$ rpki-client -vvf repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/3130332e3130372e3133362e302f32342d3234203d3e20313530393332.roa File: 3130332e3130372e3133362e302f32342d3234203d3e20313530393332.roa (raw, json) Hash identifier: sXlYGi/ybZJBZ2Ofl9tPVdNbe5g2QNpZi22GjsRkZnA= Subject key identifier: 28:14:27:28:6C:46:C9:97:85:8F:FE:D3:75:05:5A:1A:11:73:79:01 Certificate issuer: /CN=CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8 Certificate serial: 5E80558CE6A28B624DAA514BD64955F742D7157D Authority key identifier: CC:2F:A8:A6:92:DD:D4:4F:4E:A7:0E:AE:AC:32:04:D5:3E:64:55:C8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/3130332e3130372e3133362e302f32342d3234203d3e20313530393332.roa Signing time: Thu 28 Mar 2024 15:02:17 +0000 ROA not before: Thu 28 Mar 2024 14:57:17 +0000 ROA not after: Thu 27 Mar 2025 15:02:17 +0000 asID: 150932 IP address blocks: 103.107.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8.crl rsync://repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 19:31:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:80:55:8c:e6:a2:8b:62:4d:aa:51:4b:d6:49:55:f7:42:d7:15:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8 Validity Not Before: Mar 28 14:57:17 2024 GMT Not After : Mar 27 15:02:17 2025 GMT Subject: CN=281427286C46C997858FFED375055A1A11737901 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:37:ea:49:47:cb:ef:f4:99:82:4f:cc:06:5f: b7:7d:88:c2:71:56:f9:98:5e:54:8a:c4:c3:ea:28: ce:16:9c:cc:62:42:9e:33:7d:ab:fa:78:e1:7b:31: 63:24:2a:f5:c7:bd:16:99:e9:a8:dc:c5:ce:64:94: d6:23:80:40:08:54:5d:56:85:bd:71:1b:a2:bb:30: ca:2d:b1:72:df:e6:41:4f:4a:43:a2:2a:1e:13:2e: cd:57:d1:cc:e5:4f:5f:0d:27:5f:5d:54:b6:a1:a6: 72:73:b5:78:78:60:f8:b0:ab:fe:25:0e:84:7d:b4: aa:c2:e9:26:4b:08:82:1c:0b:2d:73:1f:31:35:f7: 01:fc:fd:4a:a9:95:2f:1f:43:29:40:21:60:5e:0b: f5:81:98:39:4e:ff:63:d1:96:e5:4e:2c:bb:d2:e7: 53:45:8b:b1:81:2f:79:82:09:83:f3:a8:c3:a2:35: 95:06:14:28:b2:04:da:dd:6a:0a:9d:53:18:93:97: d2:f4:c5:63:16:23:3e:fb:b8:c3:5d:27:f3:25:48: b7:42:31:4c:c7:9f:5a:b1:fc:e9:63:9d:0d:40:58: f5:df:95:9c:f0:57:44:c3:4f:81:9e:62:a5:4e:ea: ed:ee:88:d2:18:26:ff:02:aa:2c:fb:46:11:10:07: 13:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:14:27:28:6C:46:C9:97:85:8F:FE:D3:75:05:5A:1A:11:73:79:01 X509v3 Authority Key Identifier: keyid:CC:2F:A8:A6:92:DD:D4:4F:4E:A7:0E:AE:AC:32:04:D5:3E:64:55:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/3130332e3130372e3133362e302f32342d3234203d3e20313530393332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.136.0/24 Signature Algorithm: sha256WithRSAEncryption 72:87:91:46:7d:9a:fc:f4:e2:b1:75:11:00:07:23:f5:2e:ad: ab:0a:02:f9:bc:c0:74:d1:84:34:ea:c7:ac:98:7e:59:04:b3: 97:94:08:c0:cf:f3:a7:ef:61:d5:be:d1:e9:96:a1:a8:97:38: 9d:d0:a0:34:82:20:26:2b:1a:5b:3e:79:5c:b0:80:4f:fc:b8: f0:91:22:be:15:22:3a:7b:93:6e:f8:27:37:13:d4:49:b3:30: d1:c3:91:48:14:80:06:66:bf:10:b3:63:ef:14:1f:3c:66:ef: 1f:97:19:70:15:4e:49:86:16:82:e5:d9:40:2c:0a:60:a7:ef: 01:eb:ab:23:29:a1:a1:c8:68:2e:62:8f:a8:37:2d:a4:26:6a: 68:cf:a8:0e:f4:d8:27:c4:fe:59:31:fe:5e:d9:5d:ae:fa:3b: ba:6f:f5:ce:20:bd:02:a3:6c:b4:36:cf:1a:f5:c3:17:ea:6f: 23:77:03:c3:55:2d:95:59:20:e3:87:82:9f:9b:01:74:71:f7: 36:27:d9:fd:54:70:0d:85:53:a7:e4:16:1d:50:5d:8b:71:42: 34:26:ab:1d:cd:2f:f2:f5:bd:3a:5c:61:bc:00:a9:7b:0a:23: e1:56:b8:5e:07:92:dc:23:7c:54:92:f8:f0:5c:87:79:20:57: 9e:49:74:10 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXoBVjOaii2JNqlFL1klV90LXFX0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0MyRkE4QTY5MkRERDQ0RjRFQTcwRUFFQUMzMjA0RDUz RTY0NTVDODAeFw0yNDAzMjgxNDU3MTdaFw0yNTAzMjcxNTAyMTdaMDMxMTAvBgNV BAMTKDI4MTQyNzI4NkM0NkM5OTc4NThGRkVEMzc1MDU1QTFBMTE3Mzc5MDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjN+pJR8vv9JmCT8wGX7d9iMJx VvmYXlSKxMPqKM4WnMxiQp4zfav6eOF7MWMkKvXHvRaZ6ajcxc5klNYjgEAIVF1W hb1xG6K7MMotsXLf5kFPSkOiKh4TLs1X0czlT18NJ19dVLahpnJztXh4YPiwq/4l DoR9tKrC6SZLCIIcCy1zHzE19wH8/UqplS8fQylAIWBeC/WBmDlO/2PRluVOLLvS 51NFi7GBL3mCCYPzqMOiNZUGFCiyBNrdagqdUxiTl9L0xWMWIz77uMNdJ/MlSLdC MUzHn1qx/OljnQ1AWPXflZzwV0TDT4GeYqVO6u3uiNIYJv8Cqiz7RhEQBxMRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUKBQnKGxGyZeFj/7TdQVaGhFzeQEwHwYDVR0j BBgwFoAUzC+oppLd1E9Opw6urDIE1T5kVcgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YWYzMTU5OS04YjA4LTRmZmQtYTA1Ni03OTVlOGFhMGE1ODYvMC9DQzJGQThBNjky RERENDRGNEVBNzBFQUVBQzMyMDRENTNFNjQ1NUM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0MyRkE4QTY5MkRERDQ0RjRFQTcwRUFFQUMzMjA0RDUzRTY0 NTVDOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhZjMxNTk5LThiMDgtNGZmZC1h MDU2LTc5NWU4YWEwYTU4Ni8wLzMxMzAzMzJlMzEzMDM3MmUzMTMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzOTMzMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABna4gwDQYJ KoZIhvcNAQELBQADggEBAHKHkUZ9mvz04rF1EQAHI/UurasKAvm8wHTRhDTqx6yY flkEs5eUCMDP86fvYdW+0emWoaiXOJ3QoDSCICYrGls+eVywgE/8uPCRIr4VIjp7 k274JzcT1EmzMNHDkUgUgAZmvxCzY+8UHzxm7x+XGXAVTkmGFoLl2UAsCmCn7wHr qyMpoaHIaC5ij6g3LaQmamjPqA702CfE/lkx/l7ZXa76O7pv9c4gvQKjbLQ2zxr1 wxfqbyN3A8NVLZVZIOOHgp+bAXRx9zYn2f1UcA2FU6fkFh1QXYtxQjQmqx3NL/L1 vTpcYbwAqXsKI+FWuF4HktwjfFSS+PBch3kgV55JdBA= -----END CERTIFICATE-----Generated at Fri Feb 21 11:04:08 2025 by rpki-client