$ rpki-client -vvf repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e352e302f32342d3234203d3e20313339343034.roa File: 3130332e3134332e352e302f32342d3234203d3e20313339343034.roa (raw, json) Hash identifier: Obz+kIW4kZ8yIocJl2sLrn0k0oolS6gTe486AAuHOv4= Subject key identifier: 60:1B:1B:56:95:12:85:45:30:4C:BB:CE:1A:D4:65:A5:B8:E1:BF:FA Certificate issuer: /CN=03F45A130990D1072FE172E1EF64AAFAEC347834 Certificate serial: 084A165665E2C8E4DD889235CA69D9F4FB9493CC Authority key identifier: 03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e352e302f32342d3234203d3e20313339343034.roa Signing time: Mon 23 Sep 2024 09:01:40 +0000 ROA not before: Mon 23 Sep 2024 08:56:40 +0000 ROA not after: Mon 22 Sep 2025 09:01:40 +0000 asID: 139404 IP address blocks: 103.143.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.crl rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 09:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:4a:16:56:65:e2:c8:e4:dd:88:92:35:ca:69:d9:f4:fb:94:93:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03F45A130990D1072FE172E1EF64AAFAEC347834 Validity Not Before: Sep 23 08:56:40 2024 GMT Not After : Sep 22 09:01:40 2025 GMT Subject: CN=601B1B5695128545304CBBCE1AD465A5B8E1BFFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6f:8a:65:dd:7d:46:f0:80:36:fe:bc:46:f5: 7d:ba:6c:12:fe:1e:94:1b:f3:03:09:08:3d:ec:32: 89:54:f2:09:70:82:3d:f7:ef:25:e7:ae:62:5e:41: e1:42:bf:48:ed:86:6d:64:02:a3:e3:c7:5a:cb:dc: 7f:e0:68:b4:3b:2c:e6:73:d3:85:db:f5:2f:b5:51: 39:57:4c:e3:ca:68:97:9b:66:c6:66:d1:e6:e8:40: 7a:5f:c8:ff:94:ba:47:ef:8d:7a:e5:d8:a3:1f:08: aa:0a:ac:91:f3:fd:20:1d:0a:e2:f7:4b:83:4d:31: 8c:b6:24:b9:37:3a:b5:56:77:77:78:f2:00:a5:f2: 1d:85:25:bc:c9:27:da:85:fa:62:d7:5f:70:cb:1f: 34:a2:56:47:f8:99:1d:29:19:5d:5a:21:59:74:b4: 03:4e:d3:0a:c1:bc:d4:c2:3c:6d:1d:7c:35:8c:4a: 20:bd:24:e1:59:fb:2c:68:96:90:10:45:ef:1f:a2: 93:02:87:98:69:9f:6e:2c:a3:79:e1:f1:2a:e2:03: e4:c0:09:ac:02:e9:37:3b:17:23:9a:cb:b4:1d:fc: b6:fa:90:cb:91:c9:6c:a2:f6:6d:ac:60:fe:f7:a4: 4a:91:e2:40:0e:43:4b:3e:0a:89:bd:54:c9:ca:9b: b2:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:1B:1B:56:95:12:85:45:30:4C:BB:CE:1A:D4:65:A5:B8:E1:BF:FA X509v3 Authority Key Identifier: keyid:03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e352e302f32342d3234203d3e20313339343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.5.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:32:10:27:9f:f9:9b:67:09:50:92:e3:b0:3b:e5:55:ba:84: 76:ef:57:0b:c9:2c:38:af:fe:45:6a:54:0a:bf:9a:45:29:dd: ee:51:dd:8d:cb:fa:98:8a:fc:d8:5f:ed:f1:e2:35:29:97:79: a3:fd:cf:2a:df:4e:8d:ee:d6:2e:cf:e4:ce:c3:8d:20:2e:35: 6e:a6:85:b5:f6:64:e9:1c:d3:7e:de:76:ed:f3:13:d9:dd:8e: 54:2c:fe:64:6e:6e:ad:52:68:8d:24:a1:7e:f2:31:cb:01:0d: 8d:0c:31:89:37:97:55:da:47:2d:57:3f:10:64:d0:b1:5f:a4: 3b:35:f4:e1:0f:79:d8:c2:4d:e5:8f:f5:41:8e:05:2e:74:b7: 6d:9b:e2:2a:42:de:e5:b9:c4:2c:aa:d8:44:20:4d:73:d3:2f: ab:04:7d:e0:bf:d2:21:0a:ac:f7:98:9a:85:b6:8b:26:2c:ad: b3:ed:3c:87:4c:59:0f:ff:f6:6c:1d:18:a1:9f:db:15:42:35: de:41:96:54:42:c5:b1:f7:53:84:a5:bd:20:14:32:87:e5:05: d1:2f:63:35:bf:49:35:50:90:cc:b8:7d:70:f9:ad:36:39:ad: 3b:1b:23:23:13:17:99:ac:c9:c5:44:a8:2e:a0:d5:31:e4:16: 24:8b:c4:f1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCEoWVmXiyOTdiJI1ymnZ9PuUk8wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDNGNDVBMTMwOTkwRDEwNzJGRTE3MkUxRUY2NEFBRkFF QzM0NzgzNDAeFw0yNDA5MjMwODU2NDBaFw0yNTA5MjIwOTAxNDBaMDMxMTAvBgNV BAMTKDYwMUIxQjU2OTUxMjg1NDUzMDRDQkJDRTFBRDQ2NUE1QjhFMUJGRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwb4pl3X1G8IA2/rxG9X26bBL+ HpQb8wMJCD3sMolU8glwgj337yXnrmJeQeFCv0jthm1kAqPjx1rL3H/gaLQ7LOZz 04Xb9S+1UTlXTOPKaJebZsZm0eboQHpfyP+UukfvjXrl2KMfCKoKrJHz/SAdCuL3 S4NNMYy2JLk3OrVWd3d48gCl8h2FJbzJJ9qF+mLXX3DLHzSiVkf4mR0pGV1aIVl0 tANO0wrBvNTCPG0dfDWMSiC9JOFZ+yxolpAQRe8fopMCh5hpn24so3nh8SriA+TA CawC6Tc7FyOay7Qd/Lb6kMuRyWyi9m2sYP73pEqR4kAOQ0s+Com9VMnKm7IdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYBsbVpUShUUwTLvOGtRlpbjhv/owHwYDVR0j BBgwFoAUA/RaEwmQ0Qcv4XLh72Sq+uw0eDQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk4ZDZlZS02ZmQ3LTRlMmQtYWU0MS02OTM5ZmRiMTUzZWUvMC8wM0Y0NUExMzA5 OTBEMTA3MkZFMTcyRTFFRjY0QUFGQUVDMzQ3ODM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDNGNDVBMTMwOTkwRDEwNzJGRTE3MkUxRUY2NEFBRkFFQzM0 NzgzNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5OThkNmVlLTZmZDctNGUyZC1h ZTQxLTY5MzlmZGIxNTNlZS8wLzMxMzAzMzJlMzEzNDMzMmUzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzOTM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGePBTANBgkqhkiG 9w0BAQsFAAOCAQEAKjIQJ5/5m2cJUJLjsDvlVbqEdu9XC8ksOK/+RWpUCr+aRSnd 7lHdjcv6mIr82F/t8eI1KZd5o/3PKt9Oje7WLs/kzsONIC41bqaFtfZk6RzTft52 7fMT2d2OVCz+ZG5urVJojSShfvIxywENjQwxiTeXVdpHLVc/EGTQsV+kOzX04Q95 2MJN5Y/1QY4FLnS3bZviKkLe5bnELKrYRCBNc9MvqwR94L/SIQqs95iahbaLJiyt s+08h0xZD//2bB0YoZ/bFUI13kGWVELFsfdThKW9IBQyh+UF0S9jNb9JNVCQzLh9 cPmtNjmtOxsjIxMXmazJxUSoLqDVMeQWJIvE8Q== -----END CERTIFICATE-----Generated at Fri Feb 21 11:11:15 2025 by rpki-client