$ rpki-client -vvf repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32342d3234203d3e20313439383833.roa File: 3130332e3138342e32302e302f32342d3234203d3e20313439383833.roa (raw, json) Hash identifier: gyedy1OhEb6XI2TNUHCSpEnj8baeTGgtU1XshBO1+eE= Subject key identifier: 4D:C9:48:34:08:D0:FF:D8:56:0B:8A:13:03:0E:2B:1B:DC:50:0D:13 Certificate issuer: /CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Certificate serial: 5B081D9767231364FA2B13D29CB0CB5438859041 Authority key identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32342d3234203d3e20313439383833.roa Signing time: Wed 20 Sep 2023 03:00:01 +0000 ROA not before: Wed 20 Sep 2023 02:55:01 +0000 ROA not after: Wed 18 Sep 2024 03:00:01 +0000 asID: 149883 IP address blocks: 103.184.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:08:1d:97:67:23:13:64:fa:2b:13:d2:9c:b0:cb:54:38:85:90:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Validity Not Before: Sep 20 02:55:01 2023 GMT Not After : Sep 18 03:00:01 2024 GMT Subject: CN=4DC9483408D0FFD8560B8A13030E2B1BDC500D13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:bd:3c:d3:3a:c5:18:c6:88:09:e5:f6:0e:05: f5:d8:ed:cb:31:71:3c:5d:73:d9:e0:29:8a:c9:9f: 9b:54:64:41:de:a0:28:7a:bd:d1:d2:ac:aa:08:ec: 69:a4:02:bc:ba:91:d4:ad:5b:e2:59:20:b4:c0:e4: 5c:85:78:19:86:f9:a5:70:cb:85:f0:a7:4e:fb:8c: 11:6d:d1:4c:64:79:fe:32:7a:89:45:80:47:4f:34: ba:fb:9d:fc:3e:4f:60:24:70:b1:b0:c8:cf:a6:44: 74:1b:4e:d5:17:72:79:4b:48:8a:41:d7:b0:79:93: 67:0d:14:09:b5:fb:fa:cc:67:e4:a4:17:db:78:8b: 68:ea:00:77:90:9c:db:97:cf:3b:31:e3:78:80:f8: b8:9b:c4:f2:b6:63:41:68:0e:74:2e:c3:dc:5f:d3: 52:bf:90:dc:d1:22:ec:f2:70:89:a2:04:c2:d0:db: 01:57:95:d5:50:0b:8a:94:1f:36:dd:84:7c:17:3d: 93:23:ea:71:27:74:23:74:8b:6b:28:29:ee:da:03: 69:e9:9b:79:60:ea:27:ca:63:82:30:77:55:38:92: df:53:86:09:67:d0:1d:61:93:67:a6:9e:09:48:23: 73:b5:39:df:f8:df:04:64:d5:16:80:53:b8:77:70: 5a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:C9:48:34:08:D0:FF:D8:56:0B:8A:13:03:0E:2B:1B:DC:50:0D:13 X509v3 Authority Key Identifier: keyid:58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32342d3234203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.20.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:a8:92:7e:54:7b:f2:8f:af:d9:d9:ed:c3:47:5b:c2:12:f6: a4:9e:fe:6a:7f:1f:94:42:7b:4c:1f:bf:a2:d8:af:3b:d1:5f: 79:6c:b8:1b:58:d7:91:67:78:88:b0:db:2f:6a:f3:62:70:fa: 77:f7:ba:ba:02:08:e6:11:19:0a:87:5c:27:de:ef:94:9b:aa: 10:8a:ac:a3:39:eb:f9:dc:22:c0:bc:7a:3d:88:00:16:17:cc: d4:18:1c:12:17:e7:2f:7c:88:47:28:12:1c:f9:0f:8f:20:a7: 0e:25:e0:bc:6b:50:03:7f:a1:04:8f:45:ea:0f:99:2d:0c:ec: 4e:22:5a:71:cf:55:98:38:ae:53:ed:b8:41:34:1b:09:22:38: 0e:c8:a7:93:63:31:db:ce:e4:43:61:2c:86:f3:09:29:5f:7c: d2:de:90:29:38:91:9d:13:aa:14:08:cb:18:6e:ca:bc:1a:4a: 1c:c2:62:49:8c:66:39:6f:33:b7:2f:60:56:0e:a4:d4:86:fc: 9b:fb:ce:a0:44:6e:0e:d1:04:05:b3:fe:5d:98:a3:0c:9e:d2: 12:f1:66:12:70:e2:63:df:3d:c0:09:d9:1d:04:22:d5:2a:56: 44:80:ce:6c:aa:ff:64:c7:4b:c4:ec:ea:de:e7:03:1c:16:0d: f3:46:ef:6f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWwgdl2cjE2T6KxPSnLDLVDiFkEEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1 QTY5QzU5NjAeFw0yMzA5MjAwMjU1MDFaFw0yNDA5MTgwMzAwMDFaMDMxMTAvBgNV BAMTKDREQzk0ODM0MDhEMEZGRDg1NjBCOEExMzAzMEUyQjFCREM1MDBEMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhvTzTOsUYxogJ5fYOBfXY7csx cTxdc9ngKYrJn5tUZEHeoCh6vdHSrKoI7GmkAry6kdStW+JZILTA5FyFeBmG+aVw y4Xwp077jBFt0Uxkef4yeolFgEdPNLr7nfw+T2AkcLGwyM+mRHQbTtUXcnlLSIpB 17B5k2cNFAm1+/rMZ+SkF9t4i2jqAHeQnNuXzzsx43iA+LibxPK2Y0FoDnQuw9xf 01K/kNzRIuzycImiBMLQ2wFXldVQC4qUHzbdhHwXPZMj6nEndCN0i2soKe7aA2np m3lg6ifKY4Iwd1U4kt9Thgln0B1hk2emnglII3O1Od/43wRk1RaAU7h3cFrHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTclINAjQ/9hWC4oTAw4rG9xQDRMwHwYDVR0j BBgwFoAUWKcG6nRo3w0UyhgXx8xdvVppxZYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmJmYWIwOS1jMWU5LTQ0ZDgtODE5ZS1mZGY2NTQ5YzZiM2YvMC81OEE3MDZFQTc0 NjhERjBEMTRDQTE4MTdDN0NDNURCRDVBNjlDNTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1QTY5 QzU5Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyYmZhYjA5LWMxZTktNDRkOC04 MTllLWZkZjY1NDljNmIzZi8wLzMxMzAzMzJlMzEzODM0MmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzgzODMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7gUMA0GCSqG SIb3DQEBCwUAA4IBAQAOqJJ+VHvyj6/Z2e3DR1vCEvaknv5qfx+UQntMH7+i2K87 0V95bLgbWNeRZ3iIsNsvavNicPp397q6AgjmERkKh1wn3u+Um6oQiqyjOev53CLA vHo9iAAWF8zUGBwSF+cvfIhHKBIc+Q+PIKcOJeC8a1ADf6EEj0XqD5ktDOxOIlpx z1WYOK5T7bhBNBsJIjgOyKeTYzHbzuRDYSyG8wkpX3zS3pApOJGdE6oUCMsYbsq8 GkocwmJJjGY5bzO3L2BWDqTUhvyb+86gRG4O0QQFs/5dmKMMntIS8WYScOJj3z3A CdkdBCLVKlZEgM5sqv9kx0vE7Ore5wMcFg3zRu9v -----END CERTIFICATE-----Generated at Fri May 31 22:12:28 2024 by rpki-client on console-fra.rpki-client.org