$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58381.roa File: AS58381.roa (raw, json) Hash identifier: b1sU5nL2IK4GE7x3JHLUSRNg5AKlEtwXZS5opcJpuLs= Subject key identifier: E9:8C:E3:AB:86:6A:6B:EB:C5:F7:16:36:53:9B:2A:9C:D3:6C:94:92 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7230AD814274695E9C5FD2BD317F611F67BB3C88 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58381.roa Signing time: Thu 07 Aug 2025 05:00:00 +0000 ROA not before: Thu 07 Aug 2025 04:55:00 +0000 ROA not after: Thu 06 Aug 2026 05:00:00 +0000 asID: 58381 IP address blocks: 2401:4160::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 11:16:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:30:ad:81:42:74:69:5e:9c:5f:d2:bd:31:7f:61:1f:67:bb:3c:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 7 04:55:00 2025 GMT Not After : Aug 6 05:00:00 2026 GMT Subject: CN=E98CE3AB866A6BEBC5F71636539B2A9CD36C9492 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b3:c5:f4:d5:fd:c0:25:11:b1:a9:59:74:e3: f4:70:f0:73:f3:33:a7:55:0b:a2:a1:6d:b1:5e:fd: d3:ae:03:42:f0:b7:69:c4:11:ed:e3:c7:76:6a:50: fb:3a:cf:c9:ac:3c:72:03:8a:4a:8b:13:0c:33:0a: 7a:7e:44:b6:6b:84:5e:fc:d9:ef:81:a4:3a:d2:bd: 8e:f1:e1:f0:bd:a2:a4:1b:f2:15:6a:09:03:79:f6: d8:93:1c:3f:13:46:6b:20:cb:68:11:f2:1a:ad:7b: e3:10:ec:dd:2b:8b:73:af:5b:f7:e5:71:c8:13:fd: 34:26:9f:97:66:9c:77:bc:c1:09:3a:c6:42:d4:62: 46:09:7e:d7:20:00:90:0f:14:96:9e:93:99:17:c9: 16:eb:5a:71:6a:32:26:2b:8a:0d:39:4b:04:cf:cf: 00:61:8b:21:ac:7e:ba:fc:00:8c:21:d1:13:a0:9a: ac:cc:d3:76:b9:15:5d:6b:a3:fd:6c:4e:ce:1b:fa: 88:ec:26:c5:21:a7:45:76:1d:c4:c7:8f:c0:1f:0d: d5:dd:df:5d:ac:82:7d:5f:e0:b7:ff:f2:0a:99:b5: 43:2d:3f:8f:da:e9:27:da:06:f7:b5:5b:5f:e1:3a: db:53:17:1d:15:ab:99:a0:4f:f8:d7:a7:88:21:d9: 71:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:8C:E3:AB:86:6A:6B:EB:C5:F7:16:36:53:9B:2A:9C:D3:6C:94:92 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58381.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:4160::/32 Signature Algorithm: sha256WithRSAEncryption 6d:23:ad:1d:d9:a6:2d:70:21:e3:a1:f4:65:d7:65:b7:2f:dc: b4:9d:1c:f2:b5:2e:9a:37:06:69:31:02:ee:2b:84:b9:e3:39: a1:78:72:58:e9:4c:e6:dc:ce:d9:eb:21:ec:4d:25:27:96:04: 99:0c:2a:22:97:86:0f:ff:fd:0d:15:8e:a2:64:8c:0c:2d:41: 58:be:19:1a:78:7b:b5:de:81:7d:73:6e:be:af:ef:35:bd:a8: a5:cf:3f:3d:8f:1e:aa:bb:83:58:d3:dc:cc:e0:e8:54:d5:d6: 82:5b:28:5f:5f:fc:f2:42:4b:38:0c:93:8b:5d:a4:2a:c0:a9: ce:ca:fe:b5:f3:60:fa:7b:e7:47:cb:0a:e1:9e:74:84:65:28: 22:77:41:01:b3:38:7d:3d:46:46:27:b7:b3:32:e6:0c:0f:a6: 23:4f:2c:0b:9b:cd:bc:5f:39:1b:d8:e8:97:22:29:90:da:3b: 0a:70:bb:28:28:5f:29:df:98:8b:8a:8f:f5:5f:75:57:ae:27: 64:52:99:ec:6b:f5:40:3e:44:c3:32:92:4b:c6:82:c2:20:59: a0:2e:e4:de:db:1d:84:d1:3c:b0:15:2f:83:c2:ef:86:4c:b3: 15:2d:35:89:b6:4a:87:2d:8a:0f:4b:30:82:64:0c:7a:6d:db: 7e:6a:c1:b6 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUcjCtgUJ0aV6cX9K9MX9hH2e7PIgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgwNzA0NTUwMFoX DTI2MDgwNjA1MDAwMFowMzExMC8GA1UEAxMoRTk4Q0UzQUI4NjZBNkJFQkM1Rjcx NjM2NTM5QjJBOUNEMzZDOTQ5MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALazxfTV/cAlEbGpWXTj9HDwc/Mzp1ULoqFtsV79064DQvC3acQR7ePHdmpQ +zrPyaw8cgOKSosTDDMKen5EtmuEXvzZ74GkOtK9jvHh8L2ipBvyFWoJA3n22JMc PxNGayDLaBHyGq174xDs3SuLc69b9+VxyBP9NCafl2acd7zBCTrGQtRiRgl+1yAA kA8Ulp6TmRfJFutacWoyJiuKDTlLBM/PAGGLIax+uvwAjCHRE6CarMzTdrkVXWuj /WxOzhv6iOwmxSGnRXYdxMePwB8N1d3fXayCfV/gt//yCpm1Qy0/j9rpJ9oG97Vb X+E621MXHRWrmaBP+NeniCHZcUUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTpjOOr hmpr68X3FjZTmyqc02yUkjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU4MzgxLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAFBYDANBgkqhkiG9w0BAQsFAAOCAQEAbSOtHdmmLXAh46H0Zddl ty/ctJ0c8rUumjcGaTEC7iuEueM5oXhyWOlM5tzO2esh7E0lJ5YEmQwqIpeGD//9 DRWOomSMDC1BWL4ZGnh7td6BfXNuvq/vNb2opc8/PY8eqruDWNPczODoVNXWglso X1/88kJLOAyTi12kKsCpzsr+tfNg+nvnR8sK4Z50hGUoIndBAbM4fT1GRie3szLm DA+mI08sC5vNvF85G9jolyIpkNo7CnC7KChfKd+Yi4qP9V91V64nZFKZ7Gv1QD5E wzKSS8aCwiBZoC7k3tsdhNE8sBUvg8LvhkyzFS01ibZKhy2KD0swgmQMem3bfmrB tg== -----END CERTIFICATE-----Generated at Sat Aug 23 07:11:41 2025 by rpki-client