$ rpki-client -vvf repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/3130332e3234312e3230362e302f32342d3234203d3e20313332363738.roa File: 3130332e3234312e3230362e302f32342d3234203d3e20313332363738.roa (raw, json) Hash identifier: R3N3/32j1HA8MrNIZSao7bewuBwwVHmgTfIW6Qbgz1c= Subject key identifier: 8B:0E:4D:B4:27:3E:F4:D0:63:49:95:E9:9C:EA:3A:2B:40:9C:4D:20 Certificate issuer: /CN=0BAF96670660C94FBB3E387EF1505E6FA401ECCF Certificate serial: 7434764942E2A56D60AEF8EA1C1BCA1AC4635AD5 Authority key identifier: 0B:AF:96:67:06:60:C9:4F:BB:3E:38:7E:F1:50:5E:6F:A4:01:EC:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/3130332e3234312e3230362e302f32342d3234203d3e20313332363738.roa Signing time: Mon 02 Dec 2024 10:01:19 +0000 ROA not before: Mon 02 Dec 2024 09:56:19 +0000 ROA not after: Mon 01 Dec 2025 10:01:19 +0000 asID: 132678 IP address blocks: 103.241.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.crl rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 23:13:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:34:76:49:42:e2:a5:6d:60:ae:f8:ea:1c:1b:ca:1a:c4:63:5a:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BAF96670660C94FBB3E387EF1505E6FA401ECCF Validity Not Before: Dec 2 09:56:19 2024 GMT Not After : Dec 1 10:01:19 2025 GMT Subject: CN=8B0E4DB4273EF4D0634995E99CEA3A2B409C4D20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f5:a0:54:e6:1d:35:79:5d:7f:61:67:2c:79: 16:af:0e:36:e4:ec:2c:57:e0:7b:df:03:22:08:d2: 56:77:cb:f0:3d:28:3e:73:b0:b8:88:a0:6b:43:2f: 73:44:c9:a7:68:71:4f:58:a3:44:b7:33:0d:ad:7e: 6c:02:6a:b1:8a:35:56:e6:d1:ff:87:c5:f9:e5:93: be:7d:7b:ea:7a:86:0f:6e:c0:2a:d1:9f:62:e8:c4: ce:d1:7b:b2:43:42:1c:20:12:cc:9d:ec:e4:8d:1d: fe:1a:fb:d7:a5:9f:1e:c1:8f:5b:50:99:7e:71:13: f0:45:e2:e8:da:ae:06:56:98:6d:3e:b2:40:0a:26: 39:f2:41:ac:af:3c:a0:9b:61:68:57:7c:d8:af:28: 92:57:3c:0f:e5:54:be:ae:72:2c:6e:ab:28:7d:64: eb:e3:09:b6:6b:a2:be:08:49:2b:c9:ef:67:14:68: 5b:2d:46:af:27:04:aa:cf:58:b8:c3:a6:b8:1c:6e: a5:0e:eb:c0:f2:97:a7:6a:47:0d:a0:13:2f:03:c5: 2d:96:0d:b7:f2:d2:e0:8a:7a:2a:84:2a:ac:42:3a: a4:ca:51:61:d3:9f:ad:36:36:de:e3:1d:2e:fd:5d: b5:cd:44:16:89:68:75:af:30:51:ab:9c:58:11:84: b1:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:0E:4D:B4:27:3E:F4:D0:63:49:95:E9:9C:EA:3A:2B:40:9C:4D:20 X509v3 Authority Key Identifier: keyid:0B:AF:96:67:06:60:C9:4F:BB:3E:38:7E:F1:50:5E:6F:A4:01:EC:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/3130332e3234312e3230362e302f32342d3234203d3e20313332363738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.241.206.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:21:5c:c2:42:13:5c:3a:c6:59:a5:1d:e1:18:d5:6c:20:5f: b4:21:07:57:c2:19:80:3e:f6:be:d4:80:72:9d:ea:21:06:c5: 85:15:a7:6b:78:ae:7f:0d:af:2b:55:b0:8e:a9:57:dd:42:8e: 09:7c:68:00:b4:49:f2:62:45:28:27:f0:25:d9:80:30:0a:93: 20:f9:cd:0d:0c:f1:34:13:d8:5f:42:1b:f5:5b:ac:93:3d:4e: 84:db:f9:6e:58:94:e3:1c:5f:9a:7b:3a:f1:5f:a1:59:a9:a7: 1e:dd:b4:72:fe:99:24:ec:af:2b:db:c2:6d:f8:da:26:b2:b4: d2:4b:6c:e5:93:62:25:1f:0e:98:67:71:75:c3:5f:8d:25:d7: 1f:be:7d:a4:67:51:3b:29:9a:0b:b5:f6:a9:82:c0:2e:be:e5: 35:b9:73:57:18:1c:a2:e7:15:58:f2:3d:22:1f:3a:14:7f:74: 5c:09:d7:18:28:54:fa:de:65:ec:e6:c4:a7:8e:3c:e8:d6:17: c5:92:7f:44:a0:82:58:b4:64:73:50:cf:74:23:65:0f:c1:f8: ad:de:6f:70:33:fb:19:e4:ad:ae:a8:c7:08:54:0a:73:0a:70: cf:25:14:f3:1b:77:99:13:cf:7d:0a:c3:59:a8:81:83:70:4c: 51:83:46:57 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdDR2SULipW1grvjqHBvKGsRjWtUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJBRjk2NjcwNjYwQzk0RkJCM0UzODdFRjE1MDVFNkZB NDAxRUNDRjAeFw0yNDEyMDIwOTU2MTlaFw0yNTEyMDExMDAxMTlaMDMxMTAvBgNV BAMTKDhCMEU0REI0MjczRUY0RDA2MzQ5OTVFOTlDRUEzQTJCNDA5QzREMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc9aBU5h01eV1/YWcseRavDjbk 7CxX4HvfAyII0lZ3y/A9KD5zsLiIoGtDL3NEyadocU9Yo0S3Mw2tfmwCarGKNVbm 0f+Hxfnlk759e+p6hg9uwCrRn2LoxM7Re7JDQhwgEsyd7OSNHf4a+9elnx7Bj1tQ mX5xE/BF4ujargZWmG0+skAKJjnyQayvPKCbYWhXfNivKJJXPA/lVL6ucixuqyh9 ZOvjCbZror4ISSvJ72cUaFstRq8nBKrPWLjDprgcbqUO68Dyl6dqRw2gEy8DxS2W Dbfy0uCKeiqEKqxCOqTKUWHTn602Nt7jHS79XbXNRBaJaHWvMFGrnFgRhLFTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUiw5NtCc+9NBjSZXpnOo6K0CcTSAwHwYDVR0j BBgwFoAUC6+WZwZgyU+7Pjh+8VBeb6QB7M8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWEwY2Y5YS1jNTdkLTQzOTUtOTI0OS1iZmNmNDY3MjQyODIvMC8wQkFGOTY2NzA2 NjBDOTRGQkIzRTM4N0VGMTUwNUU2RkE0MDFFQ0NGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJBRjk2NjcwNjYwQzk0RkJCM0UzODdFRjE1MDVFNkZBNDAx RUNDRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlYTBjZjlhLWM1N2QtNDM5NS05 MjQ5LWJmY2Y0NjcyNDI4Mi8wLzMxMzAzMzJlMzIzNDMxMmUzMjMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzIzNjM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn8c4wDQYJ KoZIhvcNAQELBQADggEBAFshXMJCE1w6xlmlHeEY1WwgX7QhB1fCGYA+9r7UgHKd 6iEGxYUVp2t4rn8NrytVsI6pV91Cjgl8aAC0SfJiRSgn8CXZgDAKkyD5zQ0M8TQT 2F9CG/VbrJM9ToTb+W5YlOMcX5p7OvFfoVmppx7dtHL+mSTsryvbwm342iaytNJL bOWTYiUfDphncXXDX40l1x++faRnUTspmgu19qmCwC6+5TW5c1cYHKLnFVjyPSIf OhR/dFwJ1xgoVPreZezmxKeOPOjWF8WSf0Sggli0ZHNQz3QjZQ/B+K3eb3Az+xnk ra6oxwhUCnMKcM8lFPMbd5kTz30Kw1mogYNwTFGDRlc= -----END CERTIFICATE-----Generated at Mon Apr 7 00:14:40 2025 by rpki-client