$ rpki-client -vvf repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138342e302f32342d3234203d3e203538353533.roa File: 3130332e32302e3138342e302f32342d3234203d3e203538353533.roa (raw, json) Hash identifier: 8a8A6V0FcfmmyOYXgK2irg2uOmMtjlrbnM0bhaK28ss= Subject key identifier: 1F:91:72:AC:8D:77:48:70:59:69:F5:5C:68:55:37:D5:73:81:48:FE Certificate issuer: /CN=5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E Certificate serial: 3DBDC605B4F5A8BE23B63382340971ED17AD031D Authority key identifier: 5E:A6:0C:5C:2A:87:7A:DE:8B:13:E9:94:EA:C2:EC:E8:81:C2:F0:2E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138342e302f32342d3234203d3e203538353533.roa Signing time: Mon 16 Oct 2023 15:24:51 +0000 ROA not before: Mon 16 Oct 2023 15:19:51 +0000 ROA not after: Mon 14 Oct 2024 15:24:51 +0000 asID: 58553 IP address blocks: 103.20.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.crl rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:bd:c6:05:b4:f5:a8:be:23:b6:33:82:34:09:71:ed:17:ad:03:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E Validity Not Before: Oct 16 15:19:51 2023 GMT Not After : Oct 14 15:24:51 2024 GMT Subject: CN=1F9172AC8D7748705969F55C685537D5738148FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:1c:74:10:77:e6:45:8b:10:f4:13:e8:c1:a6: 1d:b9:9d:97:a5:5d:7b:a2:7b:89:6c:68:3e:d5:d8: 03:ae:c3:58:eb:de:31:87:0c:a7:c3:75:78:cb:fc: 46:d7:a0:54:58:d2:44:15:14:e9:3f:5a:76:f5:10: 67:b1:e7:e6:17:fc:9e:4f:55:c2:1c:87:25:4b:37: 92:8f:2e:97:4e:8f:ad:ae:a6:60:b9:4d:5b:e6:6e: 99:7a:cb:11:42:2f:0e:27:92:94:b1:33:36:ad:f5: 17:19:10:55:1b:53:f8:36:af:33:f7:15:aa:69:8f: d9:6c:36:f5:be:37:48:17:e7:0c:22:5c:72:d2:f4: 2d:05:d6:61:9c:ef:fb:8c:ac:b2:9c:96:17:1f:c1: f3:3e:32:f5:7b:0d:58:a6:e2:c9:c4:e2:7b:85:fd: 5b:12:7a:f8:65:9c:0d:9e:69:21:b6:92:cd:00:9b: 7a:a5:78:94:72:ab:5d:cb:8f:c0:73:d5:61:92:65: 57:41:9a:02:b2:f4:79:96:dc:a0:83:af:d8:bf:2e: 8c:14:7c:da:d4:20:5f:49:a9:92:9e:8a:c8:46:39: 39:78:17:b9:b7:d8:ae:12:89:86:99:75:4d:69:88: d5:bb:93:ce:65:28:e7:16:56:33:44:fb:bb:39:66: 83:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:91:72:AC:8D:77:48:70:59:69:F5:5C:68:55:37:D5:73:81:48:FE X509v3 Authority Key Identifier: keyid:5E:A6:0C:5C:2A:87:7A:DE:8B:13:E9:94:EA:C2:EC:E8:81:C2:F0:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138342e302f32342d3234203d3e203538353533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.184.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:2d:2a:f3:2d:de:e2:03:87:83:d1:f4:32:89:b3:6d:72:6e: ff:f5:3f:6e:ef:0a:52:65:89:fc:d0:74:ac:28:15:88:53:f3: 19:bc:ad:9e:2e:15:71:f0:6a:7e:7f:c5:65:3a:2c:db:ca:19: f1:9e:25:ca:a3:0f:d6:0b:58:94:ee:94:15:21:c7:cc:d8:c4: e2:c5:eb:ec:1a:1c:fc:2c:b0:35:d7:e3:1a:67:66:66:02:a7: a9:a9:f2:b0:e5:99:e8:aa:52:6d:e4:a2:c1:00:3c:05:eb:2b: fe:1c:ac:8e:08:c9:c6:47:88:34:9d:6f:35:0d:ee:8f:48:1b: fa:fd:d4:ea:59:85:9c:d1:c9:bd:bd:94:c5:0f:99:13:20:71: 07:84:4b:92:cd:26:70:45:d1:8b:70:2b:83:e8:9e:65:d5:1b: bf:d3:55:11:f0:12:a1:83:14:b6:fb:94:fc:bc:86:d9:54:68: 5e:0c:36:dc:29:4d:ad:40:cf:f5:71:2d:7b:1c:81:81:3b:a9: f6:af:b5:9c:77:7c:85:17:da:6f:fb:50:91:f9:5a:6b:f7:b1: 7d:b3:76:fe:0e:7d:66:a0:0d:6c:43:51:fe:55:db:39:74:35: 97:cb:9b:99:ef:50:e4:14:bd:5e:f1:7d:2d:f6:78:4b:af:c3: 1a:7b:3a:a9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPb3GBbT1qL4jtjOCNAlx7RetAx0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUVBNjBDNUMyQTg3N0FERThCMTNFOTk0RUFDMkVDRTg4 MUMyRjAyRTAeFw0yMzEwMTYxNTE5NTFaFw0yNDEwMTQxNTI0NTFaMDMxMTAvBgNV BAMTKDFGOTE3MkFDOEQ3NzQ4NzA1OTY5RjU1QzY4NTUzN0Q1NzM4MTQ4RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjHHQQd+ZFixD0E+jBph25nZel XXuie4lsaD7V2AOuw1jr3jGHDKfDdXjL/EbXoFRY0kQVFOk/Wnb1EGex5+YX/J5P VcIchyVLN5KPLpdOj62upmC5TVvmbpl6yxFCLw4nkpSxMzat9RcZEFUbU/g2rzP3 Fappj9lsNvW+N0gX5wwiXHLS9C0F1mGc7/uMrLKclhcfwfM+MvV7DVim4snE4nuF /VsSevhlnA2eaSG2ks0Am3qleJRyq13Lj8Bz1WGSZVdBmgKy9HmW3KCDr9i/LowU fNrUIF9JqZKeishGOTl4F7m32K4SiYaZdU1piNW7k85lKOcWVjNE+7s5ZoP/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUH5FyrI13SHBZafVcaFU31XOBSP4wHwYDVR0j BBgwFoAUXqYMXCqHet6LE+mU6sLs6IHC8C4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MDk3M2JlYi02NmJhLTQ4YmMtOTM3NC03MmQ3ZmI4OWM1YTMvMC81RUE2MEM1QzJB ODc3QURFOEIxM0U5OTRFQUMyRUNFODgxQzJGMDJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUVBNjBDNUMyQTg3N0FERThCMTNFOTk0RUFDMkVDRTg4MUMy RjAyRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwOTczYmViLTY2YmEtNDhiYy05 Mzc0LTcyZDdmYjg5YzVhMy8wLzMxMzAzMzJlMzIzMDJlMzEzODM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUuDANBgkqhkiG 9w0BAQsFAAOCAQEAji0q8y3e4gOHg9H0MomzbXJu//U/bu8KUmWJ/NB0rCgViFPz Gbytni4VcfBqfn/FZTos28oZ8Z4lyqMP1gtYlO6UFSHHzNjE4sXr7Boc/CywNdfj GmdmZgKnqanysOWZ6KpSbeSiwQA8Besr/hysjgjJxkeINJ1vNQ3uj0gb+v3U6lmF nNHJvb2UxQ+ZEyBxB4RLks0mcEXRi3Arg+ieZdUbv9NVEfASoYMUtvuU/LyG2VRo Xgw23ClNrUDP9XEtexyBgTup9q+1nHd8hRfab/tQkflaa/exfbN2/g59ZqANbENR /lXbOXQ1l8ubme9Q5BS9XvF9LfZ4S6/DGns6qQ== -----END CERTIFICATE-----Generated at Fri Jun 21 15:51:02 2024 by rpki-client on console-ams.rpki-client.org