$ rpki-client -vvf repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/3130332e3135382e35382e302f32342d3234203d3e203137393935.roa File: 3130332e3135382e35382e302f32342d3234203d3e203137393935.roa (raw, json) Hash identifier: eLElha3taylp2ysYME+GbE2ZFl6WH4lBY9beIkH8KvM= Subject key identifier: 06:9B:2C:B4:CC:92:4F:A9:9F:8D:4F:9B:66:61:0B:B0:52:17:54:93 Certificate issuer: /CN=789DB789FE19F1F0B926ADA4C70A43CAA8237469 Certificate serial: 0AF9BB805DC6BF3F1FB82143B8393C561266FD9B Authority key identifier: 78:9D:B7:89:FE:19:F1:F0:B9:26:AD:A4:C7:0A:43:CA:A8:23:74:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789DB789FE19F1F0B926ADA4C70A43CAA8237469.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/3130332e3135382e35382e302f32342d3234203d3e203137393935.roa Signing time: Thu 09 May 2024 07:00:00 +0000 ROA not before: Thu 09 May 2024 06:55:00 +0000 ROA not after: Thu 08 May 2025 07:00:00 +0000 asID: 17995 IP address blocks: 103.158.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/789DB789FE19F1F0B926ADA4C70A43CAA8237469.crl rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/789DB789FE19F1F0B926ADA4C70A43CAA8237469.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789DB789FE19F1F0B926ADA4C70A43CAA8237469.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:f9:bb:80:5d:c6:bf:3f:1f:b8:21:43:b8:39:3c:56:12:66:fd:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=789DB789FE19F1F0B926ADA4C70A43CAA8237469 Validity Not Before: May 9 06:55:00 2024 GMT Not After : May 8 07:00:00 2025 GMT Subject: CN=069B2CB4CC924FA99F8D4F9B66610BB052175493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:3e:54:a6:06:c2:e4:80:7d:fc:7f:c6:8e:75: c1:08:a7:26:a9:f9:eb:5b:5d:20:1f:22:37:0b:78: 50:17:fc:0a:65:a1:2b:77:08:23:9b:a0:e9:7f:57: 40:73:56:a8:67:3c:a3:ae:90:26:95:61:49:ad:a2: 89:af:18:e0:18:ae:99:45:bd:1f:5f:5e:40:f1:4c: 64:37:69:5c:d6:63:c6:59:c6:fd:5d:30:3e:41:87: 96:96:0d:42:70:6b:92:63:32:81:cf:82:7d:a2:d0: b5:25:c0:ca:f0:e0:12:cb:4e:27:c3:71:3e:35:ff: 5d:e7:4a:82:28:55:45:86:4d:42:00:42:43:a9:3c: 7d:f7:3f:65:2f:b0:57:db:50:87:72:6e:c7:e3:76: c8:90:19:e7:4d:46:50:3f:4f:8c:8f:c4:b5:a8:b6: 09:e8:71:a5:e2:e1:d0:d5:5e:e2:c6:2f:34:c1:a1: 0d:7e:af:e4:d5:ba:55:16:e3:d9:99:d6:3c:87:2a: 88:6b:ce:5f:31:1f:20:43:66:4f:c8:9a:31:d1:89: 50:a4:a3:ae:a1:ec:b1:ab:0d:35:7b:42:fc:09:7e: 99:1a:55:e0:f1:07:4e:f2:87:4b:ec:f3:54:c3:6d: 6b:b9:78:d0:6a:18:ed:3d:5a:34:58:d4:65:5e:11: 9b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:9B:2C:B4:CC:92:4F:A9:9F:8D:4F:9B:66:61:0B:B0:52:17:54:93 X509v3 Authority Key Identifier: keyid:78:9D:B7:89:FE:19:F1:F0:B9:26:AD:A4:C7:0A:43:CA:A8:23:74:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/789DB789FE19F1F0B926ADA4C70A43CAA8237469.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789DB789FE19F1F0B926ADA4C70A43CAA8237469.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/3130332e3135382e35382e302f32342d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.58.0/24 Signature Algorithm: sha256WithRSAEncryption 95:6e:f7:95:3e:a9:98:28:42:fb:1d:bf:3c:a4:b8:b0:02:fa: c2:cd:cb:de:dd:ce:28:45:4c:e9:8d:44:e1:09:3b:cf:1c:2e: 74:d8:2a:ff:dd:70:32:1a:f7:5f:6b:9c:7a:65:7e:75:e4:ec: fb:10:23:c1:51:fb:99:2c:b8:c7:5f:2a:22:3f:ce:24:4b:d8: b3:09:e6:25:f1:e0:b9:6a:e9:18:89:90:eb:14:27:d8:0c:c6: 25:dd:9f:54:bd:51:56:f4:77:2c:9a:e0:7d:9e:d2:df:70:49: d0:4e:4f:e7:03:78:c6:2a:20:3e:ca:1a:79:ea:76:c5:26:87: 1f:81:7d:8c:9f:c6:e4:6f:fa:82:ea:db:c8:b4:e3:d5:93:10: 92:58:66:00:27:ec:46:b6:d3:05:1b:c5:fb:68:57:39:76:87: 6f:74:42:47:61:23:29:25:d3:30:63:bb:16:f1:a8:19:99:b1: 4a:e1:68:fa:28:16:f2:54:58:c3:ba:8a:1b:a9:e1:80:17:bc: 22:45:e0:dc:22:83:da:79:08:32:2a:91:93:53:7f:df:9e:55: 71:af:a2:a5:82:87:1a:ee:d3:51:f1:77:1d:32:c5:a5:ad:2e: 21:e4:cc:b7:6f:45:37:6d:54:a6:bc:94:04:42:40:06:5b:68: 53:a9:ff:14 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCvm7gF3Gvz8fuCFDuDk8VhJm/ZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzg5REI3ODlGRTE5RjFGMEI5MjZBREE0QzcwQTQzQ0FB ODIzNzQ2OTAeFw0yNDA1MDkwNjU1MDBaFw0yNTA1MDgwNzAwMDBaMDMxMTAvBgNV BAMTKDA2OUIyQ0I0Q0M5MjRGQTk5RjhENEY5QjY2NjEwQkIwNTIxNzU0OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYPlSmBsLkgH38f8aOdcEIpyap +etbXSAfIjcLeFAX/AploSt3CCOboOl/V0BzVqhnPKOukCaVYUmtoomvGOAYrplF vR9fXkDxTGQ3aVzWY8ZZxv1dMD5Bh5aWDUJwa5JjMoHPgn2i0LUlwMrw4BLLTifD cT41/13nSoIoVUWGTUIAQkOpPH33P2UvsFfbUIdybsfjdsiQGedNRlA/T4yPxLWo tgnocaXi4dDVXuLGLzTBoQ1+r+TVulUW49mZ1jyHKohrzl8xHyBDZk/ImjHRiVCk o66h7LGrDTV7QvwJfpkaVeDxB07yh0vs81TDbWu5eNBqGO09WjRY1GVeEZutAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBpsstMyST6mfjU+bZmELsFIXVJMwHwYDVR0j BBgwFoAUeJ23if4Z8fC5Jq2kxwpDyqgjdGkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Yjc0ZDc2Yi01YjE2LTRhYjUtYWJjZi1lNGE4NjA3YTI4YjIvMC83ODlEQjc4OUZF MTlGMUYwQjkyNkFEQTRDNzBBNDNDQUE4MjM3NDY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzg5REI3ODlGRTE5RjFGMEI5MjZBREE0QzcwQTQzQ0FBODIz NzQ2OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzViNzRkNzZiLTViMTYtNGFiNS1h YmNmLWU0YTg2MDdhMjhiMi8wLzMxMzAzMzJlMzEzNTM4MmUzNTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM5MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeeOjANBgkqhkiG 9w0BAQsFAAOCAQEAlW73lT6pmChC+x2/PKS4sAL6ws3L3t3OKEVM6Y1E4Qk7zxwu dNgq/91wMhr3X2ucemV+deTs+xAjwVH7mSy4x18qIj/OJEvYswnmJfHguWrpGImQ 6xQn2AzGJd2fVL1RVvR3LJrgfZ7S33BJ0E5P5wN4xiogPsoaeep2xSaHH4F9jJ/G 5G/6gurbyLTj1ZMQklhmACfsRrbTBRvF+2hXOXaHb3RCR2EjKSXTMGO7FvGoGZmx SuFo+igW8lRYw7qKG6nhgBe8IkXg3CKD2nkIMiqRk1N/355Vca+ipYKHGu7TUfF3 HTLFpa0uIeTMt29FN21UpryUBEJABltoU6n/FA== -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:28 2024 by rpki-client on console-ams.rpki-client.org