$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS58482.roa File: AS58482.roa (raw, json) Hash identifier: xePpbH7QuKFJCwm+WCUhzs9Ox2W/W5VH3h7VmSHiMbY= Subject key identifier: DE:0D:12:91:54:7F:D6:3E:D9:62:29:FD:99:EF:9E:6D:2F:51:FD:2A Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 4F1BACB8FEF9686313B91EB0F69C5F9C2DC0EA60 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS58482.roa Signing time: Sun 03 May 2026 03:09:03 +0000 ROA not before: Sun 03 May 2026 03:04:03 +0000 ROA not after: Sun 02 May 2027 03:09:03 +0000 asID: 58482 IP address blocks: 43.254.124.0/22 maxlen: 24 103.28.224.0/22 maxlen: 24 2404:f900::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:1b:ac:b8:fe:f9:68:63:13:b9:1e:b0:f6:9c:5f:9c:2d:c0:ea:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 03:04:03 2026 GMT Not After : May 2 03:09:03 2027 GMT Subject: CN=DE0D1291547FD63ED96229FD99EF9E6D2F51FD2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1f:ba:65:c4:e5:37:73:84:fb:bf:9e:64:23: 2f:24:e3:79:95:bf:9c:3d:91:af:4f:d9:66:10:75: 93:33:f7:4e:a6:44:1b:23:43:6a:5f:46:d0:42:86: 3f:c7:38:ad:eb:17:ee:6f:4f:bd:ea:1a:a5:89:57: 4f:92:38:8e:63:bb:da:b3:86:1e:8b:29:25:fb:a8: 81:b2:7b:65:ac:4f:b3:e2:a3:26:2b:27:4c:42:1f: a0:22:8b:73:24:f8:1a:1a:80:83:04:04:f6:cd:02: 19:62:12:2c:87:16:fd:cf:84:7b:7c:24:17:c2:99: fe:bd:74:2f:bd:53:2d:d1:9c:12:9e:12:68:af:70: b9:a0:f0:9c:80:f4:26:83:61:a4:a3:69:b8:33:45: 5d:2b:7d:44:c4:f4:36:62:50:0d:56:3e:fc:d4:b3: b8:17:69:0f:4f:a1:96:66:27:b6:47:cc:57:05:67: 83:16:54:7b:6a:4f:b5:f9:f9:f1:74:d8:83:47:6b: 44:c9:9a:1c:94:22:7b:e9:3d:96:19:67:80:a4:74: ad:f6:c3:ad:59:65:d5:4a:a4:72:ae:9d:de:d4:da: fc:fc:9c:dc:1a:47:d1:21:39:d5:dd:18:70:d0:85: 36:3d:72:53:9a:bd:76:f5:43:76:1b:b4:9a:e6:18: de:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:0D:12:91:54:7F:D6:3E:D9:62:29:FD:99:EF:9E:6D:2F:51:FD:2A X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS58482.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.124.0/22 103.28.224.0/22 IPv6: 2404:f900::/32 Signature Algorithm: sha256WithRSAEncryption 12:35:2c:b2:b7:f6:63:91:88:27:5c:8f:5e:ea:d3:9c:fe:f8: e5:b7:65:95:8a:71:af:1a:36:f4:f5:76:20:ac:94:7b:9f:17: 04:8e:63:a3:c3:a0:a4:aa:75:9b:8e:0f:51:49:95:00:80:4f: ff:71:95:6a:8d:8a:38:86:d4:e7:a4:ef:8f:cf:2c:ef:42:3b: f2:79:0b:d8:a1:9e:0b:60:b1:16:4d:bd:a9:75:0e:3c:cd:a8: 98:fb:0e:db:d2:d1:e7:81:30:ab:97:44:1e:74:d1:4c:04:3e: 83:85:ac:50:4f:bd:7b:3b:0c:99:b5:5f:50:c2:c5:e9:03:c1: 69:d5:92:fa:fe:d7:08:7a:9b:29:82:6e:9f:e5:03:58:af:c5: 9f:5c:26:11:e4:25:5b:82:3c:a2:10:a5:9b:58:cf:2a:7a:e4: bc:66:6b:0b:ed:7e:83:5f:46:0f:12:da:16:61:ed:f5:69:e8: 81:ad:2d:05:68:79:da:a3:ac:dd:12:34:73:0f:bf:9c:34:31: 1d:f3:e4:ee:88:27:b9:52:0a:81:bc:a8:23:00:76:30:96:41: 2c:30:96:20:ee:f0:66:2d:04:7d:08:2b:28:5a:4b:a5:ae:a4: e9:a4:9d:96:cf:98:bd:47:68:eb:89:54:70:74:09:be:76:0e: e9:d9:86:62 -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgIUTxusuP75aGMTuR6w9pxfnC3A6mAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAzMDQwM1oX DTI3MDUwMjAzMDkwM1owMzExMC8GA1UEAxMoREUwRDEyOTE1NDdGRDYzRUQ5NjIy OUZEOTlFRjlFNkQyRjUxRkQyQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANkfumXE5TdzhPu/nmQjLyTjeZW/nD2Rr0/ZZhB1kzP3TqZEGyNDal9G0EKG P8c4resX7m9PveoapYlXT5I4jmO72rOGHospJfuogbJ7ZaxPs+KjJisnTEIfoCKL cyT4GhqAgwQE9s0CGWISLIcW/c+Ee3wkF8KZ/r10L71TLdGcEp4SaK9wuaDwnID0 JoNhpKNpuDNFXSt9RMT0NmJQDVY+/NSzuBdpD0+hlmYntkfMVwVngxZUe2pPtfn5 8XTYg0drRMmaHJQie+k9lhlngKR0rfbDrVll1Uqkcq6d3tTa/Pyc3BpH0SE51d0Y cNCFNj1yU5q9dvVDdhu0muYY3u8CAwEAAaOCAeAwggHcMB0GA1UdDgQWBBTeDRKR VH/WPtliKf2Z755tL1H9KjAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTNTg0ODIucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwNAYIKwYBBQUHAQcBAf8EJTAjMBIEAgAB MAwDBAIr/nwDBAJnHOAwDQQCAAIwBwMFACQE+QAwDQYJKoZIhvcNAQELBQADggEB ABI1LLK39mORiCdcj17q05z++OW3ZZWKca8aNvT1diCslHufFwSOY6PDoKSqdZuO D1FJlQCAT/9xlWqNijiG1Oek74/PLO9CO/J5C9ihngtgsRZNval1DjzNqJj7DtvS 0eeBMKuXRB500UwEPoOFrFBPvXs7DJm1X1DCxekDwWnVkvr+1wh6mymCbp/lA1iv xZ9cJhHkJVuCPKIQpZtYzyp65LxmawvtfoNfRg8S2hZh7fVp6IGtLQVoedqjrN0S NHMPv5w0MR3z5O6IJ7lSCoG8qCMAdjCWQSwwliDu8GYtBH0IKyhaS6WupOmknZbP mL1HaOuJVHB0Cb52DunZhmI= -----END CERTIFICATE-----Generated at Tue May 12 22:43:22 2026 by rpki-client