$ rpki-client -vvf repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa File: 3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa (raw, json) Hash identifier: eKuVgk7+HbUhO1Y4N3pVOqyhQIRqCS7gocd1kElktaM= Subject key identifier: 56:69:35:13:64:0A:11:01:21:E5:46:4B:39:17:41:FA:AF:70:03:E6 Certificate issuer: /CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Certificate serial: 11D64443604FF5B460E5E396FC4D54228392AA41 Authority key identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa Signing time: Wed 20 Sep 2023 03:00:01 +0000 ROA not before: Wed 20 Sep 2023 02:55:01 +0000 ROA not after: Wed 18 Sep 2024 03:00:01 +0000 asID: 149883 IP address blocks: 103.184.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:59:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:d6:44:43:60:4f:f5:b4:60:e5:e3:96:fc:4d:54:22:83:92:aa:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Validity Not Before: Sep 20 02:55:01 2023 GMT Not After : Sep 18 03:00:01 2024 GMT Subject: CN=56693513640A110121E5464B391741FAAF7003E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b2:77:11:5b:25:14:a1:14:fe:15:e4:da:96: 99:a7:68:08:2a:d3:35:48:c4:e3:d2:34:93:1c:7f: 53:d5:23:bd:47:db:b6:13:5f:a0:da:80:00:1b:5c: 95:64:ba:24:82:81:d6:cf:d5:0b:32:ab:42:83:7f: 00:a8:35:8b:d0:0d:ea:87:2f:bd:6d:ea:1d:06:08: dd:f1:f3:a5:22:46:68:d0:d2:d6:07:b7:a4:9a:b4: 65:2d:cb:a7:e9:47:09:dc:63:68:ec:1d:f8:dc:3d: c8:74:8e:b8:b7:0a:59:d8:3a:2f:85:ef:43:47:1b: 13:be:5f:4d:97:db:41:51:a5:db:a7:b4:81:71:73: 92:e6:24:0d:03:ed:6a:78:3c:50:da:ff:79:09:c9: 0d:51:df:74:89:83:f3:85:a8:0f:ba:2c:a1:eb:5f: cd:02:cc:6d:a7:50:88:7e:a8:e1:69:00:9c:24:70: 50:3f:18:fc:03:45:a5:ad:f4:8a:4f:bb:d3:56:a9: 6f:7a:e1:f5:bf:43:db:39:0f:02:96:0b:72:03:aa: 20:d4:4c:56:e2:7f:6e:12:84:33:84:e2:b8:0e:4b: b8:4b:fc:df:45:47:3d:ad:8e:ed:f5:c0:54:aa:4f: c4:5e:06:ad:e4:47:51:1a:41:ea:92:d4:77:7e:0d: b0:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:69:35:13:64:0A:11:01:21:E5:46:4B:39:17:41:FA:AF:70:03:E6 X509v3 Authority Key Identifier: keyid:58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.21.0/24 Signature Algorithm: sha256WithRSAEncryption 79:45:e1:b2:1d:0a:01:b8:d3:a9:c3:09:d6:ea:52:bf:f4:45: a8:ec:f0:9a:5e:2c:ab:66:07:cc:78:d9:56:e1:f3:a5:a9:99: c5:9e:3a:49:1d:87:f5:23:6c:23:27:32:b3:41:3c:13:d9:0a: 56:63:64:51:9e:8d:9b:2e:4f:76:8c:62:1a:08:f0:94:15:72: 6b:b9:83:23:5e:93:87:c8:78:e0:28:11:0c:eb:db:a8:cd:c8: d0:67:9d:41:12:20:0f:8a:2a:a1:d0:3e:8a:ea:c8:4a:fd:32: 48:3d:0b:ff:b2:52:b8:b9:4a:4d:92:38:00:02:04:89:2f:07: 91:5f:63:dc:5d:5a:56:f4:64:bb:1e:4a:ec:6e:c6:84:53:a4: 84:d3:8e:0c:34:ef:c5:e5:40:95:90:32:c6:6b:36:b4:8a:1f: 6c:f2:44:b6:cb:9a:06:64:58:d8:41:e1:e0:8e:f0:ab:4f:e6: 21:77:a9:f3:b3:b0:08:3d:13:43:52:52:39:5d:d3:49:63:bb: 01:a6:4a:9f:db:30:2d:89:30:fa:9c:08:86:c1:25:7e:9b:a7: db:3a:9c:6a:50:25:3e:78:37:9c:ea:88:2f:c4:ba:65:dd:01: 38:ab:22:05:03:9f:c8:8b:ac:e8:04:0e:97:d9:23:91:13:db: ec:02:e2:b2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEdZEQ2BP9bRg5eOW/E1UIoOSqkEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1 QTY5QzU5NjAeFw0yMzA5MjAwMjU1MDFaFw0yNDA5MTgwMzAwMDFaMDMxMTAvBgNV BAMTKDU2NjkzNTEzNjQwQTExMDEyMUU1NDY0QjM5MTc0MUZBQUY3MDAzRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDksncRWyUUoRT+FeTalpmnaAgq 0zVIxOPSNJMcf1PVI71H27YTX6DagAAbXJVkuiSCgdbP1Qsyq0KDfwCoNYvQDeqH L71t6h0GCN3x86UiRmjQ0tYHt6SatGUty6fpRwncY2jsHfjcPch0jri3ClnYOi+F 70NHGxO+X02X20FRpduntIFxc5LmJA0D7Wp4PFDa/3kJyQ1R33SJg/OFqA+6LKHr X80CzG2nUIh+qOFpAJwkcFA/GPwDRaWt9IpPu9NWqW964fW/Q9s5DwKWC3IDqiDU TFbif24ShDOE4rgOS7hL/N9FRz2tju31wFSqT8ReBq3kR1EaQeqS1Hd+DbBrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVmk1E2QKEQEh5UZLORdB+q9wA+YwHwYDVR0j BBgwFoAUWKcG6nRo3w0UyhgXx8xdvVppxZYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmJmYWIwOS1jMWU5LTQ0ZDgtODE5ZS1mZGY2NTQ5YzZiM2YvMC81OEE3MDZFQTc0 NjhERjBEMTRDQTE4MTdDN0NDNURCRDVBNjlDNTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1QTY5 QzU5Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyYmZhYjA5LWMxZTktNDRkOC04 MTllLWZkZjY1NDljNmIzZi8wLzMxMzAzMzJlMzEzODM0MmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzgzODMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7gVMA0GCSqG SIb3DQEBCwUAA4IBAQB5ReGyHQoBuNOpwwnW6lK/9EWo7PCaXiyrZgfMeNlW4fOl qZnFnjpJHYf1I2wjJzKzQTwT2QpWY2RRno2bLk92jGIaCPCUFXJruYMjXpOHyHjg KBEM69uozcjQZ51BEiAPiiqh0D6K6shK/TJIPQv/slK4uUpNkjgAAgSJLweRX2Pc XVpW9GS7HkrsbsaEU6SE044MNO/F5UCVkDLGaza0ih9s8kS2y5oGZFjYQeHgjvCr T+Yhd6nzs7AIPRNDUlI5XdNJY7sBpkqf2zAtiTD6nAiGwSV+m6fbOpxqUCU+eDec 6ogvxLpl3QE4qyIFA5/Ii6zoBA6X2SORE9vsAuKy -----END CERTIFICATE-----Generated at Sat Jun 1 00:11:40 2024 by rpki-client on console-ams.rpki-client.org