$ rpki-client -vvf repo-rpki.idnic.net/repo/0ed850a8-abb9-4482-a5bc-54d79eb7f323/0/3130332e3134312e3235352e302f32342d3234203d3e20313331373639.roa File: 3130332e3134312e3235352e302f32342d3234203d3e20313331373639.roa (raw, json) Hash identifier: sNFBrjKao6LjfXkKslG2ZXg5osepw69Yf+aUH9nWNP4= Subject key identifier: 3A:97:0D:50:C8:9B:26:2F:C2:D5:CA:FB:B7:BE:66:92:F4:AE:62:32 Certificate issuer: /CN=B1015FDC3ABDC9EC594F6E8A82A116F769CA5665 Certificate serial: 15A9B66E6F243ADB0873712F9BDC02CC73CA51AF Authority key identifier: B1:01:5F:DC:3A:BD:C9:EC:59:4F:6E:8A:82:A1:16:F7:69:CA:56:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1015FDC3ABDC9EC594F6E8A82A116F769CA5665.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0ed850a8-abb9-4482-a5bc-54d79eb7f323/0/3130332e3134312e3235352e302f32342d3234203d3e20313331373639.roa Signing time: Mon 04 Mar 2024 09:02:04 +0000 ROA not before: Mon 04 Mar 2024 08:57:04 +0000 ROA not after: Mon 03 Mar 2025 09:02:04 +0000 asID: 131769 IP address blocks: 103.141.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0ed850a8-abb9-4482-a5bc-54d79eb7f323/0/B1015FDC3ABDC9EC594F6E8A82A116F769CA5665.crl rsync://repo-rpki.idnic.net/repo/0ed850a8-abb9-4482-a5bc-54d79eb7f323/0/B1015FDC3ABDC9EC594F6E8A82A116F769CA5665.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1015FDC3ABDC9EC594F6E8A82A116F769CA5665.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 08:41:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:a9:b6:6e:6f:24:3a:db:08:73:71:2f:9b:dc:02:cc:73:ca:51:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B1015FDC3ABDC9EC594F6E8A82A116F769CA5665 Validity Not Before: Mar 4 08:57:04 2024 GMT Not After : Mar 3 09:02:04 2025 GMT Subject: CN=3A970D50C89B262FC2D5CAFBB7BE6692F4AE6232 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:50:04:fa:64:36:e2:48:f2:39:b8:88:7b:c3: 9b:93:ed:1e:f2:a3:d9:d6:44:86:6c:5f:ea:4e:7e: 9f:82:24:c4:59:05:86:98:ca:c5:0a:18:63:6c:7c: 34:a3:6f:90:e4:ec:dd:18:a5:9c:85:6b:0a:54:b2: e2:18:1b:83:81:c7:56:5f:27:8f:21:98:91:cd:cc: 0c:9f:ee:57:2e:eb:6c:1d:2c:6e:d2:be:77:8e:9a: a3:08:66:aa:b1:a5:5b:6a:8a:f0:c5:0e:d3:71:b0: ee:1a:d7:54:30:99:14:74:d7:31:02:54:ce:55:96: 22:3e:af:55:e0:e4:50:95:1b:c6:40:a2:9a:84:0a: 16:b4:0c:8c:94:dd:4a:ac:70:13:75:33:d6:b3:5f: 46:2f:63:2d:07:2e:1d:53:ba:49:21:57:38:20:d6: 3b:47:a2:fc:34:30:40:c6:fa:7b:05:90:e8:49:18: 23:dd:e2:2d:ff:d2:ce:cc:55:2e:f6:e1:e6:9a:ea: 5f:c3:60:cd:44:9d:04:67:f8:77:99:18:40:0a:f6: 14:8d:61:4d:1f:fb:40:d7:3e:12:35:2c:4c:11:fc: e9:3a:9a:c8:c5:0a:b3:e7:f2:12:ee:24:71:4b:37: e3:58:bc:25:2b:a4:8f:69:03:10:38:bc:b6:3d:0e: d5:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:97:0D:50:C8:9B:26:2F:C2:D5:CA:FB:B7:BE:66:92:F4:AE:62:32 X509v3 Authority Key Identifier: keyid:B1:01:5F:DC:3A:BD:C9:EC:59:4F:6E:8A:82:A1:16:F7:69:CA:56:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0ed850a8-abb9-4482-a5bc-54d79eb7f323/0/B1015FDC3ABDC9EC594F6E8A82A116F769CA5665.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1015FDC3ABDC9EC594F6E8A82A116F769CA5665.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0ed850a8-abb9-4482-a5bc-54d79eb7f323/0/3130332e3134312e3235352e302f32342d3234203d3e20313331373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.141.255.0/24 Signature Algorithm: sha256WithRSAEncryption 45:c2:35:12:5d:ed:21:22:03:a7:0d:94:b9:d7:58:ee:4a:b1: c6:53:4f:85:39:c2:58:1d:14:49:3e:bc:7c:14:9f:23:c9:62: 61:00:b5:2b:5b:be:45:c0:ac:f1:3a:0c:5b:fd:ba:5a:f2:e9: 78:ed:31:69:c5:2c:17:11:c6:17:55:a7:c0:91:7c:7b:98:da: 7e:08:73:ef:45:7c:71:b6:d8:b1:1a:d5:30:54:a8:83:2b:a8: af:82:6d:46:89:bb:c9:62:ec:05:58:7e:88:69:0c:55:52:d8: 21:e1:a2:42:26:ff:33:3e:18:56:f5:c1:52:d0:05:80:ab:8c: c1:f1:69:e4:7d:19:d1:af:c7:43:77:b9:b1:28:45:1f:3c:36: 01:94:fd:95:ab:8f:2f:e5:b6:4d:b5:d4:fd:ac:b9:1a:ac:9f: b0:54:74:76:d3:f1:05:56:78:4c:2e:99:72:01:22:99:d0:1c: c8:df:4d:d6:e6:2b:3c:a9:91:93:54:53:bc:66:43:fb:9d:db: 11:f7:1a:2c:25:67:24:65:09:4f:a1:ce:d6:db:82:30:65:5c: 87:8c:2e:b9:db:f6:6e:52:ab:19:12:8e:58:07:6b:e3:38:1b: 25:c9:dc:b9:dd:01:ef:59:8d:84:dd:a9:7e:5f:f2:44:36:5a: 6f:ff:8f:0e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFam2bm8kOtsIc3Evm9wCzHPKUa8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjEwMTVGREMzQUJEQzlFQzU5NEY2RThBODJBMTE2Rjc2 OUNBNTY2NTAeFw0yNDAzMDQwODU3MDRaFw0yNTAzMDMwOTAyMDRaMDMxMTAvBgNV BAMTKDNBOTcwRDUwQzg5QjI2MkZDMkQ1Q0FGQkI3QkU2NjkyRjRBRTYyMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoUAT6ZDbiSPI5uIh7w5uT7R7y o9nWRIZsX+pOfp+CJMRZBYaYysUKGGNsfDSjb5Dk7N0YpZyFawpUsuIYG4OBx1Zf J48hmJHNzAyf7lcu62wdLG7SvneOmqMIZqqxpVtqivDFDtNxsO4a11QwmRR01zEC VM5VliI+r1Xg5FCVG8ZAopqECha0DIyU3UqscBN1M9azX0YvYy0HLh1TukkhVzgg 1jtHovw0MEDG+nsFkOhJGCPd4i3/0s7MVS724eaa6l/DYM1EnQRn+HeZGEAK9hSN YU0f+0DXPhI1LEwR/Ok6msjFCrPn8hLuJHFLN+NYvCUrpI9pAxA4vLY9DtWNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUOpcNUMibJi/C1cr7t75mkvSuYjIwHwYDVR0j BBgwFoAUsQFf3Dq9yexZT26KgqEW92nKVmUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZWQ4NTBhOC1hYmI5LTQ0ODItYTViYy01NGQ3OWViN2YzMjMvMC9CMTAxNUZEQzNB QkRDOUVDNTk0RjZFOEE4MkExMTZGNzY5Q0E1NjY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjEwMTVGREMzQUJEQzlFQzU5NEY2RThBODJBMTE2Rjc2OUNB NTY2NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlZDg1MGE4LWFiYjktNDQ4Mi1h NWJjLTU0ZDc5ZWI3ZjMyMy8wLzMxMzAzMzJlMzEzNDMxMmUzMjM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnjf8wDQYJ KoZIhvcNAQELBQADggEBAEXCNRJd7SEiA6cNlLnXWO5KscZTT4U5wlgdFEk+vHwU nyPJYmEAtStbvkXArPE6DFv9ulry6XjtMWnFLBcRxhdVp8CRfHuY2n4Ic+9FfHG2 2LEa1TBUqIMrqK+CbUaJu8li7AVYfohpDFVS2CHhokIm/zM+GFb1wVLQBYCrjMHx aeR9GdGvx0N3ubEoRR88NgGU/ZWrjy/ltk211P2suRqsn7BUdHbT8QVWeEwumXIB IpnQHMjfTdbmKzypkZNUU7xmQ/ud2xH3GiwlZyRlCU+hztbbgjBlXIeMLrnb9m5S qxkSjlgHa+M4GyXJ3LndAe9ZjYTdqX5f8kQ2Wm//jw4= -----END CERTIFICATE-----Generated at Wed May 1 05:54:35 2024 by rpki-client on console-ams.rpki-client.org