$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS63880.roa File: AS63880.roa (raw, json) Hash identifier: Juvv5oXmx+syGO+yU1j4+VSQABzAqp7ZG66bb+S71aI= Subject key identifier: A2:15:90:AC:A4:58:1A:EA:C0:C1:9F:B2:BD:1D:9C:CF:88:A5:50:1F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 06099CBABD60DFCD252F8B848F53969FD6944896 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS63880.roa Signing time: Thu 16 Jan 2025 02:00:00 +0000 ROA not before: Thu 16 Jan 2025 01:55:00 +0000 ROA not after: Thu 15 Jan 2026 02:00:00 +0000 asID: 63880 IP address blocks: 103.119.204.0/22 maxlen: 24 2406:6cc0:a500::/48 maxlen: 48 2406:6cc0:a700::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:09:9c:ba:bd:60:df:cd:25:2f:8b:84:8f:53:96:9f:d6:94:48:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jan 16 01:55:00 2025 GMT Not After : Jan 15 02:00:00 2026 GMT Subject: CN=A21590ACA4581AEAC0C19FB2BD1D9CCF88A5501F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:18:1f:53:ba:28:be:c4:c0:cb:e8:a1:68:62: 64:29:8d:ed:c8:0f:fb:39:79:a2:51:a1:e1:7b:0e: a7:2d:6c:8a:8a:1b:a8:01:8d:16:9d:8a:d1:88:83: f9:66:99:f1:1e:27:02:88:2b:f1:8f:c7:d5:14:f6: 1a:39:00:ff:21:3d:6e:ae:de:f6:5d:ea:b8:71:84: 4f:ef:85:e2:04:7e:a7:42:53:03:b3:3a:63:4a:f7: f0:a9:cb:df:cc:b1:85:3f:ee:29:c0:e6:fe:40:91: 72:1c:64:de:36:1b:96:9f:eb:ac:76:5a:c7:b0:8c: 86:0c:79:d1:5d:0c:1a:09:de:be:e0:29:a9:f5:14: 1d:01:1a:52:25:2d:6b:a4:9f:55:18:13:2a:40:da: b9:c7:32:b4:de:19:e1:f7:47:92:f5:bc:a8:42:2e: ed:5e:12:ee:9b:57:b3:3f:94:99:55:0a:9e:da:a9: 12:11:01:cb:6b:a1:fd:cc:e2:57:9d:ab:28:f5:4a: 86:aa:e0:3d:b0:d5:6e:65:98:67:30:c8:de:4b:2f: b8:9a:39:2f:c2:19:87:ea:0e:43:eb:30:5d:fa:97: a9:65:ee:01:ac:bb:c5:60:d2:0e:71:a8:03:58:96: b2:50:ed:d4:dd:d6:ef:a7:cb:75:da:05:d9:58:ce: 9f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:15:90:AC:A4:58:1A:EA:C0:C1:9F:B2:BD:1D:9C:CF:88:A5:50:1F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS63880.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.204.0/22 IPv6: 2406:6cc0:a500::/48 2406:6cc0:a700::/48 Signature Algorithm: sha256WithRSAEncryption 0d:d7:cb:1d:13:a9:3b:31:e1:4f:b6:b8:7b:06:70:93:ce:92: f9:95:99:58:4e:69:a3:ad:f7:59:a5:37:4d:5c:05:ab:fe:63: 79:65:f8:75:2a:e6:17:74:2a:81:f4:1b:cd:c9:f7:d7:a4:e2: 2d:9d:bd:4e:19:d3:7d:10:d7:81:c3:4d:b5:7e:17:15:d6:f7: 50:01:43:08:d9:a1:a2:61:44:87:e2:1b:b8:bb:b9:e2:ce:77: ce:3d:e3:fe:87:46:7e:11:88:d4:61:5e:84:c8:e5:56:46:a9: 0c:2c:c1:75:b8:25:e7:3f:2f:52:94:da:93:f8:6f:26:61:5a: 7e:2c:8e:f3:e5:8f:a6:02:1f:b7:67:21:19:56:21:77:41:9e: 8f:6b:ca:58:61:98:52:5a:b8:46:cc:02:ac:db:f1:86:dc:a0: 36:4a:a5:0c:de:a4:76:5c:eb:24:92:69:fc:7f:5b:67:9e:39: 4c:61:7b:ef:42:f9:d9:6f:42:23:87:7e:6a:5f:d9:d2:8d:fd: c4:79:28:03:d2:0b:88:5d:dc:87:e2:ac:eb:81:9c:ec:d5:a8: 15:59:73:88:df:aa:07:06:ea:16:d8:51:0a:53:05:42:30:0f: 5b:a7:f6:cd:7f:3d:23:4a:26:f4:89:df:af:bb:b8:b8:aa:95: 3c:32:43:28 -----BEGIN CERTIFICATE----- MIIE9jCCA96gAwIBAgIUBgmcur1g380lL4uEj1OWn9aUSJYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDExNjAxNTUwMFoX DTI2MDExNTAyMDAwMFowMzExMC8GA1UEAxMoQTIxNTkwQUNBNDU4MUFFQUMwQzE5 RkIyQkQxRDlDQ0Y4OEE1NTAxRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKcYH1O6KL7EwMvooWhiZCmN7cgP+zl5olGh4XsOpy1sioobqAGNFp2K0YiD +WaZ8R4nAogr8Y/H1RT2GjkA/yE9bq7e9l3quHGET++F4gR+p0JTA7M6Y0r38KnL 38yxhT/uKcDm/kCRchxk3jYblp/rrHZax7CMhgx50V0MGgnevuApqfUUHQEaUiUt a6SfVRgTKkDauccytN4Z4fdHkvW8qEIu7V4S7ptXsz+UmVUKntqpEhEBy2uh/czi V52rKPVKhqrgPbDVbmWYZzDI3ksvuJo5L8IZh+oOQ+swXfqXqWXuAay7xWDSDnGo A1iWslDt1N3W76fLddoF2VjOnxUCAwEAAaOCAekwggHlMB0GA1UdDgQWBBSiFZCs pFga6sDBn7K9HZzPiKVQHzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzYzODgwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAM BAIAATAGAwQCZ3fMMBgEAgACMBIDBwAkBmzApQADBwAkBmzApwAwDQYJKoZIhvcN AQELBQADggEBAA3Xyx0TqTsx4U+2uHsGcJPOkvmVmVhOaaOt91mlN01cBav+Y3ll +HUq5hd0KoH0G83J99ek4i2dvU4Z030Q14HDTbV+FxXW91ABQwjZoaJhRIfiG7i7 ueLOd8494/6HRn4RiNRhXoTI5VZGqQwswXW4Jec/L1KU2pP4byZhWn4sjvPlj6YC H7dnIRlWIXdBno9rylhhmFJauEbMAqzb8YbcoDZKpQzepHZc6ySSafx/W2eeOUxh e+9C+dlvQiOHfmpf2dKN/cR5KAPSC4hd3IfirOuBnOzVqBVZc4jfqgcG6hbYUQpT BUIwD1un9s1/PSNKJvSJ36+7uLiqlTwyQyg= -----END CERTIFICATE-----Generated at Sun Feb 16 20:55:49 2025 by rpki-client