$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58822.roa File: AS58822.roa (raw, json) Hash identifier: Q72MW4J7JJ8EpUo5JvQCT3trZN/Gya5+gw1OhJZNJXE= Subject key identifier: 5E:9E:FD:81:5D:D0:BC:AB:0E:B1:92:FB:AD:38:66:82:EB:BA:94:DA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1FF664CF546D863906663A2E6EAC404268E7649D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58822.roa Signing time: Tue 09 Jan 2024 04:00:26 +0000 ROA not before: Tue 09 Jan 2024 03:55:26 +0000 ROA not after: Tue 07 Jan 2025 04:00:26 +0000 asID: 58822 IP address blocks: 103.242.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:f6:64:cf:54:6d:86:39:06:66:3a:2e:6e:ac:40:42:68:e7:64:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:26 2024 GMT Not After : Jan 7 04:00:26 2025 GMT Subject: CN=5E9EFD815DD0BCAB0EB192FBAD386682EBBA94DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:08:9e:e2:ae:73:58:32:3e:07:e9:18:39:38: f0:aa:bf:33:dc:f2:fa:c4:2a:6f:d2:e5:43:02:96: e0:c1:cc:ca:4f:26:a8:32:07:d5:1e:a4:7c:fd:46: 06:92:f5:ae:18:05:47:00:73:e9:28:fd:be:82:b1: 5c:89:54:67:93:37:a4:c0:67:09:3d:85:37:11:43: 78:e3:07:49:69:a4:b0:da:1a:ef:00:1b:da:e8:8c: 54:bd:6b:23:db:a7:9e:2d:f8:00:79:17:ad:02:7f: c8:0a:f4:19:cc:83:1a:34:f8:a5:de:5e:61:80:9e: 32:ff:9f:f1:4c:07:fb:ce:21:c2:a9:c2:9e:1d:47: b6:05:81:0d:fd:15:93:c4:15:66:96:74:de:f1:a7: 76:ee:41:12:d0:0b:b3:ca:df:1d:2f:0b:57:ff:bc: 07:fd:5d:87:0e:4d:f9:90:3b:a3:4d:05:db:b2:ed: 18:21:12:d9:e8:2e:9a:c0:27:96:b4:54:1e:73:6d: 31:43:6b:14:5d:66:1b:5d:0f:a5:bd:20:09:41:80: ed:06:a8:15:3e:44:d3:e8:d1:89:af:79:06:82:2d: 7a:21:e1:98:b9:eb:f7:5b:7b:38:d2:e2:ec:93:74: 1a:68:90:05:89:13:cf:51:2d:b7:f0:d6:d4:03:5e: 59:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:9E:FD:81:5D:D0:BC:AB:0E:B1:92:FB:AD:38:66:82:EB:BA:94:DA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58822.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.124.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:67:e1:af:1b:72:2b:04:a6:b8:83:ef:c4:2e:3a:c1:6f:ce: f3:35:0b:67:63:38:9e:9d:2f:2f:49:f5:be:e8:4b:38:38:f0: ac:57:86:9d:bc:ec:1e:e6:0d:22:cb:33:89:51:3e:26:9b:82: 74:ad:f5:3e:6f:40:0a:2b:d3:ef:db:80:02:51:cf:7a:0f:e9: c3:41:38:b9:61:09:a6:dc:38:a6:b4:ef:1b:2b:43:3f:c9:07: a4:4f:8d:cd:d0:76:64:81:c1:42:e3:24:69:b2:d2:71:6b:99: af:b7:60:2f:a4:12:89:21:f6:83:75:39:77:32:52:43:7f:72: be:cb:83:ae:0c:4b:cc:3b:5f:cd:2a:7a:3c:4f:f9:ee:18:c9: 84:3b:51:f5:4a:8c:b0:c7:03:77:5b:dc:94:ce:06:76:3e:22: a9:8c:f6:48:d2:d8:89:bb:80:1c:4c:32:ca:b3:b1:58:d3:0e: 6f:c1:c7:aa:80:0d:fd:f4:0c:f8:aa:6d:63:3b:51:da:93:c9: d8:ba:ec:9b:b5:23:fe:3e:63:ce:20:89:23:58:15:98:ea:01: 24:05:dc:83:1e:8e:6f:01:9e:b5:1f:66:07:06:e3:85:fe:aa: 98:cc:91:31:62:b9:33:5f:09:c7:20:28:9a:9e:e3:bd:c4:f5: a6:26:3a:3d -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUH/Zkz1RthjkGZjoubqxAQmjnZJ0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUyNloX DTI1MDEwNzA0MDAyNlowMzExMC8GA1UEAxMoNUU5RUZEODE1REQwQkNBQjBFQjE5 MkZCQUQzODY2ODJFQkJBOTREQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOMInuKuc1gyPgfpGDk48Kq/M9zy+sQqb9LlQwKW4MHMyk8mqDIH1R6kfP1G BpL1rhgFRwBz6Sj9voKxXIlUZ5M3pMBnCT2FNxFDeOMHSWmksNoa7wAb2uiMVL1r I9unni34AHkXrQJ/yAr0GcyDGjT4pd5eYYCeMv+f8UwH+84hwqnCnh1HtgWBDf0V k8QVZpZ03vGndu5BEtALs8rfHS8LV/+8B/1dhw5N+ZA7o00F27LtGCES2egumsAn lrRUHnNtMUNrFF1mG10Ppb0gCUGA7QaoFT5E0+jRia95BoIteiHhmLnr91t7ONLi 7JN0GmiQBYkTz1Ett/DW1ANeWWcCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBRenv2B XdC8qw6xkvutOGaC67qU2jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU4ODIyLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ/J8MA0GCSqGSIb3DQEBCwUAA4IBAQAaZ+GvG3IrBKa4g+/ELjrB b87zNQtnYzienS8vSfW+6Es4OPCsV4advOwe5g0iyzOJUT4mm4J0rfU+b0AKK9Pv 24ACUc96D+nDQTi5YQmm3DimtO8bK0M/yQekT43N0HZkgcFC4yRpstJxa5mvt2Av pBKJIfaDdTl3MlJDf3K+y4OuDEvMO1/NKno8T/nuGMmEO1H1SoywxwN3W9yUzgZ2 PiKpjPZI0tiJu4AcTDLKs7FY0w5vwceqgA399Az4qm1jO1Hak8nYuuybtSP+PmPO IIkjWBWY6gEkBdyDHo5vAZ61H2YHBuOF/qqYzJExYrkzXwnHICianuO9xPWmJjo9 -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:50 2024 by rpki-client on console-ams.rpki-client.org