$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58495.roa File: AS58495.roa (raw, json) Hash identifier: FmRaFTotKdLVk7ZqGuD+BvIABsb6loyGnA9NkhfEEIo= Subject key identifier: 2A:19:03:BB:48:8F:FD:0C:93:91:19:68:35:F3:1E:8D:58:93:13:94 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 475BDEF91155374CC99E83E9F7D15398CABB4CD0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58495.roa Signing time: Tue 09 Jan 2024 04:00:30 +0000 ROA not before: Tue 09 Jan 2024 03:55:30 +0000 ROA not after: Tue 07 Jan 2025 04:00:30 +0000 asID: 58495 IP address blocks: 103.115.28.0/22 maxlen: 24 103.121.196.0/22 maxlen: 24 103.151.218.0/23 maxlen: 24 103.151.220.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:5b:de:f9:11:55:37:4c:c9:9e:83:e9:f7:d1:53:98:ca:bb:4c:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:30 2024 GMT Not After : Jan 7 04:00:30 2025 GMT Subject: CN=2A1903BB488FFD0C9391196835F31E8D58931394 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6f:1c:d2:47:e3:25:28:9b:e4:3d:e6:01:be: 66:5f:0c:58:ce:8a:b7:5f:14:5b:e0:02:02:df:aa: c9:97:bc:6c:ae:ca:db:46:fc:ac:ad:fe:87:c5:af: 9b:12:7a:fc:8a:02:bd:24:63:00:3c:f4:06:e9:0f: f1:e9:f4:9a:73:58:2b:9e:b6:9f:d6:7f:86:d9:43: 38:a6:07:56:a5:7d:0a:08:c5:ea:a8:91:ef:33:01: f1:bc:a3:f4:d6:d7:fb:c4:3a:bb:df:9b:86:18:2c: dc:7a:58:ce:38:0b:21:b5:7d:10:48:fc:13:bd:f9: e6:ad:1f:c4:2e:1b:c9:4c:59:60:a1:83:90:dc:f5: 39:2b:46:d0:c4:f7:37:a1:61:37:6c:f6:16:57:e7: 87:ec:e7:01:41:bf:5e:7f:c5:34:67:bd:68:f3:49: 95:de:08:00:1a:e0:fd:a5:14:3b:2e:3c:6a:f4:bb: ed:9f:87:94:35:65:f0:96:a2:5b:a3:45:e6:db:80: 94:7c:93:7b:f2:26:16:f8:7a:c3:26:13:4e:df:87: 4d:d1:16:be:14:db:37:bc:be:60:da:9a:32:ea:b7: 6b:90:35:6c:52:93:9e:c0:08:f5:bf:51:6a:f3:97: b1:1f:9c:49:da:ae:8a:d0:e1:ff:f7:cb:a2:28:c0: ef:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:19:03:BB:48:8F:FD:0C:93:91:19:68:35:F3:1E:8D:58:93:13:94 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58495.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.115.28.0/22 103.121.196.0/22 103.151.218.0-103.151.221.255 Signature Algorithm: sha256WithRSAEncryption 01:c0:30:b9:08:62:84:db:46:f2:98:cf:26:c0:7b:26:5d:23: d3:72:4c:93:06:86:29:7f:c3:a9:f0:fa:22:2a:02:fc:58:5b: 8b:99:ca:f9:b4:00:54:35:be:de:5a:51:bd:90:64:71:66:bb: 6d:95:f3:0e:d1:d4:5e:c9:c7:71:4e:6d:3b:93:11:e3:a4:80: 15:d8:6f:35:cc:1b:05:9b:5a:2b:84:bc:45:6c:e9:c1:e7:9e: 7c:d9:be:37:c2:b8:a8:0c:44:f1:99:62:5f:66:c1:28:c7:85: 58:25:e5:2d:80:44:62:c6:89:5f:34:0a:da:ef:ee:cb:c6:a4: 45:da:89:5d:c7:e8:d0:53:47:93:79:ef:2b:62:34:fc:b8:df: f2:86:1a:54:9c:cc:6b:0e:5f:a8:59:c7:bc:39:f9:3f:95:fa: 5e:ef:76:94:fb:7d:b6:3d:ca:a3:ea:ab:ca:0e:5b:c1:45:2f: f2:b9:3f:a9:f6:3f:56:1e:3c:ae:b8:f1:93:32:27:de:98:d4: 03:4f:23:d4:5a:a4:e1:19:2e:f8:a3:c8:da:b4:45:9e:30:6f: 0e:82:86:db:91:ed:ab:18:be:91:77:59:e0:2a:92:e9:e2:19: 24:3c:b2:2d:03:97:24:23:3e:8f:c9:c6:75:d1:8a:9b:eb:68: 8c:a3:91:12 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgIUR1ve+RFVN0zJnoPp99FTmMq7TNAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUzMFoX DTI1MDEwNzA0MDAzMFowMzExMC8GA1UEAxMoMkExOTAzQkI0ODhGRkQwQzkzOTEx OTY4MzVGMzFFOEQ1ODkzMTM5NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKZvHNJH4yUom+Q95gG+Zl8MWM6Kt18UW+ACAt+qyZe8bK7K20b8rK3+h8Wv mxJ6/IoCvSRjADz0BukP8en0mnNYK562n9Z/htlDOKYHVqV9CgjF6qiR7zMB8byj 9NbX+8Q6u9+bhhgs3HpYzjgLIbV9EEj8E7355q0fxC4byUxZYKGDkNz1OStG0MT3 N6FhN2z2Flfnh+znAUG/Xn/FNGe9aPNJld4IABrg/aUUOy48avS77Z+HlDVl8Jai W6NF5tuAlHyTe/ImFvh6wyYTTt+HTdEWvhTbN7y+YNqaMuq3a5A1bFKTnsAI9b9R avOXsR+cSdquitDh//fLoijA71ECAwEAAaOCAeMwggHfMB0GA1UdDgQWBBQqGQO7 SI/9DJORGWg18x6NWJMTlDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU4NDk1LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaAwQCZ3McAwQCZ3nEMAwDBAFnl9oDBAFnl9wwDQYJKoZIhvcNAQELBQAD ggEBAAHAMLkIYoTbRvKYzybAeyZdI9NyTJMGhil/w6nw+iIqAvxYW4uZyvm0AFQ1 vt5aUb2QZHFmu22V8w7R1F7Jx3FObTuTEeOkgBXYbzXMGwWbWiuEvEVs6cHnnnzZ vjfCuKgMRPGZYl9mwSjHhVgl5S2ARGLGiV80Ctrv7svGpEXaiV3H6NBTR5N57yti NPy43/KGGlSczGsOX6hZx7w5+T+V+l7vdpT7fbY9yqPqq8oOW8FFL/K5P6n2P1Ye PK648ZMyJ96Y1ANPI9RapOEZLvijyNq0RZ4wbw6ChtuR7asYvpF3WeAqkuniGSQ8 si0DlyQjPo/JxnXRipvraIyjkRI= -----END CERTIFICATE-----Generated at Sat Apr 27 21:40:22 2024 by rpki-client on console-ams.rpki-client.org