$ rpki-client -vvf repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/3130332e3232372e3235332e302f32342d3234203d3e203539323739.roa File: 3130332e3232372e3235332e302f32342d3234203d3e203539323739.roa (raw, json) Hash identifier: Sv5+dMPwNKNRJQdaNch52pi/y/gtlM6wPg9HidMGHmE= Subject key identifier: 12:C9:BB:FC:8E:7C:08:9F:E7:52:2F:84:49:23:A3:AD:9A:93:73:13 Certificate issuer: /CN=A9EBCF8158EABB1C16EFE1B82B4E79170AE87683 Certificate serial: 41D20142D4C6C82D040EDDD59ADACD1C73D6BA8D Authority key identifier: A9:EB:CF:81:58:EA:BB:1C:16:EF:E1:B8:2B:4E:79:17:0A:E8:76:83 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9EBCF8158EABB1C16EFE1B82B4E79170AE87683.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/3130332e3232372e3235332e302f32342d3234203d3e203539323739.roa Signing time: Wed 14 Aug 2024 11:00:00 +0000 ROA not before: Wed 14 Aug 2024 10:55:00 +0000 ROA not after: Wed 13 Aug 2025 11:00:00 +0000 asID: 59279 IP address blocks: 103.227.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/A9EBCF8158EABB1C16EFE1B82B4E79170AE87683.crl rsync://repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/A9EBCF8158EABB1C16EFE1B82B4E79170AE87683.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9EBCF8158EABB1C16EFE1B82B4E79170AE87683.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 12:31:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:d2:01:42:d4:c6:c8:2d:04:0e:dd:d5:9a:da:cd:1c:73:d6:ba:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9EBCF8158EABB1C16EFE1B82B4E79170AE87683 Validity Not Before: Aug 14 10:55:00 2024 GMT Not After : Aug 13 11:00:00 2025 GMT Subject: CN=12C9BBFC8E7C089FE7522F844923A3AD9A937313 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5d:6c:8d:a8:47:6c:d7:be:2a:17:59:41:6f: 8a:41:1f:8c:44:d1:95:32:68:39:19:77:4a:82:97: c7:21:54:5b:81:73:43:3f:7b:f6:9d:a7:e4:1f:26: 0d:73:ed:c7:8f:b5:52:f5:02:7d:d6:c8:0d:b4:d5: c8:c7:79:ef:bf:be:6e:4a:2f:bc:0e:3a:64:ac:26: d9:b3:45:88:9b:1e:11:a3:88:c0:c5:ec:ed:d7:05: 74:05:57:d7:23:9c:e2:06:41:a1:4b:ed:d4:3d:2b: 9f:2a:34:ea:8e:11:f3:1b:9e:80:ea:b3:c4:51:d9: da:9b:a9:1d:44:4d:35:c1:ff:b3:7c:4d:9a:8a:9f: 51:70:6f:ea:2c:3e:6e:53:ba:8c:7d:b7:61:26:ee: b1:84:1c:ef:82:a7:bf:25:87:2c:5a:e9:c5:ba:43: 68:8c:23:fa:56:4f:9e:29:19:22:a5:5d:cb:92:37: 27:bc:52:20:dc:c6:5e:0b:13:8f:6c:df:c3:8a:d2: 76:07:a6:ba:0f:64:62:a7:c6:6f:4c:26:df:5d:67: c3:ff:53:82:29:94:16:bc:f1:42:2e:cf:d0:c4:b5: 75:78:56:c2:71:6b:7d:6a:00:95:8f:81:6d:92:d2: fe:96:cf:19:45:76:1a:da:ab:d2:f4:a4:62:0c:c7: 5a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:C9:BB:FC:8E:7C:08:9F:E7:52:2F:84:49:23:A3:AD:9A:93:73:13 X509v3 Authority Key Identifier: keyid:A9:EB:CF:81:58:EA:BB:1C:16:EF:E1:B8:2B:4E:79:17:0A:E8:76:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/A9EBCF8158EABB1C16EFE1B82B4E79170AE87683.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9EBCF8158EABB1C16EFE1B82B4E79170AE87683.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/3130332e3232372e3235332e302f32342d3234203d3e203539323739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.253.0/24 Signature Algorithm: sha256WithRSAEncryption 37:37:9c:50:21:d0:08:3f:d8:58:5b:83:db:a8:10:a3:b5:10: ae:cd:e0:65:2d:14:e1:23:9a:4e:20:4e:f2:e1:ad:ba:b6:fa: 7b:ee:80:e2:26:dc:31:10:50:13:ef:b6:1c:55:32:90:92:6b: 86:4b:04:01:52:21:47:b8:c3:00:31:fd:f9:cc:b8:cd:b0:ad: c0:b2:4f:f9:87:5d:1d:77:79:d1:1a:0b:5d:bd:50:b7:57:78: b8:93:87:46:1a:87:15:e7:c8:db:ec:1d:55:f1:ba:50:5f:d8: b5:0a:f2:14:25:1d:87:e3:14:87:80:1b:ad:9b:03:69:3a:18: 3a:d8:3b:7b:65:5c:1f:77:be:1e:3a:4d:d7:fd:b0:d3:50:a2: d4:93:e6:e0:a7:10:65:2e:8a:98:a1:88:e0:85:d9:6a:4e:1c: 1d:dd:9f:bd:37:5e:1f:80:84:ee:84:6d:6c:21:8d:5d:5e:8c: 72:d6:a5:f2:81:33:e3:e4:88:f4:e8:02:73:5f:2a:82:83:51: 42:09:71:39:68:8a:fd:dd:8e:8d:eb:9c:42:c3:85:a2:a8:ac: d4:ae:75:d5:e3:5c:14:32:e1:aa:07:5a:19:01:df:81:12:8b: ee:46:29:0d:0c:69:05:1e:82:22:d7:6e:d4:b7:c5:77:75:0f: c5:4b:40:4f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQdIBQtTGyC0EDt3VmtrNHHPWuo0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlFQkNGODE1OEVBQkIxQzE2RUZFMUI4MkI0RTc5MTcw QUU4NzY4MzAeFw0yNDA4MTQxMDU1MDBaFw0yNTA4MTMxMTAwMDBaMDMxMTAvBgNV BAMTKDEyQzlCQkZDOEU3QzA4OUZFNzUyMkY4NDQ5MjNBM0FEOUE5MzczMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwXWyNqEds174qF1lBb4pBH4xE 0ZUyaDkZd0qCl8chVFuBc0M/e/adp+QfJg1z7cePtVL1An3WyA201cjHee+/vm5K L7wOOmSsJtmzRYibHhGjiMDF7O3XBXQFV9cjnOIGQaFL7dQ9K58qNOqOEfMbnoDq s8RR2dqbqR1ETTXB/7N8TZqKn1Fwb+osPm5Tuox9t2Em7rGEHO+Cp78lhyxa6cW6 Q2iMI/pWT54pGSKlXcuSNye8UiDcxl4LE49s38OK0nYHproPZGKnxm9MJt9dZ8P/ U4IplBa88UIuz9DEtXV4VsJxa31qAJWPgW2S0v6WzxlFdhraq9L0pGIMx1pzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEsm7/I58CJ/nUi+ESSOjrZqTcxMwHwYDVR0j BBgwFoAUqevPgVjquxwW7+G4K055FwrodoMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZWZmZmMyZC1jY2E3LTQ4ZTYtOWNkNi01NjVjMTFjNDU0NDAvMC9BOUVCQ0Y4MTU4 RUFCQjFDMTZFRkUxQjgyQjRFNzkxNzBBRTg3NjgzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlFQkNGODE1OEVBQkIxQzE2RUZFMUI4MkI0RTc5MTcwQUU4 NzY4My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlZmZmYzJkLWNjYTctNDhlNi05 Y2Q2LTU2NWMxMWM0NTQ0MC8wLzMxMzAzMzJlMzIzMjM3MmUzMjM1MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzIzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+P9MA0GCSqG SIb3DQEBCwUAA4IBAQA3N5xQIdAIP9hYW4PbqBCjtRCuzeBlLRThI5pOIE7y4a26 tvp77oDiJtwxEFAT77YcVTKQkmuGSwQBUiFHuMMAMf35zLjNsK3Ask/5h10dd3nR GgtdvVC3V3i4k4dGGocV58jb7B1V8bpQX9i1CvIUJR2H4xSHgButmwNpOhg62Dt7 ZVwfd74eOk3X/bDTUKLUk+bgpxBlLoqYoYjghdlqThwd3Z+9N14fgITuhG1sIY1d Xoxy1qXygTPj5Ij06AJzXyqCg1FCCXE5aIr93Y6N65xCw4WiqKzUrnXV41wUMuGq B1oZAd+BEovuRikNDGkFHoIi127Ut8V3dQ/FS0BP -----END CERTIFICATE-----Generated at Mon Nov 25 07:13:31 2024 by rpki-client on console-fra.rpki-client.org