$ rpki-client -vvf repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/3130332e3234312e3230352e302f32342d3234203d3e20313332363738.roa File: 3130332e3234312e3230352e302f32342d3234203d3e20313332363738.roa (raw, json) Hash identifier: +tPkJqpOjRKJQTLstEf17Gi7L/GmTgvUZVqUywmQU+8= Subject key identifier: 73:73:57:F5:BD:43:34:F9:2F:3B:16:01:C1:BF:85:07:AC:20:8B:5D Certificate issuer: /CN=0BAF96670660C94FBB3E387EF1505E6FA401ECCF Certificate serial: 0B68BC3A098047A73B9B7E7488264A6E5ADF1781 Authority key identifier: 0B:AF:96:67:06:60:C9:4F:BB:3E:38:7E:F1:50:5E:6F:A4:01:EC:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/3130332e3234312e3230352e302f32342d3234203d3e20313332363738.roa Signing time: Mon 01 Jan 2024 09:00:44 +0000 ROA not before: Mon 01 Jan 2024 08:55:44 +0000 ROA not after: Mon 30 Dec 2024 09:00:44 +0000 asID: 132678 IP address blocks: 103.241.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.crl rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:68:bc:3a:09:80:47:a7:3b:9b:7e:74:88:26:4a:6e:5a:df:17:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BAF96670660C94FBB3E387EF1505E6FA401ECCF Validity Not Before: Jan 1 08:55:44 2024 GMT Not After : Dec 30 09:00:44 2024 GMT Subject: CN=737357F5BD4334F92F3B1601C1BF8507AC208B5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4e:90:4c:5b:48:15:96:ce:7f:e9:86:c0:15: 92:31:3d:bd:ff:14:96:e8:53:c5:76:f8:fd:ae:23: 38:11:d0:9a:77:87:15:18:50:e8:25:73:bf:0d:1f: 2d:6a:ca:b2:79:20:59:bc:0c:4e:72:75:3f:25:6b: f2:1a:c3:b6:63:ff:71:dd:ca:04:1a:9b:95:87:c9: 59:4b:13:ed:a6:be:3c:d4:17:79:5a:52:f3:7e:f8: 72:f9:c9:97:09:d5:c0:9f:f0:d2:3b:e4:76:41:f2: c7:e5:59:73:7c:35:e5:6c:0e:1d:30:5e:39:e7:52: 1d:6a:2c:dd:fd:4d:bd:cf:c1:f7:10:ff:1d:62:41: d0:0b:90:b1:d1:41:7b:f7:f1:7f:fa:ac:7a:cc:f9: 18:f2:a2:5a:9b:93:03:bc:6a:34:6d:ce:3a:24:d5: 04:f2:42:49:74:a4:de:ae:8c:d0:90:38:49:0e:dd: f2:0c:eb:e2:7f:bc:ea:1b:17:cc:fe:23:bf:67:4b: b5:74:0a:50:0c:e0:7f:45:5b:8e:03:64:88:e5:61: 1e:88:d4:ee:8f:63:8d:dd:17:dc:0b:8b:99:f3:bc: e8:a7:5d:da:f3:4e:25:56:fd:11:c8:00:8a:1b:da: c3:a5:4e:ec:22:28:e6:63:84:0e:c1:87:d2:b5:1e: 2e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:73:57:F5:BD:43:34:F9:2F:3B:16:01:C1:BF:85:07:AC:20:8B:5D X509v3 Authority Key Identifier: keyid:0B:AF:96:67:06:60:C9:4F:BB:3E:38:7E:F1:50:5E:6F:A4:01:EC:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/3130332e3234312e3230352e302f32342d3234203d3e20313332363738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.241.205.0/24 Signature Algorithm: sha256WithRSAEncryption 74:5f:1d:2d:e9:2d:6c:71:92:8a:5c:e0:6d:a0:98:cb:2c:89: af:75:14:71:18:84:85:f1:68:7d:cd:64:aa:62:ec:f2:48:8d: 66:b7:6b:f9:e4:29:f8:0c:73:86:00:6c:ad:f2:9a:57:f3:4e: 9f:cc:cb:2d:c3:a7:e4:d2:eb:4c:3c:5e:0f:e6:60:d0:72:bf: f9:46:6e:32:f6:47:a4:06:aa:52:1a:a8:68:cd:0e:b7:4b:a6: af:d0:03:71:4c:b7:5d:f8:0b:d4:b3:e7:62:e4:20:1e:00:b5: 8d:35:a4:d7:85:5b:0c:25:ee:7d:22:2d:88:36:67:8e:70:65: 2c:88:1a:76:b5:88:53:78:78:e2:dd:0c:8e:25:dd:71:d9:de: 41:20:c2:0b:9b:bf:8a:bc:6a:ac:33:fe:4b:7d:85:7d:1c:9a: cf:3e:8f:82:d8:f9:7b:6a:34:2b:f2:44:77:8d:46:44:5a:87: 9f:76:c9:1a:fb:10:f7:1b:5d:3a:51:9d:b7:3c:0b:b6:b3:c3: 3c:b6:cd:95:42:eb:b7:73:e2:33:5a:86:4f:8d:3b:28:db:b6: d3:fe:82:b9:66:e2:85:bb:83:83:36:7f:97:54:91:fd:68:7a: 4d:c1:68:c8:73:d7:b1:0a:b6:9b:9f:06:22:c1:e5:7e:45:13: e4:ab:83:03 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUC2i8OgmAR6c7m350iCZKblrfF4EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJBRjk2NjcwNjYwQzk0RkJCM0UzODdFRjE1MDVFNkZB NDAxRUNDRjAeFw0yNDAxMDEwODU1NDRaFw0yNDEyMzAwOTAwNDRaMDMxMTAvBgNV BAMTKDczNzM1N0Y1QkQ0MzM0RjkyRjNCMTYwMUMxQkY4NTA3QUMyMDhCNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyTpBMW0gVls5/6YbAFZIxPb3/ FJboU8V2+P2uIzgR0Jp3hxUYUOglc78NHy1qyrJ5IFm8DE5ydT8la/Iaw7Zj/3Hd ygQam5WHyVlLE+2mvjzUF3laUvN++HL5yZcJ1cCf8NI75HZB8sflWXN8NeVsDh0w XjnnUh1qLN39Tb3PwfcQ/x1iQdALkLHRQXv38X/6rHrM+RjyolqbkwO8ajRtzjok 1QTyQkl0pN6ujNCQOEkO3fIM6+J/vOobF8z+I79nS7V0ClAM4H9FW44DZIjlYR6I 1O6PY43dF9wLi5nzvOinXdrzTiVW/RHIAIob2sOlTuwiKOZjhA7Bh9K1Hi57AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUc3NX9b1DNPkvOxYBwb+FB6wgi10wHwYDVR0j BBgwFoAUC6+WZwZgyU+7Pjh+8VBeb6QB7M8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWEwY2Y5YS1jNTdkLTQzOTUtOTI0OS1iZmNmNDY3MjQyODIvMC8wQkFGOTY2NzA2 NjBDOTRGQkIzRTM4N0VGMTUwNUU2RkE0MDFFQ0NGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJBRjk2NjcwNjYwQzk0RkJCM0UzODdFRjE1MDVFNkZBNDAx RUNDRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlYTBjZjlhLWM1N2QtNDM5NS05 MjQ5LWJmY2Y0NjcyNDI4Mi8wLzMxMzAzMzJlMzIzNDMxMmUzMjMwMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzIzNjM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn8c0wDQYJ KoZIhvcNAQELBQADggEBAHRfHS3pLWxxkopc4G2gmMssia91FHEYhIXxaH3NZKpi 7PJIjWa3a/nkKfgMc4YAbK3ymlfzTp/Myy3Dp+TS60w8Xg/mYNByv/lGbjL2R6QG qlIaqGjNDrdLpq/QA3FMt134C9Sz52LkIB4AtY01pNeFWwwl7n0iLYg2Z45wZSyI Gna1iFN4eOLdDI4l3XHZ3kEgwgubv4q8aqwz/kt9hX0cms8+j4LY+XtqNCvyRHeN RkRah592yRr7EPcbXTpRnbc8C7azwzy2zZVC67dz4jNahk+NOyjbttP+grlm4oW7 g4M2f5dUkf1oek3BaMhz17EKtpufBiLB5X5FE+SrgwM= -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:33 2024 by rpki-client on console-ams.rpki-client.org