ab:cd:18:b5:5b:22:d1:69:a1:54:2d:71:f6:e2:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 1 09:55:00 2024 GMT Not After : Apr 30 10:00:00 2025 GMT Subject: CN=6D2D37620EE7D79B564B4D05EC17D0DEC8C46C63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a9:11:8b:03:ea:41:e8:66:4f:75:3b:66:23: e1:6c:49:86:e7:3b:59:41:55:a7:70:28:42:88:24: 70:4f:4e:8c:ca:a0:56:d1:67:42:5a:3d:6a:e4:28: ce:b2:00:bf:1a:5b:d9:70:c0:8d:0c:35:95:08:6d: 28:e1:a4:69:84:81:cd:35:d1:6d:44:29:f8:16:5f: 58:72:53:8a:d1:37:e2:22:09:5b:a7:4c:99:b3:76: c5:bb:ac:ef:52:8e:52:be:09:90:bd:87:6f:82:e6: ff:4d:99:14:9b:e4:fb:be:a8:51:0b:35:ea:69:17: 6c:58:b2:c6:b0:aa:b4:d5:90:20:1e:fc:d2:44:f5: 34:32:10:11:be:c8:ed:b9:57:6b:80:60:cc:03:5e: 0c:1e:b0:a2:e8:f4:6e:78:08:e2:19:d9:a8:34:e8: 21:67:bc:0b:be:68:94:de:60:01:3d:3c:5e:95:78: 39:c7:27:93:da:b3:18:07:03:ee:f7:b4:ee:38:69: 02:30:72:36:2e:a2:e6:cb:0a:85:db:c6:89:07:ce: e6:fc:9e:b0:d5:e9:bc:18:7c:a7:13:a8:75:52:5b: 3c:22:8e:44:e1:06:ec:b6:71:08:b9:dc:43:85:1b: ee:c3:ae:09:cb:85:26:b2:34:37:46:d1:17:99:5f: 00:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:2D:37:62:0E:E7:D7:9B:56:4B:4D:05:EC:17:D0:DE:C8:C4:6C:63 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58487.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.48.0/23 Signature Algorithm: sha256WithRSAEncryption 82:2e:a3:47:96:67:18:c7:3e:e7:7f:b7:09:49:e2:c2:c1:e7: 67:2c:7b:f2:88:c5:43:c9:90:c0:98:4d:c9:cc:e9:b3:00:b2: aa:66:30:29:4c:01:d2:4f:ef:e8:16:17:8e:6e:24:1e:9d:66: ff:4f:ed:c7:c5:e2:44:6b:2e:e3:69:0d:b4:d3:f6:2a:e4:d4: 26:d8:a6:91:fb:9b:9f:2f:44:28:4b:48:f2:16:f6:7c:f3:3a: 5d:36:3e:82:fb:be:23:b1:ad:74:ca:87:9c:39:6b:e4:14:6d: c5:56:2c:1e:4d:cc:72:41:0a:66:73:40:d2:f3:2d:ca:d9:0a: 64:73:65:9d:a2:59:c3:5e:99:cf:df:cb:88:12:c9:e7:2f:50: 68:00:58:33:a7:d0:b9:ec:f9:95:0b:3d:82:bd:ea:e8:a2:40: e7:7e:3c:d0:89:82:2c:c0:0f:36:a3:5a:3a:4f:0a:86:6a:fe: 90:56:ba:2b:c5:d8:90:bc:ae:a3:70:72:3e:44:7f:43:dd:0b: 7f:2f:e9:c9:1d:6a:e8:23:1b:41:2c:98:dd:05:de:dc:82:7a: 9c:42:c7:21:70:8e:a5:9a:70:68:0a:7f:71:33:02:d2:cf:05: 94:f1:aa:0e:59:7d:c8:ba:cf:ed:b3:f0:7b:b3:97:20:62:94: a9:3d:12:05 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUV9dBT46rzRi1WyLRaaFULXH24kcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUwMTA5NTUwMFoX DTI1MDQzMDEwMDAwMFowMzExMC8GA1UEAxMoNkQyRDM3NjIwRUU3RDc5QjU2NEI0 RDA1RUMxN0QwREVDOEM0NkM2MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMCpEYsD6kHoZk91O2Yj4WxJhuc7WUFVp3AoQogkcE9OjMqgVtFnQlo9auQo zrIAvxpb2XDAjQw1lQhtKOGkaYSBzTXRbUQp+BZfWHJTitE34iIJW6dMmbN2xbus 71KOUr4JkL2Hb4Lm/02ZFJvk+76oUQs16mkXbFiyxrCqtNWQIB780kT1NDIQEb7I 7blXa4BgzANeDB6wouj0bngI4hnZqDToIWe8C75olN5gAT08XpV4Occnk9qzGAcD 7ve07jhpAjByNi6i5ssKhdvGiQfO5vyesNXpvBh8pxOodVJbPCKOROEG7LZxCLnc Q4Ub7sOuCcuFJrI0N0bRF5lfAAsCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBRtLTdi DufXm1ZLTQXsF9DeyMRsYzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU4NDg3LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBygowMA0GCSqGSIb3DQEBCwUAA4IBAQCCLqNHlmcYxz7nf7cJSeLC wednLHvyiMVDyZDAmE3JzOmzALKqZjApTAHST+/oFheObiQenWb/T+3HxeJEay7j aQ200/Yq5NQm2KaR+5ufL0QoS0jyFvZ88zpdNj6C+74jsa10yoecOWvkFG3FViwe TcxyQQpmc0DS8y3K2Qpkc2WdolnDXpnP38uIEsnnL1BoAFgzp9C57PmVCz2Cvero okDnfjzQiYIswA82o1o6TwqGav6QVrorxdiQvK6jcHI+RH9D3Qt/L+nJHWroIxtB LJjdBd7cgnqcQschcI6lmnBoCn9xMwLSzwWU8aoOWX3Ius/ts/B7s5cgYpSpPRIF -----END CERTIFICATE-----Generated at Sun May 5 00:13:53 2024 by rpki-client on console-ams.rpki-client.org