$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS63878.roa File: AS63878.roa (raw, json) Hash identifier: SEWqaM1qbYa/D3xXZPa0O/2+aMVJVWcJn2su/fdCDok= Subject key identifier: 04:53:E8:4A:BD:B3:25:AB:6D:C0:16:15:6E:3F:72:34:9C:B6:14:49 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7CBA14E73FC4A6318DE2CE5D0FFE705CBFAD4E91 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS63878.roa Signing time: Tue 10 Dec 2024 05:00:10 +0000 ROA not before: Tue 10 Dec 2024 04:55:10 +0000 ROA not after: Tue 09 Dec 2025 05:00:10 +0000 asID: 63878 IP address blocks: 2400:46e0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:ba:14:e7:3f:c4:a6:31:8d:e2:ce:5d:0f:fe:70:5c:bf:ad:4e:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:10 2024 GMT Not After : Dec 9 05:00:10 2025 GMT Subject: CN=0453E84ABDB325AB6DC016156E3F72349CB61449 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b3:6f:f1:34:d4:0b:13:ff:49:98:77:e0:19: 68:20:d9:1d:8b:a6:57:40:12:7a:ce:db:b1:46:a8: 8d:d3:3a:ae:ba:c0:f6:1a:a2:39:d3:da:98:9f:6c: ba:71:6c:8f:b1:be:2d:65:60:08:ed:8d:2a:8b:4e: a4:5d:a3:01:6d:6b:31:4c:37:2e:68:a1:03:6f:04: 52:7d:df:a1:b1:3e:10:60:96:40:99:6f:da:bd:91: 40:e9:df:b1:de:d4:4d:74:29:aa:be:5a:a6:c4:95: 5c:6a:b2:64:12:89:a6:81:7f:23:7c:f4:91:df:e0: 31:f6:4a:96:49:05:15:01:64:11:a9:f4:72:af:04: 5c:37:4b:9e:ff:47:5c:bf:89:22:24:b2:c3:04:7a: 10:c9:2e:c8:47:28:67:57:00:32:a7:2e:39:a0:6b: 5d:c4:53:b1:b6:de:ae:41:f0:75:a6:ee:74:11:3d: 99:df:2d:6a:ea:86:89:5f:d0:f0:9f:96:f2:04:6a: e7:3a:61:fd:58:d2:91:ba:7e:18:07:3a:75:1b:90: a7:cc:b3:5b:d1:8e:76:9c:1f:27:21:12:bc:d6:a0: d9:00:e2:82:f3:d3:e7:03:e0:73:6a:79:75:d2:fd: da:7f:a6:eb:7b:14:f7:bd:9c:62:5f:00:c5:6f:e7: 56:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:53:E8:4A:BD:B3:25:AB:6D:C0:16:15:6E:3F:72:34:9C:B6:14:49 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS63878.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46e0::/32 Signature Algorithm: sha256WithRSAEncryption 2d:19:f4:57:92:b6:d8:49:17:e9:9b:15:71:eb:95:90:9c:c4: 8a:7c:d6:24:3a:07:82:7f:33:be:e2:12:e1:77:83:46:aa:d7: 2d:3d:ca:5c:d8:b0:14:b7:e8:a7:04:7e:49:34:3a:89:8a:f2: 73:4c:c0:ed:c2:97:64:00:b9:1b:f9:aa:69:62:e2:9e:8d:31: 35:ba:48:3a:73:e6:4a:be:67:d4:d1:24:fc:06:b0:dd:4c:8a: 80:c6:6a:41:13:95:30:99:ce:9a:81:0d:84:eb:91:c7:f6:7d: e3:a4:10:a2:0a:09:99:b6:2b:cd:22:87:93:da:ac:f7:ae:b1: 52:7b:ca:3d:2e:08:41:64:71:4b:92:9a:41:86:3d:57:f3:7a: 16:59:d0:6d:44:ea:d2:12:02:03:18:6e:f5:bc:0c:08:56:4d: 2d:c1:10:99:a8:0e:fb:c5:bc:24:d7:37:92:6c:71:72:aa:38: 48:12:59:e1:96:f9:25:1e:2a:1e:6b:b0:99:ca:41:4a:ad:9e: 6c:06:e3:0d:f2:3e:e8:a1:36:d4:04:70:14:b4:92:5f:f3:3a: f5:82:68:16:0c:b7:30:67:53:0d:88:c4:f2:e6:99:a8:dc:b8: a1:d5:b6:7e:5d:84:a7:78:de:d5:ca:09:b9:c7:61:8a:a3:15: 41:81:d9:00 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUfLoU5z/EpjGN4s5dD/5wXL+tTpEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxMFoX DTI1MTIwOTA1MDAxMFowMzExMC8GA1UEAxMoMDQ1M0U4NEFCREIzMjVBQjZEQzAx NjE1NkUzRjcyMzQ5Q0I2MTQ0OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKSzb/E01AsT/0mYd+AZaCDZHYumV0ASes7bsUaojdM6rrrA9hqiOdPamJ9s unFsj7G+LWVgCO2NKotOpF2jAW1rMUw3LmihA28EUn3fobE+EGCWQJlv2r2RQOnf sd7UTXQpqr5apsSVXGqyZBKJpoF/I3z0kd/gMfZKlkkFFQFkEan0cq8EXDdLnv9H XL+JIiSywwR6EMkuyEcoZ1cAMqcuOaBrXcRTsbberkHwdabudBE9md8tauqGiV/Q 8J+W8gRq5zph/VjSkbp+GAc6dRuQp8yzW9GOdpwfJyESvNag2QDigvPT5wPgc2p5 ddL92n+m63sU972cYl8AxW/nVvcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQEU+hK vbMlq23AFhVuP3I0nLYUSTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzYzODc4LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJABG4DANBgkqhkiG9w0BAQsFAAOCAQEALRn0V5K22EkX6ZsVceuV kJzEinzWJDoHgn8zvuIS4XeDRqrXLT3KXNiwFLfopwR+STQ6iYryc0zA7cKXZAC5 G/mqaWLino0xNbpIOnPmSr5n1NEk/Aaw3UyKgMZqQROVMJnOmoENhOuRx/Z946QQ ogoJmbYrzSKHk9qs966xUnvKPS4IQWRxS5KaQYY9V/N6FlnQbUTq0hICAxhu9bwM CFZNLcEQmagO+8W8JNc3kmxxcqo4SBJZ4Zb5JR4qHmuwmcpBSq2ebAbjDfI+6KE2 1ARwFLSSX/M69YJoFgy3MGdTDYjE8uaZqNy4odW2fl2Ep3je1coJucdhiqMVQYHZ AA== -----END CERTIFICATE-----Generated at Sat Apr 5 06:24:39 2025 by rpki-client