$ rpki-client -vvf repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/3130332e3232372e3134312e302f32342d3234203d3e20313331373433.roa File: 3130332e3232372e3134312e302f32342d3234203d3e20313331373433.roa (raw, json) Hash identifier: swm7esqrs9+TeJiRu8vyWlNuRSKHTEDLuKkoMRZvt8o= Subject key identifier: FD:39:48:BE:C4:F0:92:BB:C9:90:A4:50:85:A3:8D:ED:78:FE:0D:60 Certificate issuer: /CN=C62A541C7323F6CD238F549B1F8736ED958DEFF7 Certificate serial: 73202F664ADA6781CA56CC0214FA60E24D43DBAD Authority key identifier: C6:2A:54:1C:73:23:F6:CD:23:8F:54:9B:1F:87:36:ED:95:8D:EF:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C62A541C7323F6CD238F549B1F8736ED958DEFF7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/3130332e3232372e3134312e302f32342d3234203d3e20313331373433.roa Signing time: Thu 21 Nov 2024 06:00:02 +0000 ROA not before: Thu 21 Nov 2024 05:55:02 +0000 ROA not after: Thu 20 Nov 2025 06:00:02 +0000 asID: 131743 IP address blocks: 103.227.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/C62A541C7323F6CD238F549B1F8736ED958DEFF7.crl rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/C62A541C7323F6CD238F549B1F8736ED958DEFF7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C62A541C7323F6CD238F549B1F8736ED958DEFF7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:20:2f:66:4a:da:67:81:ca:56:cc:02:14:fa:60:e2:4d:43:db:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C62A541C7323F6CD238F549B1F8736ED958DEFF7 Validity Not Before: Nov 21 05:55:02 2024 GMT Not After : Nov 20 06:00:02 2025 GMT Subject: CN=FD3948BEC4F092BBC990A45085A38DED78FE0D60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bc:e8:90:82:b7:b5:03:0d:e7:76:11:2a:b8: c2:19:4c:03:55:bc:6e:c2:31:11:c2:27:9f:f6:a3: 41:a2:68:3b:d2:01:d7:47:00:82:70:a0:2f:48:ef: 9a:fe:c3:99:2f:de:4c:06:a9:a3:cf:3e:1e:2e:76: 40:8c:15:a0:82:53:19:85:4b:ff:76:90:b5:12:e4: d5:7c:00:88:9c:5b:08:36:67:fe:19:81:cd:12:8f: 41:22:14:6d:6f:4d:0c:ca:19:6c:da:72:34:36:02: f1:1c:4b:87:db:c5:22:e6:cd:da:bd:7f:ce:89:a4: 82:ab:b3:23:6e:cc:fb:51:a3:7f:66:20:2b:fc:df: 2b:96:dc:64:c9:16:a3:f5:c1:72:64:20:a1:65:a2: ec:de:94:61:33:88:44:32:7a:1b:98:99:aa:fd:90: c5:be:0b:14:d0:5d:7c:9c:e5:f5:1c:ae:5f:66:f1: 20:10:9a:cb:f7:2d:b8:f2:de:c1:dc:72:f8:d8:4a: 94:61:37:b8:ad:e5:c8:85:a8:44:e7:e2:82:5e:a5: 09:06:0b:91:b3:53:99:e3:b9:b6:7e:84:a6:02:74: 31:70:e4:f2:a4:c3:83:4b:27:e9:2a:80:41:92:38: 07:80:89:82:72:6c:97:20:0a:93:19:f5:45:ef:6c: 4c:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:39:48:BE:C4:F0:92:BB:C9:90:A4:50:85:A3:8D:ED:78:FE:0D:60 X509v3 Authority Key Identifier: keyid:C6:2A:54:1C:73:23:F6:CD:23:8F:54:9B:1F:87:36:ED:95:8D:EF:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/C62A541C7323F6CD238F549B1F8736ED958DEFF7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C62A541C7323F6CD238F549B1F8736ED958DEFF7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/3130332e3232372e3134312e302f32342d3234203d3e20313331373433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.141.0/24 Signature Algorithm: sha256WithRSAEncryption a9:c3:49:b8:2f:bd:a8:70:c8:38:2b:6a:58:ab:4e:f8:93:77: 36:3f:70:f4:53:a6:70:96:77:9c:af:50:e7:68:5d:3e:58:5d: 15:77:46:4b:b8:06:4d:c8:a9:ac:18:4c:87:18:53:de:1c:05: fa:c9:23:47:a3:ff:9c:be:58:42:f8:70:08:a0:c3:d9:0f:83: fe:8c:bb:3f:a6:ac:13:e9:70:00:84:c2:86:d8:ee:20:0c:84: 2c:67:d7:22:a9:26:01:bd:7a:8d:5d:4b:e5:26:80:07:c8:b3: 4e:5a:8a:b1:6d:c0:0b:3c:68:38:b2:f9:09:b2:78:97:ef:87: 82:ee:b7:a1:15:43:3e:c6:f6:f2:41:3d:af:43:01:e8:cc:c9: 40:3f:ba:bf:47:9a:3b:1e:ad:8c:fc:e1:bf:1d:a4:db:53:19: 40:96:13:c2:09:58:ee:ef:e5:73:0e:ec:67:2c:24:14:8b:df: be:c7:60:2e:22:66:48:e1:60:28:4e:8e:33:63:9e:21:50:7b: 8f:80:3c:87:72:f0:c9:3d:d4:f7:ec:c0:09:d2:9b:c7:e4:2c: 31:1d:aa:ad:72:de:15:13:16:cf:7c:b7:6e:44:de:03:87:8e: 56:f9:2d:3c:3c:78:d5:34:7f:65:63:0f:1a:d2:98:01:09:70: 46:7a:07:a9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcyAvZkraZ4HKVswCFPpg4k1D260wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzYyQTU0MUM3MzIzRjZDRDIzOEY1NDlCMUY4NzM2RUQ5 NThERUZGNzAeFw0yNDExMjEwNTU1MDJaFw0yNTExMjAwNjAwMDJaMDMxMTAvBgNV BAMTKEZEMzk0OEJFQzRGMDkyQkJDOTkwQTQ1MDg1QTM4REVENzhGRTBENjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAvOiQgre1Aw3ndhEquMIZTANV vG7CMRHCJ5/2o0GiaDvSAddHAIJwoC9I75r+w5kv3kwGqaPPPh4udkCMFaCCUxmF S/92kLUS5NV8AIicWwg2Z/4Zgc0Sj0EiFG1vTQzKGWzacjQ2AvEcS4fbxSLmzdq9 f86JpIKrsyNuzPtRo39mICv83yuW3GTJFqP1wXJkIKFlouzelGEziEQyehuYmar9 kMW+CxTQXXyc5fUcrl9m8SAQmsv3Lbjy3sHccvjYSpRhN7it5ciFqETn4oJepQkG C5GzU5njubZ+hKYCdDFw5PKkw4NLJ+kqgEGSOAeAiYJybJcgCpMZ9UXvbEyzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/TlIvsTwkrvJkKRQhaON7Xj+DWAwHwYDVR0j BBgwFoAUxipUHHMj9s0jj1SbH4c27ZWN7/cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Nzc0ODU2Zi03NDUzLTRkMDItYmMzNS0zNDgyZWI1NjQ2YTIvMC9DNjJBNTQxQzcz MjNGNkNEMjM4RjU0OUIxRjg3MzZFRDk1OERFRkY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzYyQTU0MUM3MzIzRjZDRDIzOEY1NDlCMUY4NzM2RUQ5NThE RUZGNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3NzQ4NTZmLTc0NTMtNGQwMi1i YzM1LTM0ODJlYjU2NDZhMi8wLzMxMzAzMzJlMzIzMjM3MmUzMTM0MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn440wDQYJ KoZIhvcNAQELBQADggEBAKnDSbgvvahwyDgralirTviTdzY/cPRTpnCWd5yvUOdo XT5YXRV3Rku4Bk3IqawYTIcYU94cBfrJI0ej/5y+WEL4cAigw9kPg/6Muz+mrBPp cACEwobY7iAMhCxn1yKpJgG9eo1dS+UmgAfIs05airFtwAs8aDiy+QmyeJfvh4Lu t6EVQz7G9vJBPa9DAejMyUA/ur9HmjserYz84b8dpNtTGUCWE8IJWO7v5XMO7Gcs JBSL377HYC4iZkjhYChOjjNjniFQe4+APIdy8Mk91PfswAnSm8fkLDEdqq1y3hUT Fs98t25E3gOHjlb5LTw8eNU0f2VjDxrSmAEJcEZ6B6k= -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:40 2024 by rpki-client on console-fra.rpki-client.org