$ rpki-client -vvf repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/3130332e3234312e3230362e302f32342d3234203d3e20313332363738.roa File: 3130332e3234312e3230362e302f32342d3234203d3e20313332363738.roa (raw, json) Hash identifier: O5QSkCWStc3J8tPYdmKyVWcNhKLvYp1mep54EBTPDMo= Subject key identifier: 6E:14:F2:5B:80:4F:2F:F5:77:64:DB:B6:E9:B1:99:EB:FB:86:75:D4 Certificate issuer: /CN=0BAF96670660C94FBB3E387EF1505E6FA401ECCF Certificate serial: 2DE11DDD426D3E29334B8212E171003EB2697500 Authority key identifier: 0B:AF:96:67:06:60:C9:4F:BB:3E:38:7E:F1:50:5E:6F:A4:01:EC:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/3130332e3234312e3230362e302f32342d3234203d3e20313332363738.roa Signing time: Mon 01 Jan 2024 09:00:44 +0000 ROA not before: Mon 01 Jan 2024 08:55:44 +0000 ROA not after: Mon 30 Dec 2024 09:00:44 +0000 asID: 132678 IP address blocks: 103.241.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.crl rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:e1:1d:dd:42:6d:3e:29:33:4b:82:12:e1:71:00:3e:b2:69:75:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BAF96670660C94FBB3E387EF1505E6FA401ECCF Validity Not Before: Jan 1 08:55:44 2024 GMT Not After : Dec 30 09:00:44 2024 GMT Subject: CN=6E14F25B804F2FF57764DBB6E9B199EBFB8675D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:de:86:8b:0f:5c:01:c6:37:b0:1f:d1:b1:e7: 19:33:dc:f0:16:11:6b:35:a3:d8:d9:92:cd:d9:97: 12:03:a1:22:49:3d:bd:55:e3:00:6d:a5:50:1e:37: ed:a8:9c:ac:ae:75:cc:45:1d:22:d1:6b:05:70:5c: 5a:d2:ad:f3:1d:b0:56:9e:29:d6:9f:8a:d1:5f:65: 0c:59:88:5c:93:a6:c8:12:2b:c7:b0:34:2d:ab:a3: 15:88:8d:ae:9f:7a:2e:44:67:cd:5c:b0:1e:af:97: aa:a9:3b:3e:8d:c2:ba:4b:5c:8a:2d:cc:cb:40:97: 2c:3f:e4:6e:28:9d:b4:19:c7:70:d9:d4:c0:47:ee: 16:ce:09:d3:f8:77:15:75:d0:f9:90:96:8e:7d:80: 21:d4:2f:d3:bc:99:32:fe:a1:7a:a4:c3:26:0a:d6: 85:1b:3a:73:1d:46:f7:be:93:5e:fd:31:09:8c:b5: 12:eb:e3:64:5b:01:de:6f:11:a1:d4:2b:15:0f:90: 29:93:ae:11:ec:34:14:08:d7:c5:22:12:6f:4f:df: 79:fe:62:2a:6b:d1:e5:8d:31:76:ba:0a:8c:48:89: 49:ac:52:6e:8a:9b:d8:3d:28:38:b7:56:08:bd:11: 54:bd:54:63:5d:87:af:9d:4c:2f:7a:29:63:41:60: 03:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:14:F2:5B:80:4F:2F:F5:77:64:DB:B6:E9:B1:99:EB:FB:86:75:D4 X509v3 Authority Key Identifier: keyid:0B:AF:96:67:06:60:C9:4F:BB:3E:38:7E:F1:50:5E:6F:A4:01:EC:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/3130332e3234312e3230362e302f32342d3234203d3e20313332363738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.241.206.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:de:73:7f:2e:36:da:28:83:ce:3d:5f:84:bf:22:72:aa:77: bb:d8:3d:0b:a6:f2:7a:33:49:1f:81:09:98:45:47:0c:80:24: a0:0f:c7:90:c9:94:66:1f:b7:c9:7a:84:72:db:8c:d1:2a:e6: 7a:69:de:0d:6b:98:f7:c8:30:8b:c3:cf:43:8b:3f:2c:3c:6b: f8:fc:63:97:04:90:d3:cb:b8:fc:2a:bf:26:40:dd:98:4f:20: 9f:42:fa:b9:0c:80:4c:29:2a:d6:42:3e:9b:25:ce:73:ce:04: e1:1d:de:24:3c:6d:da:78:5b:4b:f5:25:36:5b:ab:45:0c:d3: 4d:0c:81:39:c5:f3:53:62:68:e7:af:3e:43:34:b2:a9:58:32: c6:99:a3:b9:e7:ab:b6:a1:62:39:09:50:41:6a:a9:0a:e0:71: 9a:58:9f:31:89:52:a3:7c:74:62:23:31:19:04:c4:6f:cd:8c: 11:64:b1:aa:4f:19:48:98:32:ce:e6:7c:85:ef:32:46:b9:5a: aa:5b:ad:2f:69:0b:23:c9:b2:49:39:87:07:ff:ca:e3:95:e3: 41:22:69:7c:67:ba:9b:4e:a2:f3:3f:f2:c7:78:34:e1:9c:94: 25:af:09:e7:59:48:84:9a:0e:72:20:34:a1:47:be:39:53:2e: e5:2e:66:29 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULeEd3UJtPikzS4IS4XEAPrJpdQAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJBRjk2NjcwNjYwQzk0RkJCM0UzODdFRjE1MDVFNkZB NDAxRUNDRjAeFw0yNDAxMDEwODU1NDRaFw0yNDEyMzAwOTAwNDRaMDMxMTAvBgNV BAMTKDZFMTRGMjVCODA0RjJGRjU3NzY0REJCNkU5QjE5OUVCRkI4Njc1RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC63oaLD1wBxjewH9Gx5xkz3PAW EWs1o9jZks3ZlxIDoSJJPb1V4wBtpVAeN+2onKyudcxFHSLRawVwXFrSrfMdsFae KdafitFfZQxZiFyTpsgSK8ewNC2roxWIja6fei5EZ81csB6vl6qpOz6NwrpLXIot zMtAlyw/5G4onbQZx3DZ1MBH7hbOCdP4dxV10PmQlo59gCHUL9O8mTL+oXqkwyYK 1oUbOnMdRve+k179MQmMtRLr42RbAd5vEaHUKxUPkCmTrhHsNBQI18UiEm9P33n+ Yipr0eWNMXa6CoxIiUmsUm6Km9g9KDi3Vgi9EVS9VGNdh6+dTC96KWNBYANhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUbhTyW4BPL/V3ZNu26bGZ6/uGddQwHwYDVR0j BBgwFoAUC6+WZwZgyU+7Pjh+8VBeb6QB7M8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWEwY2Y5YS1jNTdkLTQzOTUtOTI0OS1iZmNmNDY3MjQyODIvMC8wQkFGOTY2NzA2 NjBDOTRGQkIzRTM4N0VGMTUwNUU2RkE0MDFFQ0NGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJBRjk2NjcwNjYwQzk0RkJCM0UzODdFRjE1MDVFNkZBNDAx RUNDRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlYTBjZjlhLWM1N2QtNDM5NS05 MjQ5LWJmY2Y0NjcyNDI4Mi8wLzMxMzAzMzJlMzIzNDMxMmUzMjMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzIzNjM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn8c4wDQYJ KoZIhvcNAQELBQADggEBAFrec38uNtoog849X4S/InKqd7vYPQum8nozSR+BCZhF RwyAJKAPx5DJlGYft8l6hHLbjNEq5npp3g1rmPfIMIvDz0OLPyw8a/j8Y5cEkNPL uPwqvyZA3ZhPIJ9C+rkMgEwpKtZCPpslznPOBOEd3iQ8bdp4W0v1JTZbq0UM000M gTnF81NiaOevPkM0sqlYMsaZo7nnq7ahYjkJUEFqqQrgcZpYnzGJUqN8dGIjMRkE xG/NjBFksapPGUiYMs7mfIXvMka5WqpbrS9pCyPJskk5hwf/yuOV40EiaXxnuptO ovM/8sd4NOGclCWvCedZSISaDnIgNKFHvjlTLuUuZik= -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:54 2024 by rpki-client on console-fra.rpki-client.org