$ rpki-client -vvf repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/3130332e32372e3139322e302f32332d3233203d3e20313530323632.roa File: 3130332e32372e3139322e302f32332d3233203d3e20313530323632.roa (raw, json) Hash identifier: AW+Lsl16dBEfdH2Bp+dPdS8NV8bIQpC465qDrK5cAd0= Subject key identifier: 6C:AD:77:27:81:31:56:45:BE:78:25:DB:CE:1E:EA:DB:9C:46:24:DA Certificate issuer: /CN=7DA5F7B42931EE3A414B9A5B7996703DF70BD897 Certificate serial: 2FA942FE7B204E0CC794430DE4954106A7207C4D Authority key identifier: 7D:A5:F7:B4:29:31:EE:3A:41:4B:9A:5B:79:96:70:3D:F7:0B:D8:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DA5F7B42931EE3A414B9A5B7996703DF70BD897.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/3130332e32372e3139322e302f32332d3233203d3e20313530323632.roa Signing time: Wed 10 Apr 2024 10:00:02 +0000 ROA not before: Wed 10 Apr 2024 09:55:02 +0000 ROA not after: Wed 09 Apr 2025 10:00:02 +0000 asID: 150262 IP address blocks: 103.27.192.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/7DA5F7B42931EE3A414B9A5B7996703DF70BD897.crl rsync://repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/7DA5F7B42931EE3A414B9A5B7996703DF70BD897.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DA5F7B42931EE3A414B9A5B7996703DF70BD897.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 02:33:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:a9:42:fe:7b:20:4e:0c:c7:94:43:0d:e4:95:41:06:a7:20:7c:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7DA5F7B42931EE3A414B9A5B7996703DF70BD897 Validity Not Before: Apr 10 09:55:02 2024 GMT Not After : Apr 9 10:00:02 2025 GMT Subject: CN=6CAD772781315645BE7825DBCE1EEADB9C4624DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:88:ff:ae:ed:29:a1:c0:55:fa:5c:4f:5b:80: 41:58:d9:a8:5d:6d:49:1a:bb:05:df:03:8e:28:26: c2:00:35:73:26:c7:a9:02:db:03:fd:24:ce:8e:5e: 50:cc:ea:be:1b:79:15:c1:c0:94:79:b8:bb:42:d7: 7d:84:48:98:1e:81:07:d7:47:ce:31:e0:2b:65:c8: 7f:85:d6:30:2e:01:3c:87:d6:d5:e2:98:bd:c8:af: 52:a5:f4:fd:9e:e4:d6:2c:a7:02:a9:d4:7b:64:4a: 0c:f9:09:3d:7c:90:3c:7f:7b:53:7e:26:5f:ba:37: c4:ab:74:e1:fa:48:c5:29:b6:75:23:40:b8:2f:d7: 77:bf:ec:ac:34:96:cd:13:c9:0b:b4:ec:65:3c:fd: 0e:7e:67:26:78:e1:47:73:a7:63:69:3b:a9:97:da: 6e:73:fa:31:86:2a:a0:51:6d:8b:b7:9b:67:e6:6c: e7:08:bf:f2:ef:a5:ae:f2:00:76:ca:81:c7:00:78: 27:a6:2c:51:bb:8c:89:a3:5c:e7:13:90:b6:23:4f: 2d:30:c7:b2:fa:08:30:d0:cd:b2:6e:a7:63:48:b9: a7:3d:a0:a3:2b:83:69:82:66:7b:af:6d:2a:41:c4: b6:88:e2:52:1a:77:b3:03:d5:6c:3d:fc:4e:e4:85: 54:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:AD:77:27:81:31:56:45:BE:78:25:DB:CE:1E:EA:DB:9C:46:24:DA X509v3 Authority Key Identifier: keyid:7D:A5:F7:B4:29:31:EE:3A:41:4B:9A:5B:79:96:70:3D:F7:0B:D8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/7DA5F7B42931EE3A414B9A5B7996703DF70BD897.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DA5F7B42931EE3A414B9A5B7996703DF70BD897.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/3130332e32372e3139322e302f32332d3233203d3e20313530323632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.27.192.0/23 Signature Algorithm: sha256WithRSAEncryption 70:25:31:64:fe:2c:23:94:1a:ea:35:87:ad:64:a3:58:47:7f: 17:d9:6f:0a:85:e1:4f:44:5a:a4:a8:48:f6:3b:ec:c7:b5:95: f4:94:de:54:ef:2e:1a:09:e9:dd:21:7c:03:57:9d:fd:76:43: 6a:57:7f:57:98:a6:e0:21:8a:67:e6:0a:9a:ec:35:d1:92:8b: fc:27:d5:44:28:69:11:3c:04:61:6e:9d:77:0a:50:14:b7:b0: e9:d3:af:60:d0:4b:2a:4b:0d:47:a0:ff:cb:46:27:91:cb:9e: ff:fe:20:47:3b:86:ec:d8:ce:38:a2:0f:b4:e2:8d:b4:c1:88: 93:e4:9d:00:5b:81:d9:b4:50:76:b0:e7:c6:e5:a2:cb:2b:8e: 93:8b:6f:a0:43:99:c8:8d:27:64:3f:82:c2:6f:7d:80:1f:fb: 70:5f:b6:71:5a:b5:6e:65:b1:8f:f2:70:b9:ba:b1:02:d2:59: d2:4c:95:ad:63:ee:08:c5:4c:d7:c8:d6:3d:bf:30:8a:88:04: e8:bc:79:60:b7:b3:fc:58:fc:82:f4:12:d9:78:0a:46:09:c2: f4:0a:3e:3c:c4:01:5b:10:54:a6:97:f4:52:ce:50:f3:d0:e5: 24:a4:42:be:96:b9:b1:ed:23:b0:8f:bf:45:3f:7c:2f:74:9b: 48:fc:3c:d7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUL6lC/nsgTgzHlEMN5JVBBqcgfE0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0RBNUY3QjQyOTMxRUUzQTQxNEI5QTVCNzk5NjcwM0RG NzBCRDg5NzAeFw0yNDA0MTAwOTU1MDJaFw0yNTA0MDkxMDAwMDJaMDMxMTAvBgNV BAMTKDZDQUQ3NzI3ODEzMTU2NDVCRTc4MjVEQkNFMUVFQURCOUM0NjI0REEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCziP+u7SmhwFX6XE9bgEFY2ahd bUkauwXfA44oJsIANXMmx6kC2wP9JM6OXlDM6r4beRXBwJR5uLtC132ESJgegQfX R84x4CtlyH+F1jAuATyH1tXimL3Ir1Kl9P2e5NYspwKp1HtkSgz5CT18kDx/e1N+ Jl+6N8SrdOH6SMUptnUjQLgv13e/7Kw0ls0TyQu07GU8/Q5+ZyZ44Udzp2NpO6mX 2m5z+jGGKqBRbYu3m2fmbOcIv/Lvpa7yAHbKgccAeCemLFG7jImjXOcTkLYjTy0w x7L6CDDQzbJup2NIuac9oKMrg2mCZnuvbSpBxLaI4lIad7MD1Ww9/E7khVRNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUbK13J4ExVkW+eCXbzh7q25xGJNowHwYDVR0j BBgwFoAUfaX3tCkx7jpBS5pbeZZwPfcL2JcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MjI3YjE3Ni00YzE3LTQyNDQtYmFkZi1mNDk2YmNiMTVlMjAvMC83REE1RjdCNDI5 MzFFRTNBNDE0QjlBNUI3OTk2NzAzREY3MEJEODk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0RBNUY3QjQyOTMxRUUzQTQxNEI5QTVCNzk5NjcwM0RGNzBC RDg5Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQyMjdiMTc2LTRjMTctNDI0NC1i YWRmLWY0OTZiY2IxNWUyMC8wLzMxMzAzMzJlMzIzNzJlMzEzOTMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMwMzIzNjMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZxvAMA0GCSqG SIb3DQEBCwUAA4IBAQBwJTFk/iwjlBrqNYetZKNYR38X2W8KheFPRFqkqEj2O+zH tZX0lN5U7y4aCendIXwDV539dkNqV39XmKbgIYpn5gqa7DXRkov8J9VEKGkRPARh bp13ClAUt7Dp069g0EsqSw1HoP/LRieRy57//iBHO4bs2M44og+04o20wYiT5J0A W4HZtFB2sOfG5aLLK46Ti2+gQ5nIjSdkP4LCb32AH/twX7ZxWrVuZbGP8nC5urEC 0lnSTJWtY+4IxUzXyNY9vzCKiATovHlgt7P8WPyC9BLZeApGCcL0Cj48xAFbEFSm l/RSzlDz0OUkpEK+lrmx7SOwj79FP3wvdJtI/DzX -----END CERTIFICATE-----Generated at Sat Jun 22 00:19:00 2024 by rpki-client on console-ams.rpki-client.org