$ rpki-client -vvf repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/3130332e3232372e3134312e302f32342d3234203d3e20313331373433.roa File: 3130332e3232372e3134312e302f32342d3234203d3e20313331373433.roa (raw, json) Hash identifier: kiHx/EJeDbd+0Mq0oVubUQ0RP39Cfek6Ff1Y32SjxGA= Subject key identifier: B4:42:DD:28:E2:CC:C1:60:21:8F:CF:5B:A3:2B:F3:1E:E1:7D:1E:1A Certificate issuer: /CN=C62A541C7323F6CD238F549B1F8736ED958DEFF7 Certificate serial: 263889A897F82231D0CC30E5BDE3E6696FBAB793 Authority key identifier: C6:2A:54:1C:73:23:F6:CD:23:8F:54:9B:1F:87:36:ED:95:8D:EF:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C62A541C7323F6CD238F549B1F8736ED958DEFF7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/3130332e3232372e3134312e302f32342d3234203d3e20313331373433.roa Signing time: Thu 21 Dec 2023 06:00:01 +0000 ROA not before: Thu 21 Dec 2023 05:55:01 +0000 ROA not after: Thu 19 Dec 2024 06:00:01 +0000 asID: 131743 IP address blocks: 103.227.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/C62A541C7323F6CD238F549B1F8736ED958DEFF7.crl rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/C62A541C7323F6CD238F549B1F8736ED958DEFF7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C62A541C7323F6CD238F549B1F8736ED958DEFF7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Sep 2024 04:59:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:38:89:a8:97:f8:22:31:d0:cc:30:e5:bd:e3:e6:69:6f:ba:b7:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C62A541C7323F6CD238F549B1F8736ED958DEFF7 Validity Not Before: Dec 21 05:55:01 2023 GMT Not After : Dec 19 06:00:01 2024 GMT Subject: CN=B442DD28E2CCC160218FCF5BA32BF31EE17D1E1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:69:d6:70:ca:f3:42:f9:0c:88:b6:43:5d:eb: e8:af:ed:5c:3f:cd:54:e1:39:5b:af:37:12:bc:b8: ba:a9:59:1c:1a:4b:2a:17:04:52:31:ae:1c:85:4c: 83:08:31:29:be:98:15:08:c2:df:4f:c4:21:57:a6: 1f:f4:b7:8d:e2:24:a4:ef:bb:9c:aa:b3:0a:27:85: a8:d6:2f:ad:2d:79:5f:cd:5e:7e:2a:73:9e:48:c4: b3:db:9c:52:63:9b:aa:9f:2e:bf:0a:10:51:b9:fb: f0:e9:8a:1b:4d:a3:8f:c7:72:43:d1:6b:b4:7c:d4: c6:c1:2f:d2:ad:1a:f1:2d:e5:02:d2:45:4b:9e:47: 51:25:14:e1:50:3b:64:74:97:ea:4f:ee:ad:90:1e: da:e7:c7:78:33:8b:7e:27:5c:7b:3d:b9:08:f7:43: 7f:d2:bd:cc:db:82:88:74:b8:69:91:f3:70:29:8c: 42:68:45:59:4f:01:d6:77:43:73:10:e8:92:4b:eb: 42:3c:20:98:27:8b:a3:02:a8:87:20:bb:5b:3e:f6: 5b:1e:e6:9e:ec:bd:46:4c:ad:3b:37:49:90:66:38: 7a:fd:6e:a5:d3:84:5a:a0:50:7a:3d:70:90:33:f6: 5b:36:15:22:34:6a:8f:57:83:06:29:cb:6e:1f:60: 17:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:42:DD:28:E2:CC:C1:60:21:8F:CF:5B:A3:2B:F3:1E:E1:7D:1E:1A X509v3 Authority Key Identifier: keyid:C6:2A:54:1C:73:23:F6:CD:23:8F:54:9B:1F:87:36:ED:95:8D:EF:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/C62A541C7323F6CD238F549B1F8736ED958DEFF7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C62A541C7323F6CD238F549B1F8736ED958DEFF7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/3130332e3232372e3134312e302f32342d3234203d3e20313331373433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.141.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:48:c5:90:17:91:45:69:2c:d0:a4:4d:16:0d:fe:bf:7d:de: b4:9f:77:89:f7:96:42:32:e0:72:8d:a8:23:8a:9c:ca:8a:38: f0:f2:d6:bf:7c:7f:0c:47:77:74:46:6c:b6:1e:97:20:55:31: 88:69:89:0f:bc:3e:fd:1a:5b:2b:ed:c5:78:1d:94:01:b1:27: 18:a8:d2:06:15:0f:90:07:56:2d:8f:2b:b1:82:51:de:f2:11: e1:0c:40:64:78:22:a0:34:d9:db:11:4d:eb:0d:2e:43:d1:1b: 55:4c:0d:03:a4:06:68:1d:8e:83:95:b1:ba:43:21:b8:1e:ad: c7:e8:8f:4a:11:67:16:ba:cf:f9:4e:d7:c6:9c:64:00:88:85: 2d:c5:f6:ad:50:81:71:bd:3b:ba:13:ba:25:6c:5b:b0:c4:17: 87:52:e1:74:e2:5e:b6:0d:79:a4:c2:bd:62:b1:87:ed:fd:75: c0:90:f7:45:23:9e:07:59:8f:e7:af:3a:ff:1f:e1:ad:04:a9: 8d:d5:85:6b:f4:38:63:8c:f4:a2:83:14:23:5b:bb:fb:4e:b0: 5a:0d:68:51:a3:2c:77:5e:16:bc:f5:d5:37:c5:5d:c2:07:d4: d6:78:38:30:31:10:5e:46:1f:9c:83:4d:16:b9:ea:d1:2e:d2: 60:33:27:b1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJjiJqJf4IjHQzDDlvePmaW+6t5MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzYyQTU0MUM3MzIzRjZDRDIzOEY1NDlCMUY4NzM2RUQ5 NThERUZGNzAeFw0yMzEyMjEwNTU1MDFaFw0yNDEyMTkwNjAwMDFaMDMxMTAvBgNV BAMTKEI0NDJERDI4RTJDQ0MxNjAyMThGQ0Y1QkEzMkJGMzFFRTE3RDFFMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUadZwyvNC+QyItkNd6+iv7Vw/ zVThOVuvNxK8uLqpWRwaSyoXBFIxrhyFTIMIMSm+mBUIwt9PxCFXph/0t43iJKTv u5yqswonhajWL60teV/NXn4qc55IxLPbnFJjm6qfLr8KEFG5+/DpihtNo4/HckPR a7R81MbBL9KtGvEt5QLSRUueR1ElFOFQO2R0l+pP7q2QHtrnx3gzi34nXHs9uQj3 Q3/Svczbgoh0uGmR83ApjEJoRVlPAdZ3Q3MQ6JJL60I8IJgni6MCqIcgu1s+9lse 5p7svUZMrTs3SZBmOHr9bqXThFqgUHo9cJAz9ls2FSI0ao9XgwYpy24fYBeNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtELdKOLMwWAhj89boyvzHuF9HhowHwYDVR0j BBgwFoAUxipUHHMj9s0jj1SbH4c27ZWN7/cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Nzc0ODU2Zi03NDUzLTRkMDItYmMzNS0zNDgyZWI1NjQ2YTIvMC9DNjJBNTQxQzcz MjNGNkNEMjM4RjU0OUIxRjg3MzZFRDk1OERFRkY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzYyQTU0MUM3MzIzRjZDRDIzOEY1NDlCMUY4NzM2RUQ5NThE RUZGNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3NzQ4NTZmLTc0NTMtNGQwMi1i YzM1LTM0ODJlYjU2NDZhMi8wLzMxMzAzMzJlMzIzMjM3MmUzMTM0MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn440wDQYJ KoZIhvcNAQELBQADggEBABpIxZAXkUVpLNCkTRYN/r993rSfd4n3lkIy4HKNqCOK nMqKOPDy1r98fwxHd3RGbLYelyBVMYhpiQ+8Pv0aWyvtxXgdlAGxJxio0gYVD5AH Vi2PK7GCUd7yEeEMQGR4IqA02dsRTesNLkPRG1VMDQOkBmgdjoOVsbpDIbgercfo j0oRZxa6z/lO18acZACIhS3F9q1QgXG9O7oTuiVsW7DEF4dS4XTiXrYNeaTCvWKx h+39dcCQ90UjngdZj+evOv8f4a0EqY3VhWv0OGOM9KKDFCNbu/tOsFoNaFGjLHde Frz11TfFXcIH1NZ4ODAxEF5GH5yDTRa56tEu0mAzJ7E= -----END CERTIFICATE-----Generated at Fri Sep 27 01:14:02 2024 by rpki-client on console-ams.rpki-client.org