$ rpki-client -vvf repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/3130332e3135382e35382e302f32342d3234203d3e203137393935.roa File: 3130332e3135382e35382e302f32342d3234203d3e203137393935.roa (raw, json) Hash identifier: nEX5obMx7c1O0Mt16rHdamjU/vyDUmneghPgPs1dpHY= Subject key identifier: 15:3D:F0:C6:4A:C0:C3:30:DC:64:56:FA:E3:2F:CD:A3:F7:EE:AB:4A Certificate issuer: /CN=789DB789FE19F1F0B926ADA4C70A43CAA8237469 Certificate serial: 6CE7264D8F762F0840FAAB542E803914D50FA2C5 Authority key identifier: 78:9D:B7:89:FE:19:F1:F0:B9:26:AD:A4:C7:0A:43:CA:A8:23:74:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789DB789FE19F1F0B926ADA4C70A43CAA8237469.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/3130332e3135382e35382e302f32342d3234203d3e203137393935.roa Signing time: Thu 10 Apr 2025 07:01:13 +0000 ROA not before: Thu 10 Apr 2025 06:56:13 +0000 ROA not after: Thu 09 Apr 2026 07:01:13 +0000 asID: 17995 IP address blocks: 103.158.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/789DB789FE19F1F0B926ADA4C70A43CAA8237469.crl rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/789DB789FE19F1F0B926ADA4C70A43CAA8237469.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789DB789FE19F1F0B926ADA4C70A43CAA8237469.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 00:09:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:e7:26:4d:8f:76:2f:08:40:fa:ab:54:2e:80:39:14:d5:0f:a2:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=789DB789FE19F1F0B926ADA4C70A43CAA8237469 Validity Not Before: Apr 10 06:56:13 2025 GMT Not After : Apr 9 07:01:13 2026 GMT Subject: CN=153DF0C64AC0C330DC6456FAE32FCDA3F7EEAB4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:67:10:42:d1:8e:d6:85:4e:22:0d:e6:48:86: d2:e9:bd:23:47:e0:ba:08:70:37:7c:09:9b:46:85: c9:fb:9d:dc:6f:10:6a:11:6c:98:87:de:0c:c6:58: b9:4d:61:c7:92:32:05:f7:b6:83:dd:ff:26:df:05: ec:73:52:65:f4:6d:75:7c:d7:23:a1:83:61:cb:57: 1f:a7:33:61:22:82:6b:2c:eb:bd:6f:e4:b8:06:a3: 57:f5:0b:6c:e6:31:fc:06:f3:bd:68:8e:a0:3c:b6: b2:d6:1d:ce:06:db:fc:cb:9c:17:d5:ca:87:f6:20: a7:06:57:ba:03:3d:64:e6:59:a2:b3:05:5a:83:bd: e1:20:a9:64:43:76:ca:4a:22:90:9c:8d:92:3a:ea: 59:39:e9:fa:54:b4:a3:5d:25:cb:4a:8b:02:60:f5: 12:c5:e3:5a:3e:ae:f7:1a:78:e3:00:48:b5:05:5a: ee:4d:dc:6f:19:cd:66:0a:7b:1d:84:65:1e:cf:16: af:37:d7:84:db:2e:54:6f:a6:aa:bc:0b:06:c1:0a: 11:b4:81:10:3a:08:e8:f6:d8:b9:0b:be:9b:54:39: 67:11:e5:05:88:09:32:c7:f1:a5:b4:47:14:a7:4c: ad:d8:20:60:53:d4:cc:10:f7:a2:94:f3:04:a4:47: d9:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:3D:F0:C6:4A:C0:C3:30:DC:64:56:FA:E3:2F:CD:A3:F7:EE:AB:4A X509v3 Authority Key Identifier: keyid:78:9D:B7:89:FE:19:F1:F0:B9:26:AD:A4:C7:0A:43:CA:A8:23:74:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/789DB789FE19F1F0B926ADA4C70A43CAA8237469.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789DB789FE19F1F0B926ADA4C70A43CAA8237469.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/3130332e3135382e35382e302f32342d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.58.0/24 Signature Algorithm: sha256WithRSAEncryption a4:54:d7:72:a4:2a:77:8d:3d:54:30:d8:3a:ad:ab:23:23:4a: 80:c8:bc:85:8c:39:fd:e2:4b:0c:53:e6:56:d1:bc:eb:c1:e5: 45:72:67:6e:17:90:5f:12:94:54:05:b6:9f:e5:c3:77:4f:79: 44:81:a4:d9:83:bd:43:77:be:7e:dc:9a:f5:b2:ab:45:81:db: dd:07:d4:92:c9:00:47:e0:4b:1b:d4:20:02:ae:cf:ea:ec:41: fc:44:f0:60:a4:79:cc:dc:e1:ee:66:c2:9a:1b:15:47:20:5e: 5e:9d:32:56:9e:0a:ed:42:d7:82:fc:b9:ec:3e:95:5a:26:ec: ec:31:03:e1:99:84:fb:4a:de:90:1c:8a:15:f0:4c:80:a8:ee: d6:af:3d:a4:46:c2:4b:ab:89:13:ea:e1:32:1d:64:63:94:54: d0:4d:52:1b:cf:31:0d:51:fa:f1:43:f1:c6:34:39:f8:94:8f: 16:bb:a0:46:18:67:6d:99:82:fa:0d:9a:e6:21:3b:4a:42:9b: cd:da:ee:7f:2c:4e:e4:67:87:9e:ea:ae:d3:49:86:52:2c:df: 69:78:7a:21:e1:48:89:ce:47:5c:8b:53:27:b5:a4:8b:1b:a3: e1:56:5d:7a:63:c8:bb:03:32:27:66:88:a0:de:dd:e7:ea:c5: 3d:dd:89:55 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbOcmTY92LwhA+qtULoA5FNUPosUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzg5REI3ODlGRTE5RjFGMEI5MjZBREE0QzcwQTQzQ0FB ODIzNzQ2OTAeFw0yNTA0MTAwNjU2MTNaFw0yNjA0MDkwNzAxMTNaMDMxMTAvBgNV BAMTKDE1M0RGMEM2NEFDMEMzMzBEQzY0NTZGQUUzMkZDREEzRjdFRUFCNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjZxBC0Y7WhU4iDeZIhtLpvSNH 4LoIcDd8CZtGhcn7ndxvEGoRbJiH3gzGWLlNYceSMgX3toPd/ybfBexzUmX0bXV8 1yOhg2HLVx+nM2Eigmss671v5LgGo1f1C2zmMfwG871ojqA8trLWHc4G2/zLnBfV yof2IKcGV7oDPWTmWaKzBVqDveEgqWRDdspKIpCcjZI66lk56fpUtKNdJctKiwJg 9RLF41o+rvcaeOMASLUFWu5N3G8ZzWYKex2EZR7PFq8314TbLlRvpqq8CwbBChG0 gRA6COj22LkLvptUOWcR5QWICTLH8aW0RxSnTK3YIGBT1MwQ96KU8wSkR9kFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFT3wxkrAwzDcZFb64y/No/fuq0owHwYDVR0j BBgwFoAUeJ23if4Z8fC5Jq2kxwpDyqgjdGkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Yjc0ZDc2Yi01YjE2LTRhYjUtYWJjZi1lNGE4NjA3YTI4YjIvMC83ODlEQjc4OUZF MTlGMUYwQjkyNkFEQTRDNzBBNDNDQUE4MjM3NDY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzg5REI3ODlGRTE5RjFGMEI5MjZBREE0QzcwQTQzQ0FBODIz NzQ2OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzViNzRkNzZiLTViMTYtNGFiNS1h YmNmLWU0YTg2MDdhMjhiMi8wLzMxMzAzMzJlMzEzNTM4MmUzNTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM5MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeeOjANBgkqhkiG 9w0BAQsFAAOCAQEApFTXcqQqd409VDDYOq2rIyNKgMi8hYw5/eJLDFPmVtG868Hl RXJnbheQXxKUVAW2n+XDd095RIGk2YO9Q3e+ftya9bKrRYHb3QfUkskAR+BLG9Qg Aq7P6uxB/ETwYKR5zNzh7mbCmhsVRyBeXp0yVp4K7ULXgvy57D6VWibs7DED4ZmE +0rekByKFfBMgKju1q89pEbCS6uJE+rhMh1kY5RU0E1SG88xDVH68UPxxjQ5+JSP FrugRhhnbZmC+g2a5iE7SkKbzdrufyxO5GeHnuqu00mGUizfaXh6IeFIic5HXItT J7Wkixuj4VZdemPIuwMyJ2aIoN7d5+rFPd2JVQ== -----END CERTIFICATE-----Generated at Sat Apr 26 15:55:35 2025 by rpki-client