$ rpki-client -vvf repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/3130332e3135382e35382e302f32332d3233203d3e203137393935.roa File: 3130332e3135382e35382e302f32332d3233203d3e203137393935.roa (raw, json) Hash identifier: +8egnZEvXKWcwk+V4p3Tes+84K8cdSV9e+Lhzfpak6w= Subject key identifier: 89:F9:30:5B:81:CF:92:06:D9:CE:29:4A:31:03:1D:66:26:DA:05:58 Certificate issuer: /CN=789DB789FE19F1F0B926ADA4C70A43CAA8237469 Certificate serial: 20F9BF37D0B5B38B3CC4CA2CE233F8102D29CD75 Authority key identifier: 78:9D:B7:89:FE:19:F1:F0:B9:26:AD:A4:C7:0A:43:CA:A8:23:74:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789DB789FE19F1F0B926ADA4C70A43CAA8237469.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/3130332e3135382e35382e302f32332d3233203d3e203137393935.roa Signing time: Thu 10 Apr 2025 07:01:14 +0000 ROA not before: Thu 10 Apr 2025 06:56:14 +0000 ROA not after: Thu 09 Apr 2026 07:01:14 +0000 asID: 17995 IP address blocks: 103.158.58.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/789DB789FE19F1F0B926ADA4C70A43CAA8237469.crl rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/789DB789FE19F1F0B926ADA4C70A43CAA8237469.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789DB789FE19F1F0B926ADA4C70A43CAA8237469.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 00:09:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:f9:bf:37:d0:b5:b3:8b:3c:c4:ca:2c:e2:33:f8:10:2d:29:cd:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=789DB789FE19F1F0B926ADA4C70A43CAA8237469 Validity Not Before: Apr 10 06:56:14 2025 GMT Not After : Apr 9 07:01:14 2026 GMT Subject: CN=89F9305B81CF9206D9CE294A31031D6626DA0558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:cb:91:d1:52:7e:ed:76:94:29:e4:97:b1:50: 7a:f7:69:e7:c6:34:21:be:86:7a:d0:1a:20:d6:57: a1:43:ba:a7:4d:48:3b:47:cb:9b:e6:65:b4:b7:18: 25:82:61:cb:5b:8c:cd:a3:f8:63:c0:6f:16:9e:a2: cf:d0:7b:83:ed:c9:7b:e6:1b:dc:bb:06:9f:7d:b5: 0c:5d:f9:a5:57:2c:cf:b6:18:79:49:91:7e:68:28: ee:3a:fd:fb:b8:a3:6a:ad:6a:22:ac:93:d6:8c:c7: fc:c9:7c:80:25:2e:a8:62:ad:0a:88:29:e4:d5:b4: 07:dd:e5:1c:1c:cd:6d:02:86:fb:9b:98:bb:d7:24: 89:be:dd:44:ec:c8:d4:d7:a3:2b:e1:c8:14:48:4d: c2:a7:bd:13:94:a6:53:47:56:31:b3:fb:06:45:ab: 6b:95:dc:a5:71:66:16:5b:c6:14:92:a3:1f:a1:c9: ba:7d:9e:21:79:88:54:6e:23:b7:0b:62:af:2d:40: 15:a0:2a:e0:29:22:e0:fc:1f:ef:09:e4:c7:82:35: 88:db:16:6e:62:57:17:30:06:d1:74:c6:3c:fc:23: 6b:2a:b6:f4:a9:ea:5b:94:ef:80:9e:dc:a4:82:83: f0:89:cb:c5:20:eb:0b:83:c2:3a:72:c2:8a:f5:0f: d2:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:F9:30:5B:81:CF:92:06:D9:CE:29:4A:31:03:1D:66:26:DA:05:58 X509v3 Authority Key Identifier: keyid:78:9D:B7:89:FE:19:F1:F0:B9:26:AD:A4:C7:0A:43:CA:A8:23:74:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/789DB789FE19F1F0B926ADA4C70A43CAA8237469.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789DB789FE19F1F0B926ADA4C70A43CAA8237469.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/3130332e3135382e35382e302f32332d3233203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.58.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:f0:e8:ca:b9:2e:e5:e8:63:3d:f0:d0:30:1c:aa:1b:2b:34: 17:cf:2b:ad:7a:8d:32:9b:b5:9c:f0:75:d7:ac:0b:aa:5f:50: 7e:6e:ea:88:07:f3:8e:14:a6:71:14:5d:39:72:bf:08:69:25: 4a:35:26:3e:f0:7a:dd:9f:f5:e2:5e:2e:10:19:ad:e4:ef:48: b6:ff:78:19:f8:da:64:1e:fb:48:09:d6:14:96:be:9b:8a:7e: ce:14:e3:83:a0:8c:e9:f1:96:85:ce:d6:38:9b:3d:fe:fe:20: 19:4e:20:5e:31:e1:0d:ed:d9:bc:04:07:92:58:b1:9f:60:44: 3d:56:69:ff:93:e8:bf:5d:ac:7b:d3:49:25:e7:e9:cd:9b:0d: a6:71:62:f9:5c:a1:b3:b5:c9:d5:98:42:da:12:27:35:b9:4a: 32:ad:46:56:0f:d2:21:fe:e7:93:0c:07:1d:6e:2c:8f:2d:b3: df:d8:ab:ae:41:ad:ff:90:80:4d:05:03:73:28:0c:42:bb:88: 0a:98:e4:6b:8e:95:23:2b:ec:5e:35:8b:39:51:a9:77:d3:47: 93:0f:31:d5:dc:42:5a:ab:07:f9:0e:7b:b0:f6:18:75:16:53: c2:c5:21:bb:76:cc:b5:1e:c4:63:27:87:f4:c1:ee:ef:88:31: fd:61:ab:32 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIPm/N9C1s4s8xMos4jP4EC0pzXUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzg5REI3ODlGRTE5RjFGMEI5MjZBREE0QzcwQTQzQ0FB ODIzNzQ2OTAeFw0yNTA0MTAwNjU2MTRaFw0yNjA0MDkwNzAxMTRaMDMxMTAvBgNV BAMTKDg5RjkzMDVCODFDRjkyMDZEOUNFMjk0QTMxMDMxRDY2MjZEQTA1NTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3y5HRUn7tdpQp5JexUHr3aefG NCG+hnrQGiDWV6FDuqdNSDtHy5vmZbS3GCWCYctbjM2j+GPAbxaeos/Qe4PtyXvm G9y7Bp99tQxd+aVXLM+2GHlJkX5oKO46/fu4o2qtaiKsk9aMx/zJfIAlLqhirQqI KeTVtAfd5RwczW0ChvubmLvXJIm+3UTsyNTXoyvhyBRITcKnvROUplNHVjGz+wZF q2uV3KVxZhZbxhSSox+hybp9niF5iFRuI7cLYq8tQBWgKuApIuD8H+8J5MeCNYjb Fm5iVxcwBtF0xjz8I2sqtvSp6luU74Ce3KSCg/CJy8Ug6wuDwjpywor1D9JtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUifkwW4HPkgbZzilKMQMdZibaBVgwHwYDVR0j BBgwFoAUeJ23if4Z8fC5Jq2kxwpDyqgjdGkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Yjc0ZDc2Yi01YjE2LTRhYjUtYWJjZi1lNGE4NjA3YTI4YjIvMC83ODlEQjc4OUZF MTlGMUYwQjkyNkFEQTRDNzBBNDNDQUE4MjM3NDY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzg5REI3ODlGRTE5RjFGMEI5MjZBREE0QzcwQTQzQ0FBODIz NzQ2OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzViNzRkNzZiLTViMTYtNGFiNS1h YmNmLWU0YTg2MDdhMjhiMi8wLzMxMzAzMzJlMzEzNTM4MmUzNTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNzM5MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeeOjANBgkqhkiG 9w0BAQsFAAOCAQEAH/Doyrku5ehjPfDQMByqGys0F88rrXqNMpu1nPB116wLql9Q fm7qiAfzjhSmcRRdOXK/CGklSjUmPvB63Z/14l4uEBmt5O9Itv94GfjaZB77SAnW FJa+m4p+zhTjg6CM6fGWhc7WOJs9/v4gGU4gXjHhDe3ZvAQHklixn2BEPVZp/5Po v12se9NJJefpzZsNpnFi+Vyhs7XJ1ZhC2hInNblKMq1GVg/SIf7nkwwHHW4sjy2z 39irrkGt/5CATQUDcygMQruICpjka46VIyvsXjWLOVGpd9NHkw8x1dxCWqsH+Q57 sPYYdRZTwsUhu3bMtR7EYyeH9MHu74gx/WGrMg== -----END CERTIFICATE-----Generated at Sat Apr 26 15:53:47 2025 by rpki-client