$ rpki-client -vvf repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e302e302f32342d3234203d3e20313431363334.roa File: 3130332e3136322e302e302f32342d3234203d3e20313431363334.roa (raw, json) Hash identifier: /ONHtrCBqjzNiGOuviZyi00S1mCDeEHTyDcebl2X/j0= Subject key identifier: 46:65:1C:38:7C:81:CE:D0:89:00:EE:2B:7F:6D:B1:7E:2E:36:3F:25 Certificate issuer: /CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Certificate serial: 22723AE3B0932D2E747E5755B1A5B9837540DEB9 Authority key identifier: 20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e302e302f32342d3234203d3e20313431363334.roa Signing time: Sun 10 Dec 2023 09:00:01 +0000 ROA not before: Sun 10 Dec 2023 08:55:01 +0000 ROA not after: Sun 08 Dec 2024 09:00:01 +0000 asID: 141634 IP address blocks: 103.162.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 05:15:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:72:3a:e3:b0:93:2d:2e:74:7e:57:55:b1:a5:b9:83:75:40:de:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Validity Not Before: Dec 10 08:55:01 2023 GMT Not After : Dec 8 09:00:01 2024 GMT Subject: CN=46651C387C81CED08900EE2B7F6DB17E2E363F25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:6f:57:9c:46:92:42:cf:70:16:97:39:87:ab: c5:50:80:2d:27:a5:fd:1e:94:08:0a:ad:39:c6:d9: e1:57:95:d1:c6:1b:c1:9f:ea:00:58:ed:72:ed:a5: 21:e6:cb:5d:3c:f1:bf:81:22:f1:21:f6:ff:e6:6b: 30:79:e4:a0:00:7b:c4:20:34:68:9f:69:66:aa:10: b1:e9:86:33:f2:02:12:f2:6c:4a:2e:eb:ac:d7:cf: 0a:83:91:7f:b7:cf:e7:62:99:74:79:00:ba:5c:1f: 01:b1:34:17:1c:59:da:3e:79:a6:74:3b:09:a9:c9: 2c:c2:30:36:36:4f:6e:8c:4a:73:c1:c7:00:e9:30: 4d:92:0f:9b:bc:0a:f1:e3:53:27:35:cd:48:59:8a: f5:a6:ac:05:b8:9b:bd:c5:da:3e:40:1d:0c:e9:be: 91:9c:a2:fc:e5:ee:b0:1b:44:ba:56:4e:ee:04:fa: fe:fc:49:7e:f9:99:ea:9a:91:68:37:05:6a:fb:bd: 7e:37:7a:39:82:eb:76:51:7e:6b:f8:3a:cc:26:f8: 51:a1:17:3b:12:c4:db:43:f7:b3:f4:b9:54:e1:7e: 56:71:d0:1e:6d:71:cd:38:9b:39:14:95:56:9d:a2: 53:4a:2b:ad:a9:65:30:72:57:ee:92:ce:1c:3f:21: 16:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:65:1C:38:7C:81:CE:D0:89:00:EE:2B:7F:6D:B1:7E:2E:36:3F:25 X509v3 Authority Key Identifier: keyid:20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e302e302f32342d3234203d3e20313431363334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.0.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:c1:59:90:32:37:50:31:ab:ba:d3:35:53:1e:97:ee:b9:2c: 4f:a5:e9:49:4a:66:b8:95:f4:3c:96:70:8e:0e:52:9f:6c:b2: 98:04:ef:61:aa:41:d4:62:51:0d:1b:0b:e8:0c:b0:f9:81:8a: 4a:21:b7:8f:08:9b:3a:e2:57:fc:28:35:01:51:ba:3d:68:86: 9c:11:0f:4f:61:e9:21:3d:63:40:85:f2:f0:10:ba:7e:6f:28: 25:04:7e:cb:58:36:26:36:63:de:79:69:c5:3a:03:e4:77:4f: 0e:aa:d1:10:f6:b9:cb:b5:17:8a:d9:e4:35:a7:a2:96:25:22: 6e:3f:9d:5f:69:11:71:f9:59:43:ab:51:d7:50:31:39:d2:3f: ca:99:15:76:3b:e2:85:ba:ba:b8:49:4d:b8:97:0f:47:5e:51: 02:04:b9:81:df:b2:51:de:45:47:35:81:5f:c2:3f:08:37:04: ea:3d:7c:5d:98:45:ef:9c:e0:f2:17:2f:53:a2:50:53:21:5e: 92:51:56:bb:b6:26:3e:37:d6:8b:98:34:1f:67:ac:a9:4b:bf: 88:13:22:ab:3f:e4:55:5a:94:a7:2c:4f:00:82:62:f3:35:00: b7:24:1e:ee:a4:0e:d2:2f:58:b1:cd:68:7d:1f:e6:6a:81:b9: 88:cd:1a:47 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUInI647CTLS50fldVsaW5g3VA3rkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0Qy ODlBQkZGOTAeFw0yMzEyMTAwODU1MDFaFw0yNDEyMDgwOTAwMDFaMDMxMTAvBgNV BAMTKDQ2NjUxQzM4N0M4MUNFRDA4OTAwRUUyQjdGNkRCMTdFMkUzNjNGMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2b1ecRpJCz3AWlzmHq8VQgC0n pf0elAgKrTnG2eFXldHGG8Gf6gBY7XLtpSHmy1088b+BIvEh9v/mazB55KAAe8Qg NGifaWaqELHphjPyAhLybEou66zXzwqDkX+3z+dimXR5ALpcHwGxNBccWdo+eaZ0 OwmpySzCMDY2T26MSnPBxwDpME2SD5u8CvHjUyc1zUhZivWmrAW4m73F2j5AHQzp vpGcovzl7rAbRLpWTu4E+v78SX75meqakWg3BWr7vX43ejmC63ZRfmv4Oswm+FGh FzsSxNtD97P0uVThflZx0B5tcc04mzkUlVadolNKK62pZTByV+6Szhw/IRazAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURmUcOHyBztCJAO4rf22xfi42PyUwHwYDVR0j BBgwFoAUILFclfozUUAtYOlorR2ezSiav/kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTQxOTNjNC00YWJkLTRlMmMtYTFkMC0xYjVjZTMyZTQyMGIvMC8yMEIxNUM5NUZB MzM1MTQwMkQ2MEU5NjhBRDFEOUVDRDI4OUFCRkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0QyODlB QkZGOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxNDE5M2M0LTRhYmQtNGUyYy1h MWQwLTFiNWNlMzJlNDIwYi8wLzMxMzAzMzJlMzEzNjMyMmUzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM2MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeiADANBgkqhkiG 9w0BAQsFAAOCAQEAnsFZkDI3UDGrutM1Ux6X7rksT6XpSUpmuJX0PJZwjg5Sn2yy mATvYapB1GJRDRsL6Ayw+YGKSiG3jwibOuJX/Cg1AVG6PWiGnBEPT2HpIT1jQIXy 8BC6fm8oJQR+y1g2JjZj3nlpxToD5HdPDqrREPa5y7UXitnkNaeiliUibj+dX2kR cflZQ6tR11AxOdI/ypkVdjvihbq6uElNuJcPR15RAgS5gd+yUd5FRzWBX8I/CDcE 6j18XZhF75zg8hcvU6JQUyFeklFWu7YmPjfWi5g0H2esqUu/iBMiqz/kVVqUpyxP AIJi8zUAtyQe7qQO0i9Ysc1ofR/maoG5iM0aRw== -----END CERTIFICATE-----Generated at Fri May 3 00:46:57 2024 by rpki-client on console-ams.rpki-client.org