$ rpki-client -vvf repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/3130332e3135352e3139382e302f32332d3234203d3e203538383231.roa File: 3130332e3135352e3139382e302f32332d3234203d3e203538383231.roa (raw, json) Hash identifier: cET6TxkhfVz8Bv/Cy86u3OxeSsEdkeh1VFVGv4QfcbU= Subject key identifier: 63:A5:9E:D6:5A:94:FC:D7:E8:03:3D:B8:B8:31:03:A4:0B:6E:10:6F Certificate issuer: /CN=58BB439F406646053DA2029A1FDBBE942B381419 Certificate serial: 09A1B058F5E77014784227F9CE8680C60ADA6473 Authority key identifier: 58:BB:43:9F:40:66:46:05:3D:A2:02:9A:1F:DB:BE:94:2B:38:14:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58BB439F406646053DA2029A1FDBBE942B381419.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/3130332e3135352e3139382e302f32332d3234203d3e203538383231.roa Signing time: Sat 20 Jan 2024 07:00:01 +0000 ROA not before: Sat 20 Jan 2024 06:55:01 +0000 ROA not after: Sat 18 Jan 2025 07:00:01 +0000 asID: 58821 IP address blocks: 103.155.198.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/58BB439F406646053DA2029A1FDBBE942B381419.crl rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/58BB439F406646053DA2029A1FDBBE942B381419.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58BB439F406646053DA2029A1FDBBE942B381419.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 09:38:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:a1:b0:58:f5:e7:70:14:78:42:27:f9:ce:86:80:c6:0a:da:64:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58BB439F406646053DA2029A1FDBBE942B381419 Validity Not Before: Jan 20 06:55:01 2024 GMT Not After : Jan 18 07:00:01 2025 GMT Subject: CN=63A59ED65A94FCD7E8033DB8B83103A40B6E106F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:43:f3:21:a3:04:60:62:a2:61:59:6d:b3:d2: 79:28:fc:19:31:72:b3:22:50:39:2f:b5:0e:f9:c5: af:f5:02:93:b4:cd:8a:92:12:ed:eb:fc:be:ac:62: eb:b8:87:86:42:85:02:49:67:9e:df:85:19:98:32: e5:3f:25:e3:2a:b3:f7:74:2c:e9:ec:6e:55:57:9c: 7c:b6:08:ad:5e:66:65:ba:b6:91:2b:81:dc:1b:1f: 3b:c7:c6:d2:03:92:47:26:29:b4:7b:b6:08:a3:de: 07:98:fe:7e:36:0e:63:69:fe:3f:2d:00:f6:f3:59: 53:8e:f3:21:3f:a0:40:04:6a:65:7e:2e:52:51:d1: 16:43:7c:1c:50:d2:ae:a7:82:c7:a9:15:04:1d:c1: 2e:2e:22:e4:bb:dc:3e:d5:d9:ff:d7:71:0e:ca:2b: 89:98:fe:3e:d2:08:47:fc:50:d4:f7:b7:d1:60:51: 41:a1:29:b8:1f:ad:49:b4:b7:50:fd:51:1b:0e:c8: ed:05:d0:3f:03:62:ee:93:cd:e9:fd:b0:76:00:71: d7:91:4c:bb:4e:8c:a0:1b:d0:3a:97:f2:bc:71:57: 7f:d5:4a:b8:6e:61:ac:1c:1f:8d:59:9e:34:cd:29: 99:94:3f:48:9a:29:62:0c:e2:80:a6:f2:52:95:30: 72:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:A5:9E:D6:5A:94:FC:D7:E8:03:3D:B8:B8:31:03:A4:0B:6E:10:6F X509v3 Authority Key Identifier: keyid:58:BB:43:9F:40:66:46:05:3D:A2:02:9A:1F:DB:BE:94:2B:38:14:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/58BB439F406646053DA2029A1FDBBE942B381419.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58BB439F406646053DA2029A1FDBBE942B381419.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/3130332e3135352e3139382e302f32332d3234203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.198.0/23 Signature Algorithm: sha256WithRSAEncryption 73:85:70:34:af:31:e5:7d:36:ba:9d:18:b0:1d:64:ed:5e:f7: 60:f2:df:d6:08:37:c9:b6:82:db:d3:36:da:c1:78:8c:b0:63: 91:5d:64:75:c5:a3:0d:ae:24:82:6e:d5:f6:1f:43:96:c4:7e: a1:75:b9:04:6a:bb:1b:0d:01:c1:0b:cb:cf:97:00:4d:9b:22: d2:cc:96:12:fb:67:17:cb:9a:d2:36:25:cc:dd:0d:a1:d4:18: 50:54:e5:5a:0c:e4:5a:01:2a:e6:81:3a:48:67:64:5c:c5:f3: f5:ad:02:32:c0:47:d2:29:39:6f:ac:1f:72:90:28:d9:0a:8a: f4:63:ef:fc:f5:63:55:cc:97:cf:cc:12:6c:b2:dd:64:75:81: c7:6e:e4:77:75:5c:e7:42:88:32:55:c3:33:b0:0f:5e:9d:e2: 43:84:18:0c:0f:41:c5:07:61:df:19:f0:4b:80:c8:7e:79:61: b8:9a:04:ae:d6:36:05:0e:b8:06:0e:a5:31:a9:30:7a:f9:79: 97:21:08:0a:86:86:a5:3f:51:ef:ff:58:d4:58:de:b0:c7:27: 5a:86:2b:e3:9b:36:30:88:f8:fd:3a:03:e0:2b:e5:ce:0b:ed: 92:09:10:9f:f1:6a:10:f5:ff:64:04:56:33:4d:7a:cf:6a:77: b8:87:56:b3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCaGwWPXncBR4Qif5zoaAxgraZHMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThCQjQzOUY0MDY2NDYwNTNEQTIwMjlBMUZEQkJFOTQy QjM4MTQxOTAeFw0yNDAxMjAwNjU1MDFaFw0yNTAxMTgwNzAwMDFaMDMxMTAvBgNV BAMTKDYzQTU5RUQ2NUE5NEZDRDdFODAzM0RCOEI4MzEwM0E0MEI2RTEwNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxQ/MhowRgYqJhWW2z0nko/Bkx crMiUDkvtQ75xa/1ApO0zYqSEu3r/L6sYuu4h4ZChQJJZ57fhRmYMuU/JeMqs/d0 LOnsblVXnHy2CK1eZmW6tpErgdwbHzvHxtIDkkcmKbR7tgij3geY/n42DmNp/j8t APbzWVOO8yE/oEAEamV+LlJR0RZDfBxQ0q6ngsepFQQdwS4uIuS73D7V2f/XcQ7K K4mY/j7SCEf8UNT3t9FgUUGhKbgfrUm0t1D9URsOyO0F0D8DYu6Tzen9sHYAcdeR TLtOjKAb0DqX8rxxV3/VSrhuYawcH41ZnjTNKZmUP0iaKWIM4oCm8lKVMHL/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUY6We1lqU/NfoAz24uDEDpAtuEG8wHwYDVR0j BBgwFoAUWLtDn0BmRgU9ogKaH9u+lCs4FBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZjI1MDZiMS0zOTZkLTQ5OWUtYjdmNS01ZDlmOGU3ZTBiZWUvMC81OEJCNDM5RjQw NjY0NjA1M0RBMjAyOUExRkRCQkU5NDJCMzgxNDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThCQjQzOUY0MDY2NDYwNTNEQTIwMjlBMUZEQkJFOTQyQjM4 MTQxOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZmMjUwNmIxLTM5NmQtNDk5ZS1i N2Y1LTVkOWY4ZTdlMGJlZS8wLzMxMzAzMzJlMzEzNTM1MmUzMTM5MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNTM4MzgzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5vGMA0GCSqG SIb3DQEBCwUAA4IBAQBzhXA0rzHlfTa6nRiwHWTtXvdg8t/WCDfJtoLb0zbawXiM sGORXWR1xaMNriSCbtX2H0OWxH6hdbkEarsbDQHBC8vPlwBNmyLSzJYS+2cXy5rS NiXM3Q2h1BhQVOVaDORaASrmgTpIZ2RcxfP1rQIywEfSKTlvrB9ykCjZCor0Y+/8 9WNVzJfPzBJsst1kdYHHbuR3dVznQogyVcMzsA9eneJDhBgMD0HFB2HfGfBLgMh+ eWG4mgSu1jYFDrgGDqUxqTB6+XmXIQgKhoalP1Hv/1jUWN6wxydahivjmzYwiPj9 OgPgK+XOC+2SCRCf8WoQ9f9kBFYzTXrPane4h1az -----END CERTIFICATE-----Generated at Wed May 1 05:54:35 2024 by rpki-client on console-ams.rpki-client.org