$ rpki-client -vvf repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/3130332e3136302e3137392e302f32342d3234203d3e20313431353932.roa File: 3130332e3136302e3137392e302f32342d3234203d3e20313431353932.roa (raw, json) Hash identifier: YChAquT46Gu9Ju8lh9yWF5k2iDsA6GlC2HfcNGf9Vhg= Subject key identifier: ED:94:AB:5E:E4:7B:89:41:06:82:93:50:57:B7:6B:02:10:5E:39:7A Certificate issuer: /CN=032056FFABA06741112BA404900B315C87E35361 Certificate serial: 116830F5284ED6587E63ABAFA038219A5EE0FF62 Authority key identifier: 03:20:56:FF:AB:A0:67:41:11:2B:A4:04:90:0B:31:5C:87:E3:53:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032056FFABA06741112BA404900B315C87E35361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/3130332e3136302e3137392e302f32342d3234203d3e20313431353932.roa Signing time: Thu 19 Sep 2024 10:01:06 +0000 ROA not before: Thu 19 Sep 2024 09:56:06 +0000 ROA not after: Thu 18 Sep 2025 10:01:06 +0000 asID: 141592 IP address blocks: 103.160.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/032056FFABA06741112BA404900B315C87E35361.crl rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/032056FFABA06741112BA404900B315C87E35361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032056FFABA06741112BA404900B315C87E35361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:68:30:f5:28:4e:d6:58:7e:63:ab:af:a0:38:21:9a:5e:e0:ff:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=032056FFABA06741112BA404900B315C87E35361 Validity Not Before: Sep 19 09:56:06 2024 GMT Not After : Sep 18 10:01:06 2025 GMT Subject: CN=ED94AB5EE47B89410682935057B76B02105E397A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a8:f0:f8:58:3a:9b:cf:91:94:e9:6e:7b:3d: 79:17:38:dd:6a:c5:16:13:b7:26:f2:de:41:a1:6c: 3e:84:f2:fa:13:70:29:19:fa:e0:c7:10:1c:98:ea: 1d:f4:27:46:c3:86:12:9a:bb:ae:70:53:59:30:ac: c5:0b:4c:e4:0e:74:b8:3f:cc:74:25:c2:39:bb:67: 22:66:db:c5:44:08:b9:7f:fb:09:fd:3d:97:07:6e: 78:d7:7a:56:9c:b3:c6:38:03:f4:27:17:e9:83:c2: 8b:cd:1b:52:db:74:33:7b:fa:58:91:3e:f8:eb:77: 09:b5:bf:99:71:03:99:00:79:53:4e:ce:b6:a0:bf: f9:b6:62:2d:9b:06:81:5b:d5:8e:bd:da:80:0f:4a: 6d:68:75:ae:40:e6:16:2d:1d:88:54:a1:3d:35:93: 45:84:3d:96:2c:9a:6d:c9:25:61:15:38:7e:db:fa: 12:02:a8:39:22:a2:43:3e:43:01:c2:65:a6:cd:a5: f4:b4:42:d4:4c:64:56:b5:2d:e7:ff:a0:09:ac:b6: a9:4e:42:f1:72:fd:f9:19:03:3c:98:bb:2a:a8:1c: 78:76:08:75:1f:d8:97:82:b9:bd:e7:85:58:13:e6: 45:0f:fa:34:8d:99:6e:2c:bb:b7:b9:0b:16:33:a1: cc:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:94:AB:5E:E4:7B:89:41:06:82:93:50:57:B7:6B:02:10:5E:39:7A X509v3 Authority Key Identifier: keyid:03:20:56:FF:AB:A0:67:41:11:2B:A4:04:90:0B:31:5C:87:E3:53:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/032056FFABA06741112BA404900B315C87E35361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032056FFABA06741112BA404900B315C87E35361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/3130332e3136302e3137392e302f32342d3234203d3e20313431353932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.179.0/24 Signature Algorithm: sha256WithRSAEncryption a6:94:60:53:65:0a:89:5c:01:0d:e0:f3:d3:83:ca:1e:0a:6a: 0c:54:0d:6c:77:cf:26:a2:f0:7d:e7:b5:d5:1d:9a:39:b5:f9: dd:a5:8c:4f:b6:de:3a:89:b7:24:03:51:d0:32:e0:0c:10:4b: 30:df:7d:e5:ae:3c:e7:bb:6f:d6:16:c8:68:1f:29:68:9b:bc: 13:b0:6a:3b:7b:c5:f2:45:52:50:89:6b:9a:8a:c1:14:9a:6a: 9d:1b:af:32:0f:cc:02:44:0b:b7:4e:33:17:d7:66:48:aa:8b: 11:33:f2:02:44:35:83:6a:47:08:75:75:fd:57:a0:ae:88:ed: a6:9a:e0:0a:90:7d:d8:c2:69:b1:e2:c2:b8:08:95:5a:ba:6b: d2:78:88:83:86:a5:9c:94:51:41:c5:74:04:85:b5:b1:7c:6a: ed:c3:9e:63:68:b8:55:03:39:6f:28:a0:ba:9c:ee:a0:01:05: 27:4c:ca:a2:d7:b9:15:28:7a:b8:3e:98:63:d0:0c:7e:03:52: 89:2b:cb:be:6c:b3:23:93:7a:10:cd:77:65:0b:ff:4a:ca:ed: 0e:2a:1b:58:ef:57:0d:a3:bf:d4:b6:79:9a:8e:91:a5:6d:aa: 23:f9:36:ae:d6:58:9f:fc:ea:d3:3f:9a:e6:2e:dc:3e:a0:e9: 04:27:83:ac -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEWgw9ShO1lh+Y6uvoDghml7g/2IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMDU2RkZBQkEwNjc0MTExMkJBNDA0OTAwQjMxNUM4 N0UzNTM2MTAeFw0yNDA5MTkwOTU2MDZaFw0yNTA5MTgxMDAxMDZaMDMxMTAvBgNV BAMTKEVEOTRBQjVFRTQ3Qjg5NDEwNjgyOTM1MDU3Qjc2QjAyMTA1RTM5N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/qPD4WDqbz5GU6W57PXkXON1q xRYTtyby3kGhbD6E8voTcCkZ+uDHEByY6h30J0bDhhKau65wU1kwrMULTOQOdLg/ zHQlwjm7ZyJm28VECLl/+wn9PZcHbnjXelacs8Y4A/QnF+mDwovNG1LbdDN7+liR Pvjrdwm1v5lxA5kAeVNOzragv/m2Yi2bBoFb1Y692oAPSm1oda5A5hYtHYhUoT01 k0WEPZYsmm3JJWEVOH7b+hICqDkiokM+QwHCZabNpfS0QtRMZFa1Lef/oAmstqlO QvFy/fkZAzyYuyqoHHh2CHUf2JeCub3nhVgT5kUP+jSNmW4su7e5CxYzocwFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7ZSrXuR7iUEGgpNQV7drAhBeOXowHwYDVR0j BBgwFoAUAyBW/6ugZ0ERK6QEkAsxXIfjU2EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGE4MjBiNC04MmVmLTQ0MTItYmUyZS01ZDY5MTRiZDQ4NDQvMC8wMzIwNTZGRkFC QTA2NzQxMTEyQkE0MDQ5MDBCMzE1Qzg3RTM1MzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMDU2RkZBQkEwNjc0MTExMkJBNDA0OTAwQjMxNUM4N0Uz NTM2MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwYTgyMGI0LTgyZWYtNDQxMi1i ZTJlLTVkNjkxNGJkNDg0NC8wLzMxMzAzMzJlMzEzNjMwMmUzMTM3MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNTM5MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoLMwDQYJ KoZIhvcNAQELBQADggEBAKaUYFNlColcAQ3g89ODyh4KagxUDWx3zyai8H3ntdUd mjm1+d2ljE+23jqJtyQDUdAy4AwQSzDffeWuPOe7b9YWyGgfKWibvBOwajt7xfJF UlCJa5qKwRSaap0brzIPzAJEC7dOMxfXZkiqixEz8gJENYNqRwh1df1XoK6I7aaa 4AqQfdjCabHiwrgIlVq6a9J4iIOGpZyUUUHFdASFtbF8au3DnmNouFUDOW8ooLqc 7qABBSdMyqLXuRUoerg+mGPQDH4DUokry75ssyOTehDNd2UL/0rK7Q4qG1jvVw2j v9S2eZqOkaVtqiP5Nq7WWJ/86tM/muYu3D6g6QQng6w= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org