$ rpki-client -vvf repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138362e302f32342d3234203d3e203538353533.roa File: 3130332e32302e3138362e302f32342d3234203d3e203538353533.roa (raw, json) Hash identifier: Ckz43RBGnZqWC1YWZccZLQekboncx3BDpeUFTrImALk= Subject key identifier: 03:D0:CF:15:6A:CD:4B:99:1E:D3:41:DA:9A:B6:5E:B8:D3:89:A4:96 Certificate issuer: /CN=5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E Certificate serial: 5E9F22651203DA3B316F2E3307ED6EB828FCB7D8 Authority key identifier: 5E:A6:0C:5C:2A:87:7A:DE:8B:13:E9:94:EA:C2:EC:E8:81:C2:F0:2E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138362e302f32342d3234203d3e203538353533.roa Signing time: Mon 16 Oct 2023 15:25:23 +0000 ROA not before: Mon 16 Oct 2023 15:20:23 +0000 ROA not after: Mon 14 Oct 2024 15:25:23 +0000 asID: 58553 IP address blocks: 103.20.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.crl rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:9f:22:65:12:03:da:3b:31:6f:2e:33:07:ed:6e:b8:28:fc:b7:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E Validity Not Before: Oct 16 15:20:23 2023 GMT Not After : Oct 14 15:25:23 2024 GMT Subject: CN=03D0CF156ACD4B991ED341DA9AB65EB8D389A496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1d:3b:b1:90:59:ea:8f:e2:de:39:59:9e:a1: 69:29:78:85:f0:60:17:42:43:2e:5e:27:24:32:e2: 91:0c:25:0a:71:cf:f5:e4:fc:7e:77:db:3d:49:a1: 18:aa:14:37:ef:b4:d5:7a:fc:76:ea:33:dd:98:7e: f1:19:6a:96:9e:f6:0c:cf:ea:4c:01:79:96:6b:83: 74:76:42:89:00:5d:23:ef:ef:d8:dc:49:29:4a:d3: 61:18:09:2a:bb:e6:c6:e1:29:6f:3c:eb:b8:96:81: 95:ad:a4:48:5a:3b:1d:82:ac:c9:87:bb:dc:95:f8: e9:4a:47:99:4c:77:6e:38:f2:10:89:f5:9c:83:8a: ab:ee:25:e0:df:43:13:76:39:bd:1f:7a:d0:34:0f: 6b:a9:46:b3:82:39:03:e1:fc:7d:e2:e2:f2:96:53: ca:fd:03:25:7e:dc:d7:2b:e0:e3:ef:e1:62:d6:01: ab:2a:84:5c:23:d2:82:21:42:97:1b:7b:2b:4a:fb: 6c:62:b3:cb:7c:17:cb:cc:9a:59:e5:b5:ed:6d:16: 6b:b8:18:ab:1a:40:6a:1e:33:df:fb:49:d2:3e:b2: 41:6d:a7:e3:7d:ba:cb:fd:02:f2:97:ae:55:30:e2: 5e:14:ab:f2:82:9a:61:16:e8:e0:01:53:7e:7e:9e: 59:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:D0:CF:15:6A:CD:4B:99:1E:D3:41:DA:9A:B6:5E:B8:D3:89:A4:96 X509v3 Authority Key Identifier: keyid:5E:A6:0C:5C:2A:87:7A:DE:8B:13:E9:94:EA:C2:EC:E8:81:C2:F0:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138362e302f32342d3234203d3e203538353533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.186.0/24 Signature Algorithm: sha256WithRSAEncryption 27:44:cb:cb:59:cf:6e:3b:f7:33:cb:8d:1a:fd:be:b7:69:eb: 57:ea:06:3a:b7:3d:8c:86:66:1a:aa:f8:06:6d:90:d7:87:c7: 64:b0:e9:13:22:34:35:9a:b1:30:ec:d2:af:8e:e9:1c:5a:c7: 0a:33:1d:c2:c8:56:70:06:30:66:f9:b2:a7:0c:2a:7b:7e:16: 3a:3b:8b:8b:92:c1:9f:ea:30:e2:30:77:36:8c:44:1d:dc:89: 87:61:e9:dd:aa:6e:ac:a3:ab:65:3d:e0:77:bb:c2:ec:01:2f: e7:1a:74:79:ab:b3:95:41:b1:b0:ab:8e:ed:50:e3:47:0f:44: a8:1c:e4:ec:35:81:2f:74:d9:74:15:87:57:72:30:28:97:15: 50:ec:ea:1a:81:08:80:74:c3:0b:d2:59:51:5f:34:ae:8a:15: 00:3f:c1:ad:59:8b:16:68:d7:63:5c:44:c7:65:3d:9c:15:a9: 94:94:6f:e8:3a:b8:82:51:90:6f:36:9e:b2:45:2c:32:2b:f8: 65:bb:fb:f5:f8:e5:76:40:71:22:86:61:53:b4:a0:33:c4:90: ac:d4:fa:5b:b8:1a:4c:54:4f:ad:da:36:53:3b:72:8c:98:b1: 02:94:5b:82:44:77:0f:e9:fc:4c:20:11:73:8a:3c:fe:cb:e0: c9:dd:ec:c6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXp8iZRID2jsxby4zB+1uuCj8t9gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUVBNjBDNUMyQTg3N0FERThCMTNFOTk0RUFDMkVDRTg4 MUMyRjAyRTAeFw0yMzEwMTYxNTIwMjNaFw0yNDEwMTQxNTI1MjNaMDMxMTAvBgNV BAMTKDAzRDBDRjE1NkFDRDRCOTkxRUQzNDFEQTlBQjY1RUI4RDM4OUE0OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNHTuxkFnqj+LeOVmeoWkpeIXw YBdCQy5eJyQy4pEMJQpxz/Xk/H532z1JoRiqFDfvtNV6/HbqM92YfvEZapae9gzP 6kwBeZZrg3R2QokAXSPv79jcSSlK02EYCSq75sbhKW8867iWgZWtpEhaOx2CrMmH u9yV+OlKR5lMd2448hCJ9ZyDiqvuJeDfQxN2Ob0fetA0D2upRrOCOQPh/H3i4vKW U8r9AyV+3Ncr4OPv4WLWAasqhFwj0oIhQpcbeytK+2xis8t8F8vMmlnlte1tFmu4 GKsaQGoeM9/7SdI+skFtp+N9usv9AvKXrlUw4l4Uq/KCmmEW6OABU35+nlkHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUA9DPFWrNS5ke00HamrZeuNOJpJYwHwYDVR0j BBgwFoAUXqYMXCqHet6LE+mU6sLs6IHC8C4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MDk3M2JlYi02NmJhLTQ4YmMtOTM3NC03MmQ3ZmI4OWM1YTMvMC81RUE2MEM1QzJB ODc3QURFOEIxM0U5OTRFQUMyRUNFODgxQzJGMDJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUVBNjBDNUMyQTg3N0FERThCMTNFOTk0RUFDMkVDRTg4MUMy RjAyRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwOTczYmViLTY2YmEtNDhiYy05 Mzc0LTcyZDdmYjg5YzVhMy8wLzMxMzAzMzJlMzIzMDJlMzEzODM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUujANBgkqhkiG 9w0BAQsFAAOCAQEAJ0TLy1nPbjv3M8uNGv2+t2nrV+oGOrc9jIZmGqr4Bm2Q14fH ZLDpEyI0NZqxMOzSr47pHFrHCjMdwshWcAYwZvmypwwqe34WOjuLi5LBn+ow4jB3 NoxEHdyJh2Hp3apurKOrZT3gd7vC7AEv5xp0eauzlUGxsKuO7VDjRw9EqBzk7DWB L3TZdBWHV3IwKJcVUOzqGoEIgHTDC9JZUV80rooVAD/BrVmLFmjXY1xEx2U9nBWp lJRv6Dq4glGQbzaeskUsMiv4Zbv79fjldkBxIoZhU7SgM8SQrNT6W7gaTFRPrdo2 UztyjJixApRbgkR3D+n8TCARc4o8/svgyd3sxg== -----END CERTIFICATE-----Generated at Fri Jun 21 16:09:58 2024 by rpki-client on console-fra.rpki-client.org