$ rpki-client -vvf repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/3130332e3132392e3232322e302f32342d3234203d3e20313338303632.roa File: 3130332e3132392e3232322e302f32342d3234203d3e20313338303632.roa (raw, json) Hash identifier: ofyHgVXrs2z0gkAGa3qia1zoofnQRmP85kGC1U8ByOo= Subject key identifier: 1A:4A:12:00:1B:4A:13:86:7E:74:66:ED:7F:34:0F:C9:14:C0:39:AE Certificate issuer: /CN=E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD Certificate serial: 40588E410AB76E2220F2F1FF610015FCF461C488 Authority key identifier: E2:7F:07:0B:27:EA:B0:96:E2:B3:52:3F:1A:1A:CD:7D:01:8D:0A:DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/3130332e3132392e3232322e302f32342d3234203d3e20313338303632.roa Signing time: Mon 01 Jul 2024 01:02:50 +0000 ROA not before: Mon 01 Jul 2024 00:57:50 +0000 ROA not after: Mon 30 Jun 2025 01:02:50 +0000 asID: 138062 IP address blocks: 103.129.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.crl rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:58:8e:41:0a:b7:6e:22:20:f2:f1:ff:61:00:15:fc:f4:61:c4:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD Validity Not Before: Jul 1 00:57:50 2024 GMT Not After : Jun 30 01:02:50 2025 GMT Subject: CN=1A4A12001B4A13867E7466ED7F340FC914C039AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e0:b9:d5:8a:0b:9b:9a:e7:e2:a2:81:85:d9: 5e:4a:ea:b4:cc:05:d9:e3:c9:27:93:b6:60:eb:94: 6a:06:26:0a:07:a4:b5:15:2e:63:21:aa:eb:58:ae: ef:58:32:31:d7:55:16:b3:5e:c3:54:1d:d8:fd:8f: d1:c2:ce:61:7d:eb:c0:ad:61:4f:a7:f7:60:18:fd: 98:50:e3:69:7a:76:05:1c:32:40:c3:1c:95:68:dc: 4d:cf:82:60:0b:74:a9:03:d6:8f:90:78:da:50:82: 3b:9a:64:75:b2:e5:de:30:a1:6f:ab:a3:3b:0c:89: 71:40:a9:0f:1e:7c:3f:ff:b3:ca:8d:3f:00:4c:0d: ac:d8:a5:cb:a5:f2:5d:85:65:1a:77:75:43:a0:00: 6a:14:00:9c:8d:68:c6:1c:e3:c0:ca:20:49:24:99: b8:2b:23:44:43:88:5a:24:69:f1:1e:5c:42:84:fd: 19:0f:24:ba:3f:2d:bd:15:01:3f:1f:96:3b:78:f1: 1b:eb:37:2b:d8:5a:1d:20:4c:58:cf:cc:9f:4e:d5: cd:40:e4:26:c3:a9:71:45:77:dc:eb:e9:ef:a3:ca: 47:e6:c3:43:79:f5:61:6b:b5:f2:10:90:f0:72:8c: 25:3a:f2:ac:8c:41:c8:a2:ca:7d:af:67:0f:eb:85: 46:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:4A:12:00:1B:4A:13:86:7E:74:66:ED:7F:34:0F:C9:14:C0:39:AE X509v3 Authority Key Identifier: keyid:E2:7F:07:0B:27:EA:B0:96:E2:B3:52:3F:1A:1A:CD:7D:01:8D:0A:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/3130332e3132392e3232322e302f32342d3234203d3e20313338303632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.222.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:b7:20:18:ef:93:02:65:5d:30:15:ed:69:16:a4:29:88:98: 47:41:2d:4e:e8:1d:39:d5:98:d7:f6:6f:73:9d:ec:b0:d7:a7: 58:6b:b6:88:10:f0:2d:22:b2:b0:f1:a6:b0:fc:fa:36:62:0e: b5:10:91:95:a5:02:9f:65:26:c6:dd:00:4c:90:a7:f9:64:ed: 6a:04:49:79:a6:5a:0d:d4:fc:df:1a:e0:5a:88:a1:e4:27:b2: 2e:ee:53:24:44:9e:20:f2:61:36:2c:01:e0:0e:fe:c5:cf:5e: 97:78:b7:f8:43:b9:0e:5d:70:80:68:57:4a:d4:54:af:ce:cf: 7f:ec:3e:ec:f4:b9:22:85:c4:67:61:cc:7b:3c:b3:d5:a9:4c: 93:f9:ad:67:b0:da:63:c6:ce:bd:35:91:dd:45:ff:4f:3d:8f: 79:5b:2f:9e:d2:60:37:e2:ca:61:24:9e:4b:ca:85:9c:7a:6e: d8:ec:53:d6:1e:da:b6:2d:a8:71:43:ad:bc:4f:bd:49:69:b2: aa:f5:b4:7e:8f:5e:a9:91:cb:0d:3e:94:4f:5f:ec:52:19:75: 2d:f5:26:81:07:e8:ef:b1:2a:f7:81:3b:53:75:10:f6:5f:4b: cc:b2:7c:ae:20:64:7f:5e:0d:70:12:78:5e:88:5d:6c:14:c4: 99:a4:80:fb -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQFiOQQq3biIg8vH/YQAV/PRhxIgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTI3RjA3MEIyN0VBQjA5NkUyQjM1MjNGMUExQUNEN0Qw MThEMEFERDAeFw0yNDA3MDEwMDU3NTBaFw0yNTA2MzAwMTAyNTBaMDMxMTAvBgNV BAMTKDFBNEExMjAwMUI0QTEzODY3RTc0NjZFRDdGMzQwRkM5MTRDMDM5QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC94LnVigubmufiooGF2V5K6rTM BdnjySeTtmDrlGoGJgoHpLUVLmMhqutYru9YMjHXVRazXsNUHdj9j9HCzmF968Ct YU+n92AY/ZhQ42l6dgUcMkDDHJVo3E3PgmALdKkD1o+QeNpQgjuaZHWy5d4woW+r ozsMiXFAqQ8efD//s8qNPwBMDazYpcul8l2FZRp3dUOgAGoUAJyNaMYc48DKIEkk mbgrI0RDiFokafEeXEKE/RkPJLo/Lb0VAT8fljt48RvrNyvYWh0gTFjPzJ9O1c1A 5CbDqXFFd9zr6e+jykfmw0N59WFrtfIQkPByjCU68qyMQciiyn2vZw/rhUaJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGkoSABtKE4Z+dGbtfzQPyRTAOa4wHwYDVR0j BBgwFoAU4n8HCyfqsJbis1I/GhrNfQGNCt0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NmEwMDJkZS0wY2RlLTQ2MmUtOTQwNC00NmJjNjI3MGUwNGYvMC9FMjdGMDcwQjI3 RUFCMDk2RTJCMzUyM0YxQTFBQ0Q3RDAxOEQwQURELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTI3RjA3MEIyN0VBQjA5NkUyQjM1MjNGMUExQUNEN0QwMThE MEFERC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc2YTAwMmRlLTBjZGUtNDYyZS05 NDA0LTQ2YmM2MjcwZTA0Zi8wLzMxMzAzMzJlMzEzMjM5MmUzMjMyMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM2MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABngd4wDQYJ KoZIhvcNAQELBQADggEBAD23IBjvkwJlXTAV7WkWpCmImEdBLU7oHTnVmNf2b3Od 7LDXp1hrtogQ8C0isrDxprD8+jZiDrUQkZWlAp9lJsbdAEyQp/lk7WoESXmmWg3U /N8a4FqIoeQnsi7uUyREniDyYTYsAeAO/sXPXpd4t/hDuQ5dcIBoV0rUVK/Oz3/s Puz0uSKFxGdhzHs8s9WpTJP5rWew2mPGzr01kd1F/089j3lbL57SYDfiymEknkvK hZx6btjsU9Ye2rYtqHFDrbxPvUlpsqr1tH6PXqmRyw0+lE9f7FIZdS31JoEH6O+x KveBO1N1EPZfS8yyfK4gZH9eDXASeF6IXWwUxJmkgPs= -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:45 2024 by rpki-client on console-fra.rpki-client.org