$ rpki-client -vvf repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/3130332e3232372e3134322e302f32342d3234203d3e20313331373433.roa File: 3130332e3232372e3134322e302f32342d3234203d3e20313331373433.roa (raw, json) Hash identifier: Fa1BBduh1gl/xBGjjR60dz1JaOLS2OIaiwS3v1AW/hE= Subject key identifier: CE:E7:84:A7:B3:75:B1:B4:01:6A:0B:96:8E:50:8C:99:6C:3D:57:EA Certificate issuer: /CN=C62A541C7323F6CD238F549B1F8736ED958DEFF7 Certificate serial: 2937FD20D53453B767C72A9C247EC4D41279F89E Authority key identifier: C6:2A:54:1C:73:23:F6:CD:23:8F:54:9B:1F:87:36:ED:95:8D:EF:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C62A541C7323F6CD238F549B1F8736ED958DEFF7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/3130332e3232372e3134322e302f32342d3234203d3e20313331373433.roa Signing time: Thu 21 Nov 2024 05:00:02 +0000 ROA not before: Thu 21 Nov 2024 04:55:02 +0000 ROA not after: Thu 20 Nov 2025 05:00:02 +0000 asID: 131743 IP address blocks: 103.227.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/C62A541C7323F6CD238F549B1F8736ED958DEFF7.crl rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/C62A541C7323F6CD238F549B1F8736ED958DEFF7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C62A541C7323F6CD238F549B1F8736ED958DEFF7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:37:fd:20:d5:34:53:b7:67:c7:2a:9c:24:7e:c4:d4:12:79:f8:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C62A541C7323F6CD238F549B1F8736ED958DEFF7 Validity Not Before: Nov 21 04:55:02 2024 GMT Not After : Nov 20 05:00:02 2025 GMT Subject: CN=CEE784A7B375B1B4016A0B968E508C996C3D57EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f2:95:80:97:c8:b9:66:9e:e8:e3:13:e6:7a: 9e:23:85:6f:6e:6e:39:7f:37:2d:9b:84:26:1d:9f: ef:c0:13:21:17:f2:06:69:e4:46:d5:17:81:8a:1a: 49:b2:06:e6:74:42:3f:60:22:49:0d:4a:4f:2e:60: 14:b0:6e:0f:50:28:cd:2f:c6:c5:b0:1e:06:8b:be: 66:3e:79:2a:6d:58:40:85:5b:0a:0e:9d:7e:61:d3: 29:8b:a3:61:bf:41:85:3b:17:6e:9d:04:ff:0a:d3: 5b:61:3f:79:d8:63:37:18:1a:41:02:1c:ef:af:23: 4d:19:41:11:97:fb:52:b8:42:b4:05:81:09:01:83: fe:8d:5d:2c:b3:c7:1d:32:43:c6:df:03:95:76:5b: e0:f2:f1:06:35:45:e1:d4:b5:08:77:ea:b3:1e:ca: d8:fc:d5:9a:36:e9:2c:37:d0:29:41:10:28:a8:7c: 08:02:9a:c3:d4:58:5b:cb:79:ab:6c:16:84:4b:16: 67:a5:17:32:40:53:d0:1c:a3:d4:25:20:e7:6a:c0: 08:e6:83:76:60:f0:8f:6c:b7:85:b7:70:aa:d7:ac: e6:8f:38:a4:e5:02:de:43:7d:9e:20:6f:87:91:2f: ca:cc:c8:33:4c:ff:01:f6:77:09:11:39:31:a9:10: 2f:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E7:84:A7:B3:75:B1:B4:01:6A:0B:96:8E:50:8C:99:6C:3D:57:EA X509v3 Authority Key Identifier: keyid:C6:2A:54:1C:73:23:F6:CD:23:8F:54:9B:1F:87:36:ED:95:8D:EF:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/C62A541C7323F6CD238F549B1F8736ED958DEFF7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C62A541C7323F6CD238F549B1F8736ED958DEFF7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/3130332e3232372e3134322e302f32342d3234203d3e20313331373433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.142.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:fa:5e:82:8e:fe:c6:72:a5:be:db:f0:f7:cc:b5:db:60:da: 29:7c:37:2c:12:e5:18:ff:12:ad:99:49:6d:9d:e0:0e:11:10: 15:e6:c6:f5:61:99:11:ff:09:80:38:f7:65:ff:49:11:02:1e: 11:78:29:83:60:1b:c7:5a:e5:a3:92:ba:ce:c7:80:23:94:85: c7:56:99:71:68:8f:14:4c:70:49:a0:b5:09:1c:8e:f1:d5:45: 86:d2:aa:e6:b0:4f:d1:f4:7d:4f:79:de:87:ec:ec:1d:53:4d: 24:75:c5:f9:77:96:db:cb:48:a8:23:19:e8:9c:33:c0:a5:b4: f7:e9:44:1d:ca:5c:b8:d7:ae:04:8c:02:6b:4b:0c:1f:88:e3: bf:ec:41:61:3f:20:85:42:0c:a5:e2:d9:0a:a3:6c:9e:cc:6b: 48:ed:89:31:fb:6d:8e:ef:5e:97:49:66:65:5f:d1:52:c3:a2: d0:e5:f0:dd:38:a8:8f:e5:fd:a3:0a:91:8f:95:45:e8:51:12: 0c:7f:a3:cd:88:09:46:07:3e:b2:05:5c:72:0e:f2:f2:f4:5c: 2f:61:ef:32:1e:6e:92:b8:3a:85:da:1b:e7:8a:39:29:2e:87: 3b:dc:ee:3e:f2:5f:3d:05:a9:72:6b:2a:24:13:7d:58:3b:35: 1a:08:f1:43 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKTf9INU0U7dnxyqcJH7E1BJ5+J4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzYyQTU0MUM3MzIzRjZDRDIzOEY1NDlCMUY4NzM2RUQ5 NThERUZGNzAeFw0yNDExMjEwNDU1MDJaFw0yNTExMjAwNTAwMDJaMDMxMTAvBgNV BAMTKENFRTc4NEE3QjM3NUIxQjQwMTZBMEI5NjhFNTA4Qzk5NkMzRDU3RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC58pWAl8i5Zp7o4xPmep4jhW9u bjl/Ny2bhCYdn+/AEyEX8gZp5EbVF4GKGkmyBuZ0Qj9gIkkNSk8uYBSwbg9QKM0v xsWwHgaLvmY+eSptWECFWwoOnX5h0ymLo2G/QYU7F26dBP8K01thP3nYYzcYGkEC HO+vI00ZQRGX+1K4QrQFgQkBg/6NXSyzxx0yQ8bfA5V2W+Dy8QY1ReHUtQh36rMe ytj81Zo26Sw30ClBECiofAgCmsPUWFvLeatsFoRLFmelFzJAU9Aco9QlIOdqwAjm g3Zg8I9st4W3cKrXrOaPOKTlAt5DfZ4gb4eRL8rMyDNM/wH2dwkROTGpEC//AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUzueEp7N1sbQBaguWjlCMmWw9V+owHwYDVR0j BBgwFoAUxipUHHMj9s0jj1SbH4c27ZWN7/cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Nzc0ODU2Zi03NDUzLTRkMDItYmMzNS0zNDgyZWI1NjQ2YTIvMC9DNjJBNTQxQzcz MjNGNkNEMjM4RjU0OUIxRjg3MzZFRDk1OERFRkY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzYyQTU0MUM3MzIzRjZDRDIzOEY1NDlCMUY4NzM2RUQ5NThE RUZGNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3NzQ4NTZmLTc0NTMtNGQwMi1i YzM1LTM0ODJlYjU2NDZhMi8wLzMxMzAzMzJlMzIzMjM3MmUzMTM0MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn444wDQYJ KoZIhvcNAQELBQADggEBAJv6XoKO/sZypb7b8PfMtdtg2il8NywS5Rj/Eq2ZSW2d 4A4REBXmxvVhmRH/CYA492X/SRECHhF4KYNgG8da5aOSus7HgCOUhcdWmXFojxRM cEmgtQkcjvHVRYbSquawT9H0fU953ofs7B1TTSR1xfl3ltvLSKgjGeicM8CltPfp RB3KXLjXrgSMAmtLDB+I47/sQWE/IIVCDKXi2QqjbJ7Ma0jtiTH7bY7vXpdJZmVf 0VLDotDl8N04qI/l/aMKkY+VRehREgx/o82ICUYHPrIFXHIO8vL0XC9h7zIebpK4 OoXaG+eKOSkuhzvc7j7yXz0FqXJrKiQTfVg7NRoI8UM= -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:03 2024 by rpki-client on console-ams.rpki-client.org