$ rpki-client -vvf repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/3130332e3134322e3234312e302f32342d3234203d3e20313339333832.roa File: 3130332e3134322e3234312e302f32342d3234203d3e20313339333832.roa (raw, json) Hash identifier: w3BBO2ojOIjj9AtoUjhdja4WPaFGOgpmIufFTP6+DqI= Subject key identifier: 27:6B:7E:92:57:EE:6D:68:FC:71:44:BF:CF:A0:75:02:E8:AE:16:67 Certificate issuer: /CN=5A33E6B82000487B204D2E284BCA10AF293CB41E Certificate serial: 64F926F45CD95BA0148E1A3619E3FBCA51A76441 Authority key identifier: 5A:33:E6:B8:20:00:48:7B:20:4D:2E:28:4B:CA:10:AF:29:3C:B4:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A33E6B82000487B204D2E284BCA10AF293CB41E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/3130332e3134322e3234312e302f32342d3234203d3e20313339333832.roa Signing time: Wed 16 Oct 2024 08:02:49 +0000 ROA not before: Wed 16 Oct 2024 07:57:49 +0000 ROA not after: Wed 15 Oct 2025 08:02:49 +0000 asID: 139382 IP address blocks: 103.142.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/5A33E6B82000487B204D2E284BCA10AF293CB41E.crl rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/5A33E6B82000487B204D2E284BCA10AF293CB41E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A33E6B82000487B204D2E284BCA10AF293CB41E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 04:38:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:f9:26:f4:5c:d9:5b:a0:14:8e:1a:36:19:e3:fb:ca:51:a7:64:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A33E6B82000487B204D2E284BCA10AF293CB41E Validity Not Before: Oct 16 07:57:49 2024 GMT Not After : Oct 15 08:02:49 2025 GMT Subject: CN=276B7E9257EE6D68FC7144BFCFA07502E8AE1667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2f:9e:d5:f8:67:c0:db:5a:e9:1d:67:68:26: 01:29:1e:9b:c8:9f:30:68:a2:77:f6:bf:0a:80:54: 2a:de:55:05:1e:9c:19:81:02:40:ec:8e:9f:a1:39: 2d:36:ca:7e:d5:36:69:9f:49:7b:fb:23:fc:ab:02: 3e:8f:d1:cd:60:fc:b5:9b:c8:37:ef:86:b9:13:f7: 42:d5:3c:db:fa:f3:96:7e:0f:9b:4b:39:84:23:6e: 70:dc:fb:9d:0b:b9:eb:65:de:7c:90:60:3a:b6:20: 68:97:1e:67:a3:11:18:48:85:c2:7b:fa:f7:d3:f9: 65:bc:56:4f:5d:49:4f:fc:6e:4a:d2:fd:62:e2:b0: 41:a3:4e:67:f7:bc:6c:46:90:7e:ac:4d:77:c5:19: dc:db:1c:39:06:dd:4d:48:a2:15:d3:f2:a8:b4:f0: 6f:2e:e5:2d:b6:9a:4b:c6:dc:52:a2:80:63:e2:a0: 41:d8:54:8a:d2:63:9d:64:dd:be:4a:e4:c8:2b:be: 6b:59:64:ab:6e:a8:7b:6b:c5:bd:07:cf:8d:1b:27: b1:9f:70:8c:15:a7:2d:48:b7:6a:f2:42:b1:fc:43: 06:4a:47:57:33:7f:7b:cc:30:d5:a2:19:5c:ab:68: 1c:85:51:f3:bd:38:5a:11:84:37:b4:55:ef:4f:b3: f3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:6B:7E:92:57:EE:6D:68:FC:71:44:BF:CF:A0:75:02:E8:AE:16:67 X509v3 Authority Key Identifier: keyid:5A:33:E6:B8:20:00:48:7B:20:4D:2E:28:4B:CA:10:AF:29:3C:B4:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/5A33E6B82000487B204D2E284BCA10AF293CB41E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A33E6B82000487B204D2E284BCA10AF293CB41E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/3130332e3134322e3234312e302f32342d3234203d3e20313339333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.241.0/24 Signature Algorithm: sha256WithRSAEncryption 95:40:3e:61:ca:a3:ac:15:d9:e5:26:81:36:46:ed:f9:fa:37: 5a:c1:43:29:f4:c6:38:3e:7f:be:18:81:b0:a1:30:6d:2f:c6: 0f:32:5f:06:f4:ba:ea:5a:e7:99:f4:f9:a0:2c:6d:65:02:8b: 3b:9d:94:bb:28:97:d3:1c:e3:54:93:f1:5b:01:27:e7:9a:74: 40:ee:d1:5b:e6:6e:b1:3c:83:08:f6:29:e6:99:63:fe:87:e6: 91:dc:15:e0:56:1d:71:02:28:5e:e0:e2:f8:ff:be:35:2a:ee: 29:e4:c2:39:92:62:f2:60:00:7a:25:50:5a:24:5e:19:3c:84: f0:3e:0d:75:10:ed:ae:e3:54:4f:73:30:ac:2d:ca:e4:a9:6e: 31:3f:13:18:3b:ae:76:32:c9:f6:68:d0:11:59:5a:1d:87:0e: 4f:37:5f:02:1a:f6:5e:fb:22:d5:36:06:81:42:31:92:90:ff: 83:f5:5b:7c:64:b5:b9:03:c9:52:e8:a5:72:b8:41:c2:c7:ef: a4:dc:3f:42:be:8e:18:45:3c:64:4f:ba:ba:51:26:d1:9d:35: a7:c3:1c:6f:cb:14:35:b3:9d:87:2e:ab:b4:28:fd:cb:2c:0d: 81:60:67:d5:c9:ed:b3:bc:11:77:80:2c:b8:58:61:42:b1:19: 28:74:03:03 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZPkm9FzZW6AUjho2GeP7ylGnZEEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUEzM0U2QjgyMDAwNDg3QjIwNEQyRTI4NEJDQTEwQUYy OTNDQjQxRTAeFw0yNDEwMTYwNzU3NDlaFw0yNTEwMTUwODAyNDlaMDMxMTAvBgNV BAMTKDI3NkI3RTkyNTdFRTZENjhGQzcxNDRCRkNGQTA3NTAyRThBRTE2NjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/L57V+GfA21rpHWdoJgEpHpvI nzBoonf2vwqAVCreVQUenBmBAkDsjp+hOS02yn7VNmmfSXv7I/yrAj6P0c1g/LWb yDfvhrkT90LVPNv685Z+D5tLOYQjbnDc+50Luetl3nyQYDq2IGiXHmejERhIhcJ7 +vfT+WW8Vk9dSU/8bkrS/WLisEGjTmf3vGxGkH6sTXfFGdzbHDkG3U1IohXT8qi0 8G8u5S22mkvG3FKigGPioEHYVIrSY51k3b5K5MgrvmtZZKtuqHtrxb0Hz40bJ7Gf cIwVpy1It2ryQrH8QwZKR1czf3vMMNWiGVyraByFUfO9OFoRhDe0Ve9Ps/NbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJ2t+klfubWj8cUS/z6B1AuiuFmcwHwYDVR0j BBgwFoAUWjPmuCAASHsgTS4oS8oQryk8tB4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZTQxYmE3ZS02YzQyLTRjMjItYjEzYy01NDhmYzcyNzJhM2QvMC81QTMzRTZCODIw MDA0ODdCMjA0RDJFMjg0QkNBMTBBRjI5M0NCNDFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUEzM0U2QjgyMDAwNDg3QjIwNEQyRTI4NEJDQTEwQUYyOTND QjQxRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlNDFiYTdlLTZjNDItNGMyMi1i MTNjLTU0OGZjNzI3MmEzZC8wLzMxMzAzMzJlMzEzNDMyMmUzMjM0MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM4MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnjvEwDQYJ KoZIhvcNAQELBQADggEBAJVAPmHKo6wV2eUmgTZG7fn6N1rBQyn0xjg+f74YgbCh MG0vxg8yXwb0uupa55n0+aAsbWUCizudlLsol9Mc41ST8VsBJ+eadEDu0VvmbrE8 gwj2KeaZY/6H5pHcFeBWHXECKF7g4vj/vjUq7inkwjmSYvJgAHolUFokXhk8hPA+ DXUQ7a7jVE9zMKwtyuSpbjE/Exg7rnYyyfZo0BFZWh2HDk83XwIa9l77ItU2BoFC MZKQ/4P1W3xktbkDyVLopXK4QcLH76TcP0K+jhhFPGRPurpRJtGdNafDHG/LFDWz nYcuq7Qo/cssDYFgZ9XJ7bO8EXeALLhYYUKxGSh0AwM= -----END CERTIFICATE-----Generated at Fri Feb 21 11:16:30 2025 by rpki-client