$ rpki-client -vvf repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/3130332e32372e3139322e302f32342d3234203d3e20313530323632.roa File: 3130332e32372e3139322e302f32342d3234203d3e20313530323632.roa (raw, json) Hash identifier: eIb9V1vBU3FB2E8VO54wDhRR6LmBnWdh4ZHQwNnEPcY= Subject key identifier: 79:D2:E6:03:D3:E6:D6:EC:A1:06:BE:BE:FC:5E:08:B3:08:95:8F:4D Certificate issuer: /CN=7DA5F7B42931EE3A414B9A5B7996703DF70BD897 Certificate serial: 9A9DD517EF8291A116C04BFAAC9D47C70C763D Authority key identifier: 7D:A5:F7:B4:29:31:EE:3A:41:4B:9A:5B:79:96:70:3D:F7:0B:D8:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DA5F7B42931EE3A414B9A5B7996703DF70BD897.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/3130332e32372e3139322e302f32342d3234203d3e20313530323632.roa Signing time: Wed 10 Apr 2024 10:00:02 +0000 ROA not before: Wed 10 Apr 2024 09:55:02 +0000 ROA not after: Wed 09 Apr 2025 10:00:02 +0000 asID: 150262 IP address blocks: 103.27.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/7DA5F7B42931EE3A414B9A5B7996703DF70BD897.crl rsync://repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/7DA5F7B42931EE3A414B9A5B7996703DF70BD897.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DA5F7B42931EE3A414B9A5B7996703DF70BD897.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9a:9d:d5:17:ef:82:91:a1:16:c0:4b:fa:ac:9d:47:c7:0c:76:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7DA5F7B42931EE3A414B9A5B7996703DF70BD897 Validity Not Before: Apr 10 09:55:02 2024 GMT Not After : Apr 9 10:00:02 2025 GMT Subject: CN=79D2E603D3E6D6ECA106BEBEFC5E08B308958F4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:88:1a:02:f9:fa:ec:d2:72:b5:3b:48:15:8f: 22:cd:60:a1:96:88:98:86:72:58:0b:2f:04:dc:61: 34:10:db:0c:1d:6a:da:ed:f7:82:72:91:3c:74:99: 7d:06:17:b4:55:3c:12:ab:0e:c0:e2:8b:19:6e:ee: 43:1d:49:e9:5c:b9:49:82:44:3c:92:8c:4e:5e:2c: 29:94:91:61:a9:dc:20:a5:ce:67:94:bf:70:70:f5: ec:06:91:d3:56:bf:38:84:74:34:ec:1f:94:e2:2d: 91:b7:42:ef:86:dc:aa:5f:52:29:dd:a6:27:d4:3b: 88:97:1e:15:79:64:ce:22:bd:75:4b:d3:fc:b8:af: 4e:42:f0:12:98:31:67:3c:36:fb:f6:3a:68:e3:dd: d7:e4:57:c2:8b:5f:b5:81:c7:34:84:ec:2a:d7:b4: 86:eb:fc:f5:4f:b1:5f:bb:8d:29:c5:f9:5d:9e:1d: a7:a9:10:2e:33:17:47:bd:87:98:83:b0:6e:a4:90: 77:7e:df:9f:41:d1:0f:ae:f1:0a:db:7e:e7:7d:49: 42:c1:72:69:c4:fc:19:f9:a8:0a:71:a7:83:88:bd: c8:92:37:30:6a:76:cb:05:9e:3a:d4:8f:4e:c0:c5: 67:b0:52:51:df:a7:b3:fb:4e:f7:33:99:33:71:22: 97:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:D2:E6:03:D3:E6:D6:EC:A1:06:BE:BE:FC:5E:08:B3:08:95:8F:4D X509v3 Authority Key Identifier: keyid:7D:A5:F7:B4:29:31:EE:3A:41:4B:9A:5B:79:96:70:3D:F7:0B:D8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/7DA5F7B42931EE3A414B9A5B7996703DF70BD897.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DA5F7B42931EE3A414B9A5B7996703DF70BD897.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/3130332e32372e3139322e302f32342d3234203d3e20313530323632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.27.192.0/24 Signature Algorithm: sha256WithRSAEncryption 14:69:1a:7e:12:bd:6c:8b:e5:19:2d:9f:35:e9:55:40:87:d5: 5c:27:70:ed:72:59:51:34:ff:47:04:34:3e:21:fc:97:4f:da: 27:20:e1:05:85:1f:16:0c:ac:07:a1:cc:83:ae:00:3e:36:1a: 79:d0:bf:c0:f0:47:d6:10:fc:79:18:79:40:21:85:12:28:0d: 5a:a6:8a:9e:48:fb:84:55:ed:f7:b4:86:70:8a:70:85:b2:63: b7:23:3e:ac:32:a5:5d:fc:87:61:a8:d8:8f:96:de:66:8f:c4: bb:10:c9:a9:ea:02:7a:f2:d3:e9:e0:70:46:2d:25:c7:52:02: 06:85:4d:5c:6c:60:2f:40:51:2c:1b:9b:5c:07:42:b8:d0:c8: 31:2b:d6:d3:eb:59:a3:1f:25:a8:2a:f0:20:ab:71:c3:b7:a3: 06:f6:3c:63:e8:88:da:04:41:48:d1:b7:b1:84:59:59:bd:f3: 08:71:67:ff:22:ac:c5:bc:8b:5d:ff:0f:ad:88:c1:94:b3:46: 0a:bf:8f:f9:e9:2b:98:0b:d3:1f:88:69:c4:0e:74:a5:97:5f: 79:a0:c0:9a:33:b1:19:85:5e:d8:67:a9:da:4f:d0:1e:ec:da: 4d:a3:44:a4:ba:e9:fe:78:ac:5f:82:21:27:ea:49:ec:b4:7a: ef:54:bf:0e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAJqd1RfvgpGhFsBL+qydR8cMdj0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0RBNUY3QjQyOTMxRUUzQTQxNEI5QTVCNzk5NjcwM0RG NzBCRDg5NzAeFw0yNDA0MTAwOTU1MDJaFw0yNTA0MDkxMDAwMDJaMDMxMTAvBgNV BAMTKDc5RDJFNjAzRDNFNkQ2RUNBMTA2QkVCRUZDNUUwOEIzMDg5NThGNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+iBoC+frs0nK1O0gVjyLNYKGW iJiGclgLLwTcYTQQ2wwdatrt94JykTx0mX0GF7RVPBKrDsDiixlu7kMdSelcuUmC RDySjE5eLCmUkWGp3CClzmeUv3Bw9ewGkdNWvziEdDTsH5TiLZG3Qu+G3KpfUind pifUO4iXHhV5ZM4ivXVL0/y4r05C8BKYMWc8Nvv2Omjj3dfkV8KLX7WBxzSE7CrX tIbr/PVPsV+7jSnF+V2eHaepEC4zF0e9h5iDsG6kkHd+359B0Q+u8Qrbfud9SULB cmnE/Bn5qApxp4OIvciSNzBqdssFnjrUj07AxWewUlHfp7P7TvczmTNxIpenAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUedLmA9Pm1uyhBr6+/F4IswiVj00wHwYDVR0j BBgwFoAUfaX3tCkx7jpBS5pbeZZwPfcL2JcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MjI3YjE3Ni00YzE3LTQyNDQtYmFkZi1mNDk2YmNiMTVlMjAvMC83REE1RjdCNDI5 MzFFRTNBNDE0QjlBNUI3OTk2NzAzREY3MEJEODk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0RBNUY3QjQyOTMxRUUzQTQxNEI5QTVCNzk5NjcwM0RGNzBC RDg5Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQyMjdiMTc2LTRjMTctNDI0NC1i YWRmLWY0OTZiY2IxNWUyMC8wLzMxMzAzMzJlMzIzNzJlMzEzOTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzNjMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxvAMA0GCSqG SIb3DQEBCwUAA4IBAQAUaRp+Er1si+UZLZ816VVAh9VcJ3DtcllRNP9HBDQ+IfyX T9onIOEFhR8WDKwHocyDrgA+Nhp50L/A8EfWEPx5GHlAIYUSKA1apoqeSPuEVe33 tIZwinCFsmO3Iz6sMqVd/IdhqNiPlt5mj8S7EMmp6gJ68tPp4HBGLSXHUgIGhU1c bGAvQFEsG5tcB0K40MgxK9bT61mjHyWoKvAgq3HDt6MG9jxj6IjaBEFI0bexhFlZ vfMIcWf/IqzFvItd/w+tiMGUs0YKv4/56SuYC9MfiGnEDnSll195oMCaM7EZhV7Y Z6naT9Ae7NpNo0Skuun+eKxfgiEn6knstHrvVL8O -----END CERTIFICATE-----Generated at Mon Nov 25 15:26:44 2024 by rpki-client on console-fra.rpki-client.org