$ rpki-client -vvf repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/3130332e3136312e3139302e302f32332d3233203d3e20313333383233.roa File: 3130332e3136312e3139302e302f32332d3233203d3e20313333383233.roa (raw, json) Hash identifier: d4HAlbtAsQPDwsL8deewvIf2s95125WRiEkCdg6GKiY= Subject key identifier: 8A:97:66:C7:B0:AE:A5:03:2D:D3:59:D2:E9:63:6F:F7:BC:ED:B3:AD Certificate issuer: /CN=715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1 Certificate serial: 05166FE23CA3AACA7A625108BE7C0498C62EEA6A Authority key identifier: 71:5D:C6:DE:A8:0F:E5:D8:9F:DC:68:2C:19:C7:B3:0F:5C:77:E2:C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/3130332e3136312e3139302e302f32332d3233203d3e20313333383233.roa Signing time: Sat 09 Dec 2023 06:00:04 +0000 ROA not before: Sat 09 Dec 2023 05:55:04 +0000 ROA not after: Sat 07 Dec 2024 06:00:04 +0000 asID: 133823 IP address blocks: 103.161.190.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.crl rsync://repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:16:6f:e2:3c:a3:aa:ca:7a:62:51:08:be:7c:04:98:c6:2e:ea:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1 Validity Not Before: Dec 9 05:55:04 2023 GMT Not After : Dec 7 06:00:04 2024 GMT Subject: CN=8A9766C7B0AEA5032DD359D2E9636FF7BCEDB3AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:75:64:95:bf:61:b8:1b:2f:3f:20:96:b3:a4: bc:28:97:4e:4f:34:c3:74:66:4d:de:24:d5:19:5f: 36:57:23:ee:08:bb:4f:c8:91:0d:b7:2f:cd:f7:d1: f5:ae:45:db:c8:7d:3e:72:f7:30:9f:b8:5e:27:5d: 55:5e:33:99:02:fb:38:6c:b0:3e:b1:79:8e:bd:d2: ce:38:4a:6e:3d:61:bb:e4:d0:30:23:c2:5d:04:50: 10:6c:26:8a:01:03:16:57:98:1b:1d:da:d9:ce:33: ed:ac:35:b4:ee:47:ea:02:c9:4d:b3:4a:3a:dc:53: 84:6a:57:16:4c:43:a9:c8:ca:b4:15:6f:db:54:39: ae:3e:12:9f:d0:b1:06:7e:63:3d:9e:2b:79:ef:fa: 8d:58:6c:e6:2c:0f:47:ee:65:58:64:17:1d:e7:fd: 3d:90:a2:a0:53:85:3b:e3:84:3c:ec:1d:67:77:db: b4:e0:58:e4:e6:8f:27:fa:1a:96:9e:14:da:44:d2: f4:3a:de:4f:d4:09:90:d9:3b:1e:15:f3:50:ab:62: 2b:c6:50:e0:8c:ba:d8:b3:3d:39:d3:13:74:27:00: 8c:71:48:f4:60:55:01:ed:ea:34:0b:eb:f5:ac:27: 69:77:2e:d9:fe:04:d4:34:42:95:75:a9:dd:c1:86: 54:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:97:66:C7:B0:AE:A5:03:2D:D3:59:D2:E9:63:6F:F7:BC:ED:B3:AD X509v3 Authority Key Identifier: keyid:71:5D:C6:DE:A8:0F:E5:D8:9F:DC:68:2C:19:C7:B3:0F:5C:77:E2:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/3130332e3136312e3139302e302f32332d3233203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.190.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:9d:9c:c3:70:7d:8c:fd:9f:8f:1d:74:1c:c3:cc:44:60:3d: e0:bb:22:d3:17:6b:10:3c:32:ae:f3:c6:25:f3:b8:eb:92:4c: 42:8f:07:74:f7:50:c9:88:78:f1:03:40:ed:f0:00:00:bd:ad: 8c:1f:04:dc:22:76:16:92:03:37:3e:12:03:a5:ec:33:af:7a: 41:bd:2c:fd:4d:13:ff:c2:55:bd:fb:24:68:be:d2:4b:8d:80: 88:4d:5e:fc:c1:a2:7a:4b:25:a9:f7:a3:74:39:d1:a7:0e:f5: fe:77:67:cb:a4:4a:12:9d:f1:22:bf:06:b9:64:ad:38:8f:62: 6f:61:0f:80:51:a1:ab:35:19:7e:79:99:6d:0d:c9:01:61:7c: 5e:ca:26:ee:85:37:cc:3c:1d:5c:b3:f2:90:20:12:91:7e:f1: 3f:ae:52:eb:d5:21:37:d1:3d:4c:75:e9:6b:41:f4:3c:1e:be: d5:c4:7a:c9:ac:c3:4c:c9:84:08:ae:4f:fc:d1:24:88:8e:32: e6:82:a0:7c:1e:48:22:81:04:ec:51:d9:2e:89:d4:46:39:15: 5c:77:d1:07:25:4d:b3:c0:84:a4:ac:08:85:90:ec:9d:4f:a4: 57:23:73:b3:63:91:e4:79:69:b7:29:fa:ea:b4:af:e7:a0:7a: 84:ba:79:2d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBRZv4jyjqsp6YlEIvnwEmMYu6mowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzE1REM2REVBODBGRTVEODlGREM2ODJDMTlDN0IzMEY1 Qzc3RTJDMTAeFw0yMzEyMDkwNTU1MDRaFw0yNDEyMDcwNjAwMDRaMDMxMTAvBgNV BAMTKDhBOTc2NkM3QjBBRUE1MDMyREQzNTlEMkU5NjM2RkY3QkNFREIzQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXdWSVv2G4Gy8/IJazpLwol05P NMN0Zk3eJNUZXzZXI+4Iu0/IkQ23L8330fWuRdvIfT5y9zCfuF4nXVVeM5kC+zhs sD6xeY690s44Sm49Ybvk0DAjwl0EUBBsJooBAxZXmBsd2tnOM+2sNbTuR+oCyU2z SjrcU4RqVxZMQ6nIyrQVb9tUOa4+Ep/QsQZ+Yz2eK3nv+o1YbOYsD0fuZVhkFx3n /T2QoqBThTvjhDzsHWd327TgWOTmjyf6GpaeFNpE0vQ63k/UCZDZOx4V81CrYivG UOCMutizPTnTE3QnAIxxSPRgVQHt6jQL6/WsJ2l3Ltn+BNQ0QpV1qd3BhlSzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUipdmx7CupQMt01nS6WNv97zts60wHwYDVR0j BBgwFoAUcV3G3qgP5dif3GgsGcezD1x34sEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NTkxYjU5Yi0xY2E1LTQ0NjQtOTk4Mi1iZjZmNmQ4YTFjOTQvMC83MTVEQzZERUE4 MEZFNUQ4OUZEQzY4MkMxOUM3QjMwRjVDNzdFMkMxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzE1REM2REVBODBGRTVEODlGREM2ODJDMTlDN0IzMEY1Qzc3 RTJDMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1OTFiNTliLTFjYTUtNDQ2NC05 OTgyLWJmNmY2ZDhhMWM5NC8wLzMxMzAzMzJlMzEzNjMxMmUzMTM5MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzMzODMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnob4wDQYJ KoZIhvcNAQELBQADggEBAG6dnMNwfYz9n48ddBzDzERgPeC7ItMXaxA8Mq7zxiXz uOuSTEKPB3T3UMmIePEDQO3wAAC9rYwfBNwidhaSAzc+EgOl7DOvekG9LP1NE//C Vb37JGi+0kuNgIhNXvzBonpLJan3o3Q50acO9f53Z8ukShKd8SK/BrlkrTiPYm9h D4BRoas1GX55mW0NyQFhfF7KJu6FN8w8HVyz8pAgEpF+8T+uUuvVITfRPUx16WtB 9DwevtXEesmsw0zJhAiuT/zRJIiOMuaCoHweSCKBBOxR2S6J1EY5FVx30QclTbPA hKSsCIWQ7J1PpFcjc7NjkeR5abcp+uq0r+egeoS6eS0= -----END CERTIFICATE-----Generated at Tue Apr 30 15:50:31 2024 by rpki-client on console-fra.rpki-client.org