$ rpki-client -vvf repo-rpki.idnic.net/repo/6d75088e-49af-472b-9b62-81e73daaf1d6/0/3130332e3232372e3138342e302f32342d3234203d3e20313531303132.roa File: 3130332e3232372e3138342e302f32342d3234203d3e20313531303132.roa (raw, json) Hash identifier: 7At0OH1CsdZeT1tWdKcV4ul/BqEWnSHntfndOrIgjxM= Subject key identifier: 67:55:55:72:F2:F9:83:B4:60:6C:00:62:71:25:3D:F9:56:70:4B:B9 Certificate issuer: /CN=B30FDBDE70FBE70CC44F3C710B467069B1194DD8 Certificate serial: 450B54615D6D06675F7223886620450AFB6F2D38 Authority key identifier: B3:0F:DB:DE:70:FB:E7:0C:C4:4F:3C:71:0B:46:70:69:B1:19:4D:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B30FDBDE70FBE70CC44F3C710B467069B1194DD8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6d75088e-49af-472b-9b62-81e73daaf1d6/0/3130332e3232372e3138342e302f32342d3234203d3e20313531303132.roa Signing time: Tue 23 Jul 2024 08:02:44 +0000 ROA not before: Tue 23 Jul 2024 07:57:44 +0000 ROA not after: Tue 22 Jul 2025 08:02:44 +0000 asID: 151012 IP address blocks: 103.227.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6d75088e-49af-472b-9b62-81e73daaf1d6/0/B30FDBDE70FBE70CC44F3C710B467069B1194DD8.crl rsync://repo-rpki.idnic.net/repo/6d75088e-49af-472b-9b62-81e73daaf1d6/0/B30FDBDE70FBE70CC44F3C710B467069B1194DD8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B30FDBDE70FBE70CC44F3C710B467069B1194DD8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:0b:54:61:5d:6d:06:67:5f:72:23:88:66:20:45:0a:fb:6f:2d:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B30FDBDE70FBE70CC44F3C710B467069B1194DD8 Validity Not Before: Jul 23 07:57:44 2024 GMT Not After : Jul 22 08:02:44 2025 GMT Subject: CN=67555572F2F983B4606C006271253DF956704BB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c2:a7:5f:fe:dd:0d:25:37:e9:45:17:02:70: 6d:3b:a4:0c:19:42:fe:97:71:f1:02:1b:f9:1b:c7: eb:66:f6:76:5f:95:e7:93:46:c7:03:f6:44:74:4d: 1e:21:52:e4:95:98:72:04:aa:61:50:84:1e:80:73: e3:8d:7f:92:f6:01:cc:bd:8f:aa:ec:0e:c8:f7:45: ce:07:c4:be:48:0f:fd:3a:43:87:aa:f1:29:0e:5a: 63:60:30:92:5a:fb:ae:90:42:b8:be:87:5a:13:02: 7b:fc:4e:18:5c:f7:7c:36:67:91:a9:a5:8a:14:8b: c7:96:d6:c3:61:88:4a:b0:85:ca:51:4a:26:8c:dd: 00:d3:d4:9a:c2:db:25:cd:33:f2:df:f5:78:0f:92: 79:94:43:23:d4:31:39:01:36:8f:27:fe:ad:f0:28: 55:1b:9d:23:3b:ec:14:a4:fa:ff:c9:be:b6:8a:71: af:d4:d3:7b:cf:7a:a0:c3:9c:3c:7e:da:48:aa:13: 1e:cd:c4:97:dd:a2:8b:f2:d8:9d:ca:ea:e0:0a:d2: ef:66:f3:01:eb:ae:18:77:94:03:49:fe:5f:3b:c1: 43:ce:f6:5c:f3:2b:8b:d9:f7:4a:ef:97:e1:41:49: 56:0c:1c:82:86:50:42:c9:86:15:89:43:b2:03:7b: 80:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:55:55:72:F2:F9:83:B4:60:6C:00:62:71:25:3D:F9:56:70:4B:B9 X509v3 Authority Key Identifier: keyid:B3:0F:DB:DE:70:FB:E7:0C:C4:4F:3C:71:0B:46:70:69:B1:19:4D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6d75088e-49af-472b-9b62-81e73daaf1d6/0/B30FDBDE70FBE70CC44F3C710B467069B1194DD8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B30FDBDE70FBE70CC44F3C710B467069B1194DD8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6d75088e-49af-472b-9b62-81e73daaf1d6/0/3130332e3232372e3138342e302f32342d3234203d3e20313531303132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.184.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:40:fa:f8:24:fc:74:1f:43:9d:7c:e4:4a:eb:a7:07:19:28: 33:c9:fc:4e:b9:29:dc:9c:c1:b0:58:15:c5:d5:49:39:03:1b: 33:80:83:20:6a:b6:13:a6:f0:6b:6c:48:ef:30:ce:20:6a:02: 58:71:ab:18:3c:16:cd:bd:c0:6d:61:5f:5b:89:5b:aa:4b:48: ca:02:ac:da:f7:d4:4e:92:7b:a4:02:74:fa:62:54:1b:e2:22: c6:68:ec:38:be:da:58:31:25:b3:51:51:f9:a4:93:9c:72:a4: 52:57:3c:8d:21:da:97:bc:d4:92:38:67:27:a3:f0:96:ac:a7: 81:cd:05:8e:cd:6e:b1:03:33:90:16:f3:93:0c:a4:f9:0f:f0: 4f:21:39:5d:2f:66:b6:90:51:4f:f6:1e:61:b3:02:53:7b:3a: 41:57:65:ce:d1:0c:32:b2:19:f1:7f:e8:55:26:fb:e4:08:3e: c5:f8:a3:75:f2:bc:89:d8:ce:b0:3f:85:1d:e4:6b:bd:d1:e2: 2d:23:7a:f9:b7:5f:f2:2c:25:57:94:e1:f7:59:44:a5:44:6a: 3b:e6:86:98:de:fd:8a:1b:2f:09:d2:9d:6b:78:20:da:c2:0f: d9:e9:70:9c:9f:ec:64:1c:6b:81:10:c6:99:8d:4a:ec:57:cf: 2d:f3:07:58 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURQtUYV1tBmdfciOIZiBFCvtvLTgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjMwRkRCREU3MEZCRTcwQ0M0NEYzQzcxMEI0NjcwNjlC MTE5NEREODAeFw0yNDA3MjMwNzU3NDRaFw0yNTA3MjIwODAyNDRaMDMxMTAvBgNV BAMTKDY3NTU1NTcyRjJGOTgzQjQ2MDZDMDA2MjcxMjUzREY5NTY3MDRCQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6wqdf/t0NJTfpRRcCcG07pAwZ Qv6XcfECG/kbx+tm9nZfleeTRscD9kR0TR4hUuSVmHIEqmFQhB6Ac+ONf5L2Acy9 j6rsDsj3Rc4HxL5ID/06Q4eq8SkOWmNgMJJa+66QQri+h1oTAnv8Thhc93w2Z5Gp pYoUi8eW1sNhiEqwhcpRSiaM3QDT1JrC2yXNM/Lf9XgPknmUQyPUMTkBNo8n/q3w KFUbnSM77BSk+v/JvraKca/U03vPeqDDnDx+2kiqEx7NxJfdoovy2J3K6uAK0u9m 8wHrrhh3lANJ/l87wUPO9lzzK4vZ90rvl+FBSVYMHIKGUELJhhWJQ7IDe4AFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZ1VVcvL5g7RgbABicSU9+VZwS7kwHwYDVR0j BBgwFoAUsw/b3nD75wzETzxxC0ZwabEZTdgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZDc1MDg4ZS00OWFmLTQ3MmItOWI2Mi04MWU3M2RhYWYxZDYvMC9CMzBGREJERTcw RkJFNzBDQzQ0RjNDNzEwQjQ2NzA2OUIxMTk0REQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjMwRkRCREU3MEZCRTcwQ0M0NEYzQzcxMEI0NjcwNjlCMTE5 NEREOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZkNzUwODhlLTQ5YWYtNDcyYi05 YjYyLTgxZTczZGFhZjFkNi8wLzMxMzAzMzJlMzIzMjM3MmUzMTM4MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzMDMxMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn47gwDQYJ KoZIhvcNAQELBQADggEBAGpA+vgk/HQfQ5185ErrpwcZKDPJ/E65KdycwbBYFcXV STkDGzOAgyBqthOm8GtsSO8wziBqAlhxqxg8Fs29wG1hX1uJW6pLSMoCrNr31E6S e6QCdPpiVBviIsZo7Di+2lgxJbNRUfmkk5xypFJXPI0h2pe81JI4Zyej8Jasp4HN BY7NbrEDM5AW85MMpPkP8E8hOV0vZraQUU/2HmGzAlN7OkFXZc7RDDKyGfF/6FUm ++QIPsX4o3XyvInYzrA/hR3ka73R4i0jevm3X/IsJVeU4fdZRKVEajvmhpje/Yob LwnSnWt4INrCD9npcJyf7GQca4EQxpmNSuxXzy3zB1g= -----END CERTIFICATE-----Generated at Mon Nov 25 02:56:53 2024 by rpki-client on console-fra.rpki-client.org