$ rpki-client -vvf repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/3130332e35352e3232362e302f32342d3234203d3e20313530343839.roa File: 3130332e35352e3232362e302f32342d3234203d3e20313530343839.roa (raw, json) Hash identifier: P9wfmvWdH23ay/f4H4lvlatzol3IDlbQy2J/855clzI= Subject key identifier: FF:84:7F:37:E9:AE:5C:0B:0C:6C:93:95:14:07:57:5D:86:F4:67:37 Certificate issuer: /CN=27992B841C717A90B3FDBD81B476F3FF9045212D Certificate serial: 0CF0ECA0FCB01AE04994C94974D184BC2DA7659C Authority key identifier: 27:99:2B:84:1C:71:7A:90:B3:FD:BD:81:B4:76:F3:FF:90:45:21:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27992B841C717A90B3FDBD81B476F3FF9045212D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/3130332e35352e3232362e302f32342d3234203d3e20313530343839.roa Signing time: Sun 24 Dec 2023 07:18:22 +0000 ROA not before: Sun 24 Dec 2023 07:13:22 +0000 ROA not after: Sun 22 Dec 2024 07:18:22 +0000 asID: 150489 IP address blocks: 103.55.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/27992B841C717A90B3FDBD81B476F3FF9045212D.crl rsync://repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/27992B841C717A90B3FDBD81B476F3FF9045212D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27992B841C717A90B3FDBD81B476F3FF9045212D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:f0:ec:a0:fc:b0:1a:e0:49:94:c9:49:74:d1:84:bc:2d:a7:65:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27992B841C717A90B3FDBD81B476F3FF9045212D Validity Not Before: Dec 24 07:13:22 2023 GMT Not After : Dec 22 07:18:22 2024 GMT Subject: CN=FF847F37E9AE5C0B0C6C93951407575D86F46737 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:35:e9:ac:c6:8f:8d:31:e2:18:59:6a:b7:0e: 09:fa:6f:df:fb:bb:52:bd:91:ec:d8:7c:a3:e5:fb: 01:b7:7b:07:05:2d:9a:db:49:2b:73:05:ef:32:ea: c6:67:ee:9f:bd:4a:26:c8:d6:d2:12:d0:9e:f6:8b: e0:e2:89:2d:2a:26:8e:7e:9d:61:2a:a4:dc:59:a2: 09:09:68:2b:60:26:2b:f0:53:83:ea:12:68:0c:1e: 30:a4:80:0a:94:03:cf:82:bd:9a:52:0c:c4:e4:73: f6:eb:9e:fd:93:69:9f:6a:bf:09:fe:a8:3e:2a:9b: 82:11:df:f6:e7:eb:1c:53:fc:ca:19:28:d5:0b:46: 04:dc:07:b5:27:22:1a:65:8e:e5:f6:fd:49:26:f2: 04:f4:ef:2d:78:6a:a3:3a:df:2e:fe:3d:0a:40:32: 61:ea:16:77:47:43:05:41:f7:ac:e5:a0:70:e8:36: 10:0b:c0:39:ba:d5:1f:8b:1b:41:89:26:8f:36:d1: 1b:06:00:20:33:55:9d:cc:97:b2:5e:7f:4e:dd:b3: 19:6b:3b:fd:50:a3:6e:65:d9:b8:dc:9e:8d:fa:44: a6:80:eb:93:ce:96:fe:19:63:7e:a0:98:4f:a8:73: e3:2d:8e:63:c2:fd:e6:11:24:fe:56:0f:44:20:d7: 06:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:84:7F:37:E9:AE:5C:0B:0C:6C:93:95:14:07:57:5D:86:F4:67:37 X509v3 Authority Key Identifier: keyid:27:99:2B:84:1C:71:7A:90:B3:FD:BD:81:B4:76:F3:FF:90:45:21:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/27992B841C717A90B3FDBD81B476F3FF9045212D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27992B841C717A90B3FDBD81B476F3FF9045212D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/3130332e35352e3232362e302f32342d3234203d3e20313530343839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.226.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:9a:8c:9b:77:50:3f:f7:86:3c:4d:39:69:f0:48:52:9a:71: 61:7d:34:dd:d7:82:90:a3:0d:f7:8a:fc:e1:0e:47:5a:dd:47: 45:2f:81:53:37:f3:c4:1b:1b:32:41:57:b5:1c:ee:29:74:32: 01:7b:dd:01:fc:aa:07:fe:03:08:dc:c4:91:03:2d:bd:f2:42: 3c:09:ce:e3:10:a1:dd:27:98:09:df:b1:cf:bb:e6:35:fb:85: db:f4:6d:75:67:c0:00:5b:ac:39:8b:78:3b:11:7f:f8:b9:46: 13:8a:1d:f6:0f:8f:36:de:22:8a:25:ae:c9:79:b6:a5:be:57: 08:c8:ba:7b:9c:97:e6:d1:85:a6:9d:3d:94:b0:eb:0c:23:da: 23:d3:56:02:88:f9:2b:ef:27:96:c7:03:69:10:eb:df:6b:a6: 64:9d:b7:e3:d0:7e:a8:ad:17:42:d2:76:70:13:5b:09:dd:b3: 52:d9:7a:f5:87:88:5c:27:2d:b9:a1:36:31:4b:1c:9a:3f:e0: 68:77:14:03:a3:32:7c:5f:f1:5c:56:75:35:fc:b8:44:5e:f4: 3d:f8:43:ee:df:c5:56:8a:a3:1d:57:1c:41:f9:2d:cd:a5:91: 7c:1b:83:d5:bc:01:8c:0d:21:85:43:6c:6e:87:3a:ac:30:1c: f4:b3:86:33 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDPDsoPywGuBJlMlJdNGEvC2nZZwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjc5OTJCODQxQzcxN0E5MEIzRkRCRDgxQjQ3NkYzRkY5 MDQ1MjEyRDAeFw0yMzEyMjQwNzEzMjJaFw0yNDEyMjIwNzE4MjJaMDMxMTAvBgNV BAMTKEZGODQ3RjM3RTlBRTVDMEIwQzZDOTM5NTE0MDc1NzVEODZGNDY3MzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Nemsxo+NMeIYWWq3Dgn6b9/7 u1K9kezYfKPl+wG3ewcFLZrbSStzBe8y6sZn7p+9SibI1tIS0J72i+DiiS0qJo5+ nWEqpNxZogkJaCtgJivwU4PqEmgMHjCkgAqUA8+CvZpSDMTkc/brnv2TaZ9qvwn+ qD4qm4IR3/bn6xxT/MoZKNULRgTcB7UnIhpljuX2/Ukm8gT07y14aqM63y7+PQpA MmHqFndHQwVB96zloHDoNhALwDm61R+LG0GJJo820RsGACAzVZ3Ml7Jef07dsxlr O/1Qo25l2bjcno36RKaA65POlv4ZY36gmE+oc+MtjmPC/eYRJP5WD0Qg1wYDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/4R/N+muXAsMbJOVFAdXXYb0ZzcwHwYDVR0j BBgwFoAUJ5krhBxxepCz/b2BtHbz/5BFIS0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NmUzZGQ5NS0yYTg1LTQzOWUtODRmMi05NzJhMjNlMzI3MWUvMC8yNzk5MkI4NDFD NzE3QTkwQjNGREJEODFCNDc2RjNGRjkwNDUyMTJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjc5OTJCODQxQzcxN0E5MEIzRkRCRDgxQjQ3NkYzRkY5MDQ1 MjEyRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2ZTNkZDk1LTJhODUtNDM5ZS04 NGYyLTk3MmEyM2UzMjcxZS8wLzMxMzAzMzJlMzUzNTJlMzIzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzQzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzfiMA0GCSqG SIb3DQEBCwUAA4IBAQAvmoybd1A/94Y8TTlp8EhSmnFhfTTd14KQow33ivzhDkda 3UdFL4FTN/PEGxsyQVe1HO4pdDIBe90B/KoH/gMI3MSRAy298kI8Cc7jEKHdJ5gJ 37HPu+Y1+4Xb9G11Z8AAW6w5i3g7EX/4uUYTih32D4823iKKJa7JebalvlcIyLp7 nJfm0YWmnT2UsOsMI9oj01YCiPkr7yeWxwNpEOvfa6Zknbfj0H6orRdC0nZwE1sJ 3bNS2Xr1h4hcJy25oTYxSxyaP+BodxQDozJ8X/FcVnU1/LhEXvQ9+EPu38VWiqMd VxxB+S3NpZF8G4PVvAGMDSGFQ2xuhzqsMBz0s4Yz -----END CERTIFICATE-----Generated at Thu Nov 21 22:33:06 2024 by rpki-client on console-fra.rpki-client.org