$ rpki-client -vvf repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/3130332e3135302e3232372e302f32342d3234203d3e20313430343032.roa File: 3130332e3135302e3232372e302f32342d3234203d3e20313430343032.roa (raw, json) Hash identifier: 2LrW1zipw+qgfMNeHCf0k3gRVyNP/ytxbK452Dc6wXQ= Subject key identifier: 5B:2E:48:44:D5:6C:8D:80:97:8A:6A:65:0F:4E:B2:18:08:3D:70:7D Certificate issuer: /CN=AD5EA76D7ABBD8617C323F06E24EF5190568F494 Certificate serial: 1ACFD599B67C80555BA7EC27E54D0048A5EFD699 Authority key identifier: AD:5E:A7:6D:7A:BB:D8:61:7C:32:3F:06:E2:4E:F5:19:05:68:F4:94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD5EA76D7ABBD8617C323F06E24EF5190568F494.cer Subject info access: rsync://repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/3130332e3135302e3232372e302f32342d3234203d3e20313430343032.roa Signing time: Tue 12 Nov 2024 11:01:58 +0000 ROA not before: Tue 12 Nov 2024 10:56:58 +0000 ROA not after: Tue 11 Nov 2025 11:01:58 +0000 asID: 140402 IP address blocks: 103.150.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/AD5EA76D7ABBD8617C323F06E24EF5190568F494.crl rsync://repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/AD5EA76D7ABBD8617C323F06E24EF5190568F494.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD5EA76D7ABBD8617C323F06E24EF5190568F494.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 09:38:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:cf:d5:99:b6:7c:80:55:5b:a7:ec:27:e5:4d:00:48:a5:ef:d6:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD5EA76D7ABBD8617C323F06E24EF5190568F494 Validity Not Before: Nov 12 10:56:58 2024 GMT Not After : Nov 11 11:01:58 2025 GMT Subject: CN=5B2E4844D56C8D80978A6A650F4EB218083D707D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:74:10:57:98:e6:66:3b:36:79:0f:eb:6a:4b: bb:6c:69:e4:e7:0f:a2:ee:b9:1b:23:8a:b9:e2:ac: 08:44:9c:38:a4:73:45:f2:6c:ec:9e:d6:01:23:e5: 12:da:d6:a0:7d:dd:4c:6e:bf:2a:de:7c:d7:c2:99: b4:c1:8c:83:68:53:c7:6c:fc:c2:03:d8:e3:3d:f4: 8c:69:ae:82:3f:f2:03:53:1f:9c:30:dc:9b:8e:11: 9c:3d:52:2a:82:13:1d:98:16:73:e4:4b:37:a4:51: 66:c3:19:49:f4:33:b3:6c:fa:10:4c:43:6d:9a:38: 18:99:4d:12:d9:40:9d:23:1b:bb:8c:15:89:73:0d: b3:44:92:a1:cd:bb:33:cc:15:89:ac:66:37:0b:49: 8f:62:7a:96:d2:44:a5:a3:99:c1:73:d0:4f:6d:58: 6b:51:c0:31:9e:8b:36:86:03:e8:ec:6f:ef:3e:bd: 24:63:c9:51:c9:09:fb:b2:54:df:9e:9f:88:4f:86: 52:7c:01:33:dd:20:e7:a8:08:60:43:ca:4b:74:39: 95:e6:ca:05:cd:7f:06:09:e7:40:fa:ca:a8:59:7e: f2:6b:34:f8:1d:ff:ac:94:c9:03:f1:e5:48:86:26: bf:2c:7f:26:a9:30:74:f2:b5:f8:fc:cb:13:75:e2: 34:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:2E:48:44:D5:6C:8D:80:97:8A:6A:65:0F:4E:B2:18:08:3D:70:7D X509v3 Authority Key Identifier: keyid:AD:5E:A7:6D:7A:BB:D8:61:7C:32:3F:06:E2:4E:F5:19:05:68:F4:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/AD5EA76D7ABBD8617C323F06E24EF5190568F494.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD5EA76D7ABBD8617C323F06E24EF5190568F494.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/3130332e3135302e3232372e302f32342d3234203d3e20313430343032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.227.0/24 Signature Algorithm: sha256WithRSAEncryption 18:4a:e6:87:5d:f3:09:16:0c:c2:64:05:d8:57:5c:1b:38:85: 2e:8c:59:fa:c1:35:db:2a:9d:e4:39:67:56:d1:51:23:9a:8f: ef:36:2c:79:32:49:0c:45:f7:5c:0a:0c:23:b3:03:10:af:7d: d2:7d:87:43:33:26:ff:5d:03:1f:75:d1:4e:52:35:fc:61:59: 94:6b:65:cb:01:d3:8b:69:14:f1:39:f9:ba:c0:d2:3a:ca:9b: 8f:8d:60:5c:48:c4:b3:8f:a7:22:0d:3d:a9:22:b7:09:d9:24: 89:95:f3:1c:38:51:ef:ad:e7:87:10:24:b2:f0:81:5e:52:9c: 8c:78:cb:c6:a0:38:e2:00:ce:79:e6:05:b6:5d:96:38:34:d5: 4b:e0:3e:70:2d:07:61:74:63:f2:45:15:74:e9:f0:c6:42:10: af:eb:27:ae:d7:c0:93:c4:38:aa:fe:8e:eb:d1:89:3b:06:15: 92:70:a2:d7:fe:4c:b9:92:6c:9e:37:6f:a1:ef:45:65:41:7e: 31:04:9f:b9:87:6d:eb:aa:f3:22:ca:d0:d5:04:c7:35:84:7f: 94:1f:3c:4d:9d:eb:7b:1c:d6:1e:26:c4:ae:42:3a:74:31:be: 61:2a:bc:6f:57:c3:dc:42:a3:cb:a8:30:43:18:3f:0d:7c:89: 9f:d1:32:58 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGs/VmbZ8gFVbp+wn5U0ASKXv1pkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQ1RUE3NkQ3QUJCRDg2MTdDMzIzRjA2RTI0RUY1MTkw NTY4RjQ5NDAeFw0yNDExMTIxMDU2NThaFw0yNTExMTExMTAxNThaMDMxMTAvBgNV BAMTKDVCMkU0ODQ0RDU2QzhEODA5NzhBNkE2NTBGNEVCMjE4MDgzRDcwN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8dBBXmOZmOzZ5D+tqS7tsaeTn D6LuuRsjirnirAhEnDikc0XybOye1gEj5RLa1qB93UxuvyrefNfCmbTBjINoU8ds /MID2OM99IxproI/8gNTH5ww3JuOEZw9UiqCEx2YFnPkSzekUWbDGUn0M7Ns+hBM Q22aOBiZTRLZQJ0jG7uMFYlzDbNEkqHNuzPMFYmsZjcLSY9iepbSRKWjmcFz0E9t WGtRwDGeizaGA+jsb+8+vSRjyVHJCfuyVN+en4hPhlJ8ATPdIOeoCGBDykt0OZXm ygXNfwYJ50D6yqhZfvJrNPgd/6yUyQPx5UiGJr8sfyapMHTytfj8yxN14jTtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWy5IRNVsjYCXimplD06yGAg9cH0wHwYDVR0j BBgwFoAUrV6nbXq72GF8Mj8G4k71GQVo9JQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MjllNzA2NC1iMzUyLTQzYjYtOWYwOS01MTRkNjhhMjczOWUvMC9BRDVFQTc2RDdB QkJEODYxN0MzMjNGMDZFMjRFRjUxOTA1NjhGNDk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUQ1RUE3NkQ3QUJCRDg2MTdDMzIzRjA2RTI0RUY1MTkwNTY4 RjQ5NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyOWU3MDY0LWIzNTItNDNiNi05 ZjA5LTUxNGQ2OGEyNzM5ZS8wLzMxMzAzMzJlMzEzNTMwMmUzMjMyMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMwMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnluMwDQYJ KoZIhvcNAQELBQADggEBABhK5odd8wkWDMJkBdhXXBs4hS6MWfrBNdsqneQ5Z1bR USOaj+82LHkySQxF91wKDCOzAxCvfdJ9h0MzJv9dAx910U5SNfxhWZRrZcsB04tp FPE5+brA0jrKm4+NYFxIxLOPpyINPakitwnZJImV8xw4Ue+t54cQJLLwgV5SnIx4 y8agOOIAznnmBbZdljg01UvgPnAtB2F0Y/JFFXTp8MZCEK/rJ67XwJPEOKr+juvR iTsGFZJwotf+TLmSbJ43b6HvRWVBfjEEn7mHbeuq8yLK0NUExzWEf5QfPE2d63sc 1h4mxK5COnQxvmEqvG9Xw9xCo8uoMEMYPw18iZ/RMlg= -----END CERTIFICATE-----Generated at Mon Nov 25 09:00:38 2024 by rpki-client on console-fra.rpki-client.org