$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS63883.roa File: AS63883.roa (raw, json) Hash identifier: 7xA18XZtHGTl7MJokArfo3g2qEA2qpgb9CNRl5CQ57o= Subject key identifier: 0D:58:AC:32:B1:8F:97:61:35:5F:8A:3B:D2:91:DC:10:6B:FE:6C:21 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 302F3E47FAD589860FC33A34561F8C81B01C11D0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS63883.roa Signing time: Tue 29 Apr 2025 04:00:00 +0000 ROA not before: Tue 29 Apr 2025 03:55:00 +0000 ROA not after: Tue 28 Apr 2026 04:00:00 +0000 asID: 63883 IP address blocks: 103.62.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 14:41:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:2f:3e:47:fa:d5:89:86:0f:c3:3a:34:56:1f:8c:81:b0:1c:11:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 29 03:55:00 2025 GMT Not After : Apr 28 04:00:00 2026 GMT Subject: CN=0D58AC32B18F9761355F8A3BD291DC106BFE6C21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:31:39:00:7e:e4:c2:29:c6:5b:e0:1d:1c:ac: fa:e9:98:ab:ea:0f:0d:b5:64:4a:d6:d4:00:7e:7d: 09:09:b7:41:65:42:ee:bf:a7:b2:e6:e4:ba:9e:da: d5:64:f3:93:a7:f4:af:df:04:b6:e5:eb:ad:a9:ed: 75:f4:e7:de:e1:11:a9:32:4e:cb:1d:73:fb:2b:46: ac:84:ca:ec:92:8e:14:34:64:68:41:1b:6d:80:b4: 0f:1a:0e:44:c7:b2:48:28:3e:75:ea:40:fe:1c:99: 17:8e:29:74:64:45:66:cb:45:98:f6:a3:7b:7f:29: d9:47:9f:ce:31:41:33:f4:c7:5d:8c:82:51:e5:f2: 31:20:9a:49:85:d1:3f:29:69:eb:6a:e2:6f:2c:fe: 1e:e8:22:6b:23:f5:e1:9c:de:a4:7d:d3:71:02:cc: 50:01:f5:c1:a9:78:b1:cc:83:c8:1e:73:c5:39:7c: 52:b0:8c:71:36:5a:2a:f6:3a:f7:b5:44:3a:ec:f1: 30:97:fe:f3:06:62:a6:dd:c7:7f:bf:80:3f:85:a3: ba:d9:08:56:fa:85:85:e7:c2:ff:a9:37:ac:3c:06: c8:ff:0f:eb:ec:36:fc:dd:87:0c:3a:4d:2e:55:08: 4a:c0:ee:57:fb:42:be:e9:c7:33:2f:31:31:35:8b: 76:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:58:AC:32:B1:8F:97:61:35:5F:8A:3B:D2:91:DC:10:6B:FE:6C:21 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS63883.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.62.202.0/23 Signature Algorithm: sha256WithRSAEncryption 27:6a:5b:de:8f:2b:72:39:c3:5e:fb:8d:12:a7:a3:49:17:4f: 11:b3:d0:b7:78:30:a9:98:6e:ad:f1:16:5c:9f:24:3d:08:12: dd:fc:bf:0f:7d:43:e8:ef:a1:ee:19:95:c4:ba:20:47:f6:c3: 15:f2:7e:18:57:b9:de:6d:33:65:f3:63:7e:9a:49:01:d0:af: 98:22:28:ff:52:0a:f9:4a:d6:de:b8:bf:f7:9a:f7:36:8b:32: e3:61:ae:cd:c0:a3:da:84:31:aa:23:26:54:03:7a:84:44:d4: a2:ce:20:2a:4e:68:4b:25:3b:d6:a5:13:28:e6:c6:e6:49:4b: 97:e0:67:2a:10:4e:18:9f:96:cc:1d:5c:00:0c:fd:cc:eb:bc: ff:36:56:02:34:2f:a0:5e:c0:76:7d:9c:3e:96:80:1b:17:28: a9:bf:88:9d:fb:bb:ec:5c:9e:7e:37:50:81:a2:f1:75:99:21: 62:9c:0b:53:1a:82:d1:89:22:34:df:db:41:d4:ae:0a:be:ea: 9f:77:99:21:6a:46:3a:33:59:08:e4:5e:da:8c:34:2c:46:a7: 6d:9e:00:45:d6:46:69:cd:f8:b8:91:b7:c9:91:03:e8:26:85: a1:cc:c8:8c:08:92:7f:c2:14:0c:d6:94:98:93:b9:bd:92:7c: e1:5e:8b:e9 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUMC8+R/rViYYPwzo0Vh+MgbAcEdAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQyOTAzNTUwMFoX DTI2MDQyODA0MDAwMFowMzExMC8GA1UEAxMoMEQ1OEFDMzJCMThGOTc2MTM1NUY4 QTNCRDI5MURDMTA2QkZFNkMyMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALgxOQB+5MIpxlvgHRys+umYq+oPDbVkStbUAH59CQm3QWVC7r+nsubkup7a 1WTzk6f0r98EtuXrrantdfTn3uERqTJOyx1z+ytGrITK7JKOFDRkaEEbbYC0DxoO RMeySCg+depA/hyZF44pdGRFZstFmPaje38p2UefzjFBM/THXYyCUeXyMSCaSYXR Pylp62ribyz+HugiayP14ZzepH3TcQLMUAH1wal4scyDyB5zxTl8UrCMcTZaKvY6 97VEOuzxMJf+8wZipt3Hf7+AP4WjutkIVvqFhefC/6k3rDwGyP8P6+w2/N2HDDpN LlUISsDuV/tCvunHMy8xMTWLdl8CAwEAAaOCAc8wggHLMB0GA1UdDgQWBBQNWKwy sY+XYTVfijvSkdwQa/5sITAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzYzODgzLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZz7KMA0GCSqGSIb3DQEBCwUAA4IBAQAnalvejytyOcNe+40Sp6NJ F08Rs9C3eDCpmG6t8RZcnyQ9CBLd/L8PfUPo76HuGZXEuiBH9sMV8n4YV7nebTNl 82N+mkkB0K+YIij/Ugr5StbeuL/3mvc2izLjYa7NwKPahDGqIyZUA3qERNSiziAq TmhLJTvWpRMo5sbmSUuX4GcqEE4Yn5bMHVwADP3M67z/NlYCNC+gXsB2fZw+loAb Fyipv4id+7vsXJ5+N1CBovF1mSFinAtTGoLRiSI039tB1K4Kvuqfd5khakY6M1kI 5F7ajDQsRqdtngBF1kZpzfi4kbfJkQPoJoWhzMiMCJJ/whQM1pSYk7m9knzhXovp -----END CERTIFICATE-----Generated at Mon May 5 19:09:34 2025 by rpki-client