$ rpki-client -vvf repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e302e302f32332d3233203d3e20313431363334.roa File: 3130332e3136322e302e302f32332d3233203d3e20313431363334.roa (raw, json) Hash identifier: KFxW0gPMs4+pdWA4vcyh9FBsR3TMOo4p13QBisamM7k= Subject key identifier: 16:A4:8A:0E:F6:FF:D9:05:FC:D3:79:1C:12:7B:75:85:9F:04:6F:DF Certificate issuer: /CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Certificate serial: 2FE4860E1AC5F6D7BC51C90E7E70FB16BA3C3BB9 Authority key identifier: 20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e302e302f32332d3233203d3e20313431363334.roa Signing time: Wed 01 Nov 2023 07:00:01 +0000 ROA not before: Wed 01 Nov 2023 06:55:01 +0000 ROA not after: Wed 30 Oct 2024 07:00:01 +0000 asID: 141634 IP address blocks: 103.162.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 05:15:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:e4:86:0e:1a:c5:f6:d7:bc:51:c9:0e:7e:70:fb:16:ba:3c:3b:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Validity Not Before: Nov 1 06:55:01 2023 GMT Not After : Oct 30 07:00:01 2024 GMT Subject: CN=16A48A0EF6FFD905FCD3791C127B75859F046FDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:20:ff:a5:89:20:9d:4f:e9:0a:51:72:b2:91: f5:85:22:38:ad:84:d2:ef:2e:1c:14:48:38:7f:eb: 0d:3b:61:95:d0:75:de:fb:11:9f:46:1a:b9:1b:2f: d9:c0:00:1a:e0:7b:ab:72:8f:b9:6f:94:61:d6:5a: 1f:cd:4d:8c:fa:65:75:69:36:d8:3b:18:4f:70:48: 20:de:be:1a:70:6f:35:a5:1e:ef:a8:c3:a8:56:63: 3e:d5:f0:55:d9:0a:79:3f:b8:a9:33:75:35:5d:33: 9c:4e:b2:96:73:13:b3:98:35:d5:4d:37:d3:e0:9f: ae:07:74:e3:41:07:7f:96:02:73:c7:06:92:aa:64: ef:0a:9a:1b:de:dd:18:00:ed:36:6d:21:72:6b:65: a9:73:61:e8:8a:39:c6:77:46:74:5b:a9:6e:2e:08: 99:96:f3:34:74:d4:bd:b0:35:cb:33:4a:54:b8:64: 37:a1:47:1a:03:a5:4b:53:93:82:cb:eb:df:c5:63: 9d:12:44:eb:48:7a:08:5f:55:6e:23:e9:0c:33:fd: 84:48:e5:e1:15:ae:b7:ed:90:55:75:06:86:19:76: 48:70:38:5b:10:b4:00:43:62:22:15:ae:0f:73:7d: 2c:57:43:b7:90:f5:98:88:ed:d2:75:cc:e7:65:49: e9:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:A4:8A:0E:F6:FF:D9:05:FC:D3:79:1C:12:7B:75:85:9F:04:6F:DF X509v3 Authority Key Identifier: keyid:20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e302e302f32332d3233203d3e20313431363334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.0.0/23 Signature Algorithm: sha256WithRSAEncryption 78:e5:ec:50:81:bf:05:b5:92:9f:d2:7a:e7:ec:8d:5c:a5:05: dd:4c:5e:8e:15:ff:c4:ad:1f:51:de:99:b1:da:af:d6:26:30: c6:9d:26:79:d7:7f:67:47:41:7b:e5:8b:af:5c:75:68:07:61: 4d:1f:93:60:e5:a3:1d:88:d1:94:9a:f3:6d:d2:df:8e:66:1b: 2b:60:0e:1b:d0:12:5b:43:51:cb:b4:be:78:b5:4c:08:48:22: 6c:7f:bc:89:07:35:58:81:d7:d7:e3:77:11:bb:1b:0b:f5:e2: 4f:4b:ba:0f:ad:b1:8a:4b:96:0d:0b:49:72:cb:93:6d:a8:bc: 4a:e5:7b:bf:68:04:ff:eb:ad:7f:97:8b:fe:30:9b:f9:f0:df: ba:51:92:52:d3:e4:20:ca:57:57:5b:65:88:1a:bc:e5:3a:65: 82:99:fc:8e:b1:b1:a0:7e:5e:57:51:32:ae:dc:2a:fa:3f:5b: 67:0a:ba:27:8c:1a:10:49:92:11:39:31:08:ca:71:da:cf:52: be:18:b4:07:42:27:16:47:28:09:53:17:4e:6f:ff:a3:a5:0d: 4b:06:07:31:22:a0:7d:9a:2e:a4:8c:90:93:8c:bd:37:ce:d1: fe:b1:63:13:24:48:51:73:ee:fb:8b:9d:ce:2c:2b:07:d8:3c: d3:e1:d9:97 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUL+SGDhrF9te8UckOfnD7Fro8O7kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0Qy ODlBQkZGOTAeFw0yMzExMDEwNjU1MDFaFw0yNDEwMzAwNzAwMDFaMDMxMTAvBgNV BAMTKDE2QTQ4QTBFRjZGRkQ5MDVGQ0QzNzkxQzEyN0I3NTg1OUYwNDZGREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2IP+liSCdT+kKUXKykfWFIjit hNLvLhwUSDh/6w07YZXQdd77EZ9GGrkbL9nAABrge6tyj7lvlGHWWh/NTYz6ZXVp Ntg7GE9wSCDevhpwbzWlHu+ow6hWYz7V8FXZCnk/uKkzdTVdM5xOspZzE7OYNdVN N9Pgn64HdONBB3+WAnPHBpKqZO8Kmhve3RgA7TZtIXJrZalzYeiKOcZ3RnRbqW4u CJmW8zR01L2wNcszSlS4ZDehRxoDpUtTk4LL69/FY50SROtIeghfVW4j6Qwz/YRI 5eEVrrftkFV1BoYZdkhwOFsQtABDYiIVrg9zfSxXQ7eQ9ZiI7dJ1zOdlSek5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFqSKDvb/2QX803kcEnt1hZ8Eb98wHwYDVR0j BBgwFoAUILFclfozUUAtYOlorR2ezSiav/kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTQxOTNjNC00YWJkLTRlMmMtYTFkMC0xYjVjZTMyZTQyMGIvMC8yMEIxNUM5NUZB MzM1MTQwMkQ2MEU5NjhBRDFEOUVDRDI4OUFCRkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0QyODlB QkZGOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxNDE5M2M0LTRhYmQtNGUyYy1h MWQwLTFiNWNlMzJlNDIwYi8wLzMxMzAzMzJlMzEzNjMyMmUzMDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzQzMTM2MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeiADANBgkqhkiG 9w0BAQsFAAOCAQEAeOXsUIG/BbWSn9J65+yNXKUF3UxejhX/xK0fUd6Zsdqv1iYw xp0medd/Z0dBe+WLr1x1aAdhTR+TYOWjHYjRlJrzbdLfjmYbK2AOG9ASW0NRy7S+ eLVMCEgibH+8iQc1WIHX1+N3EbsbC/XiT0u6D62xikuWDQtJcsuTbai8SuV7v2gE /+utf5eL/jCb+fDfulGSUtPkIMpXV1tliBq85Tplgpn8jrGxoH5eV1Eyrtwq+j9b Zwq6J4waEEmSETkxCMpx2s9Svhi0B0InFkcoCVMXTm//o6UNSwYHMSKgfZoupIyQ k4y9N87R/rFjEyRIUXPu+4udziwrB9g80+HZlw== -----END CERTIFICATE-----Generated at Fri May 3 00:46:57 2024 by rpki-client on console-ams.rpki-client.org