$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS18059.roa File: AS18059.roa (raw, json) Hash identifier: NM+fBcRlRSTAo+Fwmr933JbeAHzCa+CmqfjADxcHAo0= Subject key identifier: 84:2D:24:AC:A1:ED:18:05:78:58:8E:36:EC:95:39:FE:74:47:78:0A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 263638B36CC27B9AF0C7BE1758B15CE731DDAB49 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS18059.roa Signing time: Sun 01 Mar 2026 05:00:00 +0000 ROA not before: Sun 01 Mar 2026 04:55:00 +0000 ROA not after: Sun 28 Feb 2027 05:00:00 +0000 asID: 18059 IP address blocks: 103.168.114.0/23 maxlen: 24 103.168.116.0/23 maxlen: 24 103.168.118.0/23 maxlen: 24 103.168.120.0/23 maxlen: 24 163.61.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:36:38:b3:6c:c2:7b:9a:f0:c7:be:17:58:b1:5c:e7:31:dd:ab:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 1 04:55:00 2026 GMT Not After : Feb 28 05:00:00 2027 GMT Subject: CN=842D24ACA1ED180578588E36EC9539FE7447780A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ec:ea:49:28:f0:c5:cd:13:b1:a7:29:d2:d8: c4:b8:d6:c6:04:37:c4:0b:18:be:29:b9:dd:68:6a: 11:43:4c:55:e5:b8:98:4c:42:0b:9c:3c:a4:3e:2d: 24:5e:6f:93:db:de:fb:53:53:56:b5:a4:70:34:8b: e2:45:e6:df:67:41:9e:7e:d4:9f:c2:23:eb:5a:d5: 56:98:b2:9f:3e:6e:99:f7:52:9b:80:3d:98:41:4b: ac:58:3b:bf:7d:2f:b9:ad:0f:0e:36:b1:f6:19:6e: 7c:56:b8:24:c3:2d:dd:6a:35:7a:b9:8f:a7:f4:6c: e5:f1:29:18:cf:17:d4:e5:61:a1:22:35:e9:42:43: 88:9a:49:5b:34:e7:85:cd:98:68:ca:61:c0:38:e6: 91:ed:9e:6c:a0:5d:13:81:55:b7:41:9b:a0:ba:63: 24:d8:69:1f:57:ad:42:50:62:3b:33:bc:5d:5a:f2: 4b:73:6c:b8:9e:13:54:76:1c:5d:c3:6e:2c:ab:19: c1:d6:1f:0f:59:a4:99:5d:e3:a2:d1:70:62:6a:15: 94:fb:00:34:f4:7c:cf:24:60:f9:fa:95:e1:c1:3c: f1:13:e9:ab:65:40:83:ea:93:65:15:b3:f4:02:e1: 8a:e7:20:25:b8:c7:78:a0:a2:db:1f:61:ff:a8:a9: bb:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:2D:24:AC:A1:ED:18:05:78:58:8E:36:EC:95:39:FE:74:47:78:0A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS18059.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.114.0-103.168.121.255 163.61.77.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:e1:e3:c0:b6:f9:f7:b2:3f:bc:dd:fe:1c:0d:00:d6:b3:b7: 77:cf:f5:b5:d3:bf:60:97:14:b0:f0:d4:fe:e8:e7:42:af:32: 86:22:0a:48:5c:cb:29:0f:f4:1f:c0:89:b3:6a:cd:21:e6:de: ca:f7:5f:81:c5:fc:ac:71:30:c9:6e:8b:02:df:53:cc:99:d6: 39:42:88:55:fe:4c:eb:e4:ef:03:b5:e3:7b:8d:27:23:65:53: 3a:b1:37:36:22:e8:21:ba:83:46:42:cc:2c:6a:c1:d4:72:89: d5:79:4b:2c:3b:b2:84:91:98:29:a3:e0:7a:3d:30:c5:19:29: 8f:05:df:d5:95:38:2e:d1:29:8d:87:fc:26:a8:da:a0:a8:23: 5d:1e:b1:12:f9:44:69:37:44:61:a2:18:7c:12:e8:4e:57:aa: 2d:a3:ec:91:40:6d:bc:c6:eb:6a:31:be:fa:ab:c1:3f:45:cd: 51:38:8a:f4:33:29:70:d6:cf:7c:16:d0:ac:7f:46:d8:df:e5: a3:68:f4:56:74:0b:45:ad:5d:78:2e:20:4f:98:c5:73:88:03: 0e:da:f0:78:a4:66:1a:4b:e1:82:4f:d1:25:24:14:ac:f5:eb: 65:ab:20:14:68:9b:42:b5:62:c0:6b:96:10:1f:50:b7:54:f5: 3f:58:e5:32 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJjY4s2zCe5rwx74XWLFc5zHdq0kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMwMTA0NTUwMFoX DTI3MDIyODA1MDAwMFowMzExMC8GA1UEAxMoODQyRDI0QUNBMUVEMTgwNTc4NTg4 RTM2RUM5NTM5RkU3NDQ3NzgwQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALrs6kko8MXNE7GnKdLYxLjWxgQ3xAsYvim53WhqEUNMVeW4mExCC5w8pD4t JF5vk9ve+1NTVrWkcDSL4kXm32dBnn7Un8Ij61rVVpiynz5umfdSm4A9mEFLrFg7 v30vua0PDjax9hlufFa4JMMt3Wo1ermPp/Rs5fEpGM8X1OVhoSI16UJDiJpJWzTn hc2YaMphwDjmke2ebKBdE4FVt0GboLpjJNhpH1etQlBiOzO8XVryS3NsuJ4TVHYc XcNuLKsZwdYfD1mkmV3jotFwYmoVlPsANPR8zyRg+fqV4cE88RPpq2VAg+qTZRWz 9ALhiucgJbjHeKCi2x9h/6ipuzMCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBSELSSs oe0YBXhYjjbslTn+dEd4CjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE4MDU5LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUMAwDBAFnqHIDBAFnqHgDBACjPU0wDQYJKoZIhvcNAQELBQADggEBAG7h 48C2+feyP7zd/hwNANazt3fP9bXTv2CXFLDw1P7o50KvMoYiCkhcyykP9B/AibNq zSHm3sr3X4HF/KxxMMluiwLfU8yZ1jlCiFX+TOvk7wO143uNJyNlUzqxNzYi6CG6 g0ZCzCxqwdRyidV5Syw7soSRmCmj4Ho9MMUZKY8F39WVOC7RKY2H/Cao2qCoI10e sRL5RGk3RGGiGHwS6E5Xqi2j7JFAbbzG62oxvvqrwT9FzVE4ivQzKXDWz3wW0Kx/ Rtjf5aNo9FZ0C0WtXXguIE+YxXOIAw7a8HikZhpL4YJP0SUkFKz162WrIBRom0K1 YsBrlhAfULdU9T9Y5TI= -----END CERTIFICATE-----Generated at Mon Mar 2 03:02:05 2026 by rpki-client