$ rpki-client -vvf repo-rpki.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/3130332e32302e39312e302f32342d3234203d3e203538333831.roa File: 3130332e32302e39312e302f32342d3234203d3e203538333831.roa (raw, json) Hash identifier: h1i/BLpVjGqNROG+me5XI+Qi0eqss8Zo/gE+98e3SJo= Subject key identifier: A3:BC:CD:B9:1E:BC:E0:BA:66:0F:DE:A0:5B:CF:9E:79:F2:CD:B6:44 Certificate issuer: /CN=E5A907C4EC6DA6D9342613280CCAF26E98DBEB98 Certificate serial: 71B6127F5E2FC5B81457F36E2610EB8DBD362921 Authority key identifier: E5:A9:07:C4:EC:6D:A6:D9:34:26:13:28:0C:CA:F2:6E:98:DB:EB:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E5A907C4EC6DA6D9342613280CCAF26E98DBEB98.cer Subject info access: rsync://repo-rpki.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/3130332e32302e39312e302f32342d3234203d3e203538333831.roa Signing time: Wed 01 May 2024 16:00:02 +0000 ROA not before: Wed 01 May 2024 15:55:02 +0000 ROA not after: Wed 30 Apr 2025 16:00:02 +0000 asID: 58381 IP address blocks: 103.20.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/E5A907C4EC6DA6D9342613280CCAF26E98DBEB98.crl rsync://repo-rpki.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/E5A907C4EC6DA6D9342613280CCAF26E98DBEB98.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E5A907C4EC6DA6D9342613280CCAF26E98DBEB98.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:b6:12:7f:5e:2f:c5:b8:14:57:f3:6e:26:10:eb:8d:bd:36:29:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E5A907C4EC6DA6D9342613280CCAF26E98DBEB98 Validity Not Before: May 1 15:55:02 2024 GMT Not After : Apr 30 16:00:02 2025 GMT Subject: CN=A3BCCDB91EBCE0BA660FDEA05BCF9E79F2CDB644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:81:36:9d:e4:8c:06:46:a8:91:4a:c0:6e:b6: 21:43:3e:2f:35:56:8c:01:c9:97:02:2b:54:55:47: bb:dd:10:c0:a7:97:86:af:1e:2f:93:90:0a:9b:a2: b8:53:1d:9e:c9:d4:a5:65:ac:b7:b4:ae:29:b9:a7: f0:38:6a:21:5c:99:94:49:95:62:c1:bd:a6:00:49: 2e:9d:94:90:e2:09:15:c3:8a:06:57:5e:12:cc:6a: 24:79:d9:87:5a:c9:dc:34:e9:ff:86:06:b6:39:8a: e2:74:4f:eb:ee:92:13:d2:63:73:63:b9:b3:d5:fe: 00:df:eb:19:e6:56:75:36:09:7e:54:3e:63:cd:83: 1f:7e:3d:b9:bf:04:25:91:98:42:25:72:17:92:b0: 46:20:f9:88:ba:08:58:67:18:e7:42:18:ca:a5:07: ec:14:92:6b:e5:35:5f:34:85:b1:33:92:4a:e7:7c: 47:5d:1f:78:dc:12:35:94:4f:da:6b:87:8f:1b:bc: 12:5f:71:ec:88:d1:9e:04:2f:93:05:9c:10:83:8e: 25:cc:0e:aa:77:fa:c7:6d:d5:7d:09:5c:84:a4:52: 8e:88:1a:2a:07:6a:07:78:c9:db:12:9c:d7:8e:77: 85:e2:1e:2c:53:32:c5:68:4d:f7:5a:a4:5c:be:09: 83:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:BC:CD:B9:1E:BC:E0:BA:66:0F:DE:A0:5B:CF:9E:79:F2:CD:B6:44 X509v3 Authority Key Identifier: keyid:E5:A9:07:C4:EC:6D:A6:D9:34:26:13:28:0C:CA:F2:6E:98:DB:EB:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/E5A907C4EC6DA6D9342613280CCAF26E98DBEB98.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E5A907C4EC6DA6D9342613280CCAF26E98DBEB98.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/3130332e32302e39312e302f32342d3234203d3e203538333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.91.0/24 Signature Algorithm: sha256WithRSAEncryption a0:d8:7a:eb:77:b4:83:ae:07:d6:a0:6e:dd:7d:fe:bc:7a:82: ed:d2:7b:88:23:d4:a2:62:60:ae:3d:40:90:65:9e:28:87:b6: ae:85:db:a6:15:84:83:04:ff:a1:cc:92:10:9e:f5:d0:bb:bb: 90:46:9a:9b:e0:ab:bb:c2:88:83:35:f4:71:12:2f:c2:4c:0f: fc:cd:71:ac:51:d1:b3:42:1f:75:28:83:a1:4a:fe:08:fe:31: c0:b1:b9:5c:c5:47:29:99:53:49:7b:44:8b:32:5d:9b:cb:bd: b3:6c:1f:69:3e:29:d3:27:c7:fc:42:a4:ad:37:67:87:6f:c6: 78:b7:69:d4:a7:e8:fc:d1:32:15:0a:57:36:4e:89:79:78:47: be:7f:86:f1:c6:b6:f7:c6:50:2b:37:92:38:f5:8b:c5:ad:ab: f4:e7:3c:99:4b:27:3a:e7:73:21:04:d0:91:49:53:2c:a8:f2: ee:14:53:7b:f6:87:15:12:e1:4a:c9:84:d2:da:fa:3c:2c:02: 82:9b:ef:e8:e4:3e:93:6e:7b:b3:eb:7e:51:41:f5:23:de:95: 89:40:d5:b1:0c:7a:51:a7:c2:2c:89:27:9a:5c:df:97:d2:d5: 9d:2f:8a:d7:9d:04:4e:83:25:63:c4:36:ac:20:db:8e:76:83: 28:17:6b:4a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUcbYSf14vxbgUV/NuJhDrjb02KSEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTVBOTA3QzRFQzZEQTZEOTM0MjYxMzI4MENDQUYyNkU5 OERCRUI5ODAeFw0yNDA1MDExNTU1MDJaFw0yNTA0MzAxNjAwMDJaMDMxMTAvBgNV BAMTKEEzQkNDREI5MUVCQ0UwQkE2NjBGREVBMDVCQ0Y5RTc5RjJDREI2NDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPgTad5IwGRqiRSsButiFDPi81 VowByZcCK1RVR7vdEMCnl4avHi+TkAqborhTHZ7J1KVlrLe0rim5p/A4aiFcmZRJ lWLBvaYASS6dlJDiCRXDigZXXhLMaiR52Ydaydw06f+GBrY5iuJ0T+vukhPSY3Nj ubPV/gDf6xnmVnU2CX5UPmPNgx9+Pbm/BCWRmEIlcheSsEYg+Yi6CFhnGOdCGMql B+wUkmvlNV80hbEzkkrnfEddH3jcEjWUT9prh48bvBJfceyI0Z4EL5MFnBCDjiXM Dqp3+sdt1X0JXISkUo6IGioHagd4ydsSnNeOd4XiHixTMsVoTfdapFy+CYMzAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUo7zNuR684LpmD96gW8+eefLNtkQwHwYDVR0j BBgwFoAU5akHxOxtptk0JhMoDMrybpjb65gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MzhkMjc1NS0zODBkLTQ3N2UtYmYyNS0wYWYyOTAyNmJkNzAvMC9FNUE5MDdDNEVD NkRBNkQ5MzQyNjEzMjgwQ0NBRjI2RTk4REJFQjk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTVBOTA3QzRFQzZEQTZEOTM0MjYxMzI4MENDQUYyNkU5OERC RUI5OC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzOGQyNzU1LTM4MGQtNDc3ZS1i ZjI1LTBhZjI5MDI2YmQ3MC8wLzMxMzAzMzJlMzIzMDJlMzkzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzMzM4MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnFFswDQYJKoZIhvcN AQELBQADggEBAKDYeut3tIOuB9agbt19/rx6gu3Se4gj1KJiYK49QJBlniiHtq6F 26YVhIME/6HMkhCe9dC7u5BGmpvgq7vCiIM19HESL8JMD/zNcaxR0bNCH3Uog6FK /gj+McCxuVzFRymZU0l7RIsyXZvLvbNsH2k+KdMnx/xCpK03Z4dvxni3adSn6PzR MhUKVzZOiXl4R75/hvHGtvfGUCs3kjj1i8Wtq/TnPJlLJzrncyEE0JFJUyyo8u4U U3v2hxUS4UrJhNLa+jwsAoKb7+jkPpNue7PrflFB9SPelYlA1bEMelGnwiyJJ5pc 35fS1Z0vitedBE6DJWPENqwg2452gygXa0o= -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:00 2024 by rpki-client on console-ams.rpki-client.org