$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS58485.roa File: AS58485.roa (raw, json) Hash identifier: feAkXYCpPowW3WFneTUkUjUjnTxtyeMDqrSxCwWiJI8= Subject key identifier: 39:5E:E2:DA:CA:F0:7A:80:F3:1D:88:09:DA:88:8F:A6:8B:E7:D3:8A Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 18FE5E0892AABC5407703198EDE8C9CBCE60107B Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS58485.roa Signing time: Sat 02 May 2026 21:33:29 +0000 ROA not before: Sat 02 May 2026 21:28:29 +0000 ROA not after: Sat 01 May 2027 21:33:29 +0000 asID: 58485 IP address blocks: 103.247.20.0/24 maxlen: 24 103.247.21.0/24 maxlen: 24 103.247.22.0/24 maxlen: 24 103.247.23.0/24 maxlen: 24 2402:e100::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:fe:5e:08:92:aa:bc:54:07:70:31:98:ed:e8:c9:cb:ce:60:10:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:28:29 2026 GMT Not After : May 1 21:33:29 2027 GMT Subject: CN=395EE2DACAF07A80F31D8809DA888FA68BE7D38A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:be:e6:23:2f:16:2a:7a:76:27:b7:ea:30:78: ee:1a:36:73:74:1f:9b:17:b8:ff:7f:6d:48:a5:96: 5b:98:a5:be:7d:bc:dd:bc:eb:53:97:17:ca:dc:10: 0a:de:28:0b:02:0a:c5:41:1b:2a:c7:c5:a2:e5:93: 37:59:b0:dd:2c:cf:98:27:08:23:37:58:17:ba:25: ea:8d:20:e0:67:7e:48:6f:f8:a2:75:46:2e:b7:01: 85:3e:46:79:82:5e:a5:be:2e:00:0e:18:ab:cc:df: 78:ac:0e:0d:7b:30:7b:b6:20:06:c4:a1:1a:2c:34: 91:26:91:54:6e:42:53:dc:a3:65:10:85:06:af:fa: 28:47:61:27:9c:52:7f:f6:dd:2e:43:d7:e4:bc:03: fd:3b:ce:d6:3b:da:57:f7:54:a6:3c:02:49:8a:68: 85:9e:dc:99:b6:3e:49:bb:81:51:24:fa:88:e2:09: ca:c9:b8:83:80:2d:ab:93:b5:8e:ac:3a:7e:92:3f: 6e:1e:3e:bd:cc:91:b3:60:37:ae:e3:9b:91:c7:6b: 4a:d0:80:fe:bc:cf:79:1c:20:dc:f8:34:72:17:9f: bb:ef:1c:20:fb:15:fe:ab:bb:5d:95:a2:ae:d1:0f: 13:83:02:81:e1:48:89:b7:e9:4e:6b:a8:97:ff:0e: 01:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:5E:E2:DA:CA:F0:7A:80:F3:1D:88:09:DA:88:8F:A6:8B:E7:D3:8A X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS58485.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.20.0/22 IPv6: 2402:e100::/32 Signature Algorithm: sha256WithRSAEncryption 68:60:71:db:ef:ac:82:1a:16:96:e4:bf:ed:6a:2b:3f:33:3c: 9c:b0:c6:1e:00:fb:60:61:f4:41:6e:34:91:39:f7:c6:ba:63: 1a:e4:f8:16:d6:e2:d2:d6:6d:27:c4:32:68:e6:d0:08:b6:b2: 86:13:36:58:ae:9d:62:d2:b9:ab:ad:c1:6b:ed:08:18:4a:8b: 77:a6:ce:16:70:43:6e:8f:86:d7:28:8a:a6:6c:34:6a:2f:70: c8:ca:be:1a:d0:ff:72:5a:1e:b2:e3:b3:10:76:1a:77:c0:9e: d0:e3:16:c2:49:3d:8e:ce:9c:97:4b:2d:5e:68:cb:41:e1:fd: ca:e6:2c:dc:05:8d:9b:fe:9d:c8:14:55:c0:e0:3a:a3:c3:ae: 03:b6:3b:50:c4:e2:cb:02:7a:a9:81:02:7e:94:80:5b:e5:0a: 72:1e:3b:99:70:d7:ac:10:8b:55:10:63:ac:bc:07:71:a3:ef: d3:12:8b:96:d9:8e:d6:fb:76:b5:8e:81:4b:ce:dc:0c:64:91: 2b:cf:79:ca:db:ad:82:98:14:21:6d:90:60:df:1d:a3:6b:95: 0f:b4:8b:08:38:e9:2f:ae:f6:c5:2e:94:a4:c6:86:c5:17:8a: 05:58:dd:60:8a:81:4c:21:af:b7:8c:c0:8c:bd:d1:c3:8d:21: 98:53:db:c6 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgIUGP5eCJKqvFQHcDGY7ejJy85gEHswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMjgyOVoX DTI3MDUwMTIxMzMyOVowMzExMC8GA1UEAxMoMzk1RUUyREFDQUYwN0E4MEYzMUQ4 ODA5REE4ODhGQTY4QkU3RDM4QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANO+5iMvFip6die36jB47ho2c3Qfmxe4/39tSKWWW5ilvn283bzrU5cXytwQ Ct4oCwIKxUEbKsfFouWTN1mw3SzPmCcIIzdYF7ol6o0g4Gd+SG/4onVGLrcBhT5G eYJepb4uAA4Yq8zfeKwODXswe7YgBsShGiw0kSaRVG5CU9yjZRCFBq/6KEdhJ5xS f/bdLkPX5LwD/TvO1jvaV/dUpjwCSYpohZ7cmbY+SbuBUST6iOIJysm4g4Atq5O1 jqw6fpI/bh4+vcyRs2A3ruObkcdrStCA/rzPeRwg3Pg0chefu+8cIPsV/qu7XZWi rtEPE4MCgeFIibfpTmuol/8OAY8CAwEAAaOCAdowggHWMB0GA1UdDgQWBBQ5XuLa yvB6gPMdiAnaiI+mi+fTijAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTNTg0ODUucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgAB MAYDBAJn9xQwDQQCAAIwBwMFACQC4QAwDQYJKoZIhvcNAQELBQADggEBAGhgcdvv rIIaFpbkv+1qKz8zPJywxh4A+2Bh9EFuNJE598a6Yxrk+BbW4tLWbSfEMmjm0Ai2 soYTNliunWLSuautwWvtCBhKi3emzhZwQ26PhtcoiqZsNGovcMjKvhrQ/3JaHrLj sxB2GnfAntDjFsJJPY7OnJdLLV5oy0Hh/crmLNwFjZv+ncgUVcDgOqPDrgO2O1DE 4ssCeqmBAn6UgFvlCnIeO5lw16wQi1UQY6y8B3Gj79MSi5bZjtb7drWOgUvO3Axk kSvPecrbrYKYFCFtkGDfHaNrlQ+0iwg46S+u9sUulKTGhsUXigVY3WCKgUwhr7eM wIy90cONIZhT28Y= -----END CERTIFICATE-----Generated at Sun May 3 00:40:35 2026 by rpki-client