$ rpki-client -vvf repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/3130332e3135382e35392e302f32342d3234203d3e203137393935.roa File: 3130332e3135382e35392e302f32342d3234203d3e203137393935.roa (raw, json) Hash identifier: pr2MBZq6g7ft4f9khoEPd8GyxWW5p8Qaxvgx0CiJp9c= Subject key identifier: D7:0A:D2:3B:35:68:3E:84:38:21:E6:71:D8:1A:88:B1:78:9D:1A:6A Certificate issuer: /CN=789DB789FE19F1F0B926ADA4C70A43CAA8237469 Certificate serial: 401637E88F83B456788689F293A32BEE9D9A63AC Authority key identifier: 78:9D:B7:89:FE:19:F1:F0:B9:26:AD:A4:C7:0A:43:CA:A8:23:74:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789DB789FE19F1F0B926ADA4C70A43CAA8237469.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/3130332e3135382e35392e302f32342d3234203d3e203137393935.roa Signing time: Thu 09 May 2024 07:00:00 +0000 ROA not before: Thu 09 May 2024 06:55:00 +0000 ROA not after: Thu 08 May 2025 07:00:00 +0000 asID: 17995 IP address blocks: 103.158.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/789DB789FE19F1F0B926ADA4C70A43CAA8237469.crl rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/789DB789FE19F1F0B926ADA4C70A43CAA8237469.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789DB789FE19F1F0B926ADA4C70A43CAA8237469.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:16:37:e8:8f:83:b4:56:78:86:89:f2:93:a3:2b:ee:9d:9a:63:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=789DB789FE19F1F0B926ADA4C70A43CAA8237469 Validity Not Before: May 9 06:55:00 2024 GMT Not After : May 8 07:00:00 2025 GMT Subject: CN=D70AD23B35683E843821E671D81A88B1789D1A6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:c2:a0:0d:86:6b:ec:20:d2:fa:d0:b6:30:25: 17:6e:24:d2:a9:ee:20:7c:b9:43:ca:0d:7a:94:41: 63:f6:3a:f5:50:7b:38:0b:27:c2:54:c2:9b:f6:74: ce:79:db:78:ae:d1:d1:cb:cd:b1:d2:a4:08:40:03: 88:37:c4:eb:9b:c4:0a:9c:07:bc:06:a0:50:e4:d4: 85:1d:d6:6b:3f:a8:cc:6f:1b:05:72:14:07:34:a4: 4e:c9:99:d3:63:f4:02:a5:15:32:ef:2a:92:3f:ed: 0f:ac:f1:33:67:9d:80:33:c1:78:36:95:bd:57:30: c1:6f:ca:60:c4:3c:cd:f1:d7:5e:5f:01:e4:ee:0d: e8:1e:f1:9d:4d:38:0e:23:dc:d0:b4:5a:8c:d7:41: 3b:91:3b:29:78:65:ce:17:a6:94:11:a1:83:4c:fe: 3c:ec:ca:0a:cc:24:d6:60:db:4e:71:91:f5:e9:cd: 79:da:e3:e8:43:0d:e7:bd:03:7a:be:75:5b:19:d4: 78:84:51:94:1e:ba:f0:fb:92:57:69:36:63:e8:47: 58:01:4e:ca:0d:f9:27:11:b5:5c:6a:3d:c7:64:fa: a7:83:6f:8a:cf:ec:0c:5a:b5:53:3f:7e:51:78:b7: c7:9e:ac:48:06:21:18:bb:b2:7a:2d:76:da:22:c5: 6d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:0A:D2:3B:35:68:3E:84:38:21:E6:71:D8:1A:88:B1:78:9D:1A:6A X509v3 Authority Key Identifier: keyid:78:9D:B7:89:FE:19:F1:F0:B9:26:AD:A4:C7:0A:43:CA:A8:23:74:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/789DB789FE19F1F0B926ADA4C70A43CAA8237469.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789DB789FE19F1F0B926ADA4C70A43CAA8237469.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5b74d76b-5b16-4ab5-abcf-e4a8607a28b2/0/3130332e3135382e35392e302f32342d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.59.0/24 Signature Algorithm: sha256WithRSAEncryption c1:c0:0a:66:69:74:9a:04:58:6f:8b:70:58:39:94:c3:e5:ed: ff:c7:4a:ce:aa:f7:6c:4c:aa:f2:0c:25:98:8a:2c:f3:99:dc: 65:9f:4e:b6:36:5b:c2:e1:fc:36:e2:52:65:6e:da:03:f6:f1: b7:f1:67:8b:39:ae:30:55:2b:5d:46:1c:3e:39:bc:3e:b2:60: 7c:7f:a7:4c:dc:6c:20:2b:82:87:62:ee:23:15:e7:bf:48:f3: d8:09:d7:c3:4c:c0:e8:07:39:25:24:80:93:80:49:48:00:ff: eb:9c:39:c1:ac:04:1b:f0:ac:c4:a9:7f:6c:79:36:82:04:f2: c5:1f:70:15:d2:91:70:fe:b5:35:22:cd:e4:19:29:89:3d:c8: 66:fb:7c:c8:1a:23:c2:24:2a:61:7f:cb:5c:16:c5:25:8d:52: 34:96:5c:c9:13:55:13:32:28:3c:3f:f8:d0:39:79:57:7d:b5: b6:61:be:53:42:cf:f4:a4:77:8c:65:b3:f0:ff:e7:6a:f3:66: ba:51:f0:8a:cd:2e:b8:77:d5:50:c0:69:2e:dc:d4:b4:aa:9b: c3:c2:17:b7:9d:6c:99:3a:54:19:cf:8a:dd:5d:5c:01:6d:3a: 27:22:b7:30:17:d0:17:06:b6:2c:7d:09:9f:4f:85:32:36:b0: 79:78:b5:18 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQBY36I+DtFZ4honyk6Mr7p2aY6wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzg5REI3ODlGRTE5RjFGMEI5MjZBREE0QzcwQTQzQ0FB ODIzNzQ2OTAeFw0yNDA1MDkwNjU1MDBaFw0yNTA1MDgwNzAwMDBaMDMxMTAvBgNV BAMTKEQ3MEFEMjNCMzU2ODNFODQzODIxRTY3MUQ4MUE4OEIxNzg5RDFBNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnwqANhmvsINL60LYwJRduJNKp 7iB8uUPKDXqUQWP2OvVQezgLJ8JUwpv2dM5523iu0dHLzbHSpAhAA4g3xOubxAqc B7wGoFDk1IUd1ms/qMxvGwVyFAc0pE7JmdNj9AKlFTLvKpI/7Q+s8TNnnYAzwXg2 lb1XMMFvymDEPM3x115fAeTuDege8Z1NOA4j3NC0WozXQTuROyl4Zc4XppQRoYNM /jzsygrMJNZg205xkfXpzXna4+hDDee9A3q+dVsZ1HiEUZQeuvD7kldpNmPoR1gB TsoN+ScRtVxqPcdk+qeDb4rP7AxatVM/flF4t8eerEgGIRi7snotdtoixW3bAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1wrSOzVoPoQ4IeZx2BqIsXidGmowHwYDVR0j BBgwFoAUeJ23if4Z8fC5Jq2kxwpDyqgjdGkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Yjc0ZDc2Yi01YjE2LTRhYjUtYWJjZi1lNGE4NjA3YTI4YjIvMC83ODlEQjc4OUZF MTlGMUYwQjkyNkFEQTRDNzBBNDNDQUE4MjM3NDY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzg5REI3ODlGRTE5RjFGMEI5MjZBREE0QzcwQTQzQ0FBODIz NzQ2OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzViNzRkNzZiLTViMTYtNGFiNS1h YmNmLWU0YTg2MDdhMjhiMi8wLzMxMzAzMzJlMzEzNTM4MmUzNTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM5MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeeOzANBgkqhkiG 9w0BAQsFAAOCAQEAwcAKZml0mgRYb4twWDmUw+Xt/8dKzqr3bEyq8gwlmIos85nc ZZ9OtjZbwuH8NuJSZW7aA/bxt/FnizmuMFUrXUYcPjm8PrJgfH+nTNxsICuCh2Lu IxXnv0jz2AnXw0zA6Ac5JSSAk4BJSAD/65w5wawEG/CsxKl/bHk2ggTyxR9wFdKR cP61NSLN5BkpiT3IZvt8yBojwiQqYX/LXBbFJY1SNJZcyRNVEzIoPD/40Dl5V321 tmG+U0LP9KR3jGWz8P/navNmulHwis0uuHfVUMBpLtzUtKqbw8IXt51smTpUGc+K 3V1cAW06JyK3MBfQFwa2LH0Jn0+FMjaweXi1GA== -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:28 2024 by rpki-client on console-ams.rpki-client.org