$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59282.roa File: AS59282.roa (raw, json) Hash identifier: EfR997ALx2R5kel9nLEAKW5yEWPXd7JPk89MQ2Ml2WY= Subject key identifier: C2:0C:06:E5:A9:F0:B3:86:33:49:52:4B:76:2E:8A:48:51:23:D4:13 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6DCAC6929084CE44E3360733DD324A0E4BC7B5C9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59282.roa Signing time: Wed 25 Jun 2025 05:00:00 +0000 ROA not before: Wed 25 Jun 2025 04:55:00 +0000 ROA not after: Wed 24 Jun 2026 05:00:00 +0000 asID: 59282 IP address blocks: 103.254.104.0/22 maxlen: 24 202.74.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:ca:c6:92:90:84:ce:44:e3:36:07:33:dd:32:4a:0e:4b:c7:b5:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 25 04:55:00 2025 GMT Not After : Jun 24 05:00:00 2026 GMT Subject: CN=C20C06E5A9F0B3863349524B762E8A485123D413 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ae:cf:cb:de:2f:14:69:1b:d1:04:90:55:7e: 16:b4:0d:f9:f8:86:a7:bf:20:83:5c:cd:6e:05:03: 45:c2:43:a8:9b:79:75:53:f2:bb:9d:e0:78:bd:d9: 27:6e:69:09:3d:f5:ef:e9:90:81:3f:50:63:c0:e0: 17:67:06:3a:df:85:46:a4:6c:fe:ff:a2:3f:30:39: 28:4e:d0:26:cb:d1:0b:87:f8:ce:2c:e0:a7:fb:6e: 4d:d1:a9:b2:6b:e5:f5:87:bc:cf:c6:97:66:16:e8: 70:fb:85:2f:89:87:70:e4:88:6c:e7:e2:6b:e5:3b: b8:22:54:7d:4d:a8:91:2a:b0:91:26:17:3a:ab:62: 56:74:d3:0a:b8:1c:fd:4e:78:99:20:14:73:04:e8: 40:2b:6a:d7:a6:ca:29:fe:ce:f9:26:93:f9:08:1b: 09:62:e5:f8:dd:66:0a:62:7a:49:5e:d4:a9:2a:d7: 6c:16:98:12:20:63:bf:82:40:68:14:de:c9:fa:7a: 5c:90:0f:d0:76:06:31:d9:b2:19:68:90:3a:21:f9: ea:6f:f9:84:a3:ee:61:1b:d2:e1:b1:c2:93:c3:1e: 8c:e0:77:4f:57:a7:01:79:70:2f:54:70:ae:f7:a4: b5:b3:b3:82:d1:f4:5a:bb:b6:f0:f0:54:53:28:c0: e7:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:0C:06:E5:A9:F0:B3:86:33:49:52:4B:76:2E:8A:48:51:23:D4:13 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59282.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.104.0/22 202.74.76.0/22 Signature Algorithm: sha256WithRSAEncryption 93:de:63:12:f5:2e:a4:c6:15:87:1a:a1:e1:c9:da:52:17:5d: b2:61:9e:3c:af:b8:ca:91:02:19:71:a5:4b:d3:1b:8f:c2:4c: cc:fd:20:17:8d:12:70:db:87:27:0c:a2:02:f9:95:b9:b8:74: 2c:9c:62:ca:9f:c7:80:2e:60:15:86:70:17:46:68:a8:e5:ca: 33:bc:28:b8:a9:1c:1b:05:9c:df:1f:04:b4:2a:8a:fc:6a:a2: 07:cc:c6:a7:40:bb:80:75:52:78:fb:69:e8:49:5d:b3:08:1e: 88:83:06:59:ef:a9:c3:8e:2d:a8:7c:68:91:69:9e:9a:39:ea: 70:91:89:3a:1e:04:0a:54:d0:15:69:ba:af:0b:2d:a1:c7:72: 9a:4a:35:cb:fc:fc:51:49:e7:c2:10:e8:99:bb:66:fb:f1:0d: 12:3b:23:4c:81:39:d1:ed:b7:94:e4:54:dd:99:0d:b7:2d:67: a6:a3:06:a7:6d:66:24:a2:3b:ac:a4:e5:02:eb:52:ee:94:04: 53:a3:18:44:03:74:dc:aa:ec:65:c9:92:9a:14:5f:8a:d7:7b: 3c:df:7d:1b:88:71:bb:48:ce:ae:4e:00:e0:d5:2b:be:c0:df: 2b:28:70:98:59:8d:9c:ff:f3:c9:f1:97:41:36:97:11:ae:9e: 37:8a:02:66 -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUbcrGkpCEzkTjNgcz3TJKDkvHtckwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYyNTA0NTUwMFoX DTI2MDYyNDA1MDAwMFowMzExMC8GA1UEAxMoQzIwQzA2RTVBOUYwQjM4NjMzNDk1 MjRCNzYyRThBNDg1MTIzRDQxMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMauz8veLxRpG9EEkFV+FrQN+fiGp78gg1zNbgUDRcJDqJt5dVPyu53geL3Z J25pCT317+mQgT9QY8DgF2cGOt+FRqRs/v+iPzA5KE7QJsvRC4f4zizgp/tuTdGp smvl9Ye8z8aXZhbocPuFL4mHcOSIbOfia+U7uCJUfU2okSqwkSYXOqtiVnTTCrgc /U54mSAUcwToQCtq16bKKf7O+SaT+QgbCWLl+N1mCmJ6SV7UqSrXbBaYEiBjv4JA aBTeyfp6XJAP0HYGMdmyGWiQOiH56m/5hKPuYRvS4bHCk8MejOB3T1enAXlwL1Rw rvektbOzgtH0Wru28PBUUyjA5xcCAwEAAaOCAdUwggHRMB0GA1UdDgQWBBTCDAbl qfCzhjNJUkt2LopIUSPUEzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU5MjgyLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ/5oAwQCykpMMA0GCSqGSIb3DQEBCwUAA4IBAQCT3mMS9S6kxhWH GqHhydpSF12yYZ48r7jKkQIZcaVL0xuPwkzM/SAXjRJw24cnDKIC+ZW5uHQsnGLK n8eALmAVhnAXRmio5cozvCi4qRwbBZzfHwS0Kor8aqIHzManQLuAdVJ4+2noSV2z CB6IgwZZ76nDji2ofGiRaZ6aOepwkYk6HgQKVNAVabqvCy2hx3KaSjXL/PxRSefC EOiZu2b78Q0SOyNMgTnR7beU5FTdmQ23LWemowanbWYkojuspOUC61LulARToxhE A3TcquxlyZKaFF+K13s8330biHG7SM6uTgDg1Su+wN8rKHCYWY2c//PJ8ZdBNpcR rp43igJm -----END CERTIFICATE-----Generated at Sun Jun 29 12:16:13 2025 by rpki-client