$ rpki-client -vvf repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138362e302f32342d3234203d3e203538353533.roa File: 3130332e32302e3138362e302f32342d3234203d3e203538353533.roa (raw, json) Hash identifier: gpL6qnRxLPgeiV+PlG3hB+cnGTmStZNiAx19SwL8f6w= Subject key identifier: 34:E2:E3:D4:76:CD:E1:67:E9:2A:33:EF:AE:9A:5E:8B:4F:2E:47:66 Certificate issuer: /CN=5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E Certificate serial: 75EE9F4E9A04C4573BA058F84CE527C65673912E Authority key identifier: 5E:A6:0C:5C:2A:87:7A:DE:8B:13:E9:94:EA:C2:EC:E8:81:C2:F0:2E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138362e302f32342d3234203d3e203538353533.roa Signing time: Mon 16 Sep 2024 16:00:00 +0000 ROA not before: Mon 16 Sep 2024 15:55:00 +0000 ROA not after: Mon 15 Sep 2025 16:00:00 +0000 asID: 58553 IP address blocks: 103.20.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.crl rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:ee:9f:4e:9a:04:c4:57:3b:a0:58:f8:4c:e5:27:c6:56:73:91:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E Validity Not Before: Sep 16 15:55:00 2024 GMT Not After : Sep 15 16:00:00 2025 GMT Subject: CN=34E2E3D476CDE167E92A33EFAE9A5E8B4F2E4766 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4d:30:39:df:bd:af:44:ad:c2:34:40:40:90: eb:40:f9:d9:52:f8:a9:fe:e7:9b:c3:ee:7e:83:3d: 0b:09:63:31:1c:d3:0a:93:7d:61:19:7d:af:20:2c: 8b:a6:54:77:2e:b9:22:bc:67:f2:a5:84:42:c7:ce: e4:d0:22:0c:75:5a:04:a3:77:77:20:18:bb:d3:fe: b7:96:8e:d7:52:c1:a4:a7:58:77:18:bc:9e:20:a0: a3:91:b6:6f:20:b9:7c:8a:00:b4:99:28:eb:b1:7f: 39:e7:c8:7a:d5:ce:84:a6:48:42:3a:46:3d:6a:cd: 46:9d:72:2d:6e:44:cd:a7:88:82:59:71:dc:58:9a: 9f:2d:6e:c6:1d:c2:76:72:dc:8b:3e:7d:b8:55:db: 15:59:ad:8a:47:3d:51:f7:fb:58:25:30:91:cb:af: 7f:4a:d5:d2:91:24:08:19:ee:c6:bc:6b:7b:d1:58: e5:f5:e6:7c:02:ec:9d:b6:c3:dc:0a:fa:51:92:c0: 9c:32:6e:c9:1a:e6:c2:c0:ee:91:60:02:c8:b7:53: 88:48:78:70:22:83:9b:63:04:ee:e1:fc:61:4a:db: 76:24:17:15:f2:58:3b:72:80:1e:d0:4b:45:07:1b: bc:48:7a:30:84:b8:89:37:1e:42:93:c3:82:3b:e7: 5e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:E2:E3:D4:76:CD:E1:67:E9:2A:33:EF:AE:9A:5E:8B:4F:2E:47:66 X509v3 Authority Key Identifier: keyid:5E:A6:0C:5C:2A:87:7A:DE:8B:13:E9:94:EA:C2:EC:E8:81:C2:F0:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EA60C5C2A877ADE8B13E994EAC2ECE881C2F02E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0973beb-66ba-48bc-9374-72d7fb89c5a3/0/3130332e32302e3138362e302f32342d3234203d3e203538353533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.186.0/24 Signature Algorithm: sha256WithRSAEncryption 37:97:0e:f9:1e:e0:bd:5a:76:95:f2:ae:a7:aa:4f:cb:35:ac: 4a:2e:d1:b1:5e:61:f3:da:a0:61:0b:9b:66:53:f2:75:50:44: 23:9f:9b:72:bb:1d:69:9d:ef:d8:25:eb:59:68:1a:da:d8:9c: 57:ba:f7:f4:9d:90:d9:e1:83:a3:8e:63:49:f2:3d:1a:4a:e3: b1:ad:64:f3:93:86:3d:ad:7c:ae:d3:0e:5d:84:d2:f4:4c:42: 2a:88:b9:bc:60:d1:11:76:04:1c:66:9a:63:b0:c3:8f:3f:0c: 05:af:9a:43:8a:76:2f:4b:8d:45:ea:e3:2f:5a:68:87:3a:78: 51:58:64:5f:86:fd:80:10:cf:fb:04:ac:0a:48:f5:2f:83:03: c4:14:d8:68:57:8a:66:db:e1:38:52:ff:30:53:d6:c3:dd:05: f6:59:97:53:31:05:0b:79:d9:bc:be:5a:99:e4:cd:b2:a5:39: c0:bb:4c:cd:20:f5:ba:d1:fd:9a:71:27:c7:2a:5e:2d:93:91: bd:5f:fa:6b:3f:fa:26:39:68:23:30:03:24:e7:4c:f6:ed:be: 23:0e:35:ee:77:cb:ea:b4:79:a3:13:98:bd:ad:cb:b2:8f:4c: 00:99:aa:c1:31:f6:04:01:22:76:62:e5:fc:58:a7:e9:cd:01: cd:91:46:5f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUde6fTpoExFc7oFj4TOUnxlZzkS4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUVBNjBDNUMyQTg3N0FERThCMTNFOTk0RUFDMkVDRTg4 MUMyRjAyRTAeFw0yNDA5MTYxNTU1MDBaFw0yNTA5MTUxNjAwMDBaMDMxMTAvBgNV BAMTKDM0RTJFM0Q0NzZDREUxNjdFOTJBMzNFRkFFOUE1RThCNEYyRTQ3NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMTTA5372vRK3CNEBAkOtA+dlS +Kn+55vD7n6DPQsJYzEc0wqTfWEZfa8gLIumVHcuuSK8Z/KlhELHzuTQIgx1WgSj d3cgGLvT/reWjtdSwaSnWHcYvJ4goKORtm8guXyKALSZKOuxfznnyHrVzoSmSEI6 Rj1qzUadci1uRM2niIJZcdxYmp8tbsYdwnZy3Is+fbhV2xVZrYpHPVH3+1glMJHL r39K1dKRJAgZ7sa8a3vRWOX15nwC7J22w9wK+lGSwJwybska5sLA7pFgAsi3U4hI eHAig5tjBO7h/GFK23YkFxXyWDtygB7QS0UHG7xIejCEuIk3HkKTw4I7516PAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNOLj1HbN4WfpKjPvrppei08uR2YwHwYDVR0j BBgwFoAUXqYMXCqHet6LE+mU6sLs6IHC8C4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MDk3M2JlYi02NmJhLTQ4YmMtOTM3NC03MmQ3ZmI4OWM1YTMvMC81RUE2MEM1QzJB ODc3QURFOEIxM0U5OTRFQUMyRUNFODgxQzJGMDJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUVBNjBDNUMyQTg3N0FERThCMTNFOTk0RUFDMkVDRTg4MUMy RjAyRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwOTczYmViLTY2YmEtNDhiYy05 Mzc0LTcyZDdmYjg5YzVhMy8wLzMxMzAzMzJlMzIzMDJlMzEzODM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUujANBgkqhkiG 9w0BAQsFAAOCAQEAN5cO+R7gvVp2lfKup6pPyzWsSi7RsV5h89qgYQubZlPydVBE I5+bcrsdaZ3v2CXrWWga2ticV7r39J2Q2eGDo45jSfI9Gkrjsa1k85OGPa18rtMO XYTS9ExCKoi5vGDREXYEHGaaY7DDjz8MBa+aQ4p2L0uNRerjL1pohzp4UVhkX4b9 gBDP+wSsCkj1L4MDxBTYaFeKZtvhOFL/MFPWw90F9lmXUzEFC3nZvL5ameTNsqU5 wLtMzSD1utH9mnEnxypeLZORvV/6az/6JjloIzADJOdM9u2+Iw417nfL6rR5oxOY va3Lso9MAJmqwTH2BAEidmLl/Fin6c0BzZFGXw== -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:03 2024 by rpki-client on console-ams.rpki-client.org