$ rpki-client -vvf repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/3130332e3136312e3136322e302f32332d3233203d3e20313431363136.roa File: 3130332e3136312e3136322e302f32332d3233203d3e20313431363136.roa (raw, json) Hash identifier: KN+os9MGjYSfJtqQ42W5gDgAu2nxJuANLvon7rcCAh8= Subject key identifier: CE:4E:8D:F6:4D:17:A7:D5:2E:26:33:57:0B:FA:79:57:D4:70:48:23 Certificate issuer: /CN=BAC180E3FF326678277BE269EEBEC1DE3827226F Certificate serial: 25C770D6D21F8A575347B63560F4E31ADCAEC40C Authority key identifier: BA:C1:80:E3:FF:32:66:78:27:7B:E2:69:EE:BE:C1:DE:38:27:22:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC180E3FF326678277BE269EEBEC1DE3827226F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/3130332e3136312e3136322e302f32332d3233203d3e20313431363136.roa Signing time: Tue 07 Nov 2023 11:00:01 +0000 ROA not before: Tue 07 Nov 2023 10:55:01 +0000 ROA not after: Tue 05 Nov 2024 11:00:01 +0000 asID: 141616 IP address blocks: 103.161.162.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/BAC180E3FF326678277BE269EEBEC1DE3827226F.crl rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/BAC180E3FF326678277BE269EEBEC1DE3827226F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC180E3FF326678277BE269EEBEC1DE3827226F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 May 2024 01:47:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:c7:70:d6:d2:1f:8a:57:53:47:b6:35:60:f4:e3:1a:dc:ae:c4:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAC180E3FF326678277BE269EEBEC1DE3827226F Validity Not Before: Nov 7 10:55:01 2023 GMT Not After : Nov 5 11:00:01 2024 GMT Subject: CN=CE4E8DF64D17A7D52E2633570BFA7957D4704823 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:01:90:00:3a:d6:68:f8:45:a5:25:4b:ea:c9: 6e:e8:45:cf:9e:9f:0f:a8:e5:4b:01:85:5d:99:53: f2:53:fd:2a:c9:d6:13:69:61:ab:32:49:e1:d5:ce: 69:87:df:c7:77:61:26:23:f2:74:b7:6e:76:0b:82: 6b:3c:66:d1:de:a4:cb:23:c2:4e:f2:35:0a:98:c1: e6:55:98:c4:3a:13:20:b1:74:39:37:f0:74:59:44: 37:ec:6d:2c:94:b6:dd:c9:e9:64:ca:e3:de:bc:a2: 3b:7f:8d:04:e0:95:a3:4f:b7:7e:a6:ed:d7:b7:34: 41:a3:a6:bc:9b:52:5a:54:ee:8f:c4:09:06:1f:a6: d2:a2:12:cf:97:80:ab:68:dd:ae:46:7b:11:72:64: 09:6a:cf:1b:33:d9:7c:72:a3:54:ad:3e:3f:5c:ab: 89:25:57:fe:41:72:16:5c:32:0e:8f:85:ce:ac:be: 03:8e:1c:a5:73:91:12:15:8f:e8:34:39:23:c4:68: f3:7d:59:9e:77:ab:7d:ba:93:45:77:b2:31:ba:0c: 06:af:fb:18:21:54:5b:a1:e0:bc:5d:27:ea:42:de: bd:56:5e:b0:ef:25:f9:63:cc:80:e4:b9:51:9d:83: 7d:f5:61:1b:38:75:c0:3a:0c:f2:34:68:62:07:76: 2b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:4E:8D:F6:4D:17:A7:D5:2E:26:33:57:0B:FA:79:57:D4:70:48:23 X509v3 Authority Key Identifier: keyid:BA:C1:80:E3:FF:32:66:78:27:7B:E2:69:EE:BE:C1:DE:38:27:22:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/BAC180E3FF326678277BE269EEBEC1DE3827226F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC180E3FF326678277BE269EEBEC1DE3827226F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/3130332e3136312e3136322e302f32332d3233203d3e20313431363136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.162.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:d0:73:06:15:94:a8:70:bb:b6:04:b2:e0:b6:f5:8c:45:e2: 6d:9a:1f:fa:30:63:84:65:63:3f:b3:5b:dc:a1:83:9d:37:9f: b4:15:d0:32:09:21:87:28:58:ba:80:ee:c5:fd:6a:53:7a:aa: b0:1d:a4:40:87:88:29:21:09:05:5f:47:b5:54:ac:2c:00:0f: be:53:36:12:53:a8:05:87:de:8b:c7:e0:95:3a:24:74:b7:07: b1:60:1f:e2:f1:71:e6:0b:d8:86:e2:bf:5e:3d:10:98:ac:8f: 27:41:20:11:f9:6b:68:03:25:09:8d:d1:94:3b:0b:a8:da:5c: 05:ff:a5:5b:13:5d:27:74:e3:d3:e2:67:56:c6:18:e8:14:f7: b7:b7:4c:57:07:86:95:6d:fe:ac:a0:25:b7:35:87:cc:a4:c8: 05:fa:e7:5b:7d:0e:6f:93:41:ed:b4:c3:b7:55:03:5d:89:c5: d9:62:0c:bd:84:a8:9d:af:a2:fd:d5:e9:ef:82:24:d6:6c:43: 86:2f:ce:00:d2:d9:59:d3:98:a2:ea:04:1e:32:42:c9:d2:43: 45:5e:ce:02:55:42:24:89:2d:85:40:e3:3e:bf:b2:df:e3:e3: f7:a9:f0:94:11:ac:56:12:af:ec:b2:5f:24:de:26:d7:67:dc: 53:fe:b7:be -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJcdw1tIfildTR7Y1YPTjGtyuxAwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFDMTgwRTNGRjMyNjY3ODI3N0JFMjY5RUVCRUMxREUz ODI3MjI2RjAeFw0yMzExMDcxMDU1MDFaFw0yNDExMDUxMTAwMDFaMDMxMTAvBgNV BAMTKENFNEU4REY2NEQxN0E3RDUyRTI2MzM1NzBCRkE3OTU3RDQ3MDQ4MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtAZAAOtZo+EWlJUvqyW7oRc+e nw+o5UsBhV2ZU/JT/SrJ1hNpYasySeHVzmmH38d3YSYj8nS3bnYLgms8ZtHepMsj wk7yNQqYweZVmMQ6EyCxdDk38HRZRDfsbSyUtt3J6WTK4968ojt/jQTglaNPt36m 7de3NEGjprybUlpU7o/ECQYfptKiEs+XgKto3a5GexFyZAlqzxsz2Xxyo1StPj9c q4klV/5BchZcMg6Phc6svgOOHKVzkRIVj+g0OSPEaPN9WZ53q326k0V3sjG6DAav +xghVFuh4LxdJ+pC3r1WXrDvJfljzIDkuVGdg331YRs4dcA6DPI0aGIHdiuJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUzk6N9k0Xp9UuJjNXC/p5V9RwSCMwHwYDVR0j BBgwFoAUusGA4/8yZngne+Jp7r7B3jgnIm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDA5NGQzZS0wODljLTRjNjgtODBhMi01NmI1Y2JmYzEwM2QvMC9CQUMxODBFM0ZG MzI2Njc4Mjc3QkUyNjlFRUJFQzFERTM4MjcyMjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkFDMTgwRTNGRjMyNjY3ODI3N0JFMjY5RUVCRUMxREUzODI3 MjI2Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMDk0ZDNlLTA4OWMtNGM2OC04 MGEyLTU2YjVjYmZjMTAzZC8wLzMxMzAzMzJlMzEzNjMxMmUzMTM2MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzNjMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnoaIwDQYJ KoZIhvcNAQELBQADggEBAArQcwYVlKhwu7YEsuC29YxF4m2aH/owY4RlYz+zW9yh g503n7QV0DIJIYcoWLqA7sX9alN6qrAdpECHiCkhCQVfR7VUrCwAD75TNhJTqAWH 3ovH4JU6JHS3B7FgH+LxceYL2Ibiv149EJisjydBIBH5a2gDJQmN0ZQ7C6jaXAX/ pVsTXSd049PiZ1bGGOgU97e3TFcHhpVt/qygJbc1h8ykyAX651t9Dm+TQe20w7dV A12JxdliDL2EqJ2vov3V6e+CJNZsQ4YvzgDS2VnTmKLqBB4yQsnSQ0VezgJVQiSJ LYVA4z6/st/j4/ep8JQRrFYSr+yyXyTeJtdn3FP+t74= -----END CERTIFICATE-----Generated at Mon May 13 21:04:33 2024 by rpki-client on console-fra.rpki-client.org