$ rpki-client -vvf repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/3130332e3234312e3230342e302f32342d3234203d3e20313332363738.roa File: 3130332e3234312e3230342e302f32342d3234203d3e20313332363738.roa (raw, json) Hash identifier: 1qZsE00rwmGlzOMKTEF7EolFAH+CLupX31RHggUVtOs= Subject key identifier: 58:4B:D5:7D:55:03:DC:A9:F9:D5:87:5D:98:CF:2B:F9:4A:DA:87:9D Certificate issuer: /CN=0BAF96670660C94FBB3E387EF1505E6FA401ECCF Certificate serial: 6B3B9E186FAED9B4CBD4C0A936CB9B8DFE7BA2BB Authority key identifier: 0B:AF:96:67:06:60:C9:4F:BB:3E:38:7E:F1:50:5E:6F:A4:01:EC:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/3130332e3234312e3230342e302f32342d3234203d3e20313332363738.roa Signing time: Mon 02 Dec 2024 10:01:20 +0000 ROA not before: Mon 02 Dec 2024 09:56:20 +0000 ROA not after: Mon 01 Dec 2025 10:01:20 +0000 asID: 132678 IP address blocks: 103.241.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.crl rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 15:17:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:3b:9e:18:6f:ae:d9:b4:cb:d4:c0:a9:36:cb:9b:8d:fe:7b:a2:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BAF96670660C94FBB3E387EF1505E6FA401ECCF Validity Not Before: Dec 2 09:56:20 2024 GMT Not After : Dec 1 10:01:20 2025 GMT Subject: CN=584BD57D5503DCA9F9D5875D98CF2BF94ADA879D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:b1:fa:ea:18:26:83:3e:36:8f:b5:1f:2f:0f: 00:a5:34:c7:75:18:ec:f8:6c:57:d3:35:dc:b8:49: c7:66:f5:c0:6b:b2:3f:ef:2c:04:0c:ce:0e:52:d1: ab:6c:cd:65:ce:92:3c:46:53:5a:4e:7d:13:ca:d0: f9:55:55:76:47:ca:bd:5a:9f:6a:c6:21:15:2c:45: 63:f5:2c:96:26:f0:12:7b:51:27:95:e9:c8:31:7c: 8a:51:da:b5:f0:a8:98:ab:67:d4:c5:78:0e:13:0a: 27:b5:ed:0f:cd:59:12:05:78:21:80:b2:f3:07:45: 79:48:c5:cc:12:5d:da:46:d0:ea:ec:8f:54:d4:80: 67:b8:ae:b3:53:b6:f1:0c:f8:d1:cc:e8:bb:b1:96: 3a:e3:1e:1b:82:b6:cf:0e:07:e0:ed:a8:9f:1c:29: 80:f0:8c:7c:85:77:ed:b9:72:b7:ac:8e:0d:dc:ca: 3a:d6:ad:cb:63:d4:3c:3c:e0:2f:de:86:18:5a:0b: c0:5b:33:e4:07:3d:3b:44:7a:98:56:9d:84:16:5f: 92:0a:c8:77:e6:02:48:8f:ac:f4:d4:ab:10:11:6e: 5a:60:50:4e:bd:29:f2:1b:31:ae:b2:f9:e8:cd:25: 4b:89:b2:4a:da:09:b8:fc:e4:df:79:e0:22:2f:38: 1a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:4B:D5:7D:55:03:DC:A9:F9:D5:87:5D:98:CF:2B:F9:4A:DA:87:9D X509v3 Authority Key Identifier: keyid:0B:AF:96:67:06:60:C9:4F:BB:3E:38:7E:F1:50:5E:6F:A4:01:EC:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/3130332e3234312e3230342e302f32342d3234203d3e20313332363738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.241.204.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:d7:42:8e:c9:6c:5d:48:3a:cf:50:ff:80:1f:7e:67:f8:52: b0:04:fb:db:9b:ed:56:f3:22:7d:22:67:81:a7:0b:49:96:38: b7:0a:6b:33:2c:8d:9d:bd:45:4b:7a:0f:93:88:a6:59:4a:38: 25:81:ac:d0:d3:f0:7e:ed:54:2c:e3:65:07:18:16:9e:6f:ca: 30:6f:99:03:92:6e:a4:23:49:17:9b:24:dc:5b:e1:cf:88:78: 10:d5:9c:a0:9a:a7:b2:c4:c1:8d:76:84:8f:c4:95:29:f2:80: d2:d6:0c:c3:f9:e2:b0:90:73:9c:6c:52:7c:84:fb:60:9a:af: 66:fd:88:78:45:02:56:d3:81:64:1c:5d:c8:15:92:a7:54:12: 2a:af:1b:36:b0:23:a1:87:13:a4:5e:73:d3:65:e4:0e:02:e3: a9:2d:0b:fc:02:84:49:a5:f1:86:6a:ca:be:b7:a7:eb:b9:68: bc:39:bb:f3:33:93:5e:f6:35:4e:7a:9b:d4:bc:dc:03:0b:f1: 81:f3:7a:c4:fd:ac:8e:0d:e7:e3:05:ae:ac:2d:57:a8:c1:62: 71:0e:3b:2a:3e:c3:47:69:38:d4:59:42:de:9a:61:7d:69:f9: 7e:db:f9:f3:ee:ed:de:83:7c:70:6e:6b:fb:7f:9f:d1:76:1f: 3e:6c:d7:1a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUazueGG+u2bTL1MCpNsubjf57orswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJBRjk2NjcwNjYwQzk0RkJCM0UzODdFRjE1MDVFNkZB NDAxRUNDRjAeFw0yNDEyMDIwOTU2MjBaFw0yNTEyMDExMDAxMjBaMDMxMTAvBgNV BAMTKDU4NEJENTdENTUwM0RDQTlGOUQ1ODc1RDk4Q0YyQkY5NEFEQTg3OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpsfrqGCaDPjaPtR8vDwClNMd1 GOz4bFfTNdy4Scdm9cBrsj/vLAQMzg5S0atszWXOkjxGU1pOfRPK0PlVVXZHyr1a n2rGIRUsRWP1LJYm8BJ7USeV6cgxfIpR2rXwqJirZ9TFeA4TCie17Q/NWRIFeCGA svMHRXlIxcwSXdpG0Orsj1TUgGe4rrNTtvEM+NHM6LuxljrjHhuCts8OB+DtqJ8c KYDwjHyFd+25cresjg3cyjrWrctj1Dw84C/ehhhaC8BbM+QHPTtEephWnYQWX5IK yHfmAkiPrPTUqxARblpgUE69KfIbMa6y+ejNJUuJskraCbj85N954CIvOBqnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWEvVfVUD3Kn51YddmM8r+Urah50wHwYDVR0j BBgwFoAUC6+WZwZgyU+7Pjh+8VBeb6QB7M8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWEwY2Y5YS1jNTdkLTQzOTUtOTI0OS1iZmNmNDY3MjQyODIvMC8wQkFGOTY2NzA2 NjBDOTRGQkIzRTM4N0VGMTUwNUU2RkE0MDFFQ0NGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJBRjk2NjcwNjYwQzk0RkJCM0UzODdFRjE1MDVFNkZBNDAx RUNDRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlYTBjZjlhLWM1N2QtNDM5NS05 MjQ5LWJmY2Y0NjcyNDI4Mi8wLzMxMzAzMzJlMzIzNDMxMmUzMjMwMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzIzNjM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn8cwwDQYJ KoZIhvcNAQELBQADggEBAG7XQo7JbF1IOs9Q/4Affmf4UrAE+9ub7VbzIn0iZ4Gn C0mWOLcKazMsjZ29RUt6D5OIpllKOCWBrNDT8H7tVCzjZQcYFp5vyjBvmQOSbqQj SRebJNxb4c+IeBDVnKCap7LEwY12hI/ElSnygNLWDMP54rCQc5xsUnyE+2Car2b9 iHhFAlbTgWQcXcgVkqdUEiqvGzawI6GHE6Rec9Nl5A4C46ktC/wChEml8YZqyr63 p+u5aLw5u/Mzk172NU56m9S83AML8YHzesT9rI4N5+MFrqwtV6jBYnEOOyo+w0dp ONRZQt6aYX1p+X7b+fPu7d6DfHBua/t/n9F2Hz5s1xo= -----END CERTIFICATE-----Generated at Sun Apr 6 12:50:13 2025 by rpki-client