$ rpki-client -vvf repo-rpki.idnic.net/repo/e99b604f-1578-4a0b-8f7a-58d9f13c9769/0/3130332e3138332e35382e302f32342d3234203d3e20313439343039.roa File: 3130332e3138332e35382e302f32342d3234203d3e20313439343039.roa (raw, json) Hash identifier: 0r2DXHLTRqJ3dFJ53Ux965JGSnIPU/UxvjrAllCGijA= Subject key identifier: 2B:7A:40:17:30:5F:2B:F1:F3:C9:1C:2D:B6:A3:16:B3:62:71:2B:CA Certificate issuer: /CN=D1553F19BBD3B70719E720005FDB3145CC910A1F Certificate serial: 55A13256C72A3948DD042248986E4DC3373013B8 Authority key identifier: D1:55:3F:19:BB:D3:B7:07:19:E7:20:00:5F:DB:31:45:CC:91:0A:1F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1553F19BBD3B70719E720005FDB3145CC910A1F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e99b604f-1578-4a0b-8f7a-58d9f13c9769/0/3130332e3138332e35382e302f32342d3234203d3e20313439343039.roa Signing time: Wed 20 Mar 2024 04:00:02 +0000 ROA not before: Wed 20 Mar 2024 03:55:02 +0000 ROA not after: Wed 19 Mar 2025 04:00:02 +0000 asID: 149409 IP address blocks: 103.183.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e99b604f-1578-4a0b-8f7a-58d9f13c9769/0/D1553F19BBD3B70719E720005FDB3145CC910A1F.crl rsync://repo-rpki.idnic.net/repo/e99b604f-1578-4a0b-8f7a-58d9f13c9769/0/D1553F19BBD3B70719E720005FDB3145CC910A1F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1553F19BBD3B70719E720005FDB3145CC910A1F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 01:03:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:a1:32:56:c7:2a:39:48:dd:04:22:48:98:6e:4d:c3:37:30:13:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1553F19BBD3B70719E720005FDB3145CC910A1F Validity Not Before: Mar 20 03:55:02 2024 GMT Not After : Mar 19 04:00:02 2025 GMT Subject: CN=2B7A4017305F2BF1F3C91C2DB6A316B362712BCA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:df:1a:cf:12:79:75:9a:cc:ed:bb:4d:5e:2b: 8f:13:b2:84:31:af:4f:36:39:01:8b:ae:65:7a:52: 15:ae:a3:22:c6:b9:5f:e1:15:23:ab:8b:55:8a:f1: 1e:23:2b:86:3a:ae:49:c3:90:97:66:a6:32:24:b7: e7:6d:06:dd:ec:95:7d:ae:48:be:27:3a:a8:07:c4: 9b:42:67:58:48:59:4e:98:68:90:1f:d9:97:82:4d: 64:3f:87:c6:c7:cd:d0:e8:e2:8c:cc:33:e2:dc:45: c8:1b:10:6d:61:0b:3a:7c:81:b9:54:1b:12:db:63: d2:1b:f7:97:11:1c:2c:8d:38:3c:01:a9:df:8c:a4: e9:fb:01:f4:0d:57:38:f3:a2:04:ad:b8:13:02:34: 93:0c:5e:cf:b6:37:47:63:ed:ae:80:73:c1:50:e5: 88:39:44:47:5e:e3:ca:ee:a2:06:a1:f6:96:56:2e: 4d:85:a3:d5:3d:31:6f:1a:3a:24:f1:83:2e:47:ed: db:5a:4b:d3:02:4e:2d:75:90:fb:08:09:89:4f:b7: d9:bb:19:5d:9b:0a:b8:a8:43:0e:f1:cb:dd:eb:2c: f9:2f:7e:9c:e6:d9:67:42:47:f6:08:f8:71:5d:43: f8:ea:00:f8:4c:1a:55:8c:ec:7e:cc:07:07:8b:e2: 7e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:7A:40:17:30:5F:2B:F1:F3:C9:1C:2D:B6:A3:16:B3:62:71:2B:CA X509v3 Authority Key Identifier: keyid:D1:55:3F:19:BB:D3:B7:07:19:E7:20:00:5F:DB:31:45:CC:91:0A:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e99b604f-1578-4a0b-8f7a-58d9f13c9769/0/D1553F19BBD3B70719E720005FDB3145CC910A1F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1553F19BBD3B70719E720005FDB3145CC910A1F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e99b604f-1578-4a0b-8f7a-58d9f13c9769/0/3130332e3138332e35382e302f32342d3234203d3e20313439343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.183.58.0/24 Signature Algorithm: sha256WithRSAEncryption a4:72:d3:d0:0d:4d:bd:ff:50:4a:b4:a7:d9:d3:04:3f:79:1b: 9b:eb:42:37:c5:4f:57:92:d9:1a:e9:55:dc:3d:07:4f:de:1a: 41:47:9d:8c:51:ba:4d:c2:d5:af:8c:b9:e4:f0:a9:f0:83:a4: ca:f8:22:81:fe:b6:59:5a:d7:50:5b:55:d6:5d:5b:9a:33:a4: bb:bf:7c:46:c2:38:c3:b5:a1:23:95:37:13:43:d7:41:e9:9b: 50:18:e6:67:7c:a9:4b:e4:61:61:a3:c9:b3:ff:84:b8:1d:3e: bb:7d:77:d0:28:86:f3:ee:6c:99:6d:a8:f5:22:63:63:22:8c: d2:7e:56:7b:15:3f:ca:1c:27:5e:a9:1a:40:5a:5f:ec:0c:4e: d0:89:bd:45:e8:c1:e7:d4:29:36:d6:ed:1d:f7:9d:67:bc:16: 06:93:03:60:35:5a:86:ac:fd:c8:6b:2c:57:76:3d:bb:9d:e4: 88:b5:af:81:0a:b7:62:26:eb:4f:91:de:80:81:57:29:c4:13: 46:5e:d7:5b:a2:f8:d3:e0:b3:aa:e5:81:e5:93:73:04:db:37: 3f:e0:fd:da:20:2a:cf:b8:84:f4:af:3b:3e:39:e6:e1:43:15: 76:58:a1:1c:45:02:d7:90:2f:26:fb:d2:0a:15:3a:12:5a:4b: 24:07:ff:f3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVaEyVscqOUjdBCJImG5NwzcwE7gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE1NTNGMTlCQkQzQjcwNzE5RTcyMDAwNUZEQjMxNDVD QzkxMEExRjAeFw0yNDAzMjAwMzU1MDJaFw0yNTAzMTkwNDAwMDJaMDMxMTAvBgNV BAMTKDJCN0E0MDE3MzA1RjJCRjFGM0M5MUMyREI2QTMxNkIzNjI3MTJCQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp3xrPEnl1msztu01eK48TsoQx r082OQGLrmV6UhWuoyLGuV/hFSOri1WK8R4jK4Y6rknDkJdmpjIkt+dtBt3slX2u SL4nOqgHxJtCZ1hIWU6YaJAf2ZeCTWQ/h8bHzdDo4ozMM+LcRcgbEG1hCzp8gblU GxLbY9Ib95cRHCyNODwBqd+MpOn7AfQNVzjzogStuBMCNJMMXs+2N0dj7a6Ac8FQ 5Yg5REde48ruogah9pZWLk2Fo9U9MW8aOiTxgy5H7dtaS9MCTi11kPsICYlPt9m7 GV2bCrioQw7xy93rLPkvfpzm2WdCR/YI+HFdQ/jqAPhMGlWM7H7MBweL4n5pAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUK3pAFzBfK/HzyRwttqMWs2JxK8owHwYDVR0j BBgwFoAU0VU/GbvTtwcZ5yAAX9sxRcyRCh8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l OTliNjA0Zi0xNTc4LTRhMGItOGY3YS01OGQ5ZjEzYzk3NjkvMC9EMTU1M0YxOUJC RDNCNzA3MTlFNzIwMDA1RkRCMzE0NUNDOTEwQTFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDE1NTNGMTlCQkQzQjcwNzE5RTcyMDAwNUZEQjMxNDVDQzkx MEExRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U5OWI2MDRmLTE1NzgtNGEwYi04 ZjdhLTU4ZDlmMTNjOTc2OS8wLzMxMzAzMzJlMzEzODMzMmUzNTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzQzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7c6MA0GCSqG SIb3DQEBCwUAA4IBAQCkctPQDU29/1BKtKfZ0wQ/eRub60I3xU9Xktka6VXcPQdP 3hpBR52MUbpNwtWvjLnk8Knwg6TK+CKB/rZZWtdQW1XWXVuaM6S7v3xGwjjDtaEj lTcTQ9dB6ZtQGOZnfKlL5GFho8mz/4S4HT67fXfQKIbz7myZbaj1ImNjIozSflZ7 FT/KHCdeqRpAWl/sDE7Qib1F6MHn1Ck21u0d951nvBYGkwNgNVqGrP3IayxXdj27 neSIta+BCrdiJutPkd6AgVcpxBNGXtdbovjT4LOq5YHlk3ME2zc/4P3aICrPuIT0 rzs+OebhQxV2WKEcRQLXkC8m+9IKFToSWkskB//z -----END CERTIFICATE-----Generated at Fri May 31 20:32:45 2024 by rpki-client on console-ams.rpki-client.org