$ rpki-client -vvf repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa File: 3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa (raw, json) Hash identifier: lEs/WKd2HcYEye3FJfKRh1W7qOC7B+EUp+9m2m8vd7c= Subject key identifier: 39:1D:3A:02:E5:2D:5D:53:41:E7:5B:27:73:F5:74:E2:A1:3C:3B:83 Certificate issuer: /CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Certificate serial: 7E8E9D0DC3F9D0CAEE795E4DA25CBCF2C00527FB Authority key identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa Signing time: Wed 21 Aug 2024 03:02:49 +0000 ROA not before: Wed 21 Aug 2024 02:57:49 +0000 ROA not after: Wed 20 Aug 2025 03:02:49 +0000 asID: 149883 IP address blocks: 103.184.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:8e:9d:0d:c3:f9:d0:ca:ee:79:5e:4d:a2:5c:bc:f2:c0:05:27:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Validity Not Before: Aug 21 02:57:49 2024 GMT Not After : Aug 20 03:02:49 2025 GMT Subject: CN=391D3A02E52D5D5341E75B2773F574E2A13C3B83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:09:fd:79:40:b3:1a:ec:f7:64:91:1e:2d:aa: a6:4a:83:f3:e1:89:de:07:31:32:93:cb:ab:73:81: cc:29:44:c7:c6:78:36:96:27:a6:e9:fb:7f:a4:f7: 33:f8:d2:16:28:92:44:4c:bd:24:20:44:dd:ae:b9: f1:2a:a5:5b:81:26:4b:11:39:e3:9a:89:a4:1a:66: 34:c7:32:62:a7:48:b9:af:42:aa:dd:63:d7:c6:ae: f1:d7:7b:2a:45:91:c0:dd:87:2d:2c:8a:b8:c0:a4: d1:6d:3f:bf:8e:dc:f9:cd:e9:e3:ee:b5:5b:19:40: 17:e8:29:94:6c:b7:d4:04:d5:39:a3:f6:7f:c6:91: 1e:61:33:0b:10:7d:4a:d7:d3:e9:7f:fd:c6:85:26: 75:7d:90:78:cc:38:c0:a9:69:51:ae:19:68:54:ef: 70:c9:36:b2:12:f1:a4:56:cf:8b:07:65:64:e6:e2: 48:4f:52:fd:9f:92:f1:91:2f:a9:0d:37:9d:97:2e: 63:c8:d4:e9:58:89:30:23:99:30:90:14:1f:7f:2d: 33:9d:c6:b0:74:a4:6e:46:63:8b:d7:b1:21:19:43: 84:89:fa:f4:29:ff:84:c6:9a:23:ad:67:16:9d:0b: 6e:58:40:78:f0:16:97:03:47:f8:a4:3f:23:a4:76: b5:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:1D:3A:02:E5:2D:5D:53:41:E7:5B:27:73:F5:74:E2:A1:3C:3B:83 X509v3 Authority Key Identifier: keyid:58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.21.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:9d:e1:10:28:c0:35:75:a5:52:50:c8:61:3e:e4:bc:1a:c1: 72:5b:16:2e:37:6e:a3:2d:fd:80:b3:44:42:62:cc:57:91:ad: 19:49:84:ff:c6:3d:c3:a2:b6:17:35:2c:79:46:eb:42:1a:e6: 20:b9:88:7f:82:0e:c5:a1:81:f2:e5:31:21:6d:c4:54:01:35: 2a:2b:98:49:cf:ab:c7:54:90:a1:bd:d5:f5:dd:ee:c5:07:71: 0d:83:e4:37:9e:97:52:a6:f9:c0:a0:aa:17:6c:5b:27:b3:01: b0:dc:0b:80:85:ea:80:36:1b:69:47:a9:b0:d4:38:0d:e0:07: 2d:2e:9c:e1:93:8c:a5:f9:cc:b2:c9:dc:81:4b:a1:ce:0e:ea: 32:70:a9:41:25:bd:ec:31:10:cf:b4:36:cb:68:54:84:fd:51: bf:7c:e1:d0:af:88:b9:7d:53:d3:36:61:e4:09:f3:12:2a:48: 24:1e:26:2e:1e:e8:33:1c:7b:28:e6:52:d4:7a:d7:14:8b:de: d8:cc:ac:4f:2e:5b:01:e7:11:15:f4:94:38:58:f9:32:a5:c8: 0b:3f:fb:8a:07:31:ee:66:34:5d:30:c8:e9:49:9c:00:15:0e: 45:32:43:93:79:94:cb:ff:73:89:eb:9b:6c:85:65:3e:f6:f0: 7f:fd:97:00 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfo6dDcP50MrueV5Noly88sAFJ/swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1 QTY5QzU5NjAeFw0yNDA4MjEwMjU3NDlaFw0yNTA4MjAwMzAyNDlaMDMxMTAvBgNV BAMTKDM5MUQzQTAyRTUyRDVENTM0MUU3NUIyNzczRjU3NEUyQTEzQzNCODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/Cf15QLMa7PdkkR4tqqZKg/Ph id4HMTKTy6tzgcwpRMfGeDaWJ6bp+3+k9zP40hYokkRMvSQgRN2uufEqpVuBJksR OeOaiaQaZjTHMmKnSLmvQqrdY9fGrvHXeypFkcDdhy0sirjApNFtP7+O3PnN6ePu tVsZQBfoKZRst9QE1Tmj9n/GkR5hMwsQfUrX0+l//caFJnV9kHjMOMCpaVGuGWhU 73DJNrIS8aRWz4sHZWTm4khPUv2fkvGRL6kNN52XLmPI1OlYiTAjmTCQFB9/LTOd xrB0pG5GY4vXsSEZQ4SJ+vQp/4TGmiOtZxadC25YQHjwFpcDR/ikPyOkdrWFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOR06AuUtXVNB51snc/V04qE8O4MwHwYDVR0j BBgwFoAUWKcG6nRo3w0UyhgXx8xdvVppxZYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmJmYWIwOS1jMWU5LTQ0ZDgtODE5ZS1mZGY2NTQ5YzZiM2YvMC81OEE3MDZFQTc0 NjhERjBEMTRDQTE4MTdDN0NDNURCRDVBNjlDNTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1QTY5 QzU5Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyYmZhYjA5LWMxZTktNDRkOC04 MTllLWZkZjY1NDljNmIzZi8wLzMxMzAzMzJlMzEzODM0MmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzgzODMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7gVMA0GCSqG SIb3DQEBCwUAA4IBAQA7neEQKMA1daVSUMhhPuS8GsFyWxYuN26jLf2As0RCYsxX ka0ZSYT/xj3DorYXNSx5RutCGuYguYh/gg7FoYHy5TEhbcRUATUqK5hJz6vHVJCh vdX13e7FB3ENg+Q3npdSpvnAoKoXbFsnswGw3AuAheqANhtpR6mw1DgN4ActLpzh k4yl+cyyydyBS6HODuoycKlBJb3sMRDPtDbLaFSE/VG/fOHQr4i5fVPTNmHkCfMS KkgkHiYuHugzHHso5lLUetcUi97YzKxPLlsB5xEV9JQ4WPkypcgLP/uKBzHuZjRd MMjpSZwAFQ5FMkOTeZTL/3OJ65tshWU+9vB//ZcA -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:32 2024 by rpki-client on console-ams.rpki-client.org