$ rpki-client -vvf repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138352e302f32342d3234203d3e203538353533.roa File: 3130332e32302e3138352e302f32342d3234203d3e203538353533.roa (raw, json) Hash identifier: matLkK/0RKOzJ5T6ShVJ+TeIBVCHsHv7ufNKNv6zW+I= Subject key identifier: 9F:64:7A:2F:03:2F:C2:2F:E1:76:DC:70:65:AC:79:DD:C4:0A:97:50 Certificate issuer: /CN=5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E Certificate serial: 722A29A8279B9A8A5DEC0EEE5F019AD54BE68DA8 Authority key identifier: 5E:A6:0C:5C:2A:87:7A:DE:8B:13:E9:94:EA:C2:EC:E8:81:C2:F0:2E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138352e302f32342d3234203d3e203538353533.roa Signing time: Mon 16 Sep 2024 16:00:00 +0000 ROA not before: Mon 16 Sep 2024 15:55:00 +0000 ROA not after: Mon 15 Sep 2025 16:00:00 +0000 asID: 58553 IP address blocks: 103.20.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.crl rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:2a:29:a8:27:9b:9a:8a:5d:ec:0e:ee:5f:01:9a:d5:4b:e6:8d:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E Validity Not Before: Sep 16 15:55:00 2024 GMT Not After : Sep 15 16:00:00 2025 GMT Subject: CN=9F647A2F032FC22FE176DC7065AC79DDC40A9750 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7f:ec:3c:b2:ba:6c:ef:b8:b2:45:bf:ce:e1: 36:36:4f:0d:23:94:c0:80:bb:84:6a:83:38:ef:3d: 72:8c:be:74:8c:4e:c9:38:71:92:d4:bc:a7:dc:c6: 88:24:e3:38:56:2f:35:09:6a:95:a6:d1:30:f5:c9: e9:4d:31:fe:2f:12:16:30:cc:01:82:17:41:83:fe: 87:28:8c:a1:56:b5:e4:98:2d:ff:28:e1:ed:da:f6: 53:ba:32:89:0a:94:d5:fb:d9:d5:75:09:1f:90:34: 3b:2e:b6:f8:44:84:5a:1c:a6:8d:19:58:56:16:ef: 26:84:b4:d6:c5:0c:2e:d2:21:99:59:96:a0:25:72: 6d:0c:4b:69:00:6f:8c:fe:e6:45:e6:b8:9b:f5:2c: 35:89:43:a5:8e:db:59:9d:6d:33:34:ef:68:cd:dc: 11:ac:33:96:03:a4:2e:77:40:ab:52:b7:c4:12:53: e5:34:ac:dc:29:74:1d:09:7b:a7:84:46:3e:46:a7: e5:e0:6c:db:66:90:67:d9:41:78:0f:38:06:4f:10: ec:5c:91:b1:4c:3f:a0:78:77:1f:77:fa:05:d8:de: 90:cf:9d:37:fd:7d:7b:fc:95:62:0d:13:c8:2c:08: a9:23:91:98:a9:7e:1b:f8:0d:b7:36:8e:c1:ec:9d: 0a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:64:7A:2F:03:2F:C2:2F:E1:76:DC:70:65:AC:79:DD:C4:0A:97:50 X509v3 Authority Key Identifier: keyid:5E:A6:0C:5C:2A:87:7A:DE:8B:13:E9:94:EA:C2:EC:E8:81:C2:F0:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138352e302f32342d3234203d3e203538353533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.185.0/24 Signature Algorithm: sha256WithRSAEncryption 34:63:e4:d1:69:13:b9:1f:74:dc:78:ff:86:d9:fb:6a:97:19: e5:bb:40:27:ec:de:59:29:61:d4:89:57:48:8b:f4:9f:d2:26: d7:30:ab:84:69:5f:53:8f:d5:7f:eb:e7:a6:e3:e4:bc:39:14: 7f:81:18:86:00:e5:71:3c:78:ff:6f:b8:ee:e4:01:47:f5:45: b7:1b:d3:55:09:7e:95:cb:9a:e8:4e:8e:76:a4:f2:63:77:b5: 31:80:2b:51:35:03:03:c5:1d:1e:ba:40:95:95:51:12:8d:14: 7c:ba:16:ca:31:28:d1:1c:df:3b:2c:fe:9e:a4:a1:54:80:8d: 55:0c:a5:57:1f:75:bb:3d:1b:79:70:e4:ff:d6:0f:07:69:31: 6a:e5:b1:ee:8c:0c:e4:12:cc:46:7d:dd:e1:bd:54:19:bf:46: 30:c9:b0:99:06:73:f0:aa:46:dd:23:08:40:a6:70:09:b9:fd: 88:88:af:09:fe:6a:f4:54:92:b8:da:ee:07:df:99:ea:54:6f: c7:ed:83:98:07:01:b3:57:2c:90:d5:dd:ad:7e:45:1e:e0:32: c6:f0:bb:af:1c:61:ef:4d:0b:67:45:b5:de:27:82:7f:9f:85: f9:72:d0:ad:7c:1e:57:3d:57:47:56:44:eb:da:db:50:0e:86: a2:64:b9:cc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUciopqCebmopd7A7uXwGa1UvmjagwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUVBNjBDNUMyQTg3N0FERThCMTNFOTk0RUFDMkVDRTg4 MUMyRjAyRTAeFw0yNDA5MTYxNTU1MDBaFw0yNTA5MTUxNjAwMDBaMDMxMTAvBgNV BAMTKDlGNjQ3QTJGMDMyRkMyMkZFMTc2REM3MDY1QUM3OUREQzQwQTk3NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5f+w8srps77iyRb/O4TY2Tw0j lMCAu4RqgzjvPXKMvnSMTsk4cZLUvKfcxogk4zhWLzUJapWm0TD1yelNMf4vEhYw zAGCF0GD/ocojKFWteSYLf8o4e3a9lO6MokKlNX72dV1CR+QNDsutvhEhFocpo0Z WFYW7yaEtNbFDC7SIZlZlqAlcm0MS2kAb4z+5kXmuJv1LDWJQ6WO21mdbTM072jN 3BGsM5YDpC53QKtSt8QSU+U0rNwpdB0Je6eERj5Gp+XgbNtmkGfZQXgPOAZPEOxc kbFMP6B4dx93+gXY3pDPnTf9fXv8lWINE8gsCKkjkZipfhv4Dbc2jsHsnQrpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUn2R6LwMvwi/hdtxwZax53cQKl1AwHwYDVR0j BBgwFoAUXqYMXCqHet6LE+mU6sLs6IHC8C4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MDk3M2JlYi02NmJhLTQ4YmMtOTM3NC03MmQ3ZmI4OWM1YTMvMC81RUE2MEM1QzJB ODc3QURFOEIxM0U5OTRFQUMyRUNFODgxQzJGMDJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUVBNjBDNUMyQTg3N0FERThCMTNFOTk0RUFDMkVDRTg4MUMy RjAyRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwOTczYmViLTY2YmEtNDhiYy05 Mzc0LTcyZDdmYjg5YzVhMy8wLzMxMzAzMzJlMzIzMDJlMzEzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUuTANBgkqhkiG 9w0BAQsFAAOCAQEANGPk0WkTuR903Hj/htn7apcZ5btAJ+zeWSlh1IlXSIv0n9Im 1zCrhGlfU4/Vf+vnpuPkvDkUf4EYhgDlcTx4/2+47uQBR/VFtxvTVQl+lcua6E6O dqTyY3e1MYArUTUDA8UdHrpAlZVREo0UfLoWyjEo0RzfOyz+nqShVICNVQylVx91 uz0beXDk/9YPB2kxauWx7owM5BLMRn3d4b1UGb9GMMmwmQZz8KpG3SMIQKZwCbn9 iIivCf5q9FSSuNruB9+Z6lRvx+2DmAcBs1cskNXdrX5FHuAyxvC7rxxh700LZ0W1 3ieCf5+F+XLQrXweVz1XR1ZE69rbUA6GomS5zA== -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:03 2024 by rpki-client on console-ams.rpki-client.org