$ rpki-client -vvf repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138342e302f32342d3234203d3e203538353533.roa File: 3130332e32302e3138342e302f32342d3234203d3e203538353533.roa (raw, json) Hash identifier: m+tur8s5hF36P9KEnTMPMVDInU7+4/3lGLQOQpvofQk= Subject key identifier: 63:F1:DE:B1:79:97:89:15:0D:A4:19:89:53:6D:34:0B:8B:D7:10:0A Certificate issuer: /CN=5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E Certificate serial: 5575827811D9B26CFE094DB732ACC667B70CC446 Authority key identifier: 5E:A6:0C:5C:2A:87:7A:DE:8B:13:E9:94:EA:C2:EC:E8:81:C2:F0:2E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138342e302f32342d3234203d3e203538353533.roa Signing time: Mon 16 Sep 2024 16:00:00 +0000 ROA not before: Mon 16 Sep 2024 15:55:00 +0000 ROA not after: Mon 15 Sep 2025 16:00:00 +0000 asID: 58553 IP address blocks: 103.20.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.crl rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:75:82:78:11:d9:b2:6c:fe:09:4d:b7:32:ac:c6:67:b7:0c:c4:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E Validity Not Before: Sep 16 15:55:00 2024 GMT Not After : Sep 15 16:00:00 2025 GMT Subject: CN=63F1DEB1799789150DA41989536D340B8BD7100A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:2d:d3:2e:20:25:0e:54:64:24:01:de:c2:4d: 0a:a4:10:c7:cd:e5:77:c3:28:f8:b0:83:63:b8:57: 1c:c6:01:95:a7:06:e6:ef:2f:24:3c:75:04:94:a7: 09:1c:11:c5:ed:1b:cd:c1:85:36:6a:9a:a3:44:cd: 9e:88:56:dc:a9:94:36:07:29:89:92:54:aa:84:e2: ad:10:b4:33:09:43:fe:a2:53:00:bf:51:fd:14:9f: b4:30:2a:6c:51:bd:09:a7:af:2c:44:ed:11:61:64: bd:31:98:84:89:45:c2:61:71:9c:e1:c3:3a:4e:78: 98:16:c2:0c:ed:30:c9:52:72:78:33:60:cf:42:89: 8c:97:d5:9b:fe:b9:e0:0c:3f:97:f6:f8:ab:cc:62: 5c:6c:64:fd:29:66:db:eb:0c:08:00:9f:9f:25:9d: c4:97:c6:5c:e6:b9:39:e4:b4:b5:ef:89:21:8a:c1: 4c:a8:d3:71:5a:3c:f5:29:15:2f:97:ad:53:7f:25: 25:b4:b5:08:84:a4:a3:b4:ef:e9:40:31:b2:b7:af: 6d:d3:19:33:2c:81:94:8a:ff:92:9a:76:42:7c:33: 22:a6:33:be:d9:e8:21:d5:da:1e:8a:26:08:6a:bc: 06:ef:46:72:06:cb:69:92:81:5f:0c:76:0d:2f:39: ca:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:F1:DE:B1:79:97:89:15:0D:A4:19:89:53:6D:34:0B:8B:D7:10:0A X509v3 Authority Key Identifier: keyid:5E:A6:0C:5C:2A:87:7A:DE:8B:13:E9:94:EA:C2:EC:E8:81:C2:F0:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138342e302f32342d3234203d3e203538353533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.184.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:5c:dc:b1:91:e1:aa:18:75:3a:3b:31:c8:a8:be:3f:b1:b4: c3:08:fb:1a:76:69:bc:16:47:30:ac:c6:57:ee:e6:85:c7:35: 2a:bf:31:74:8d:fa:f2:42:c8:38:8c:f0:c2:46:78:1d:7c:6e: db:50:38:0e:72:22:2d:a2:df:b2:52:c6:1c:a5:2b:be:33:b3: 34:ac:d4:c2:f4:7a:42:c1:60:32:4a:b8:d4:c6:5b:3c:32:57: 25:25:c2:b1:7c:39:33:83:0b:97:96:40:90:c7:c0:3a:35:ba: ef:40:d4:ac:d3:96:ca:b6:b5:16:61:a9:1c:ca:a1:f1:b5:b6: 41:eb:7a:ad:9e:8b:a6:10:05:11:59:2d:b0:49:18:d5:e8:aa: c1:3e:e0:cc:f8:f2:dc:65:91:4f:4d:3a:e9:ca:0e:4c:e3:0d: 87:41:56:88:e6:3f:53:6f:3e:07:95:fb:c0:cf:e9:eb:2b:29: 43:3f:96:31:e6:fb:f4:85:b6:92:b5:61:55:95:b9:15:a5:38: 34:6b:47:2e:64:9d:9b:40:0d:15:7e:5f:fa:44:17:15:da:a7: 91:43:11:04:88:2c:c4:40:61:65:14:12:cd:3b:f8:51:b7:04: ca:54:e2:bb:79:83:ea:b0:78:fb:5f:7f:93:ad:0b:5a:db:b3: ee:a6:f0:e4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVXWCeBHZsmz+CU23MqzGZ7cMxEYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUVBNjBDNUMyQTg3N0FERThCMTNFOTk0RUFDMkVDRTg4 MUMyRjAyRTAeFw0yNDA5MTYxNTU1MDBaFw0yNTA5MTUxNjAwMDBaMDMxMTAvBgNV BAMTKDYzRjFERUIxNzk5Nzg5MTUwREE0MTk4OTUzNkQzNDBCOEJENzEwMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaLdMuICUOVGQkAd7CTQqkEMfN 5XfDKPiwg2O4VxzGAZWnBubvLyQ8dQSUpwkcEcXtG83BhTZqmqNEzZ6IVtyplDYH KYmSVKqE4q0QtDMJQ/6iUwC/Uf0Un7QwKmxRvQmnryxE7RFhZL0xmISJRcJhcZzh wzpOeJgWwgztMMlScngzYM9CiYyX1Zv+ueAMP5f2+KvMYlxsZP0pZtvrDAgAn58l ncSXxlzmuTnktLXviSGKwUyo03FaPPUpFS+XrVN/JSW0tQiEpKO07+lAMbK3r23T GTMsgZSK/5KadkJ8MyKmM77Z6CHV2h6KJghqvAbvRnIGy2mSgV8Mdg0vOcrDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUY/HesXmXiRUNpBmJU200C4vXEAowHwYDVR0j BBgwFoAUXqYMXCqHet6LE+mU6sLs6IHC8C4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MDk3M2JlYi02NmJhLTQ4YmMtOTM3NC03MmQ3ZmI4OWM1YTMvMC81RUE2MEM1QzJB ODc3QURFOEIxM0U5OTRFQUMyRUNFODgxQzJGMDJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUVBNjBDNUMyQTg3N0FERThCMTNFOTk0RUFDMkVDRTg4MUMy RjAyRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwOTczYmViLTY2YmEtNDhiYy05 Mzc0LTcyZDdmYjg5YzVhMy8wLzMxMzAzMzJlMzIzMDJlMzEzODM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUuDANBgkqhkiG 9w0BAQsFAAOCAQEAO1zcsZHhqhh1OjsxyKi+P7G0wwj7GnZpvBZHMKzGV+7mhcc1 Kr8xdI368kLIOIzwwkZ4HXxu21A4DnIiLaLfslLGHKUrvjOzNKzUwvR6QsFgMkq4 1MZbPDJXJSXCsXw5M4MLl5ZAkMfAOjW670DUrNOWyra1FmGpHMqh8bW2Qet6rZ6L phAFEVktsEkY1eiqwT7gzPjy3GWRT0066coOTOMNh0FWiOY/U28+B5X7wM/p6ysp Qz+WMeb79IW2krVhVZW5FaU4NGtHLmSdm0ANFX5f+kQXFdqnkUMRBIgsxEBhZRQS zTv4UbcEylTiu3mD6rB4+19/k60LWtuz7qbw5A== -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:29 2024 by rpki-client on console-fra.rpki-client.org