$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS9422.roa File: AS9422.roa (raw, json) Hash identifier: hiUksqYRwEJK+XxeGp1qWkSNgL7dv7gjkn4RjwPQUU8= Subject key identifier: CE:4D:E5:F6:3F:B0:B6:B5:60:36:0C:F0:3D:76:65:9D:A6:0E:86:E5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 27A21CA3F20334A51CBC57F4FB2329AA80013B22 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS9422.roa Signing time: Fri 31 Jan 2025 07:00:05 +0000 ROA not before: Fri 31 Jan 2025 06:55:05 +0000 ROA not after: Fri 30 Jan 2026 07:00:05 +0000 asID: 9422 IP address blocks: 103.173.128.0/24 maxlen: 24 103.248.217.0/24 maxlen: 24 103.248.218.0/24 maxlen: 24 2407:7c0:100::/40 maxlen: 48 2407:7c0:9422::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 12:08:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:a2:1c:a3:f2:03:34:a5:1c:bc:57:f4:fb:23:29:aa:80:01:3b:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jan 31 06:55:05 2025 GMT Not After : Jan 30 07:00:05 2026 GMT Subject: CN=CE4DE5F63FB0B6B560360CF03D76659DA60E86E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ee:82:36:fe:6e:20:52:4a:ae:7f:c6:d0:85: 56:fd:bf:3b:2f:8c:ab:4f:23:17:71:a4:04:20:08: e2:0e:c2:35:b1:c9:61:34:b6:6b:ea:62:4b:8c:ce: c2:e1:e3:da:4f:b9:8d:19:f3:2b:b3:c7:fa:72:0e: 7e:a6:52:56:da:c6:a8:59:20:a7:cf:6a:c8:44:fb: 0a:85:37:c3:5e:fc:1c:78:ee:1c:fe:e4:20:de:f7: ad:b8:f2:a7:7f:88:56:8b:88:2d:be:15:c7:b4:1e: 08:62:e0:c7:b9:e8:1c:02:54:18:c1:8d:90:f2:0b: 68:b2:a6:74:de:2a:1e:9e:86:ce:32:bc:14:13:ae: 4f:a0:b2:95:3e:4a:3e:99:96:4f:64:0b:d2:68:98: 41:83:0f:5f:8c:93:c4:35:68:de:e2:21:09:1c:6b: 80:d2:23:6c:5a:f7:ab:5a:d3:c2:fe:d7:b5:b7:e4: ca:f8:65:5b:a0:d5:46:f0:01:b6:63:5d:4c:a9:ac: 2a:60:33:4e:59:ff:07:89:b2:e2:50:be:09:8e:9b: c9:a4:47:b6:78:7a:0d:6b:be:1f:30:ec:75:ed:bc: b0:bb:1e:bf:fe:45:1f:12:cb:4e:2c:86:9e:56:9c: 35:05:8e:4f:f6:b1:78:ef:2c:dc:19:28:16:7a:87: 4e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:4D:E5:F6:3F:B0:B6:B5:60:36:0C:F0:3D:76:65:9D:A6:0E:86:E5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS9422.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.128.0/24 103.248.217.0-103.248.218.255 IPv6: 2407:7c0:100::/40 2407:7c0:9422::/48 Signature Algorithm: sha256WithRSAEncryption 56:c5:20:c8:96:b4:9a:ac:59:6f:2d:25:c3:31:ef:f0:03:96: 01:b0:46:f0:5a:4e:d1:1d:3d:c5:0f:b8:00:5e:cb:88:0d:81: 56:81:e1:85:8e:fb:77:9d:2a:db:87:bf:d4:8d:dc:a7:ae:53: 47:2e:94:9d:1f:16:eb:9e:78:ac:c8:95:bb:9c:1d:b8:9a:60: 30:df:5f:ef:e7:b4:5e:e7:d8:a8:ee:4c:8e:a1:cf:b5:96:87: 45:7f:24:28:d9:b0:0b:8d:c8:d0:3a:8a:5a:cc:c6:80:c8:dc: 6f:93:26:67:11:12:44:e2:b8:96:2e:4c:75:ca:01:1f:35:77: cc:64:7d:2e:37:26:3f:67:9c:9d:17:79:5c:ee:75:c1:f9:8b: 38:d6:95:5f:84:23:ca:19:09:2f:7e:b7:e5:9d:55:52:ae:85: 66:d8:5a:b1:6a:6a:8b:d9:f0:9b:9a:94:91:88:e0:76:7e:9d: de:f1:d7:91:73:bc:28:0a:80:02:5a:98:f1:81:74:52:9c:73: c6:d4:f5:6f:18:e9:5a:f7:ea:0a:68:6e:37:ba:ad:2a:cb:62: 2e:71:cd:8f:27:4d:2d:5b:85:31:4a:0e:63:71:c8:65:a4:02: 9a:be:58:ee:42:8e:4a:42:66:3f:93:e2:1f:b0:ca:d4:73:38: bc:2a:dd:c4 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUJ6Ico/IDNKUcvFf0+yMpqoABOyIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDEzMTA2NTUwNVoX DTI2MDEzMDA3MDAwNVowMzExMC8GA1UEAxMoQ0U0REU1RjYzRkIwQjZCNTYwMzYw Q0YwM0Q3NjY1OURBNjBFODZFNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMrugjb+biBSSq5/xtCFVv2/Oy+Mq08jF3GkBCAI4g7CNbHJYTS2a+piS4zO wuHj2k+5jRnzK7PH+nIOfqZSVtrGqFkgp89qyET7CoU3w178HHjuHP7kIN73rbjy p3+IVouILb4Vx7QeCGLgx7noHAJUGMGNkPILaLKmdN4qHp6GzjK8FBOuT6CylT5K PpmWT2QL0miYQYMPX4yTxDVo3uIhCRxrgNIjbFr3q1rTwv7XtbfkyvhlW6DVRvAB tmNdTKmsKmAzTln/B4my4lC+CY6byaRHtnh6DWu+HzDsde28sLsev/5FHxLLTiyG nlacNQWOT/axeO8s3BkoFnqHTgMCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBTOTeX2 P7C2tWA2DPA9dmWdpg6G5TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFIGCCsGAQUFBwELBEYwRDBCBggrBgEFBQcwC4Y2cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzk0MjIucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwRgYIKwYBBQUHAQcBAf8ENzA1MBoE AgABMBQDBABnrYAwDAMEAGf42QMEAGf42jAXBAIAAjARAwYAJAcHwAEDBwAkBwfA lCIwDQYJKoZIhvcNAQELBQADggEBAFbFIMiWtJqsWW8tJcMx7/ADlgGwRvBaTtEd PcUPuABey4gNgVaB4YWO+3edKtuHv9SN3KeuU0culJ0fFuueeKzIlbucHbiaYDDf X+/ntF7n2KjuTI6hz7WWh0V/JCjZsAuNyNA6ilrMxoDI3G+TJmcREkTiuJYuTHXK AR81d8xkfS43Jj9nnJ0XeVzudcH5izjWlV+EI8oZCS9+t+WdVVKuhWbYWrFqaovZ 8JualJGI4HZ+nd7x15FzvCgKgAJamPGBdFKcc8bU9W8Y6Vr36gpobje6rSrLYi5x zY8nTS1bhTFKDmNxyGWkApq+WO5CjkpCZj+T4h+wytRzOLwq3cQ= -----END CERTIFICATE-----Generated at Tue Apr 8 14:34:23 2025 by rpki-client