$ rpki-client -vvf repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/3130332e3136312e3138352e302f32342d3234203d3e20313431363233.roa File: 3130332e3136312e3138352e302f32342d3234203d3e20313431363233.roa (raw, json) Hash identifier: Fu7JeXFfb5tc228JSNsnXAafjLzpKihNy+NDrv6gpEA= Subject key identifier: 61:71:6B:D7:F5:C1:10:F3:52:70:AE:64:84:E9:87:E8:AC:E6:F5:F8 Certificate issuer: /CN=215FC7E5E22B8C46910D4D7CA214C923A096B2FE Certificate serial: 27F38B4EB15E957326DD9AA50B587F7C2DE531CE Authority key identifier: 21:5F:C7:E5:E2:2B:8C:46:91:0D:4D:7C:A2:14:C9:23:A0:96:B2:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/3130332e3136312e3138352e302f32342d3234203d3e20313431363233.roa Signing time: Thu 26 Oct 2023 12:00:00 +0000 ROA not before: Thu 26 Oct 2023 11:55:00 +0000 ROA not after: Thu 24 Oct 2024 12:00:00 +0000 asID: 141623 IP address blocks: 103.161.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.crl rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 03:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:f3:8b:4e:b1:5e:95:73:26:dd:9a:a5:0b:58:7f:7c:2d:e5:31:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=215FC7E5E22B8C46910D4D7CA214C923A096B2FE Validity Not Before: Oct 26 11:55:00 2023 GMT Not After : Oct 24 12:00:00 2024 GMT Subject: CN=61716BD7F5C110F35270AE6484E987E8ACE6F5F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e3:23:13:d8:a6:5d:7e:84:f3:3d:45:84:5f: 54:f0:bb:82:33:38:83:fd:af:bf:78:66:51:ff:ce: 30:ae:34:b5:19:41:c6:1d:2d:5d:cb:f8:0d:f8:40: 69:8f:9c:48:c9:31:c1:55:90:00:8b:c2:fb:d7:73: f8:19:ca:7c:3c:e9:f6:38:fa:e6:e2:49:73:b0:60: f7:33:e8:a0:38:c4:22:a4:53:f6:73:1b:27:9a:ed: 3e:e1:e7:c1:ef:ef:a1:6c:d3:28:6f:e9:a9:e3:d5: 0d:1a:d6:1b:41:a0:b2:b9:88:53:44:bc:47:07:03: d6:21:10:c9:4d:12:2f:64:38:13:3c:4e:4a:32:72: 64:d4:db:1c:b8:98:7f:5f:3e:ca:cb:e0:83:1a:a0: 41:3f:e8:e0:e4:dd:dd:a0:b2:ed:73:cd:6c:40:c6: 64:5a:62:4e:3c:ad:2a:b2:eb:7b:7b:df:d2:6a:cc: 4a:0c:9a:5d:2c:b1:5b:db:e9:0b:40:c5:e3:99:66: ed:d4:8f:a9:5b:7c:82:76:27:62:65:6e:87:90:d0: 17:fb:7d:ab:f2:05:fe:4b:98:2a:8e:36:e0:fe:15: 3a:56:9c:ab:9a:84:cc:2b:a4:26:d1:31:12:f9:91: 75:6d:87:ec:75:c5:cd:13:d8:8b:cd:96:77:bd:25: ef:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:71:6B:D7:F5:C1:10:F3:52:70:AE:64:84:E9:87:E8:AC:E6:F5:F8 X509v3 Authority Key Identifier: keyid:21:5F:C7:E5:E2:2B:8C:46:91:0D:4D:7C:A2:14:C9:23:A0:96:B2:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/3130332e3136312e3138352e302f32342d3234203d3e20313431363233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.185.0/24 Signature Algorithm: sha256WithRSAEncryption 35:d1:83:42:bc:06:a9:e4:e5:71:6d:51:9e:21:a9:21:a1:5f: 68:66:ec:d8:5c:af:f3:23:e6:9b:9f:0c:a9:a3:d9:d9:3e:47: cc:7f:46:cc:90:bf:50:35:cf:69:53:d8:95:de:13:ef:19:7b: 01:2d:58:2d:10:a5:65:eb:92:5d:59:df:9c:ae:08:8f:16:67: 97:99:89:41:46:91:13:f5:db:38:fe:e7:75:18:f7:35:b4:00: ef:85:04:51:5b:4d:21:92:8a:f9:d5:75:3d:68:78:33:c0:bc: a6:e7:c4:e1:f5:d7:5a:35:0f:7b:39:b7:bc:7c:28:1c:d3:ef: 32:8b:e5:a6:c0:c2:af:e3:71:22:72:b9:dd:98:56:3c:93:99: 90:dc:a3:b5:1e:25:88:5f:72:c0:7b:a5:82:b0:2b:22:fa:4a: 67:02:5a:b5:ef:16:50:9d:19:89:69:8a:8d:4b:0c:a5:5b:23: 39:3d:b6:7e:3a:a2:a7:cb:85:a0:fa:d3:25:67:9c:e4:c6:02: 86:4f:be:10:61:0c:19:fe:06:67:4b:c6:34:dc:a0:ab:81:4a: 7e:e7:41:bc:41:15:a6:45:15:cf:47:f2:11:0e:d7:34:c3:fe: 81:6a:85:57:ea:5d:89:ab:3d:e3:6f:c5:7e:28:7d:34:d1:54: 19:cf:34:f7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJ/OLTrFelXMm3ZqlC1h/fC3lMc4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE1RkM3RTVFMjJCOEM0NjkxMEQ0RDdDQTIxNEM5MjNB MDk2QjJGRTAeFw0yMzEwMjYxMTU1MDBaFw0yNDEwMjQxMjAwMDBaMDMxMTAvBgNV BAMTKDYxNzE2QkQ3RjVDMTEwRjM1MjcwQUU2NDg0RTk4N0U4QUNFNkY1RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK4yMT2KZdfoTzPUWEX1Twu4Iz OIP9r794ZlH/zjCuNLUZQcYdLV3L+A34QGmPnEjJMcFVkACLwvvXc/gZynw86fY4 +ubiSXOwYPcz6KA4xCKkU/ZzGyea7T7h58Hv76Fs0yhv6anj1Q0a1htBoLK5iFNE vEcHA9YhEMlNEi9kOBM8TkoycmTU2xy4mH9fPsrL4IMaoEE/6ODk3d2gsu1zzWxA xmRaYk48rSqy63t739JqzEoMml0ssVvb6QtAxeOZZu3Uj6lbfIJ2J2JlboeQ0Bf7 favyBf5LmCqONuD+FTpWnKuahMwrpCbRMRL5kXVth+x1xc0T2IvNlne9Je+7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUYXFr1/XBEPNScK5khOmH6Kzm9fgwHwYDVR0j BBgwFoAUIV/H5eIrjEaRDU18ohTJI6CWsv4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2VhYzljMC1kZTFiLTQ2ZGQtYmYzNy0xOGZlM2E4ZDVmYmYvMC8yMTVGQzdFNUUy MkI4QzQ2OTEwRDREN0NBMjE0QzkyM0EwOTZCMkZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjE1RkM3RTVFMjJCOEM0NjkxMEQ0RDdDQTIxNEM5MjNBMDk2 QjJGRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzZWFjOWMwLWRlMWItNDZkZC1i ZjM3LTE4ZmUzYThkNWZiZi8wLzMxMzAzMzJlMzEzNjMxMmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnobkwDQYJ KoZIhvcNAQELBQADggEBADXRg0K8Bqnk5XFtUZ4hqSGhX2hm7Nhcr/Mj5pufDKmj 2dk+R8x/RsyQv1A1z2lT2JXeE+8ZewEtWC0QpWXrkl1Z35yuCI8WZ5eZiUFGkRP1 2zj+53UY9zW0AO+FBFFbTSGSivnVdT1oeDPAvKbnxOH111o1D3s5t7x8KBzT7zKL 5abAwq/jcSJyud2YVjyTmZDco7UeJYhfcsB7pYKwKyL6SmcCWrXvFlCdGYlpio1L DKVbIzk9tn46oqfLhaD60yVnnOTGAoZPvhBhDBn+BmdLxjTcoKuBSn7nQbxBFaZF Fc9H8hEO1zTD/oFqhVfqXYmrPeNvxX4ofTTRVBnPNPc= -----END CERTIFICATE-----Generated at Mon Jun 24 01:27:24 2024 by rpki-client on console-ams.rpki-client.org