$ rpki-client -vvf repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32342d3234203d3e203539323832.roa File: 3130332e3136312e3133342e302f32342d3234203d3e203539323832.roa (raw, json) Hash identifier: u0AnVXJdj3Y9iykSRdRqrTJL8JZq03TGCyWCZm5a0/k= Subject key identifier: 25:FC:82:26:13:0D:41:AA:14:02:92:10:1E:2F:C3:52:43:AB:49:D5 Certificate issuer: /CN=115880D133393FF2D96A5861679B5166AFDB1248 Certificate serial: 2640D36A967BFDB56DB7BCFE8504A18B1EB046FA Authority key identifier: 11:58:80:D1:33:39:3F:F2:D9:6A:58:61:67:9B:51:66:AF:DB:12:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32342d3234203d3e203539323832.roa Signing time: Thu 22 Jun 2023 04:22:23 +0000 ROA not before: Thu 22 Jun 2023 04:17:23 +0000 ROA not after: Thu 20 Jun 2024 04:22:23 +0000 asID: 59282 IP address blocks: 103.161.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.crl rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 15:34:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:40:d3:6a:96:7b:fd:b5:6d:b7:bc:fe:85:04:a1:8b:1e:b0:46:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=115880D133393FF2D96A5861679B5166AFDB1248 Validity Not Before: Jun 22 04:17:23 2023 GMT Not After : Jun 20 04:22:23 2024 GMT Subject: CN=25FC8226130D41AA140292101E2FC35243AB49D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5f:d2:54:e0:5e:c9:2b:72:ed:5e:b8:5e:44: e6:3a:9f:3c:6a:f3:5d:a9:a7:62:b8:6d:b8:e0:37: 68:c3:1c:4a:75:5c:cd:eb:d9:78:eb:10:a5:8e:d7: c9:3d:c0:3a:74:f9:ee:28:b0:d9:35:3b:2f:55:14: df:92:1f:d5:d4:b7:e8:2c:83:92:85:3e:cc:46:ae: a1:53:fc:64:4d:85:76:8a:24:b0:eb:1a:f1:19:d9: ab:29:cf:df:6d:39:0e:e2:be:7d:be:44:36:a8:9b: 45:4f:f4:7e:31:38:5d:99:5f:65:f8:ee:63:76:40: 5b:4a:d5:98:9b:4a:d4:5f:67:a6:12:46:86:ee:f6: ed:99:2c:0f:e5:3c:6b:7e:42:13:8a:e0:82:26:1a: f8:35:c2:c4:26:5d:4e:b8:47:e2:8a:0a:d7:c4:94: 83:2b:ba:d8:e4:c5:24:fa:73:1a:b4:34:8f:77:0e: 7c:c5:98:57:96:cf:7d:30:c1:5a:ba:81:f2:5c:aa: 81:e3:72:53:fb:e2:75:eb:51:6c:f4:5c:ad:90:eb: 2d:69:9b:0d:96:d1:62:a1:69:31:8b:bc:d1:9e:37: 4d:fb:82:bb:ee:7c:fd:4a:e8:1d:67:83:5c:70:81: 30:43:fa:29:f6:2e:23:a0:a8:53:cd:d7:a8:e8:7a: bb:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:FC:82:26:13:0D:41:AA:14:02:92:10:1E:2F:C3:52:43:AB:49:D5 X509v3 Authority Key Identifier: keyid:11:58:80:D1:33:39:3F:F2:D9:6A:58:61:67:9B:51:66:AF:DB:12:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32342d3234203d3e203539323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.134.0/24 Signature Algorithm: sha256WithRSAEncryption 60:15:04:cd:79:a2:e4:c4:92:3d:0d:79:ca:05:9a:cc:eb:60: 59:1c:d1:30:94:50:aa:f8:90:34:10:9a:51:c3:ca:80:e8:be: 68:9d:c9:98:9a:f3:d9:ac:e6:36:ed:f6:44:49:4c:a2:2a:83: 8d:49:9f:9e:e1:fc:bb:d2:c1:b1:c1:d6:aa:4d:de:1a:89:16: 68:ff:28:0f:72:14:c1:fe:aa:b2:0e:c3:b5:45:b5:a4:14:a1: d1:1b:44:6e:5b:9e:0f:9b:7b:32:e4:36:69:87:10:7f:60:5c: b8:28:98:cd:37:a6:75:98:c8:5c:55:40:68:15:a7:e1:45:c8: 4d:06:d0:ae:1f:5b:e3:51:87:fd:11:02:11:54:cc:a0:06:34: 0e:3a:07:c6:7e:b2:07:8b:27:21:b9:72:03:83:84:f4:01:f8: d5:3b:24:6c:e1:99:8d:91:2a:37:5c:ae:9e:f4:11:23:ca:54: 43:66:cd:a9:16:76:eb:35:25:cd:86:65:13:f0:39:01:1c:42: be:89:9f:db:03:1f:35:5d:2a:56:c8:a8:22:c4:6c:39:a6:53: d5:7e:d4:a0:52:28:11:4a:67:36:55:d5:6a:f3:ed:1f:9d:13: 2a:82:12:e5:15:fa:26:43:45:9f:82:f5:0c:43:23:5c:31:80: 12:f3:f0:72 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJkDTapZ7/bVtt7z+hQShix6wRvowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE1ODgwRDEzMzM5M0ZGMkQ5NkE1ODYxNjc5QjUxNjZB RkRCMTI0ODAeFw0yMzA2MjIwNDE3MjNaFw0yNDA2MjAwNDIyMjNaMDMxMTAvBgNV BAMTKDI1RkM4MjI2MTMwRDQxQUExNDAyOTIxMDFFMkZDMzUyNDNBQjQ5RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAX9JU4F7JK3LtXrheROY6nzxq 812pp2K4bbjgN2jDHEp1XM3r2XjrEKWO18k9wDp0+e4osNk1Oy9VFN+SH9XUt+gs g5KFPsxGrqFT/GRNhXaKJLDrGvEZ2aspz99tOQ7ivn2+RDaom0VP9H4xOF2ZX2X4 7mN2QFtK1ZibStRfZ6YSRobu9u2ZLA/lPGt+QhOK4IImGvg1wsQmXU64R+KKCtfE lIMrutjkxST6cxq0NI93DnzFmFeWz30wwVq6gfJcqoHjclP74nXrUWz0XK2Q6y1p mw2W0WKhaTGLvNGeN037grvufP1K6B1ng1xwgTBD+in2LiOgqFPN16joervPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJfyCJhMNQaoUApIQHi/DUkOrSdUwHwYDVR0j BBgwFoAUEViA0TM5P/LZalhhZ5tRZq/bEkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTU2ODAxZi1hNjdiLTQzZGQtOGY2Mi1iN2IwZDYwMzE3YWYvMC8xMTU4ODBEMTMz MzkzRkYyRDk2QTU4NjE2NzlCNTE2NkFGREIxMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE1ODgwRDEzMzM5M0ZGMkQ5NkE1ODYxNjc5QjUxNjZBRkRC MTI0OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxNTY4MDFmLWE2N2ItNDNkZC04 ZjYyLWI3YjBkNjAzMTdhZi8wLzMxMzAzMzJlMzEzNjMxMmUzMTMzMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzIzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6GGMA0GCSqG SIb3DQEBCwUAA4IBAQBgFQTNeaLkxJI9DXnKBZrM62BZHNEwlFCq+JA0EJpRw8qA 6L5oncmYmvPZrOY27fZESUyiKoONSZ+e4fy70sGxwdaqTd4aiRZo/ygPchTB/qqy DsO1RbWkFKHRG0RuW54Pm3sy5DZphxB/YFy4KJjNN6Z1mMhcVUBoFafhRchNBtCu H1vjUYf9EQIRVMygBjQOOgfGfrIHiychuXIDg4T0AfjVOyRs4ZmNkSo3XK6e9BEj ylRDZs2pFnbrNSXNhmUT8DkBHEK+iZ/bAx81XSpWyKgixGw5plPVftSgUigRSmc2 VdVq8+0fnRMqghLlFfomQ0WfgvUMQyNcMYAS8/By -----END CERTIFICATE-----Generated at Wed May 1 16:08:23 2024 by rpki-client on console-fra.rpki-client.org