$ rpki-client -vvf repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/3130332e35352e3232372e302f32342d3234203d3e20313334363538.roa File: 3130332e35352e3232372e302f32342d3234203d3e20313334363538.roa (raw, json) Hash identifier: Ywn1UEJnpT1UpuAh2VB4UnPn+99/TPlQAq9uS4gdn7I= Subject key identifier: 78:4A:D2:30:FD:E9:1D:B3:E2:7F:28:49:C6:98:03:E6:AC:AA:4A:66 Certificate issuer: /CN=27992B841C717A90B3FDBD81B476F3FF9045212D Certificate serial: 062EB4DE7EEC246E5039042D79F61E68226D2545 Authority key identifier: 27:99:2B:84:1C:71:7A:90:B3:FD:BD:81:B4:76:F3:FF:90:45:21:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27992B841C717A90B3FDBD81B476F3FF9045212D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/3130332e35352e3232372e302f32342d3234203d3e20313334363538.roa Signing time: Sun 24 Nov 2024 08:00:01 +0000 ROA not before: Sun 24 Nov 2024 07:55:01 +0000 ROA not after: Sun 23 Nov 2025 08:00:01 +0000 asID: 134658 IP address blocks: 103.55.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/27992B841C717A90B3FDBD81B476F3FF9045212D.crl rsync://repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/27992B841C717A90B3FDBD81B476F3FF9045212D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27992B841C717A90B3FDBD81B476F3FF9045212D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 10:50:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:2e:b4:de:7e:ec:24:6e:50:39:04:2d:79:f6:1e:68:22:6d:25:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27992B841C717A90B3FDBD81B476F3FF9045212D Validity Not Before: Nov 24 07:55:01 2024 GMT Not After : Nov 23 08:00:01 2025 GMT Subject: CN=784AD230FDE91DB3E27F2849C69803E6ACAA4A66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:56:2f:4d:45:06:d2:f3:4d:8a:e3:0e:91:d4: 60:93:b4:fc:8a:c9:0f:ec:bc:0f:9e:f3:a2:59:a0: c2:a0:d0:ff:02:e3:05:f2:d3:c9:8d:6a:56:79:9b: 4f:95:1a:c2:7c:b5:33:17:e5:49:47:d0:63:b4:77: 28:93:d4:1f:09:9f:96:e7:10:fa:ff:98:ea:d4:d0: 40:db:21:64:a9:99:13:6a:03:6f:54:b5:7b:55:54: 6c:73:0a:0c:87:01:10:61:5f:15:5a:9b:93:a5:c3: 63:78:66:1c:62:88:d3:ec:5e:64:5f:5b:16:82:89: 77:12:36:86:8d:ab:0b:af:5b:c0:91:0c:3d:9f:da: 24:26:5b:b0:19:fc:cc:0d:70:bc:0a:26:08:21:35: d4:32:78:ff:06:31:79:a6:d6:51:19:e1:4b:fd:a0: 96:ed:7a:7a:68:23:4a:d0:50:24:b5:6a:f1:94:b4: 98:81:04:fe:1d:85:95:f3:77:c9:f4:8b:3a:17:27: 2c:c8:da:8a:b0:50:8e:98:e1:bf:29:26:f3:f6:c5: 1c:ff:b2:9b:7d:09:fd:ac:ff:ab:7b:17:df:46:97: 60:6c:7e:04:cd:a7:85:8b:93:32:c5:3c:14:e3:5f: 21:d2:66:a3:af:de:ab:6b:0b:7a:76:55:66:4d:b9: 4a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:4A:D2:30:FD:E9:1D:B3:E2:7F:28:49:C6:98:03:E6:AC:AA:4A:66 X509v3 Authority Key Identifier: keyid:27:99:2B:84:1C:71:7A:90:B3:FD:BD:81:B4:76:F3:FF:90:45:21:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/27992B841C717A90B3FDBD81B476F3FF9045212D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27992B841C717A90B3FDBD81B476F3FF9045212D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/3130332e35352e3232372e302f32342d3234203d3e20313334363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.227.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:9c:06:1d:7e:8a:6b:14:4b:5c:97:63:25:d4:a8:4c:a5:f2: 1e:d3:68:2b:15:87:2a:37:26:4e:fd:a2:b9:8b:1e:ae:40:10: 4b:b8:f6:4e:6c:d9:7d:3b:f5:fb:56:2e:96:54:fb:2a:bf:e9: f6:84:bd:7a:b2:5b:8f:76:26:1c:de:88:24:7c:52:e9:cb:20: a7:23:f3:2f:04:75:60:f4:01:62:dc:a8:47:ea:74:71:c5:cc: 49:cd:45:49:a6:d4:c2:42:ae:75:62:9c:b8:83:d2:b8:35:6d: 97:d6:d1:8b:44:a5:58:46:29:f8:af:00:8d:7f:0d:42:68:1c: a5:e0:3f:26:8e:97:3b:9a:ff:96:72:55:76:d0:90:33:74:79: 08:17:94:b3:b6:ea:4e:3e:04:f3:16:ea:00:2f:4e:25:d6:4c: d4:92:05:f3:a9:e8:43:1a:99:f2:ed:65:18:71:5d:26:1c:4f: b3:24:9a:61:0d:1a:c4:2a:1d:5e:0e:5d:94:e1:e7:85:3e:e6: 90:c0:78:55:6f:6c:c3:52:1f:25:70:ae:bf:a1:c3:39:a9:32: c6:28:3f:aa:ab:5e:54:7f:e0:6b:2b:32:30:4c:5e:c0:04:23: da:9f:a5:df:71:c8:c7:89:37:56:50:7b:4d:d5:ab:aa:fe:ed: 04:9e:be:9d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBi603n7sJG5QOQQtefYeaCJtJUUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjc5OTJCODQxQzcxN0E5MEIzRkRCRDgxQjQ3NkYzRkY5 MDQ1MjEyRDAeFw0yNDExMjQwNzU1MDFaFw0yNTExMjMwODAwMDFaMDMxMTAvBgNV BAMTKDc4NEFEMjMwRkRFOTFEQjNFMjdGMjg0OUM2OTgwM0U2QUNBQTRBNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMVi9NRQbS802K4w6R1GCTtPyK yQ/svA+e86JZoMKg0P8C4wXy08mNalZ5m0+VGsJ8tTMX5UlH0GO0dyiT1B8Jn5bn EPr/mOrU0EDbIWSpmRNqA29UtXtVVGxzCgyHARBhXxVam5Olw2N4ZhxiiNPsXmRf WxaCiXcSNoaNqwuvW8CRDD2f2iQmW7AZ/MwNcLwKJgghNdQyeP8GMXmm1lEZ4Uv9 oJbtenpoI0rQUCS1avGUtJiBBP4dhZXzd8n0izoXJyzI2oqwUI6Y4b8pJvP2xRz/ spt9Cf2s/6t7F99Gl2BsfgTNp4WLkzLFPBTjXyHSZqOv3qtrC3p2VWZNuUr/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUeErSMP3pHbPifyhJxpgD5qyqSmYwHwYDVR0j BBgwFoAUJ5krhBxxepCz/b2BtHbz/5BFIS0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NmUzZGQ5NS0yYTg1LTQzOWUtODRmMi05NzJhMjNlMzI3MWUvMC8yNzk5MkI4NDFD NzE3QTkwQjNGREJEODFCNDc2RjNGRjkwNDUyMTJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjc5OTJCODQxQzcxN0E5MEIzRkRCRDgxQjQ3NkYzRkY5MDQ1 MjEyRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2ZTNkZDk1LTJhODUtNDM5ZS04 NGYyLTk3MmEyM2UzMjcxZS8wLzMxMzAzMzJlMzUzNTJlMzIzMjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM0MzYzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzfjMA0GCSqG SIb3DQEBCwUAA4IBAQCOnAYdfoprFEtcl2Ml1KhMpfIe02grFYcqNyZO/aK5ix6u QBBLuPZObNl9O/X7Vi6WVPsqv+n2hL16sluPdiYc3ogkfFLpyyCnI/MvBHVg9AFi 3KhH6nRxxcxJzUVJptTCQq51Ypy4g9K4NW2X1tGLRKVYRin4rwCNfw1CaByl4D8m jpc7mv+WclV20JAzdHkIF5SztupOPgTzFuoAL04l1kzUkgXzqehDGpny7WUYcV0m HE+zJJphDRrEKh1eDl2U4eeFPuaQwHhVb2zDUh8lcK6/ocM5qTLGKD+qq15Uf+Br KzIwTF7ABCPan6XfccjHiTdWUHtN1auq/u0Enr6d -----END CERTIFICATE-----Generated at Sun Apr 6 08:33:08 2025 by rpki-client