$ rpki-client -vvf repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/3130332e35352e3232362e302f32342d3234203d3e20313334363538.roa File: 3130332e35352e3232362e302f32342d3234203d3e20313334363538.roa (raw, json) Hash identifier: DnoQtQdzhxeGFKK4TiO2vJ2BS+JHtvINhZRPDDiN6tc= Subject key identifier: DD:8F:C5:FF:36:C1:2D:80:CE:DB:87:2B:21:17:83:AD:DF:8F:32:77 Certificate issuer: /CN=27992B841C717A90B3FDBD81B476F3FF9045212D Certificate serial: 1B2D09ED08758432EEF6191A09ADEC3A8FCA32B6 Authority key identifier: 27:99:2B:84:1C:71:7A:90:B3:FD:BD:81:B4:76:F3:FF:90:45:21:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27992B841C717A90B3FDBD81B476F3FF9045212D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/3130332e35352e3232362e302f32342d3234203d3e20313334363538.roa Signing time: Sun 24 Dec 2023 07:18:48 +0000 ROA not before: Sun 24 Dec 2023 07:13:48 +0000 ROA not after: Sun 22 Dec 2024 07:18:48 +0000 asID: 134658 IP address blocks: 103.55.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/27992B841C717A90B3FDBD81B476F3FF9045212D.crl rsync://repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/27992B841C717A90B3FDBD81B476F3FF9045212D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27992B841C717A90B3FDBD81B476F3FF9045212D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 18:54:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:2d:09:ed:08:75:84:32:ee:f6:19:1a:09:ad:ec:3a:8f:ca:32:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27992B841C717A90B3FDBD81B476F3FF9045212D Validity Not Before: Dec 24 07:13:48 2023 GMT Not After : Dec 22 07:18:48 2024 GMT Subject: CN=DD8FC5FF36C12D80CEDB872B211783ADDF8F3277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:2a:f1:ee:22:65:01:45:e1:b7:9f:86:a6:2d: 9b:73:6a:6a:e2:ce:d8:be:49:c1:c9:42:3d:0f:2a: f1:25:0e:aa:9c:11:84:02:4e:e3:ac:50:46:df:82: f3:23:ab:00:a0:94:21:80:31:84:fb:9c:0c:5c:65: 7f:a0:72:51:d4:3b:c3:43:c1:cf:b1:7a:e4:c5:6e: 8f:7f:6c:43:fb:1f:f8:f5:21:d3:2e:9b:34:d6:46: df:e6:45:51:50:28:85:6e:fb:7d:e7:44:38:17:c5: c2:d7:7a:ca:56:88:c6:35:57:16:7c:73:67:71:fe: 4f:bd:4d:06:06:f6:9a:ab:8c:19:ca:d9:b9:b7:18: 17:fc:71:84:bf:85:d2:1a:2f:fb:b9:6e:0a:ec:db: 9a:cb:ec:c3:a8:4a:4d:0d:d0:20:e6:72:3e:2c:f1: f8:14:87:56:cf:56:d5:0a:a8:36:95:7f:4d:53:62: 92:9e:76:0f:d1:3d:a3:95:81:1d:e6:ee:a0:63:7e: 05:42:fc:76:99:04:22:0a:a0:b0:aa:ac:75:6a:1b: 5d:a4:50:53:81:0b:fb:3c:fb:70:42:45:8e:b0:26: c6:a1:0d:0f:6f:6d:ad:89:48:cf:43:51:12:35:3d: 89:64:39:4b:9e:68:24:a0:cd:36:64:f7:2e:11:b9: 58:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:8F:C5:FF:36:C1:2D:80:CE:DB:87:2B:21:17:83:AD:DF:8F:32:77 X509v3 Authority Key Identifier: keyid:27:99:2B:84:1C:71:7A:90:B3:FD:BD:81:B4:76:F3:FF:90:45:21:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/27992B841C717A90B3FDBD81B476F3FF9045212D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27992B841C717A90B3FDBD81B476F3FF9045212D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/3130332e35352e3232362e302f32342d3234203d3e20313334363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.226.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:5d:b0:fc:cf:f8:d1:9b:85:4f:46:41:0e:df:0c:83:ef:05: 06:0e:1e:0d:4d:9b:4e:8b:e6:d3:51:15:bc:e3:ce:16:3d:ff: 07:04:22:b4:b2:d2:67:19:16:20:8b:dd:ae:69:da:8a:82:6a: ae:a9:79:b4:a7:16:3e:64:9e:fc:04:40:41:e0:97:9f:95:db: 50:e4:dc:cb:5c:02:36:e9:4b:98:ac:b6:da:f6:6c:41:ce:97: 09:14:73:b7:a8:7a:f9:12:e5:35:0d:8e:01:20:e2:76:aa:2a: ff:a1:37:14:6a:c4:e5:5f:7d:6c:8d:3a:dc:84:4a:d4:ab:52: 2b:47:68:f3:aa:38:a5:3e:ff:08:b1:df:5d:9b:85:1b:8f:e3: 07:37:2b:06:b7:70:26:74:99:8a:b6:46:19:77:f1:ae:36:8c: e1:1f:fc:97:3c:69:e0:f5:0e:a2:3a:3a:01:c4:11:18:4f:90: c1:27:dc:8a:e8:82:52:fe:05:e5:c8:be:4d:6b:25:a6:82:d3: 59:af:71:53:83:49:dd:da:4e:45:f6:1d:f1:0b:1b:87:56:ee: 09:55:8f:cb:b0:66:a3:40:0d:64:3c:ad:cb:f3:d0:1e:05:9c: d3:cb:c3:52:af:82:6c:cd:0b:d4:11:c9:8e:63:f1:eb:d6:32: 2b:39:ad:3b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGy0J7Qh1hDLu9hkaCa3sOo/KMrYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjc5OTJCODQxQzcxN0E5MEIzRkRCRDgxQjQ3NkYzRkY5 MDQ1MjEyRDAeFw0yMzEyMjQwNzEzNDhaFw0yNDEyMjIwNzE4NDhaMDMxMTAvBgNV BAMTKEREOEZDNUZGMzZDMTJEODBDRURCODcyQjIxMTc4M0FEREY4RjMyNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdKvHuImUBReG3n4amLZtzamri zti+ScHJQj0PKvElDqqcEYQCTuOsUEbfgvMjqwCglCGAMYT7nAxcZX+gclHUO8ND wc+xeuTFbo9/bEP7H/j1IdMumzTWRt/mRVFQKIVu+33nRDgXxcLXespWiMY1VxZ8 c2dx/k+9TQYG9pqrjBnK2bm3GBf8cYS/hdIaL/u5bgrs25rL7MOoSk0N0CDmcj4s 8fgUh1bPVtUKqDaVf01TYpKedg/RPaOVgR3m7qBjfgVC/HaZBCIKoLCqrHVqG12k UFOBC/s8+3BCRY6wJsahDQ9vba2JSM9DURI1PYlkOUueaCSgzTZk9y4RuVgFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3Y/F/zbBLYDO24crIReDrd+PMncwHwYDVR0j BBgwFoAUJ5krhBxxepCz/b2BtHbz/5BFIS0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NmUzZGQ5NS0yYTg1LTQzOWUtODRmMi05NzJhMjNlMzI3MWUvMC8yNzk5MkI4NDFD NzE3QTkwQjNGREJEODFCNDc2RjNGRjkwNDUyMTJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjc5OTJCODQxQzcxN0E5MEIzRkRCRDgxQjQ3NkYzRkY5MDQ1 MjEyRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2ZTNkZDk1LTJhODUtNDM5ZS04 NGYyLTk3MmEyM2UzMjcxZS8wLzMxMzAzMzJlMzUzNTJlMzIzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM0MzYzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzfiMA0GCSqG SIb3DQEBCwUAA4IBAQAsXbD8z/jRm4VPRkEO3wyD7wUGDh4NTZtOi+bTURW8484W Pf8HBCK0stJnGRYgi92uadqKgmquqXm0pxY+ZJ78BEBB4JefldtQ5NzLXAI26UuY rLba9mxBzpcJFHO3qHr5EuU1DY4BIOJ2qir/oTcUasTlX31sjTrchErUq1IrR2jz qjilPv8Isd9dm4Ubj+MHNysGt3AmdJmKtkYZd/GuNozhH/yXPGng9Q6iOjoBxBEY T5DBJ9yK6IJS/gXlyL5NayWmgtNZr3FTg0nd2k5F9h3xCxuHVu4JVY/LsGajQA1k PK3L89AeBZzTy8NSr4JszQvUEcmOY/Hr1jIrOa07 -----END CERTIFICATE-----Generated at Sat Apr 27 10:13:17 2024 by rpki-client on console-ams.rpki-client.org