$ rpki-client -vvf repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/3130332e3234312e3230372e302f32342d3234203d3e20313332363738.roa File: 3130332e3234312e3230372e302f32342d3234203d3e20313332363738.roa (raw, json) Hash identifier: t19S9PQfVzWHZc7PL9Ucb7apMMw/h9xU9QuPzuFz/Mk= Subject key identifier: 18:17:C2:8F:7F:F4:FD:6E:AF:0F:E4:81:E4:DE:B3:85:F4:A9:37:2D Certificate issuer: /CN=0BAF96670660C94FBB3E387EF1505E6FA401ECCF Certificate serial: 3CAF0EBABFD839074986D987481DC792E5DD8A10 Authority key identifier: 0B:AF:96:67:06:60:C9:4F:BB:3E:38:7E:F1:50:5E:6F:A4:01:EC:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/3130332e3234312e3230372e302f32342d3234203d3e20313332363738.roa Signing time: Mon 02 Dec 2024 10:01:19 +0000 ROA not before: Mon 02 Dec 2024 09:56:19 +0000 ROA not after: Mon 01 Dec 2025 10:01:19 +0000 asID: 132678 IP address blocks: 103.241.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.crl rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 13:44:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:af:0e:ba:bf:d8:39:07:49:86:d9:87:48:1d:c7:92:e5:dd:8a:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BAF96670660C94FBB3E387EF1505E6FA401ECCF Validity Not Before: Dec 2 09:56:19 2024 GMT Not After : Dec 1 10:01:19 2025 GMT Subject: CN=1817C28F7FF4FD6EAF0FE481E4DEB385F4A9372D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1e:1a:95:b7:c1:92:51:28:ea:62:c0:85:87: d1:64:81:50:1e:56:4c:7b:65:25:9e:7e:1d:0d:8e: 08:e3:d9:49:b4:df:2f:e8:23:ae:3c:e1:c2:0d:de: 4a:a9:87:79:38:3a:eb:32:35:10:6b:f8:59:3f:24: d7:57:ae:6a:11:ef:2e:f5:02:4c:7e:c2:d8:22:84: e3:b7:19:76:97:b7:93:4a:3d:ca:da:27:1a:31:77: 66:5b:fb:93:cd:5e:21:c4:82:4d:c4:20:60:1f:74: 10:f3:79:ac:f5:a8:e4:46:49:7c:69:a5:37:1f:45: d9:a3:64:0d:69:6f:4d:20:a0:bd:58:da:00:6c:a5: c3:e9:74:dc:7d:cd:c4:1a:17:f1:79:03:c8:d4:7f: 59:cc:b0:7e:30:01:e9:3b:a0:b2:68:71:9a:25:59: b5:2c:8e:3f:ee:cf:b6:e1:95:dd:43:05:46:c4:50: 4f:7e:4d:d3:c3:98:35:88:02:21:2e:50:6d:65:9a: 16:cd:0a:5c:94:8f:c6:d0:90:a8:cf:e1:42:a8:56: af:13:04:a3:c6:88:70:e1:27:bc:f7:c3:02:c7:cf: aa:ef:ba:0b:39:3b:8c:fd:17:d6:da:09:38:09:a2: 0e:e8:96:7f:b4:e3:e1:5d:5a:ba:5a:0a:9f:77:d3: 1f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:17:C2:8F:7F:F4:FD:6E:AF:0F:E4:81:E4:DE:B3:85:F4:A9:37:2D X509v3 Authority Key Identifier: keyid:0B:AF:96:67:06:60:C9:4F:BB:3E:38:7E:F1:50:5E:6F:A4:01:EC:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/3130332e3234312e3230372e302f32342d3234203d3e20313332363738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.241.207.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:b7:5d:f7:44:48:49:d9:6b:6c:b4:54:f2:e5:37:e9:ca:75: 58:37:80:c3:71:16:b2:06:9e:fe:08:55:c4:e0:32:64:41:b7: f5:b4:a0:79:75:b9:30:68:40:0a:29:b7:04:ef:71:ca:fb:5e: 6e:74:b9:bb:69:0a:af:d7:e2:8a:2e:f9:74:5f:d7:fb:a4:18: 5f:17:75:03:e2:03:f4:ee:e6:f4:c2:91:4d:26:a7:ed:7b:3d: 97:27:92:de:34:fc:6a:d4:46:77:e4:29:ef:1c:21:f8:fc:f1: fd:44:00:e9:4a:e2:7c:18:fc:fa:40:ed:75:36:56:13:2f:b6: 8e:3f:01:99:8f:54:08:d4:ce:35:e8:fd:ee:3d:37:cf:df:89: bf:7e:69:97:1d:ab:62:40:3f:96:eb:5d:93:83:e1:6d:37:33: 0e:16:13:38:12:0b:d7:5e:56:a2:58:17:8f:9b:3d:ef:7e:f7: f3:cf:d2:a0:da:05:83:fa:ac:f1:15:b7:54:36:66:42:6d:03: c2:b9:c8:11:4f:99:b6:09:4e:e1:50:17:b7:62:bf:c7:52:5e: 5c:f6:98:93:62:85:c9:95:a9:9a:32:6e:55:11:ef:21:dd:26: 45:cd:d6:af:80:b0:9e:fe:b9:40:ed:4a:23:47:77:c8:4e:55: a6:9c:29:88 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPK8Our/YOQdJhtmHSB3HkuXdihAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJBRjk2NjcwNjYwQzk0RkJCM0UzODdFRjE1MDVFNkZB NDAxRUNDRjAeFw0yNDEyMDIwOTU2MTlaFw0yNTEyMDExMDAxMTlaMDMxMTAvBgNV BAMTKDE4MTdDMjhGN0ZGNEZENkVBRjBGRTQ4MUU0REVCMzg1RjRBOTM3MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4HhqVt8GSUSjqYsCFh9FkgVAe Vkx7ZSWefh0Njgjj2Um03y/oI6484cIN3kqph3k4OusyNRBr+Fk/JNdXrmoR7y71 Akx+wtgihOO3GXaXt5NKPcraJxoxd2Zb+5PNXiHEgk3EIGAfdBDzeaz1qORGSXxp pTcfRdmjZA1pb00goL1Y2gBspcPpdNx9zcQaF/F5A8jUf1nMsH4wAek7oLJocZol WbUsjj/uz7bhld1DBUbEUE9+TdPDmDWIAiEuUG1lmhbNClyUj8bQkKjP4UKoVq8T BKPGiHDhJ7z3wwLHz6rvugs5O4z9F9baCTgJog7oln+04+FdWrpaCp930x8nAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGBfCj3/0/W6vD+SB5N6zhfSpNy0wHwYDVR0j BBgwFoAUC6+WZwZgyU+7Pjh+8VBeb6QB7M8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWEwY2Y5YS1jNTdkLTQzOTUtOTI0OS1iZmNmNDY3MjQyODIvMC8wQkFGOTY2NzA2 NjBDOTRGQkIzRTM4N0VGMTUwNUU2RkE0MDFFQ0NGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJBRjk2NjcwNjYwQzk0RkJCM0UzODdFRjE1MDVFNkZBNDAx RUNDRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlYTBjZjlhLWM1N2QtNDM5NS05 MjQ5LWJmY2Y0NjcyNDI4Mi8wLzMxMzAzMzJlMzIzNDMxMmUzMjMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzIzNjM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn8c8wDQYJ KoZIhvcNAQELBQADggEBAE+3XfdESEnZa2y0VPLlN+nKdVg3gMNxFrIGnv4IVcTg MmRBt/W0oHl1uTBoQAoptwTvccr7Xm50ubtpCq/X4oou+XRf1/ukGF8XdQPiA/Tu 5vTCkU0mp+17PZcnkt40/GrURnfkKe8cIfj88f1EAOlK4nwY/PpA7XU2VhMvto4/ AZmPVAjUzjXo/e49N8/fib9+aZcdq2JAP5brXZOD4W03Mw4WEzgSC9deVqJYF4+b Pe9+9/PP0qDaBYP6rPEVt1Q2ZkJtA8K5yBFPmbYJTuFQF7div8dSXlz2mJNihcmV qZoyblUR7yHdJkXN1q+AsJ7+uUDtSiNHd8hOVaacKYg= -----END CERTIFICATE-----Generated at Fri Apr 11 02:10:34 2025 by rpki-client