$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58495.roa File: AS58495.roa (raw, json) Hash identifier: vydJoBQ6X+xC8Ljc3SMVP4T6pXDkaqW6EDVvenxoLUI= Subject key identifier: F9:EF:61:C6:D7:AA:35:02:29:AC:21:C7:66:A7:A1:FC:E2:CE:76:71 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 204907AFB1874F689CC31DA7E61FFD3F733D5055 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58495.roa Signing time: Tue 10 Dec 2024 05:00:27 +0000 ROA not before: Tue 10 Dec 2024 04:55:27 +0000 ROA not after: Tue 09 Dec 2025 05:00:27 +0000 asID: 58495 IP address blocks: 103.115.28.0/22 maxlen: 24 103.121.196.0/22 maxlen: 24 103.151.218.0/23 maxlen: 24 103.151.220.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:49:07:af:b1:87:4f:68:9c:c3:1d:a7:e6:1f:fd:3f:73:3d:50:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:27 2024 GMT Not After : Dec 9 05:00:27 2025 GMT Subject: CN=F9EF61C6D7AA350229AC21C766A7A1FCE2CE7671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:92:ff:05:cd:e0:51:38:98:b2:6e:3a:9c:c3: 2b:5f:a6:d1:3a:fd:07:48:71:90:84:19:cd:39:d0: 52:57:17:e0:b4:7d:9e:12:96:82:dd:b2:b8:3a:23: 24:85:61:77:2a:e6:ad:70:43:32:21:cf:43:a2:81: 01:96:b6:ee:b3:64:ab:39:40:37:d3:8a:0a:62:d5: d2:8c:6a:77:a1:9f:cd:40:f5:8d:f7:4f:59:00:cb: 43:42:77:1a:13:9c:86:27:9f:49:5d:ac:c5:0f:13: 56:8d:95:c3:f7:9c:a4:3c:3c:23:76:e5:ff:8b:11: 9b:41:5a:9e:df:80:a3:e4:b6:17:a9:4e:91:1c:db: d3:ca:9f:4a:c2:4b:7b:42:0e:58:a2:b5:20:96:26: f0:44:01:5b:93:16:91:52:81:1d:04:4f:13:fe:b5: 96:8b:22:88:d6:9e:74:4e:c4:4d:a3:a2:8a:51:32: 99:b1:de:2e:17:2e:3a:1e:6d:a4:71:4c:92:a3:0c: 2f:a5:2c:7c:1a:f4:79:c4:b8:63:25:64:35:4c:6d: fb:cb:31:51:a4:f3:44:51:ad:5c:83:0e:f5:03:6f: 0c:0b:81:a3:5f:21:c2:66:73:05:4c:a6:bb:57:83: 4c:5a:ee:b0:99:9c:08:6c:11:0f:88:2e:3d:a6:4f: 6c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:EF:61:C6:D7:AA:35:02:29:AC:21:C7:66:A7:A1:FC:E2:CE:76:71 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58495.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.115.28.0/22 103.121.196.0/22 103.151.218.0-103.151.221.255 Signature Algorithm: sha256WithRSAEncryption 0b:f2:77:c3:4c:ca:1d:15:c1:f6:1d:c7:63:f0:80:40:2a:1f: f4:bf:90:ff:88:4d:87:81:40:b9:cc:29:b9:e0:a5:54:f2:bf: 8a:ec:d6:66:0e:6a:c3:6f:0a:9a:e2:a6:9b:0c:de:10:19:13: f5:64:62:cd:fc:24:21:e0:bb:86:21:75:75:ba:bc:02:c5:79: d1:2e:0a:93:51:75:ec:84:e5:28:7b:bf:de:44:5b:83:03:ce: 79:72:25:cc:6d:cb:17:2a:3b:03:aa:9d:1f:8c:ea:15:79:2d: c4:fe:02:6f:1e:6f:10:6f:d7:8b:b2:c8:78:13:05:8c:dd:e1: 34:e4:38:0e:2d:85:8c:c0:47:13:fb:34:2a:b7:7a:59:39:f1: 34:87:d3:17:ff:17:11:59:55:23:4d:be:00:e5:c7:56:81:91: 70:b3:22:ee:ba:04:08:c6:37:dc:42:60:cd:16:08:14:1f:81: 45:82:93:44:cd:fe:50:d0:8d:c9:73:84:e0:b2:23:2c:0c:cc: fb:29:61:a4:d4:df:ff:3a:7a:d6:e8:79:4a:b0:45:0b:f7:f5: b7:ed:a9:d8:e7:14:29:5b:d8:c0:bb:be:8d:34:1a:cc:7b:43: 4c:2c:95:13:b4:33:f6:ad:07:f5:a0:36:88:d5:d4:76:e9:7c: 26:85:89:0b -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgIUIEkHr7GHT2icwx2n5h/9P3M9UFUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUyN1oX DTI1MTIwOTA1MDAyN1owMzExMC8GA1UEAxMoRjlFRjYxQzZEN0FBMzUwMjI5QUMy MUM3NjZBN0ExRkNFMkNFNzY3MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMmS/wXN4FE4mLJuOpzDK1+m0Tr9B0hxkIQZzTnQUlcX4LR9nhKWgt2yuDoj JIVhdyrmrXBDMiHPQ6KBAZa27rNkqzlAN9OKCmLV0oxqd6GfzUD1jfdPWQDLQ0J3 GhOchiefSV2sxQ8TVo2Vw/ecpDw8I3bl/4sRm0Fant+Ao+S2F6lOkRzb08qfSsJL e0IOWKK1IJYm8EQBW5MWkVKBHQRPE/61losiiNaedE7ETaOiilEymbHeLhcuOh5t pHFMkqMML6UsfBr0ecS4YyVkNUxt+8sxUaTzRFGtXIMO9QNvDAuBo18hwmZzBUym u1eDTFrusJmcCGwRD4guPaZPbC8CAwEAAaOCAeMwggHfMB0GA1UdDgQWBBT572HG 16o1AimsIcdmp6H84s52cTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU4NDk1LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaAwQCZ3McAwQCZ3nEMAwDBAFnl9oDBAFnl9wwDQYJKoZIhvcNAQELBQAD ggEBAAvyd8NMyh0VwfYdx2PwgEAqH/S/kP+ITYeBQLnMKbngpVTyv4rs1mYOasNv CprippsM3hAZE/VkYs38JCHgu4YhdXW6vALFedEuCpNRdeyE5Sh7v95EW4MDznly JcxtyxcqOwOqnR+M6hV5LcT+Am8ebxBv14uyyHgTBYzd4TTkOA4thYzARxP7NCq3 elk58TSH0xf/FxFZVSNNvgDlx1aBkXCzIu66BAjGN9xCYM0WCBQfgUWCk0TN/lDQ jclzhOCyIywMzPspYaTU3/86etboeUqwRQv39bftqdjnFClb2MC7vo00Gsx7Q0ws lRO0M/atB/WgNojV1HbpfCaFiQs= -----END CERTIFICATE-----Generated at Sat Apr 5 06:23:50 2025 by rpki-client