$ rpki-client -vvf repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138352e302f32342d3234203d3e203538353533.roa File: 3130332e32302e3138352e302f32342d3234203d3e203538353533.roa (raw, json) Hash identifier: acmarVRT+aZhSzv5rW+MCIXl7Yab0Dk4NzeFIcQJFeI= Subject key identifier: 89:35:EF:30:8A:FD:B2:71:26:C0:32:37:AD:70:51:29:41:52:CF:31 Certificate issuer: /CN=5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E Certificate serial: 2035E1281729ECAAFCB8D6D86397C76AA3530C1D Authority key identifier: 5E:A6:0C:5C:2A:87:7A:DE:8B:13:E9:94:EA:C2:EC:E8:81:C2:F0:2E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138352e302f32342d3234203d3e203538353533.roa Signing time: Mon 16 Oct 2023 15:25:10 +0000 ROA not before: Mon 16 Oct 2023 15:20:10 +0000 ROA not after: Mon 14 Oct 2024 15:25:10 +0000 asID: 58553 IP address blocks: 103.20.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.crl rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:35:e1:28:17:29:ec:aa:fc:b8:d6:d8:63:97:c7:6a:a3:53:0c:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E Validity Not Before: Oct 16 15:20:10 2023 GMT Not After : Oct 14 15:25:10 2024 GMT Subject: CN=8935EF308AFDB27126C03237AD7051294152CF31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ef:03:1f:44:9e:31:2d:5e:41:1e:26:5a:9a: 71:31:09:91:c5:e2:b4:dd:86:a0:67:fd:10:4f:12: f2:9e:e9:3b:00:33:3e:4c:e7:07:17:99:a0:3d:1e: 0f:ae:c2:3a:b6:3e:0e:90:5c:5b:2a:cd:2b:71:7c: 0e:1d:16:d7:e5:72:56:f4:5b:8b:74:ea:84:e0:f1: f5:8d:55:a2:4a:58:29:ea:b3:0e:77:70:b8:28:0e: b8:8d:66:4e:01:e7:fd:82:9f:d9:ee:bc:12:47:de: 3d:76:85:03:82:29:b1:86:b2:1a:fb:76:d7:07:4b: 0b:f3:70:7a:51:ca:a3:be:d4:f5:80:eb:78:cd:38: 9e:50:24:85:ab:24:7b:6f:37:01:1a:91:cc:29:34: 1e:be:70:d5:64:95:bd:f5:3e:c3:ec:65:0b:1e:5d: 58:a2:4e:e6:b5:d3:6f:71:54:21:28:f3:8b:4b:f2: 43:b1:70:43:87:52:8c:73:ab:00:7f:95:d4:c6:f8: a4:90:99:dd:f8:12:3d:c3:0d:2d:bd:60:a8:41:3f: 11:11:d4:e0:c3:75:b8:5f:98:f0:9f:d9:25:03:b5: bd:c8:f3:9f:bc:f1:bb:a7:06:85:e1:dd:12:3a:00: 0b:1d:27:89:1f:ec:75:9c:a4:88:29:0e:35:95:ce: 33:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:35:EF:30:8A:FD:B2:71:26:C0:32:37:AD:70:51:29:41:52:CF:31 X509v3 Authority Key Identifier: keyid:5E:A6:0C:5C:2A:87:7A:DE:8B:13:E9:94:EA:C2:EC:E8:81:C2:F0:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138352e302f32342d3234203d3e203538353533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.185.0/24 Signature Algorithm: sha256WithRSAEncryption 92:1d:17:6b:4d:da:99:3f:a6:c3:15:89:24:0a:65:1a:ca:cd: 5c:67:5e:bc:6c:e4:04:cb:b3:54:db:e0:33:96:de:ed:cc:75: 6b:b0:43:9c:fc:79:b5:e5:54:03:60:16:f5:e3:0f:13:bb:13: 18:65:a4:84:47:1a:af:d6:b0:cc:21:95:f3:a3:22:31:9c:12: b6:4f:78:16:89:48:73:82:6e:ab:b9:d7:c0:19:e0:e7:7b:75: a2:98:67:63:7b:ad:1f:2d:7a:16:60:92:0c:86:e9:3d:c4:c0: f5:4d:a1:ed:0c:f6:86:e0:34:c3:55:d7:f3:6a:e0:66:29:ff: 31:75:0c:8c:ef:69:63:50:0b:25:47:e0:e3:8f:bd:02:a3:94: 2a:5a:a7:25:d6:c8:62:7e:36:8f:4f:3b:7f:6b:b7:7a:2e:14: ff:b0:59:40:06:13:19:31:15:97:c4:61:4d:ea:bb:08:77:1b: af:61:be:fd:c4:e7:5d:ea:ff:97:dc:60:a1:04:9b:d7:55:d4: 6d:ef:94:84:b9:ff:44:67:c5:ad:65:a7:41:af:3b:26:44:26: 0b:ac:39:1a:48:01:ab:1f:65:6c:6f:0c:d5:f3:c6:30:5f:a0: dd:c0:d1:fe:3c:38:41:62:12:95:51:38:d3:bb:11:00:27:66: 92:79:32:47 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIDXhKBcp7Kr8uNbYY5fHaqNTDB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUVBNjBDNUMyQTg3N0FERThCMTNFOTk0RUFDMkVDRTg4 MUMyRjAyRTAeFw0yMzEwMTYxNTIwMTBaFw0yNDEwMTQxNTI1MTBaMDMxMTAvBgNV BAMTKDg5MzVFRjMwOEFGREIyNzEyNkMwMzIzN0FENzA1MTI5NDE1MkNGMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP7wMfRJ4xLV5BHiZamnExCZHF 4rTdhqBn/RBPEvKe6TsAMz5M5wcXmaA9Hg+uwjq2Pg6QXFsqzStxfA4dFtflclb0 W4t06oTg8fWNVaJKWCnqsw53cLgoDriNZk4B5/2Cn9nuvBJH3j12hQOCKbGGshr7 dtcHSwvzcHpRyqO+1PWA63jNOJ5QJIWrJHtvNwEakcwpNB6+cNVklb31PsPsZQse XViiTua1029xVCEo84tL8kOxcEOHUoxzqwB/ldTG+KSQmd34Ej3DDS29YKhBPxER 1ODDdbhfmPCf2SUDtb3I85+88bunBoXh3RI6AAsdJ4kf7HWcpIgpDjWVzjMBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUiTXvMIr9snEmwDI3rXBRKUFSzzEwHwYDVR0j BBgwFoAUXqYMXCqHet6LE+mU6sLs6IHC8C4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MDk3M2JlYi02NmJhLTQ4YmMtOTM3NC03MmQ3ZmI4OWM1YTMvMC81RUE2MEM1QzJB ODc3QURFOEIxM0U5OTRFQUMyRUNFODgxQzJGMDJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUVBNjBDNUMyQTg3N0FERThCMTNFOTk0RUFDMkVDRTg4MUMy RjAyRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwOTczYmViLTY2YmEtNDhiYy05 Mzc0LTcyZDdmYjg5YzVhMy8wLzMxMzAzMzJlMzIzMDJlMzEzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUuTANBgkqhkiG 9w0BAQsFAAOCAQEAkh0Xa03amT+mwxWJJAplGsrNXGdevGzkBMuzVNvgM5be7cx1 a7BDnPx5teVUA2AW9eMPE7sTGGWkhEcar9awzCGV86MiMZwStk94FolIc4Juq7nX wBng53t1ophnY3utHy16FmCSDIbpPcTA9U2h7Qz2huA0w1XX82rgZin/MXUMjO9p Y1ALJUfg44+9AqOUKlqnJdbIYn42j087f2u3ei4U/7BZQAYTGTEVl8RhTeq7CHcb r2G+/cTnXer/l9xgoQSb11XUbe+UhLn/RGfFrWWnQa87JkQmC6w5GkgBqx9lbG8M 1fPGMF+g3cDR/jw4QWISlVE407sRACdmknkyRw== -----END CERTIFICATE-----Generated at Fri Jun 21 15:51:02 2024 by rpki-client on console-ams.rpki-client.org