$ rpki-client -vvf repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/3130332e3136302e3137392e302f32342d3234203d3e20313431353932.roa File: 3130332e3136302e3137392e302f32342d3234203d3e20313431353932.roa (raw, json) Hash identifier: WJzkF+M9+RSs1NESAmQDrBba/fGvI31v60AuNcwGbXA= Subject key identifier: 25:18:85:04:B2:8D:2B:AA:8A:7E:9D:AF:21:B7:D0:62:03:DE:05:9D Certificate issuer: /CN=032056FFABA06741112BA404900B315C87E35361 Certificate serial: 4B3C0E289B1B9DC6819EFB88C1F3FFD60184BB88 Authority key identifier: 03:20:56:FF:AB:A0:67:41:11:2B:A4:04:90:0B:31:5C:87:E3:53:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032056FFABA06741112BA404900B315C87E35361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/3130332e3136302e3137392e302f32342d3234203d3e20313431353932.roa Signing time: Thu 19 Oct 2023 09:00:33 +0000 ROA not before: Thu 19 Oct 2023 08:55:33 +0000 ROA not after: Thu 17 Oct 2024 09:00:33 +0000 asID: 141592 IP address blocks: 103.160.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/032056FFABA06741112BA404900B315C87E35361.crl rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/032056FFABA06741112BA404900B315C87E35361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032056FFABA06741112BA404900B315C87E35361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 02:57:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:3c:0e:28:9b:1b:9d:c6:81:9e:fb:88:c1:f3:ff:d6:01:84:bb:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=032056FFABA06741112BA404900B315C87E35361 Validity Not Before: Oct 19 08:55:33 2023 GMT Not After : Oct 17 09:00:33 2024 GMT Subject: CN=25188504B28D2BAA8A7E9DAF21B7D06203DE059D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e6:45:30:80:2e:b2:59:52:63:db:19:38:56: f8:37:b1:b2:3f:f4:71:63:e5:ff:54:a8:70:27:43: 27:d0:1e:ce:48:27:f0:37:00:bd:4f:08:35:22:28: 14:6e:5f:fc:8f:0d:4f:f7:5f:d5:c0:5b:4b:9e:30: db:cf:e9:9a:90:b3:32:22:4d:5d:56:b3:25:c0:78: 64:f7:87:51:fb:6f:d4:af:26:55:14:05:ff:b8:c5: 74:be:f6:9f:83:65:0b:3c:ed:30:1f:57:d8:08:2a: a3:e8:20:90:97:48:fb:9c:de:fe:13:08:d1:ba:5b: c7:9e:f4:bd:6b:33:11:ef:b7:07:7e:03:62:6b:cb: f2:d5:92:da:a7:7d:82:ca:9a:62:39:86:2d:a4:28: 27:95:de:03:89:42:69:02:f1:50:81:0e:da:97:37: 2b:a4:1a:75:ab:d6:86:8e:65:09:f3:e5:12:c3:01: b2:db:a9:bd:7e:85:3f:7c:3b:dd:cb:7e:ad:2e:64: d1:c5:e7:79:9d:4a:3a:94:32:69:9a:e6:36:31:29: 72:a8:e7:e8:0d:c1:03:73:dd:c3:7d:5d:98:e7:a6: 8a:8b:ba:68:bf:5f:4a:99:81:62:fc:4d:b1:27:66: 1b:50:f1:5d:78:0e:55:97:fe:d7:f4:08:84:df:cc: 94:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:18:85:04:B2:8D:2B:AA:8A:7E:9D:AF:21:B7:D0:62:03:DE:05:9D X509v3 Authority Key Identifier: keyid:03:20:56:FF:AB:A0:67:41:11:2B:A4:04:90:0B:31:5C:87:E3:53:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/032056FFABA06741112BA404900B315C87E35361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032056FFABA06741112BA404900B315C87E35361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/3130332e3136302e3137392e302f32342d3234203d3e20313431353932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.179.0/24 Signature Algorithm: sha256WithRSAEncryption ca:f4:2f:1f:89:d6:1e:22:c8:cf:6c:cf:b3:f7:b8:8d:da:82: 89:93:73:16:1a:97:6a:89:15:ad:50:2d:9f:0c:56:8b:c1:f0: 5b:a4:55:7c:57:d5:46:47:80:79:25:ac:58:9e:d2:4c:be:f2: 60:6e:d8:0c:26:fe:bb:ab:ca:41:a4:b3:55:98:b8:34:a8:51: 2c:70:ae:7d:90:05:ad:f9:b2:e9:04:48:ad:ea:a7:d7:1c:a6: 2b:3e:5a:0a:63:ec:27:67:fb:f4:ce:8f:cd:84:ae:f4:05:95: 6a:7a:50:da:ab:fa:1f:cf:05:71:09:e1:10:50:5a:57:50:71: 5d:79:7f:57:16:64:70:a9:e5:57:f5:31:e2:8a:18:28:a5:ae: 50:d1:4d:83:c9:1c:2d:2a:4a:af:9d:22:58:12:be:58:c7:c7: d1:28:9c:4f:3d:24:4f:0b:9d:b9:48:26:1a:dc:20:bc:89:6b: a6:07:39:6f:6f:14:04:e3:ce:ec:a9:b0:2b:15:77:09:c7:fc: 93:2f:09:4a:d0:66:60:64:24:02:e6:ac:1c:83:aa:6b:0b:b5: ca:e3:1c:d0:2a:0c:ba:3a:46:d5:d2:ed:e6:14:36:e5:a9:ad: 02:b0:7e:53:1e:c4:bf:42:be:d8:a6:f6:24:55:b3:be:79:3c: e4:12:71:0e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSzwOKJsbncaBnvuIwfP/1gGEu4gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMDU2RkZBQkEwNjc0MTExMkJBNDA0OTAwQjMxNUM4 N0UzNTM2MTAeFw0yMzEwMTkwODU1MzNaFw0yNDEwMTcwOTAwMzNaMDMxMTAvBgNV BAMTKDI1MTg4NTA0QjI4RDJCQUE4QTdFOURBRjIxQjdEMDYyMDNERTA1OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo5kUwgC6yWVJj2xk4Vvg3sbI/ 9HFj5f9UqHAnQyfQHs5IJ/A3AL1PCDUiKBRuX/yPDU/3X9XAW0ueMNvP6ZqQszIi TV1WsyXAeGT3h1H7b9SvJlUUBf+4xXS+9p+DZQs87TAfV9gIKqPoIJCXSPuc3v4T CNG6W8ee9L1rMxHvtwd+A2Jry/LVktqnfYLKmmI5hi2kKCeV3gOJQmkC8VCBDtqX NyukGnWr1oaOZQnz5RLDAbLbqb1+hT98O93Lfq0uZNHF53mdSjqUMmma5jYxKXKo 5+gNwQNz3cN9XZjnpoqLumi/X0qZgWL8TbEnZhtQ8V14DlWX/tf0CITfzJRLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJRiFBLKNK6qKfp2vIbfQYgPeBZ0wHwYDVR0j BBgwFoAUAyBW/6ugZ0ERK6QEkAsxXIfjU2EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGE4MjBiNC04MmVmLTQ0MTItYmUyZS01ZDY5MTRiZDQ4NDQvMC8wMzIwNTZGRkFC QTA2NzQxMTEyQkE0MDQ5MDBCMzE1Qzg3RTM1MzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMDU2RkZBQkEwNjc0MTExMkJBNDA0OTAwQjMxNUM4N0Uz NTM2MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwYTgyMGI0LTgyZWYtNDQxMi1i ZTJlLTVkNjkxNGJkNDg0NC8wLzMxMzAzMzJlMzEzNjMwMmUzMTM3MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNTM5MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoLMwDQYJ KoZIhvcNAQELBQADggEBAMr0Lx+J1h4iyM9sz7P3uI3agomTcxYal2qJFa1QLZ8M VovB8FukVXxX1UZHgHklrFie0ky+8mBu2Awm/rurykGks1WYuDSoUSxwrn2QBa35 sukESK3qp9ccpis+Wgpj7Cdn+/TOj82ErvQFlWp6UNqr+h/PBXEJ4RBQWldQcV15 f1cWZHCp5Vf1MeKKGCilrlDRTYPJHC0qSq+dIlgSvljHx9EonE89JE8LnblIJhrc ILyJa6YHOW9vFATjzuypsCsVdwnH/JMvCUrQZmBkJALmrByDqmsLtcrjHNAqDLo6 RtXS7eYUNuWprQKwflMexL9Cvtim9iRVs755POQScQ4= -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:34 2024 by rpki-client on console-fra.rpki-client.org