$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS46057.roa File: AS46057.roa (raw, json) Hash identifier: j5bPcLXOTyhCGEj5O00TqtxYDmXHQhGN4PEME1BYVXQ= Subject key identifier: 86:A3:9B:B5:11:4F:20:97:7A:E7:F5:45:5B:1D:5F:07:3A:8D:62:BB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4D90E574CCBA4958C086F33D44DF61C05FAAFAE8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS46057.roa Signing time: Thu 31 Jul 2025 05:00:00 +0000 ROA not before: Thu 31 Jul 2025 04:55:00 +0000 ROA not after: Thu 30 Jul 2026 05:00:00 +0000 asID: 46057 IP address blocks: 2406:efc0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 13:36:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:90:e5:74:cc:ba:49:58:c0:86:f3:3d:44:df:61:c0:5f:aa:fa:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 04:55:00 2025 GMT Not After : Jul 30 05:00:00 2026 GMT Subject: CN=86A39BB5114F20977AE7F5455B1D5F073A8D62BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0e:b5:aa:32:48:15:33:de:ca:fd:73:ad:64: 1b:4d:cd:b0:52:c9:91:35:e4:8b:f7:c8:45:04:ce: 7f:d1:8f:5f:be:36:b4:70:80:12:66:3a:4f:4f:82: 79:d6:12:09:db:db:77:c2:7a:92:f0:00:b9:a1:9b: 21:38:aa:1f:f6:d8:97:43:0b:29:7a:d6:5d:af:d4: 87:89:39:2e:bc:69:df:ed:bb:bb:24:7e:d0:92:1a: d8:d0:5c:a1:e2:a5:98:f0:65:75:4f:de:40:17:59: 1e:ab:97:ca:6a:a9:28:1e:bb:25:44:6f:87:09:1a: 8b:ee:38:8a:12:59:9f:64:e8:c9:4c:30:0f:ac:ef: c4:ec:0a:35:26:0a:f8:49:c2:d1:b4:06:4f:32:75: 1e:b9:a2:a0:35:7d:8c:b5:68:aa:dc:8b:2a:8b:b2: c0:1c:94:ff:f5:21:05:90:5f:6a:1a:3f:27:e0:2e: 88:67:32:15:78:4e:4d:a8:76:4f:79:21:1c:31:7a: 7e:cc:bf:9a:16:36:2b:52:02:8e:da:46:7f:be:1c: 62:60:a3:4d:29:e1:d3:dd:f5:68:2f:50:b6:79:f3: ba:77:d1:a5:38:d9:5d:de:17:0d:a4:e1:f6:6c:50: c8:ef:b3:82:ef:d2:9c:be:37:d0:2d:ca:77:0c:aa: 76:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:A3:9B:B5:11:4F:20:97:7A:E7:F5:45:5B:1D:5F:07:3A:8D:62:BB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS46057.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:efc0::/32 Signature Algorithm: sha256WithRSAEncryption 22:8a:d5:5c:c7:c5:56:22:cd:d8:e4:27:61:e3:55:68:c6:c3: 76:97:db:a5:68:77:ec:01:95:00:3e:a5:fc:1c:6d:5c:34:dd: e5:70:3d:d8:39:c8:c7:62:15:b9:a4:3d:3d:9f:44:ca:c5:fe: b6:80:30:f8:d8:5a:76:ac:6c:df:e2:99:b5:6c:b2:7a:84:7b: 1f:99:2b:d6:5b:28:39:f9:62:ad:b0:9c:97:fa:98:e7:b5:63: 8b:6e:89:57:01:1f:a6:46:89:37:cd:5d:e8:fe:4c:bc:ea:1e: af:62:78:0c:b3:1e:b9:2f:3d:1a:d2:49:10:fd:44:90:ac:a5: 12:3a:c3:a2:17:2c:e7:83:76:b1:2d:07:65:b2:fc:45:78:9d: 05:52:89:3b:5f:df:07:db:5e:77:e5:4b:f6:55:f5:93:73:bc: 73:27:63:72:35:88:fd:9c:ab:8e:e8:41:73:08:72:21:5f:d4: cc:26:ce:7d:bf:b1:57:8d:54:2d:86:60:e2:3e:2b:09:a4:6f: e0:d9:5f:a9:90:d7:7f:b3:69:3e:d9:7e:e9:1b:7b:f9:e3:1c: 98:74:7e:4a:f6:44:a3:3a:91:70:aa:be:df:58:75:9e:3e:08: 94:9e:52:07:a5:d2:73:94:24:f5:9c:7e:75:38:44:40:5a:d8: be:5e:61:56 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUTZDldMy6SVjAhvM9RN9hwF+q+ugwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDczMTA0NTUwMFoX DTI2MDczMDA1MDAwMFowMzExMC8GA1UEAxMoODZBMzlCQjUxMTRGMjA5NzdBRTdG NTQ1NUIxRDVGMDczQThENjJCQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMgOtaoySBUz3sr9c61kG03NsFLJkTXki/fIRQTOf9GPX742tHCAEmY6T0+C edYSCdvbd8J6kvAAuaGbITiqH/bYl0MLKXrWXa/Uh4k5Lrxp3+27uyR+0JIa2NBc oeKlmPBldU/eQBdZHquXymqpKB67JURvhwkai+44ihJZn2ToyUwwD6zvxOwKNSYK +EnC0bQGTzJ1HrmioDV9jLVoqtyLKouywByU//UhBZBfaho/J+AuiGcyFXhOTah2 T3khHDF6fsy/mhY2K1ICjtpGf74cYmCjTSnh0931aC9QtnnzunfRpTjZXd4XDaTh 9mxQyO+zgu/SnL430C3Kdwyqdk0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSGo5u1 EU8gl3rn9UVbHV8HOo1iuzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ2MDU3LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAbvwDANBgkqhkiG9w0BAQsFAAOCAQEAIorVXMfFViLN2OQnYeNV aMbDdpfbpWh37AGVAD6l/BxtXDTd5XA92DnIx2IVuaQ9PZ9EysX+toAw+Nhadqxs 3+KZtWyyeoR7H5kr1lsoOflirbCcl/qY57Vji26JVwEfpkaJN81d6P5MvOoer2J4 DLMeuS89GtJJEP1EkKylEjrDohcs54N2sS0HZbL8RXidBVKJO1/fB9ted+VL9lX1 k3O8cydjcjWI/ZyrjuhBcwhyIV/UzCbOfb+xV41ULYZg4j4rCaRv4NlfqZDXf7Np Ptl+6Rt7+eMcmHR+SvZEozqRcKq+31h1nj4IlJ5SB6XSc5Qk9Zx+dThEQFrYvl5h Vg== -----END CERTIFICATE-----Generated at Wed Aug 6 03:58:03 2025 by rpki-client