$ rpki-client -vvf repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/3130332e3135382e35392e302f32342d3234203d3e203137393935.roa File: 3130332e3135382e35392e302f32342d3234203d3e203137393935.roa (raw, json) Hash identifier: 7iBHgGYKAoLVfSVzVrtATYUKOYKKHRSz7KTZsrE7P78= Subject key identifier: 6C:85:2C:B7:A7:14:F0:01:A4:AF:BD:B7:16:D3:43:49:3A:6C:01:FA Certificate issuer: /CN=789DB789FE19F1F0B926ADA4C70A43CAA8237469 Certificate serial: 2928A82D5D2039CA8E1A00A4B9029D6C659D78D6 Authority key identifier: 78:9D:B7:89:FE:19:F1:F0:B9:26:AD:A4:C7:0A:43:CA:A8:23:74:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789DB789FE19F1F0B926ADA4C70A43CAA8237469.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/3130332e3135382e35392e302f32342d3234203d3e203137393935.roa Signing time: Thu 10 Apr 2025 07:01:14 +0000 ROA not before: Thu 10 Apr 2025 06:56:14 +0000 ROA not after: Thu 09 Apr 2026 07:01:14 +0000 asID: 17995 IP address blocks: 103.158.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/789DB789FE19F1F0B926ADA4C70A43CAA8237469.crl rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/789DB789FE19F1F0B926ADA4C70A43CAA8237469.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789DB789FE19F1F0B926ADA4C70A43CAA8237469.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 00:09:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:28:a8:2d:5d:20:39:ca:8e:1a:00:a4:b9:02:9d:6c:65:9d:78:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=789DB789FE19F1F0B926ADA4C70A43CAA8237469 Validity Not Before: Apr 10 06:56:14 2025 GMT Not After : Apr 9 07:01:14 2026 GMT Subject: CN=6C852CB7A714F001A4AFBDB716D343493A6C01FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:fc:23:75:88:ce:4f:11:c7:10:2b:89:ec:7f: 2e:35:d1:44:15:ef:40:47:4e:00:e8:3e:7d:af:11: 4c:90:90:83:f0:eb:55:3b:e4:fc:b5:40:dc:fd:25: ce:45:ad:f3:b7:87:97:2e:e9:12:4b:d8:cb:12:12: ee:23:a2:c1:c9:75:0a:fd:2f:a2:fc:ae:6a:58:4b: e4:0e:1d:7f:87:46:8c:49:bb:b3:12:1b:a9:18:21: 7b:9b:a5:43:7a:99:87:ee:a9:e6:f4:81:b8:f3:d1: 0e:f3:3c:2c:9d:20:74:cf:9a:82:15:d8:76:fc:e9: 9a:b7:2c:97:e5:c1:5e:50:a2:eb:4a:4b:a7:9d:1b: a5:69:d5:57:89:9c:79:75:e2:e3:63:af:14:bc:af: ea:c8:47:2a:3a:8d:cd:69:0b:2b:a4:40:ab:7b:74: 55:99:93:b8:54:ce:ec:53:7b:88:be:ce:72:ea:a2: 72:d7:3b:9f:71:9c:3d:b9:fb:99:e0:d3:28:de:17: e1:47:ca:b5:f4:98:fe:76:0a:23:e2:fe:7d:5f:5d: ce:68:24:60:48:67:8f:cb:ef:01:c3:1a:95:1f:0f: 14:db:a7:aa:ec:36:82:1a:5f:ae:5a:d0:9c:f0:8e: de:75:51:42:df:f3:0d:39:09:ab:6f:f8:a7:82:55: ec:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:85:2C:B7:A7:14:F0:01:A4:AF:BD:B7:16:D3:43:49:3A:6C:01:FA X509v3 Authority Key Identifier: keyid:78:9D:B7:89:FE:19:F1:F0:B9:26:AD:A4:C7:0A:43:CA:A8:23:74:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/789DB789FE19F1F0B926ADA4C70A43CAA8237469.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789DB789FE19F1F0B926ADA4C70A43CAA8237469.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/3130332e3135382e35392e302f32342d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.59.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:6f:eb:91:e4:e6:e3:51:c4:7a:54:67:be:a5:64:65:73:74: 8d:8c:83:ab:fc:47:83:b6:9d:27:69:eb:87:65:ba:9b:69:83: b6:85:8d:a2:85:ce:d1:e5:7f:ca:a7:88:a3:60:04:6a:84:cd: 1e:e5:1a:fc:6f:a9:64:97:5e:c9:da:ff:74:ba:06:4c:68:cc: 44:8c:bd:02:03:f9:85:7c:43:4f:2e:8c:f6:a8:c1:85:4a:62: a0:f3:10:bb:74:63:49:db:67:51:8d:76:d4:04:af:9e:1a:fd: 59:59:89:8b:fe:ad:50:9e:50:5f:c9:46:3c:56:c1:aa:02:9f: 20:8e:a4:8b:ef:f4:5c:bc:ec:f5:a4:20:9c:b8:f4:33:de:cf: 85:e1:46:96:97:64:b2:2c:9b:14:d2:b9:6f:d0:a7:85:08:d2: 4a:e7:36:29:bd:80:67:7e:e5:f7:a7:e5:a5:fe:d8:2a:b0:9f: cc:cd:ba:e5:7a:28:e9:f4:e3:8b:83:4c:ee:1c:1f:89:6c:2e: 3f:39:e7:53:67:b1:7a:39:e5:aa:d9:52:bc:f7:f0:de:be:af: ba:9c:36:da:32:08:ce:3c:fd:4c:36:0c:4c:6b:84:ea:b7:6b: cc:11:9f:22:dd:e0:75:67:f6:9b:ba:49:83:b0:8c:74:38:cb: 8f:80:d3:e1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKSioLV0gOcqOGgCkuQKdbGWdeNYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzg5REI3ODlGRTE5RjFGMEI5MjZBREE0QzcwQTQzQ0FB ODIzNzQ2OTAeFw0yNTA0MTAwNjU2MTRaFw0yNjA0MDkwNzAxMTRaMDMxMTAvBgNV BAMTKDZDODUyQ0I3QTcxNEYwMDFBNEFGQkRCNzE2RDM0MzQ5M0E2QzAxRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM/CN1iM5PEccQK4nsfy410UQV 70BHTgDoPn2vEUyQkIPw61U75Py1QNz9Jc5FrfO3h5cu6RJL2MsSEu4josHJdQr9 L6L8rmpYS+QOHX+HRoxJu7MSG6kYIXubpUN6mYfuqeb0gbjz0Q7zPCydIHTPmoIV 2Hb86Zq3LJflwV5QoutKS6edG6Vp1VeJnHl14uNjrxS8r+rIRyo6jc1pCyukQKt7 dFWZk7hUzuxTe4i+znLqonLXO59xnD25+5ng0yjeF+FHyrX0mP52CiPi/n1fXc5o JGBIZ4/L7wHDGpUfDxTbp6rsNoIaX65a0Jzwjt51UULf8w05Catv+KeCVey7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbIUst6cU8AGkr723FtNDSTpsAfowHwYDVR0j BBgwFoAUeJ23if4Z8fC5Jq2kxwpDyqgjdGkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Yjc0ZDc2Yi01YjE2LTRhYjUtYWJjZi1lNGE4NjA3YTI4YjIvMC83ODlEQjc4OUZF MTlGMUYwQjkyNkFEQTRDNzBBNDNDQUE4MjM3NDY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzg5REI3ODlGRTE5RjFGMEI5MjZBREE0QzcwQTQzQ0FBODIz NzQ2OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzViNzRkNzZiLTViMTYtNGFiNS1h YmNmLWU0YTg2MDdhMjhiMi8wLzMxMzAzMzJlMzEzNTM4MmUzNTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM5MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeeOzANBgkqhkiG 9w0BAQsFAAOCAQEASm/rkeTm41HEelRnvqVkZXN0jYyDq/xHg7adJ2nrh2W6m2mD toWNooXO0eV/yqeIo2AEaoTNHuUa/G+pZJdeydr/dLoGTGjMRIy9AgP5hXxDTy6M 9qjBhUpioPMQu3RjSdtnUY121ASvnhr9WVmJi/6tUJ5QX8lGPFbBqgKfII6ki+/0 XLzs9aQgnLj0M97PheFGlpdksiybFNK5b9CnhQjSSuc2Kb2AZ37l96flpf7YKrCf zM265Xoo6fTji4NM7hwfiWwuPznnU2exejnlqtlSvPfw3r6vupw22jIIzjz9TDYM TGuE6rdrzBGfIt3gdWf2m7pJg7CMdDjLj4DT4Q== -----END CERTIFICATE-----Generated at Sat Apr 26 18:34:15 2025 by rpki-client