$ rpki-client -vvf repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/3130332e3232372e3134322e302f32342d3234203d3e20313331373433.roa File: 3130332e3232372e3134322e302f32342d3234203d3e20313331373433.roa (raw, json) Hash identifier: drxN3aNRvemUPB4yV5Xtw31Qj1Ml4c2IMLL9hCz3/eM= Subject key identifier: 7D:26:3D:F5:8D:85:5F:E4:FF:CA:4F:6C:97:F5:E5:2B:DF:C7:4E:5A Certificate issuer: /CN=C62A541C7323F6CD238F549B1F8736ED958DEFF7 Certificate serial: 5B3B961CB658FA124FE72113707C105E6BD07022 Authority key identifier: C6:2A:54:1C:73:23:F6:CD:23:8F:54:9B:1F:87:36:ED:95:8D:EF:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C62A541C7323F6CD238F549B1F8736ED958DEFF7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/3130332e3232372e3134322e302f32342d3234203d3e20313331373433.roa Signing time: Thu 21 Dec 2023 05:00:01 +0000 ROA not before: Thu 21 Dec 2023 04:55:01 +0000 ROA not after: Thu 19 Dec 2024 05:00:01 +0000 asID: 131743 IP address blocks: 103.227.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/C62A541C7323F6CD238F549B1F8736ED958DEFF7.crl rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/C62A541C7323F6CD238F549B1F8736ED958DEFF7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C62A541C7323F6CD238F549B1F8736ED958DEFF7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Sep 2024 04:59:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:3b:96:1c:b6:58:fa:12:4f:e7:21:13:70:7c:10:5e:6b:d0:70:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C62A541C7323F6CD238F549B1F8736ED958DEFF7 Validity Not Before: Dec 21 04:55:01 2023 GMT Not After : Dec 19 05:00:01 2024 GMT Subject: CN=7D263DF58D855FE4FFCA4F6C97F5E52BDFC74E5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:09:8d:e8:ed:e0:88:d5:b6:25:74:86:2f:6f: 5e:61:97:2b:b8:fa:cd:26:bd:bc:d8:cf:40:87:8a: ee:63:15:3e:83:85:24:b2:f7:81:ff:dc:b2:2a:3f: 77:40:e6:92:40:b8:61:c9:a9:64:42:4b:a1:c3:9b: ee:79:96:d0:eb:af:ad:6c:17:ed:15:c6:2f:3d:b0: dd:5a:69:8f:28:9d:cd:4a:01:a4:65:74:94:62:71: fd:fe:14:91:f3:dd:d9:72:86:1e:0c:9c:32:4b:71: e4:dd:00:d3:2a:4d:3e:b3:f9:6e:d0:12:71:c8:2b: 2f:61:e7:bd:fd:2c:bd:d3:9e:a3:a6:2c:d4:4d:98: f0:2c:63:f7:02:50:fb:28:f3:99:79:21:97:cc:5f: 93:33:c2:c2:d0:cb:0e:b2:20:d8:75:a4:f5:8a:4a: a2:d0:62:5f:c0:5c:c0:95:a7:5a:67:c7:62:b7:4a: 17:65:f2:f4:de:0f:ea:03:2b:25:d7:1f:94:84:dc: 05:79:b0:0f:3c:3a:58:b1:d2:c8:8e:54:ca:b7:5e: 7a:ef:be:0b:6b:62:44:1c:8e:5f:e5:c3:08:fb:e0: 82:f1:b8:e1:dc:a6:e7:7f:e0:00:13:9d:95:5e:1c: 13:40:3f:58:ac:40:e6:d9:bc:2a:7d:da:20:a9:9f: 2a:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:26:3D:F5:8D:85:5F:E4:FF:CA:4F:6C:97:F5:E5:2B:DF:C7:4E:5A X509v3 Authority Key Identifier: keyid:C6:2A:54:1C:73:23:F6:CD:23:8F:54:9B:1F:87:36:ED:95:8D:EF:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/C62A541C7323F6CD238F549B1F8736ED958DEFF7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C62A541C7323F6CD238F549B1F8736ED958DEFF7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/3130332e3232372e3134322e302f32342d3234203d3e20313331373433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.142.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:9d:c1:39:c0:f7:74:e7:d0:22:ec:b3:a1:db:aa:ce:41:20: c9:05:7f:67:9d:99:bb:aa:45:08:1f:83:37:8d:26:1c:60:8f: e1:a0:7e:23:31:7d:0b:65:5d:52:6d:09:45:52:1e:06:00:b9: 07:df:2c:2f:15:26:a5:43:0b:36:78:8a:df:70:82:9f:f4:f4: 52:bc:99:ae:dd:58:7d:0b:b4:a8:98:4b:ab:fe:40:c6:eb:38: 7c:1e:7f:aa:6b:51:3e:ba:b0:77:c2:d3:7e:8a:b7:06:05:7e: 30:26:41:28:ab:f8:3b:f1:bd:c5:5e:42:1c:fd:9f:ca:d6:83: c8:77:21:84:c2:0f:9b:ee:97:01:e8:c9:9b:a1:cc:f5:f1:56: 8f:e5:4f:22:e0:b3:19:9a:af:28:8a:44:62:88:74:e6:7d:c9: 7a:e5:c5:04:76:f7:2e:a3:23:70:92:2a:c4:f3:ca:d9:b6:04: af:93:fb:16:b3:e9:88:f4:9a:4a:2a:98:c8:85:dc:da:d5:26: 41:e5:b6:51:20:c1:b2:bd:42:a9:96:d2:d5:01:fa:21:1a:27: cb:c7:4e:af:0d:94:23:91:9b:84:54:63:d5:2b:d1:37:05:01: e1:c6:e9:40:4f:31:8e:56:d0:84:42:29:28:2a:37:02:4b:99: e8:fb:79:70 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWzuWHLZY+hJP5yETcHwQXmvQcCIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzYyQTU0MUM3MzIzRjZDRDIzOEY1NDlCMUY4NzM2RUQ5 NThERUZGNzAeFw0yMzEyMjEwNDU1MDFaFw0yNDEyMTkwNTAwMDFaMDMxMTAvBgNV BAMTKDdEMjYzREY1OEQ4NTVGRTRGRkNBNEY2Qzk3RjVFNTJCREZDNzRFNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8CY3o7eCI1bYldIYvb15hlyu4 +s0mvbzYz0CHiu5jFT6DhSSy94H/3LIqP3dA5pJAuGHJqWRCS6HDm+55ltDrr61s F+0Vxi89sN1aaY8onc1KAaRldJRicf3+FJHz3dlyhh4MnDJLceTdANMqTT6z+W7Q EnHIKy9h5739LL3TnqOmLNRNmPAsY/cCUPso85l5IZfMX5MzwsLQyw6yINh1pPWK SqLQYl/AXMCVp1pnx2K3Shdl8vTeD+oDKyXXH5SE3AV5sA88Olix0siOVMq3Xnrv vgtrYkQcjl/lwwj74ILxuOHcpud/4AATnZVeHBNAP1isQObZvCp92iCpnyoLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfSY99Y2FX+T/yk9sl/XlK9/HTlowHwYDVR0j BBgwFoAUxipUHHMj9s0jj1SbH4c27ZWN7/cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Nzc0ODU2Zi03NDUzLTRkMDItYmMzNS0zNDgyZWI1NjQ2YTIvMC9DNjJBNTQxQzcz MjNGNkNEMjM4RjU0OUIxRjg3MzZFRDk1OERFRkY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzYyQTU0MUM3MzIzRjZDRDIzOEY1NDlCMUY4NzM2RUQ5NThE RUZGNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3NzQ4NTZmLTc0NTMtNGQwMi1i YzM1LTM0ODJlYjU2NDZhMi8wLzMxMzAzMzJlMzIzMjM3MmUzMTM0MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn444wDQYJ KoZIhvcNAQELBQADggEBAI2dwTnA93Tn0CLss6Hbqs5BIMkFf2edmbuqRQgfgzeN Jhxgj+GgfiMxfQtlXVJtCUVSHgYAuQffLC8VJqVDCzZ4it9wgp/09FK8ma7dWH0L tKiYS6v+QMbrOHwef6prUT66sHfC036KtwYFfjAmQSir+DvxvcVeQhz9n8rWg8h3 IYTCD5vulwHoyZuhzPXxVo/lTyLgsxmaryiKRGKIdOZ9yXrlxQR29y6jI3CSKsTz ytm2BK+T+xaz6Yj0mkoqmMiF3NrVJkHltlEgwbK9QqmW0tUB+iEaJ8vHTq8NlCOR m4RUY9Ur0TcFAeHG6UBPMY5W0IRCKSgqNwJLmej7eXA= -----END CERTIFICATE-----Generated at Fri Sep 27 03:15:06 2024 by rpki-client on console-fra.rpki-client.org