$ rpki-client -vvf repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa File: 3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa (raw, json) Hash identifier: ZHzUIRy4nZYVajGdct7Oorl4xz1bGegJThKCS1yBqbI= Subject key identifier: 66:7D:7B:2E:5B:64:82:81:ED:D3:99:04:48:F3:82:55:45:2A:73:D6 Certificate issuer: /CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Certificate serial: 36B4547F2FDA5A48CEC204E63B638FC047E2E60F Authority key identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa Signing time: Wed 21 Aug 2024 03:02:49 +0000 ROA not before: Wed 21 Aug 2024 02:57:49 +0000 ROA not after: Wed 20 Aug 2025 03:02:49 +0000 asID: 149883 IP address blocks: 103.184.20.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:b4:54:7f:2f:da:5a:48:ce:c2:04:e6:3b:63:8f:c0:47:e2:e6:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Validity Not Before: Aug 21 02:57:49 2024 GMT Not After : Aug 20 03:02:49 2025 GMT Subject: CN=667D7B2E5B648281EDD3990448F38255452A73D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:28:0c:e4:18:8e:e2:3c:69:4a:12:c7:57:55: 25:50:62:40:68:c1:e5:1f:25:3f:0d:9a:03:38:28: 9a:a7:be:88:28:61:b1:31:6b:44:07:c7:54:12:70: 86:bb:79:2d:26:60:3e:17:86:5e:ee:81:23:ab:6c: 22:4e:0f:5c:a2:01:3f:ea:54:6a:57:5f:a2:6d:aa: 44:e0:d3:99:0a:3f:d1:fe:23:07:b3:6f:04:75:d1: 5a:75:ab:fa:da:22:d0:74:a7:34:58:ae:6e:26:51: 4c:08:18:58:3d:a5:41:71:70:68:11:45:c5:17:36: a4:fe:b7:af:5a:2a:3f:b8:1d:5c:f8:5f:98:2a:9d: 4e:cb:8b:2f:2f:ab:c7:18:7e:1d:07:ec:97:22:b5: 97:cc:17:2e:3f:05:bf:6e:29:4d:30:3f:c9:14:43: fa:1c:bb:52:cc:0f:a5:f9:db:74:22:fb:70:12:48: 0b:de:e6:9a:3a:ad:9f:fb:4f:3a:52:d0:8a:4f:45: 88:c4:ac:33:a0:fc:00:98:22:84:8e:4e:70:d8:3d: 11:fe:d9:32:e3:cc:e3:5a:1a:65:ca:b1:41:fc:63: 09:45:9d:13:24:31:6c:fc:52:b6:75:c4:1e:69:cd: 2b:03:f7:09:aa:38:27:52:cc:d7:d5:71:81:e5:93: 8e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:7D:7B:2E:5B:64:82:81:ED:D3:99:04:48:F3:82:55:45:2A:73:D6 X509v3 Authority Key Identifier: keyid:58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.20.0/23 Signature Algorithm: sha256WithRSAEncryption 63:28:1e:1f:65:f1:89:74:73:66:a5:48:5c:ce:9c:74:68:c0: ce:39:b2:82:b7:3a:fa:4e:e3:9d:4e:32:31:c5:71:64:3e:b8: b5:83:bc:77:93:25:7c:a1:f4:ca:04:bc:5c:4d:3e:ca:fd:e4: 38:e9:16:18:44:1e:e8:a1:e1:07:34:19:b5:2f:57:3d:65:24: 57:11:84:92:60:58:24:5d:51:35:ca:c1:12:b6:93:24:30:b7: 70:92:34:7b:fe:9a:82:59:bc:32:bc:51:40:3e:12:b8:fa:2a: 9d:99:eb:ce:28:92:4b:4d:a4:c1:a4:61:f6:2f:cd:81:56:3b: c8:0e:02:30:f9:20:3f:d9:cc:a5:2f:87:15:09:92:4c:71:4d: bc:1a:ff:47:ee:8d:ae:f2:e6:86:86:3e:b1:66:00:74:41:b6: 83:7e:d1:0a:16:88:7c:0e:46:16:c1:51:24:9a:e5:3e:d1:3d: 89:df:4d:45:e3:c3:b4:31:73:e6:5a:c7:f8:82:5b:28:77:6d: 35:1b:3e:08:b4:3c:b8:de:24:06:e8:33:3f:3c:56:71:53:81: a8:6e:e5:5e:3f:8a:a4:d8:8a:05:11:84:f4:35:f6:93:f3:b3: 85:50:5a:76:59:e1:43:8d:db:8a:a2:d4:72:44:ad:27:e7:2d: c8:48:44:4a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNrRUfy/aWkjOwgTmO2OPwEfi5g8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1 QTY5QzU5NjAeFw0yNDA4MjEwMjU3NDlaFw0yNTA4MjAwMzAyNDlaMDMxMTAvBgNV BAMTKDY2N0Q3QjJFNUI2NDgyODFFREQzOTkwNDQ4RjM4MjU1NDUyQTczRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTKAzkGI7iPGlKEsdXVSVQYkBo weUfJT8NmgM4KJqnvogoYbExa0QHx1QScIa7eS0mYD4Xhl7ugSOrbCJOD1yiAT/q VGpXX6JtqkTg05kKP9H+IwezbwR10Vp1q/raItB0pzRYrm4mUUwIGFg9pUFxcGgR RcUXNqT+t69aKj+4HVz4X5gqnU7Liy8vq8cYfh0H7JcitZfMFy4/Bb9uKU0wP8kU Q/ocu1LMD6X523Qi+3ASSAve5po6rZ/7TzpS0IpPRYjErDOg/ACYIoSOTnDYPRH+ 2TLjzONaGmXKsUH8YwlFnRMkMWz8UrZ1xB5pzSsD9wmqOCdSzNfVcYHlk44DAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZn17LltkgoHt05kESPOCVUUqc9YwHwYDVR0j BBgwFoAUWKcG6nRo3w0UyhgXx8xdvVppxZYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmJmYWIwOS1jMWU5LTQ0ZDgtODE5ZS1mZGY2NTQ5YzZiM2YvMC81OEE3MDZFQTc0 NjhERjBEMTRDQTE4MTdDN0NDNURCRDVBNjlDNTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1QTY5 QzU5Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyYmZhYjA5LWMxZTktNDRkOC04 MTllLWZkZjY1NDljNmIzZi8wLzMxMzAzMzJlMzEzODM0MmUzMjMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDM5MzgzODMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7gUMA0GCSqG SIb3DQEBCwUAA4IBAQBjKB4fZfGJdHNmpUhczpx0aMDOObKCtzr6TuOdTjIxxXFk Pri1g7x3kyV8ofTKBLxcTT7K/eQ46RYYRB7ooeEHNBm1L1c9ZSRXEYSSYFgkXVE1 ysEStpMkMLdwkjR7/pqCWbwyvFFAPhK4+iqdmevOKJJLTaTBpGH2L82BVjvIDgIw +SA/2cylL4cVCZJMcU28Gv9H7o2u8uaGhj6xZgB0QbaDftEKFoh8DkYWwVEkmuU+ 0T2J301F48O0MXPmWsf4glsod201Gz4ItDy43iQG6DM/PFZxU4GobuVeP4qk2IoF EYT0NfaT87OFUFp2WeFDjduKotRyRK0n5y3ISERK -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:54 2024 by rpki-client on console-fra.rpki-client.org