$ rpki-client -vvf repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132342e302f32332d3233203d3e20313431393437.roa File: 3130332e3136362e3132342e302f32332d3233203d3e20313431393437.roa (raw, json) Hash identifier: OwO3OpqIIz2gJPEH6CtP2uU6jpmtHeoO1nNMRt4qXSM= Subject key identifier: C5:A4:E0:AE:E1:13:95:6F:61:22:00:53:8D:C9:39:74:FB:78:F2:BB Certificate issuer: /CN=A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506 Certificate serial: 20D9FFC595354F5F86968B6F3DEE9E9989336AAA Authority key identifier: A9:E9:DB:B7:BC:3B:B1:6F:6A:6A:84:8E:43:07:E8:76:F9:F1:A5:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132342e302f32332d3233203d3e20313431393437.roa Signing time: Fri 11 Aug 2023 15:00:01 +0000 ROA not before: Fri 11 Aug 2023 14:55:01 +0000 ROA not after: Fri 09 Aug 2024 15:00:01 +0000 asID: 141947 IP address blocks: 103.166.124.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.crl rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 13:09:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:d9:ff:c5:95:35:4f:5f:86:96:8b:6f:3d:ee:9e:99:89:33:6a:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506 Validity Not Before: Aug 11 14:55:01 2023 GMT Not After : Aug 9 15:00:01 2024 GMT Subject: CN=C5A4E0AEE113956F612200538DC93974FB78F2BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:83:92:36:45:f1:1b:6c:15:02:3c:73:7e:aa: 70:47:65:c6:28:55:ab:dd:d7:59:98:02:f5:e3:12: 4b:92:bc:20:f8:34:97:87:f8:b8:cb:f0:d6:86:31: 5c:eb:be:cb:1d:e7:13:ab:cc:66:5d:41:62:9c:a7: e2:40:49:6d:f1:d4:11:18:b6:12:53:74:cd:47:85: e2:a1:5e:e1:39:a3:b6:7a:e4:bd:82:89:84:35:f2: ae:69:9c:d0:86:fa:5f:ea:d0:9f:9b:a4:94:6f:f0: 6c:57:2a:d1:c0:66:56:e5:32:4b:1d:4a:9e:9d:57: 28:21:0c:ed:cf:03:6d:ff:39:7a:a0:3d:b4:e1:8c: 2e:7a:75:67:53:cc:6a:5b:cb:1c:2f:bd:1a:6f:a4: c6:df:4c:81:61:a9:38:64:07:82:32:59:0e:96:2f: 8e:e0:63:8b:31:25:42:49:cd:34:e4:c7:37:b8:c6: 1b:05:63:90:bc:42:d7:d6:77:db:c4:e1:60:10:3e: e2:19:a6:65:44:22:15:13:4f:a7:b0:39:37:bd:24: 70:c8:0d:4c:bf:63:84:0b:68:69:78:d7:17:df:68: 9c:e4:67:61:27:23:c6:7e:b4:ca:66:ad:d6:03:57: dc:71:48:da:eb:5f:9f:7b:f0:4f:31:f8:0a:bc:74: 3e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:A4:E0:AE:E1:13:95:6F:61:22:00:53:8D:C9:39:74:FB:78:F2:BB X509v3 Authority Key Identifier: keyid:A9:E9:DB:B7:BC:3B:B1:6F:6A:6A:84:8E:43:07:E8:76:F9:F1:A5:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132342e302f32332d3233203d3e20313431393437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.124.0/23 Signature Algorithm: sha256WithRSAEncryption 48:c1:7f:4a:5e:a4:a3:ff:ec:42:58:8a:98:68:6a:0c:b3:16: 34:0b:c5:94:57:8d:99:89:08:80:e9:5c:84:bb:46:35:a2:14: b1:3d:3c:94:5a:93:10:f2:04:13:d3:22:d2:71:6c:9d:da:b7: 76:d8:5e:6b:41:26:a5:85:c7:33:d9:23:02:fd:63:29:9d:9e: e9:f8:a1:a1:ed:9d:14:b9:87:c3:52:07:03:1f:11:c7:8a:24: af:fb:44:4c:6a:be:54:1a:c8:60:c5:e3:f8:c0:ac:2a:82:57: 44:e4:fc:05:a9:7e:a1:18:cf:37:4b:3b:ce:84:76:d6:6c:d4: 16:ed:5f:e9:c0:fc:6e:c5:3b:47:4c:0c:c8:36:2f:03:35:d4: 42:ef:36:38:df:fd:d0:6b:01:66:06:ce:65:64:e9:8b:af:ea: 74:4a:12:9f:ce:6a:17:78:47:50:4b:bf:12:14:f6:34:4d:02: dc:d1:28:32:36:27:e6:47:e4:d4:af:fe:80:e3:10:0c:ed:fe: 90:e2:20:de:a7:a9:cf:01:13:f3:fb:19:91:3b:1e:92:0f:a3: d5:c6:11:52:b0:db:95:f8:75:d3:56:1f:70:17:23:00:51:30: ef:74:2f:9f:9a:b3:06:ac:db:00:83:4f:c4:dc:52:f2:fb:3d: f8:10:99:c3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUINn/xZU1T1+GlotvPe6emYkzaqowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlFOURCQjdCQzNCQjE2RjZBNkE4NDhFNDMwN0U4NzZG OUYxQTUwNjAeFw0yMzA4MTExNDU1MDFaFw0yNDA4MDkxNTAwMDFaMDMxMTAvBgNV BAMTKEM1QTRFMEFFRTExMzk1NkY2MTIyMDA1MzhEQzkzOTc0RkI3OEYyQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxg5I2RfEbbBUCPHN+qnBHZcYo Vavd11mYAvXjEkuSvCD4NJeH+LjL8NaGMVzrvssd5xOrzGZdQWKcp+JASW3x1BEY thJTdM1HheKhXuE5o7Z65L2CiYQ18q5pnNCG+l/q0J+bpJRv8GxXKtHAZlblMksd Sp6dVyghDO3PA23/OXqgPbThjC56dWdTzGpbyxwvvRpvpMbfTIFhqThkB4IyWQ6W L47gY4sxJUJJzTTkxze4xhsFY5C8QtfWd9vE4WAQPuIZpmVEIhUTT6ewOTe9JHDI DUy/Y4QLaGl41xffaJzkZ2EnI8Z+tMpmrdYDV9xxSNrrX5978E8x+Aq8dD6HAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUxaTgruETlW9hIgBTjck5dPt48rswHwYDVR0j BBgwFoAUqenbt7w7sW9qaoSOQwfodvnxpQYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NTRlNDU2ZC1kYmUyLTQ2MGMtODZkNC1lYmMyZDExNTYxNzYvMC9BOUU5REJCN0JD M0JCMTZGNkE2QTg0OEU0MzA3RTg3NkY5RjFBNTA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlFOURCQjdCQzNCQjE2RjZBNkE4NDhFNDMwN0U4NzZGOUYx QTUwNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q1NGU0NTZkLWRiZTItNDYwYy04 NmQ0LWViYzJkMTE1NjE3Ni8wLzMxMzAzMzJlMzEzNjM2MmUzMTMyMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzOTM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnpnwwDQYJ KoZIhvcNAQELBQADggEBAEjBf0pepKP/7EJYiphoagyzFjQLxZRXjZmJCIDpXIS7 RjWiFLE9PJRakxDyBBPTItJxbJ3at3bYXmtBJqWFxzPZIwL9Yymdnun4oaHtnRS5 h8NSBwMfEceKJK/7RExqvlQayGDF4/jArCqCV0Tk/AWpfqEYzzdLO86EdtZs1Bbt X+nA/G7FO0dMDMg2LwM11ELvNjjf/dBrAWYGzmVk6Yuv6nRKEp/Oahd4R1BLvxIU 9jRNAtzRKDI2J+ZH5NSv/oDjEAzt/pDiIN6nqc8BE/P7GZE7HpIPo9XGEVKw25X4 ddNWH3AXIwBRMO90L5+aswas2wCDT8TcUvL7PfgQmcM= -----END CERTIFICATE-----Generated at Fri Jun 21 12:33:57 2024 by rpki-client on console-ams.rpki-client.org