$ rpki-client -vvf repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa File: 3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa (raw, json) Hash identifier: eZQn8LOaRy27smsVeLctgJDzoxqezWD0n+1aqca8ny8= Subject key identifier: F7:1E:74:06:40:C1:C1:1F:60:C8:C2:70:90:C6:57:14:7C:9C:52:6D Certificate issuer: /CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Certificate serial: 538E1B851733E946C4BD0872B4DF70755F06D3F9 Authority key identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa Signing time: Wed 20 Sep 2023 03:00:00 +0000 ROA not before: Wed 20 Sep 2023 02:55:00 +0000 ROA not after: Wed 18 Sep 2024 03:00:00 +0000 asID: 149883 IP address blocks: 103.184.20.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 03:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:8e:1b:85:17:33:e9:46:c4:bd:08:72:b4:df:70:75:5f:06:d3:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Validity Not Before: Sep 20 02:55:00 2023 GMT Not After : Sep 18 03:00:00 2024 GMT Subject: CN=F71E740640C1C11F60C8C27090C657147C9C526D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9e:6c:15:6a:16:bd:cc:15:11:67:13:7e:3c: e5:1b:af:96:24:f5:a5:df:83:b5:1f:45:84:4d:98: 37:8c:e1:af:f4:31:91:73:fa:5e:96:d4:4a:8c:49: 46:d5:fa:8f:85:0e:21:28:d8:ce:fe:d2:2d:46:23: ba:06:bf:a6:64:20:29:31:54:24:6d:ef:8f:de:6a: 46:bc:20:74:ef:e0:52:8f:6a:73:b5:8d:5e:18:7d: 0e:cd:4e:7c:29:1c:63:ff:98:82:fb:8d:b2:85:c2: 86:b4:a9:d0:60:7e:da:fc:0f:0c:5b:30:2f:15:2f: f4:b6:2c:81:dc:13:4e:42:d6:10:43:27:5f:e8:fc: 36:a6:de:a8:84:cf:f4:a5:b7:58:ec:a1:5b:f9:83: 3b:cc:b3:01:99:ba:52:8c:86:65:49:c5:fc:5d:e2: b9:a0:e0:ef:23:4f:e8:cb:e2:a2:81:94:a8:85:ad: 87:77:9f:34:a2:aa:3f:0e:d5:53:88:b7:e0:f8:a0: 54:a0:33:cf:11:f3:76:8c:86:5b:ee:81:08:37:dd: b0:27:49:65:ba:7a:48:66:d5:62:70:32:f4:72:9b: e6:03:d6:98:70:7f:2e:f8:30:f6:85:29:87:6e:cf: c6:e6:e5:d0:de:fd:2a:ed:73:7a:1e:96:62:48:1a: ab:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:1E:74:06:40:C1:C1:1F:60:C8:C2:70:90:C6:57:14:7C:9C:52:6D X509v3 Authority Key Identifier: keyid:58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.20.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:4a:78:c9:5b:59:c8:e1:49:4b:3c:f4:39:9e:90:d0:ab:e0: 18:49:72:32:26:1a:18:cf:dd:17:3e:89:9b:1e:90:e7:3e:a3: 6f:47:11:4e:c7:7b:1e:7f:f9:d0:27:96:cd:45:4d:b9:f2:60: b0:5f:57:dc:cc:3a:b6:a8:99:ba:b9:08:ce:b7:18:f3:7f:26: 70:8f:e6:5c:f0:5b:29:bb:65:c1:ad:14:53:5c:14:39:b5:41: df:b6:d1:3d:95:00:5b:4b:e4:9e:ab:0d:0e:0d:fc:46:75:1d: c0:80:80:e4:c7:53:4a:66:af:bb:37:d7:25:40:ba:6e:f5:25: 87:c7:c9:90:79:f1:63:ec:95:9a:92:24:33:7b:bb:8d:62:d7: 22:73:5b:10:7b:32:ef:c8:16:10:01:37:ea:cd:a1:5d:cf:a2: 71:12:7a:77:ee:a7:19:fb:87:55:01:c3:63:e3:f1:d9:85:9c: ba:8d:fd:03:7e:63:dc:67:94:c4:b9:92:87:c0:38:84:77:d6: f7:4d:91:ec:0d:6d:e6:8a:32:a5:bc:38:64:19:70:24:1c:ee: 00:06:7c:09:08:ef:cb:f0:79:06:01:44:09:72:1a:38:13:77: be:2b:32:94:41:85:78:bb:98:18:52:cc:5e:28:38:1b:2d:eb: 4e:21:39:db -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUU44bhRcz6UbEvQhytN9wdV8G0/kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1 QTY5QzU5NjAeFw0yMzA5MjAwMjU1MDBaFw0yNDA5MTgwMzAwMDBaMDMxMTAvBgNV BAMTKEY3MUU3NDA2NDBDMUMxMUY2MEM4QzI3MDkwQzY1NzE0N0M5QzUyNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDenmwVaha9zBURZxN+POUbr5Yk 9aXfg7UfRYRNmDeM4a/0MZFz+l6W1EqMSUbV+o+FDiEo2M7+0i1GI7oGv6ZkICkx VCRt74/eaka8IHTv4FKPanO1jV4YfQ7NTnwpHGP/mIL7jbKFwoa0qdBgftr8Dwxb MC8VL/S2LIHcE05C1hBDJ1/o/Dam3qiEz/Slt1jsoVv5gzvMswGZulKMhmVJxfxd 4rmg4O8jT+jL4qKBlKiFrYd3nzSiqj8O1VOIt+D4oFSgM88R83aMhlvugQg33bAn SWW6ekhm1WJwMvRym+YD1phwfy74MPaFKYduz8bm5dDe/Srtc3oelmJIGqvJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9x50BkDBwR9gyMJwkMZXFHycUm0wHwYDVR0j BBgwFoAUWKcG6nRo3w0UyhgXx8xdvVppxZYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmJmYWIwOS1jMWU5LTQ0ZDgtODE5ZS1mZGY2NTQ5YzZiM2YvMC81OEE3MDZFQTc0 NjhERjBEMTRDQTE4MTdDN0NDNURCRDVBNjlDNTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1QTY5 QzU5Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyYmZhYjA5LWMxZTktNDRkOC04 MTllLWZkZjY1NDljNmIzZi8wLzMxMzAzMzJlMzEzODM0MmUzMjMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDM5MzgzODMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7gUMA0GCSqG SIb3DQEBCwUAA4IBAQAfSnjJW1nI4UlLPPQ5npDQq+AYSXIyJhoYz90XPombHpDn PqNvRxFOx3sef/nQJ5bNRU258mCwX1fczDq2qJm6uQjOtxjzfyZwj+Zc8Fspu2XB rRRTXBQ5tUHfttE9lQBbS+Seqw0ODfxGdR3AgIDkx1NKZq+7N9clQLpu9SWHx8mQ efFj7JWakiQze7uNYtcic1sQezLvyBYQATfqzaFdz6JxEnp37qcZ+4dVAcNj4/HZ hZy6jf0DfmPcZ5TEuZKHwDiEd9b3TZHsDW3mijKlvDhkGXAkHO4ABnwJCO/L8HkG AUQJcho4E3e+KzKUQYV4u5gYUsxeKDgbLetOITnb -----END CERTIFICATE-----Generated at Sun Jun 23 04:04:30 2024 by rpki-client on console-fra.rpki-client.org