$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58816.roa File: AS58816.roa (raw, json) Hash identifier: 1n4t7Yn0PFJd/Nm01P5gujR22UqmuqgzHbrR73sH0I4= Subject key identifier: F9:71:81:AA:E8:12:49:B2:50:95:CF:96:DD:41:E7:39:06:36:A0:7A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 08E000C276E804A06C01ED6E0344BF3350A8AC36 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58816.roa Signing time: Tue 30 Apr 2024 03:00:00 +0000 ROA not before: Tue 30 Apr 2024 02:55:00 +0000 ROA not after: Tue 29 Apr 2025 03:00:00 +0000 asID: 58816 IP address blocks: 124.158.134.0/23 maxlen: 24 124.158.142.0/23 maxlen: 24 202.181.80.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:e0:00:c2:76:e8:04:a0:6c:01:ed:6e:03:44:bf:33:50:a8:ac:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 30 02:55:00 2024 GMT Not After : Apr 29 03:00:00 2025 GMT Subject: CN=F97181AAE81249B25095CF96DD41E7390636A07A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:5e:24:e2:c6:8b:74:e5:75:2f:94:43:51:b6: 09:04:81:ff:b4:c4:f3:2b:cf:3e:27:40:d2:7f:38: 06:16:75:0f:70:c0:6a:a4:c3:15:b2:6b:1a:7b:7f: b1:42:62:51:58:12:44:4e:dc:88:db:8e:48:38:65: 33:99:04:1d:80:24:27:fb:d2:20:61:64:ac:09:05: 45:24:d7:7d:6d:ee:45:49:61:9b:24:62:8f:1b:c7: 4a:37:a3:f8:23:5c:86:92:ca:32:55:59:dd:2f:dd: 62:85:31:84:c1:18:58:d1:95:d0:b4:fa:0a:d3:db: 08:4b:9f:79:2b:e7:6a:24:b9:71:1d:a4:7f:53:50: 5f:84:69:40:84:0d:56:a3:da:cd:da:58:f1:a5:8c: 2f:47:cf:33:83:d5:d3:23:81:42:1a:25:e4:49:63: d7:43:3a:bc:30:27:48:c1:d7:05:fe:98:98:0c:72: a6:b9:03:2a:dd:ad:86:7a:13:7b:9b:ee:9b:75:03: 6a:09:d0:c1:c8:cd:55:79:b5:c9:c8:dd:4e:3f:86: dd:81:63:a1:3a:c7:b4:26:d8:12:1e:0a:66:d2:32: b1:c6:60:96:3d:8c:72:50:a1:1b:96:73:e6:26:78: 7f:9d:30:f2:ff:92:13:b1:bf:5c:09:2e:69:05:ae: 84:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:71:81:AA:E8:12:49:B2:50:95:CF:96:DD:41:E7:39:06:36:A0:7A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58816.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.158.134.0/23 124.158.142.0/23 202.181.80.0/21 Signature Algorithm: sha256WithRSAEncryption 42:dc:e9:39:f8:1a:54:ff:cc:98:36:bc:dc:94:cc:a7:6c:7a: b9:7b:f8:f2:05:5b:bd:25:24:f1:39:9d:9c:2b:4c:9b:92:e1: 8a:f4:d3:53:70:fc:79:54:50:b3:40:3d:c1:95:98:2d:28:d5: e9:31:59:16:4e:fc:8d:bf:17:00:ab:21:fa:42:db:3e:bf:83: 4c:2a:22:00:31:d0:64:9e:58:60:99:55:2b:aa:a8:7a:b8:93: d2:9b:2d:f0:c5:3c:40:9d:20:92:1a:ab:45:88:a5:a7:3f:e9: 2e:1f:07:3b:81:f2:93:a6:91:d6:6f:3f:03:da:63:01:cc:47: 36:f3:29:da:5e:17:64:6e:f2:e9:8b:5c:ed:20:c0:3a:4f:40: 90:c2:07:b3:2c:e9:6a:aa:1a:d2:cb:5e:2e:0b:60:19:f9:f6: 49:09:f8:05:ef:d6:13:9a:60:cd:fd:01:3e:85:29:94:ae:13: 64:59:1b:a5:d9:bd:fe:09:1c:94:68:f5:04:53:f7:49:51:84: 1e:12:d2:a1:3e:23:43:82:6e:93:39:1e:2d:1e:cf:ea:33:d6: ba:b8:d5:09:77:1e:3e:54:2c:56:ec:ad:6e:68:a8:26:d6:0c: ac:fa:9f:37:48:b2:73:9e:de:c1:a2:fa:8d:12:71:e1:fc:a8: 8e:8b:77:99 -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUCOAAwnboBKBsAe1uA0S/M1CorDYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQzMDAyNTUwMFoX DTI1MDQyOTAzMDAwMFowMzExMC8GA1UEAxMoRjk3MTgxQUFFODEyNDlCMjUwOTVD Rjk2REQ0MUU3MzkwNjM2QTA3QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMxeJOLGi3TldS+UQ1G2CQSB/7TE8yvPPidA0n84BhZ1D3DAaqTDFbJrGnt/ sUJiUVgSRE7ciNuOSDhlM5kEHYAkJ/vSIGFkrAkFRSTXfW3uRUlhmyRijxvHSjej +CNchpLKMlVZ3S/dYoUxhMEYWNGV0LT6CtPbCEufeSvnaiS5cR2kf1NQX4RpQIQN VqPazdpY8aWML0fPM4PV0yOBQhol5Elj10M6vDAnSMHXBf6YmAxyprkDKt2thnoT e5vum3UDagnQwcjNVXm1ycjdTj+G3YFjoTrHtCbYEh4KZtIyscZglj2MclChG5Zz 5iZ4f50w8v+SE7G/XAkuaQWuhPECAwEAAaOCAdswggHXMB0GA1UdDgQWBBT5cYGq 6BJJslCVz5bdQec5BjagejAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU4ODE2LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQBfJ6GAwQBfJ6OAwQDyrVQMA0GCSqGSIb3DQEBCwUAA4IBAQBC3Ok5 +BpU/8yYNrzclMynbHq5e/jyBVu9JSTxOZ2cK0ybkuGK9NNTcPx5VFCzQD3BlZgt KNXpMVkWTvyNvxcAqyH6Qts+v4NMKiIAMdBknlhgmVUrqqh6uJPSmy3wxTxAnSCS GqtFiKWnP+kuHwc7gfKTppHWbz8D2mMBzEc28ynaXhdkbvLpi1ztIMA6T0CQwgez LOlqqhrSy14uC2AZ+fZJCfgF79YTmmDN/QE+hSmUrhNkWRul2b3+CRyUaPUEU/dJ UYQeEtKhPiNDgm6TOR4tHs/qM9a6uNUJdx4+VCxW7K1uaKgm1gys+p83SLJznt7B ovqNEnHh/KiOi3eZ -----END CERTIFICATE-----Generated at Wed May 8 09:50:41 2024 by rpki-client on console-fra.rpki-client.org