$ rpki-client -vvf repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/3130332e3136312e3131302e302f32342d3234203d3e20313431363135.roa File: 3130332e3136312e3131302e302f32342d3234203d3e20313431363135.roa (raw, json) Hash identifier: wqT4YxfKrX82ErXv7NQpfUWWeGupbCLsTwFEQ7da63o= Subject key identifier: 2B:4D:22:FB:3F:3A:EE:EB:37:94:B3:EA:39:BA:F4:5C:68:E1:EA:59 Certificate issuer: /CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8 Certificate serial: 66A4B9F39CAAD891E4773662CEF2380EE7C03467 Authority key identifier: 68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/3130332e3136312e3131302e302f32342d3234203d3e20313431363135.roa Signing time: Wed 15 Nov 2023 09:00:02 +0000 ROA not before: Wed 15 Nov 2023 08:55:02 +0000 ROA not after: Wed 13 Nov 2024 09:00:02 +0000 asID: 141615 IP address blocks: 103.161.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:a4:b9:f3:9c:aa:d8:91:e4:77:36:62:ce:f2:38:0e:e7:c0:34:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8 Validity Not Before: Nov 15 08:55:02 2023 GMT Not After : Nov 13 09:00:02 2024 GMT Subject: CN=2B4D22FB3F3AEEEB3794B3EA39BAF45C68E1EA59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ce:ff:81:04:8b:54:54:3a:f8:7c:6c:89:33: 19:cf:d7:4e:25:90:03:6f:57:22:bb:5b:fa:86:b9: ba:12:4a:26:cf:58:7a:44:20:8d:27:1a:80:f4:93: 29:e3:40:73:0e:d8:26:bc:b6:56:c9:26:a2:63:e7: 4c:c9:d4:6d:b1:d0:dd:34:24:35:e1:39:16:ba:9e: c3:84:91:c2:da:45:02:2d:12:b9:02:47:de:b3:2b: 01:8e:f5:d6:8c:eb:54:cb:6f:68:18:ce:d3:80:97: 59:53:e0:05:32:03:7d:dd:db:20:4c:b6:0c:7e:e4: 22:cc:27:b1:32:39:b9:8e:27:ad:aa:d4:2b:79:8e: 35:d1:c6:5c:08:5f:bf:14:6b:cd:54:c9:5e:7e:cc: 39:e7:6c:7f:1e:65:51:03:5c:2f:28:fa:54:cf:69: 24:57:cb:f3:4b:29:36:1c:c9:ae:17:a0:d5:a8:3a: 43:68:e8:2b:17:42:59:d3:92:42:af:48:1c:fb:d4: 71:9f:8e:a8:5e:fc:6e:9c:96:48:fc:e8:ae:07:ed: 5c:64:d7:6d:8d:d4:a5:a1:0f:18:82:98:f1:5c:d7: 9c:52:01:36:85:a7:0c:77:0c:b3:ee:69:36:90:82: d2:2e:44:1b:af:db:e7:82:c6:75:d9:e5:2d:cf:7a: 66:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:4D:22:FB:3F:3A:EE:EB:37:94:B3:EA:39:BA:F4:5C:68:E1:EA:59 X509v3 Authority Key Identifier: keyid:68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/3130332e3136312e3131302e302f32342d3234203d3e20313431363135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.110.0/24 Signature Algorithm: sha256WithRSAEncryption 27:32:3e:2c:2b:08:f8:ae:95:07:83:9b:36:83:8b:b4:a8:fb: 3d:40:d6:35:ea:d3:68:ae:87:c8:98:89:62:f3:fc:71:30:74: 9e:ce:82:f1:4d:20:01:e2:3a:83:d5:3b:33:a5:af:ed:86:d8: 64:8a:3c:c7:ec:4b:7e:12:c8:12:75:29:63:45:41:a7:79:69: a3:39:fa:69:c0:ca:bc:14:91:2e:17:22:fb:23:d2:b3:c5:13: 7a:f1:74:1b:55:bd:b4:04:f2:f5:f9:17:f7:b8:e2:08:de:5c: bd:4b:c1:18:4b:a3:7f:87:91:81:a7:f9:02:e6:3e:04:fb:fc: e1:ae:85:e8:f4:3e:36:79:01:46:74:ae:76:52:f7:19:c8:90: 46:3c:46:c1:c6:f2:f2:df:db:d1:eb:b6:dc:f1:4f:88:b1:9b: eb:65:2a:aa:7d:96:14:0e:df:52:86:69:40:a0:a7:c9:ed:f9: 01:97:36:fe:eb:21:ce:42:62:57:e0:5a:bc:f6:92:41:0f:1f: 11:35:32:49:2a:c8:44:32:e0:9f:28:38:3e:d8:ab:50:c4:58: f5:19:83:ce:10:64:be:20:b8:4c:87:1e:73:bf:06:03:c9:37: 93:94:a5:da:c3:77:4a:8a:90:87:f6:1a:d1:43:bb:34:a1:a2: 63:f1:df:d9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZqS585yq2JHkdzZizvI4DufANGcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4NEE1 QUFFQUFGODAeFw0yMzExMTUwODU1MDJaFw0yNDExMTMwOTAwMDJaMDMxMTAvBgNV BAMTKDJCNEQyMkZCM0YzQUVFRUIzNzk0QjNFQTM5QkFGNDVDNjhFMUVBNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOzv+BBItUVDr4fGyJMxnP104l kANvVyK7W/qGuboSSibPWHpEII0nGoD0kynjQHMO2Ca8tlbJJqJj50zJ1G2x0N00 JDXhORa6nsOEkcLaRQItErkCR96zKwGO9daM61TLb2gYztOAl1lT4AUyA33d2yBM tgx+5CLMJ7EyObmOJ62q1Ct5jjXRxlwIX78Ua81UyV5+zDnnbH8eZVEDXC8o+lTP aSRXy/NLKTYcya4XoNWoOkNo6CsXQlnTkkKvSBz71HGfjqhe/G6clkj86K4H7Vxk 122N1KWhDxiCmPFc15xSATaFpwx3DLPuaTaQgtIuRBuv2+eCxnXZ5S3PemYjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUK00i+z867us3lLPqObr0XGjh6lkwHwYDVR0j BBgwFoAUaNV4L7rbkUz9dK4o2ll4SlquqvgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZjQwOGU0NC0zZTljLTQ1ZTUtYmNhNC01ZGZiZDRiMjcxMzAvMC82OEQ1NzgyRkJB REI5MTRDRkQ3NEFFMjhEQTU5Nzg0QTVBQUVBQUY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4NEE1QUFF QUFGOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNmNDA4ZTQ0LTNlOWMtNDVlNS1i Y2E0LTVkZmJkNGIyNzEzMC8wLzMxMzAzMzJlMzEzNjMxMmUzMTMxMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjMxMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoW4wDQYJ KoZIhvcNAQELBQADggEBACcyPiwrCPiulQeDmzaDi7So+z1A1jXq02iuh8iYiWLz /HEwdJ7OgvFNIAHiOoPVOzOlr+2G2GSKPMfsS34SyBJ1KWNFQad5aaM5+mnAyrwU kS4XIvsj0rPFE3rxdBtVvbQE8vX5F/e44gjeXL1LwRhLo3+HkYGn+QLmPgT7/OGu hej0PjZ5AUZ0rnZS9xnIkEY8RsHG8vLf29HrttzxT4ixm+tlKqp9lhQO31KGaUCg p8nt+QGXNv7rIc5CYlfgWrz2kkEPHxE1MkkqyEQy4J8oOD7Yq1DEWPUZg84QZL4g uEyHHnO/BgPJN5OUpdrDd0qKkIf2GtFDuzShomPx39k= -----END CERTIFICATE-----Generated at Sun Apr 28 16:48:01 2024 by rpki-client on console-ams.rpki-client.org