$ rpki-client -vvf repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e312e302f32342d3234203d3e20313431363334.roa File: 3130332e3136322e312e302f32342d3234203d3e20313431363334.roa (raw, json) Hash identifier: S2Fs0AtHWBfJkt6oNGUbQpmjILFaX/4qlfpvbSDrD6M= Subject key identifier: AA:4F:62:26:B7:9B:8E:7F:30:17:C6:DA:31:3E:33:07:A0:69:EE:A5 Certificate issuer: /CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Certificate serial: 109D966A35E58C19057812E273489A374448E825 Authority key identifier: 20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e312e302f32342d3234203d3e20313431363334.roa Signing time: Sun 10 Dec 2023 09:00:01 +0000 ROA not before: Sun 10 Dec 2023 08:55:01 +0000 ROA not after: Sun 08 Dec 2024 09:00:01 +0000 asID: 141634 IP address blocks: 103.162.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 05:15:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:9d:96:6a:35:e5:8c:19:05:78:12:e2:73:48:9a:37:44:48:e8:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Validity Not Before: Dec 10 08:55:01 2023 GMT Not After : Dec 8 09:00:01 2024 GMT Subject: CN=AA4F6226B79B8E7F3017C6DA313E3307A069EEA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:db:91:e2:c2:a0:4b:ce:65:7c:5f:33:0c:d6: 9d:54:c2:e3:c9:79:ea:5e:a9:dc:52:cc:d1:bc:ba: 5b:06:8e:d1:f1:96:49:23:2c:59:80:92:7a:b6:79: 38:10:ae:0a:18:96:45:19:07:db:a7:d2:87:eb:ac: 0d:1a:db:5d:b1:60:03:08:09:92:0c:2c:29:bf:9f: cd:35:3f:90:9f:e0:1f:27:bf:eb:c6:db:92:07:3a: 43:f5:bf:fc:e6:b0:8b:69:57:88:01:19:56:a4:dd: 5b:e6:cd:95:4c:06:8b:10:bf:25:4d:70:18:81:e1: ac:49:fd:10:e9:5a:5c:3b:5a:76:57:16:7b:42:09: 37:d0:dc:94:23:52:9b:73:6c:da:b2:3c:e4:ac:f8: a0:f9:63:90:9a:8c:09:a2:73:6a:3e:3f:c8:dd:fd: a8:ae:9f:51:88:25:39:b3:1a:99:ce:76:2f:9d:63: 13:1f:65:0b:8d:4f:26:36:6b:9d:fd:9c:f9:6f:d8: a3:d9:b6:18:cd:43:5b:56:9b:31:72:e7:61:b5:5a: 05:dc:06:6c:d2:9f:bf:5e:af:b5:9c:2c:2f:00:a8: 71:0d:12:c7:18:13:2b:85:89:32:8b:6a:fc:d6:89: b4:b3:d0:cd:31:bf:69:9d:2f:82:f1:bf:09:25:a8: 07:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:4F:62:26:B7:9B:8E:7F:30:17:C6:DA:31:3E:33:07:A0:69:EE:A5 X509v3 Authority Key Identifier: keyid:20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e312e302f32342d3234203d3e20313431363334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.1.0/24 Signature Algorithm: sha256WithRSAEncryption 40:ba:a5:7d:71:79:8b:32:8d:43:8f:24:df:65:8b:c7:ac:bb: 0b:e0:43:e3:80:03:84:aa:5b:44:33:51:84:48:50:41:40:89: ba:f0:a9:60:bc:7f:e8:ba:71:64:68:6a:c5:a0:38:92:91:9d: b7:86:58:1d:f5:57:35:25:4c:e1:03:c1:2a:d1:f0:a7:73:1d: 14:65:31:62:9a:6b:54:4d:00:21:e7:6d:2b:ad:3e:13:96:8b: e7:b3:8d:f8:90:af:66:06:de:aa:06:2a:19:91:58:74:9a:cb: ba:64:75:2d:7e:b1:71:3d:e7:02:71:03:d8:aa:8f:ac:58:4f: 4d:e0:60:2a:b0:a5:4e:f6:a8:d2:1e:8f:f9:7a:eb:7b:02:d6: 8b:ce:e2:75:ff:74:69:41:f9:13:fd:07:36:25:c0:0a:f1:04: 8f:82:ff:e8:2d:cc:cf:0e:10:69:ff:b2:9e:f7:e3:5a:5c:2f: 60:f1:3d:37:05:cf:89:61:52:23:11:5e:88:2a:38:16:33:09: d7:4d:f4:03:c0:2a:2f:cf:c6:74:df:b2:65:30:da:62:c7:ec: e0:dc:76:80:d1:7a:ba:2c:a6:0a:b6:63:e8:65:d2:c4:af:a8: 81:be:4d:a2:97:3f:1c:7f:29:66:1f:b7:a8:86:6f:c5:19:a5: 5a:21:e7:1d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEJ2WajXljBkFeBLic0iaN0RI6CUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0Qy ODlBQkZGOTAeFw0yMzEyMTAwODU1MDFaFw0yNDEyMDgwOTAwMDFaMDMxMTAvBgNV BAMTKEFBNEY2MjI2Qjc5QjhFN0YzMDE3QzZEQTMxM0UzMzA3QTA2OUVFQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO25HiwqBLzmV8XzMM1p1UwuPJ eepeqdxSzNG8ulsGjtHxlkkjLFmAknq2eTgQrgoYlkUZB9un0ofrrA0a212xYAMI CZIMLCm/n801P5Cf4B8nv+vG25IHOkP1v/zmsItpV4gBGVak3VvmzZVMBosQvyVN cBiB4axJ/RDpWlw7WnZXFntCCTfQ3JQjUptzbNqyPOSs+KD5Y5CajAmic2o+P8jd /aiun1GIJTmzGpnOdi+dYxMfZQuNTyY2a539nPlv2KPZthjNQ1tWmzFy52G1WgXc BmzSn79er7WcLC8AqHENEscYEyuFiTKLavzWibSz0M0xv2mdL4LxvwklqAdjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqk9iJrebjn8wF8baMT4zB6Bp7qUwHwYDVR0j BBgwFoAUILFclfozUUAtYOlorR2ezSiav/kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTQxOTNjNC00YWJkLTRlMmMtYTFkMC0xYjVjZTMyZTQyMGIvMC8yMEIxNUM5NUZB MzM1MTQwMkQ2MEU5NjhBRDFEOUVDRDI4OUFCRkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0QyODlB QkZGOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxNDE5M2M0LTRhYmQtNGUyYy1h MWQwLTFiNWNlMzJlNDIwYi8wLzMxMzAzMzJlMzEzNjMyMmUzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM2MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeiATANBgkqhkiG 9w0BAQsFAAOCAQEAQLqlfXF5izKNQ48k32WLx6y7C+BD44ADhKpbRDNRhEhQQUCJ uvCpYLx/6LpxZGhqxaA4kpGdt4ZYHfVXNSVM4QPBKtHwp3MdFGUxYpprVE0AIedt K60+E5aL57ON+JCvZgbeqgYqGZFYdJrLumR1LX6xcT3nAnED2KqPrFhPTeBgKrCl Tvao0h6P+XrrewLWi87idf90aUH5E/0HNiXACvEEj4L/6C3Mzw4Qaf+ynvfjWlwv YPE9NwXPiWFSIxFeiCo4FjMJ1030A8AqL8/GdN+yZTDaYsfs4Nx2gNF6uiymCrZj 6GXSxK+ogb5Nopc/HH8pZh+3qIZvxRmlWiHnHQ== -----END CERTIFICATE-----Generated at Fri May 3 01:27:19 2024 by rpki-client on console-fra.rpki-client.org