$ rpki-client -vvf repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/3130332e35352e3232372e302f32342d3234203d3e20313530343839.roa File: 3130332e35352e3232372e302f32342d3234203d3e20313530343839.roa (raw, json) Hash identifier: chZgSebYL3AyASorKFgZxAtVxsXGef1bjWlqKc1bcs8= Subject key identifier: B7:57:95:AD:4C:6D:AF:9A:0E:B5:86:68:75:85:95:98:66:E7:19:42 Certificate issuer: /CN=27992B841C717A90B3FDBD81B476F3FF9045212D Certificate serial: 13A86001126431D398239C8D5209E002E067A5A5 Authority key identifier: 27:99:2B:84:1C:71:7A:90:B3:FD:BD:81:B4:76:F3:FF:90:45:21:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27992B841C717A90B3FDBD81B476F3FF9045212D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/3130332e35352e3232372e302f32342d3234203d3e20313530343839.roa Signing time: Sun 24 Nov 2024 08:00:00 +0000 ROA not before: Sun 24 Nov 2024 07:55:00 +0000 ROA not after: Sun 23 Nov 2025 08:00:00 +0000 asID: 150489 IP address blocks: 103.55.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/27992B841C717A90B3FDBD81B476F3FF9045212D.crl rsync://repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/27992B841C717A90B3FDBD81B476F3FF9045212D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27992B841C717A90B3FDBD81B476F3FF9045212D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 15:54:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:a8:60:01:12:64:31:d3:98:23:9c:8d:52:09:e0:02:e0:67:a5:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27992B841C717A90B3FDBD81B476F3FF9045212D Validity Not Before: Nov 24 07:55:00 2024 GMT Not After : Nov 23 08:00:00 2025 GMT Subject: CN=B75795AD4C6DAF9A0EB586687585959866E71942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:8f:69:06:bc:6c:cc:52:10:b2:f0:6c:d2:3a: 1e:8e:09:7f:e4:b9:6f:d8:6a:80:da:b3:67:c6:84: 11:0c:f2:ad:d9:45:b0:79:00:b8:52:67:12:ed:58: 02:02:2e:1e:f6:38:22:56:38:2e:7e:74:78:61:7b: f1:70:1a:fd:f7:25:3a:e3:cf:10:ff:19:35:4c:00: 39:fc:0d:4e:ff:8c:65:8c:07:c2:74:58:e2:4e:2d: 25:f1:51:2d:af:b6:74:fb:ea:2f:4a:c4:56:dc:29: 01:fc:f4:d7:04:93:bd:5a:47:d8:d2:b9:2b:56:e6: b5:d6:0a:8a:fe:af:5d:2e:a0:4f:8d:30:d6:1a:75: 35:ad:61:b4:8d:eb:3c:be:ab:11:ad:0e:fe:87:b9: 76:9a:b0:24:49:0d:a0:b1:3d:b2:2e:3f:2f:36:af: c2:07:4c:74:b5:56:0e:11:62:09:45:1c:74:3b:d0: f2:4d:21:db:64:72:d3:a4:44:a0:c1:79:4b:6c:53: 7e:0d:19:d9:43:2c:e1:0e:38:aa:80:62:ac:b2:48: c4:73:d3:30:6f:07:89:d8:51:2e:e8:60:2f:a9:5d: ac:94:4c:0d:76:88:ce:72:e9:07:16:1b:16:ff:e7: c1:e3:92:1c:f1:25:02:cc:12:47:a9:b5:be:e0:98: 9c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:57:95:AD:4C:6D:AF:9A:0E:B5:86:68:75:85:95:98:66:E7:19:42 X509v3 Authority Key Identifier: keyid:27:99:2B:84:1C:71:7A:90:B3:FD:BD:81:B4:76:F3:FF:90:45:21:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/27992B841C717A90B3FDBD81B476F3FF9045212D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27992B841C717A90B3FDBD81B476F3FF9045212D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6e3dd95-2a85-439e-84f2-972a23e3271e/0/3130332e35352e3232372e302f32342d3234203d3e20313530343839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.227.0/24 Signature Algorithm: sha256WithRSAEncryption 67:35:4e:11:b1:69:33:ca:39:7a:72:b8:a0:85:2a:fd:c2:34: 00:35:17:bc:17:0c:34:3e:dd:ed:93:df:0b:e9:9a:c1:2b:bc: 33:94:df:21:f4:6a:a7:95:40:b3:9e:80:b1:9e:e7:ec:fe:5f: 3f:e4:99:20:69:8c:38:e8:3f:4d:de:f4:c2:e9:ba:70:11:a7: b6:54:09:cf:fa:be:f8:49:c5:b5:42:4c:61:00:6a:ea:24:7e: e8:85:be:08:51:4e:b4:ed:16:70:cb:dd:9b:ca:8b:8c:d0:c4: 02:f8:5a:2e:ec:96:12:86:9d:ec:d7:6c:52:7d:41:b3:f1:21: b9:1d:da:92:64:04:15:91:81:85:86:21:95:ee:f7:5f:4c:8e: 6a:c5:59:ab:7e:6a:b9:45:d8:0a:6c:ca:91:f3:62:c7:5c:6f: 3d:0c:6a:b1:cc:ac:c5:a9:a1:56:da:24:fe:c0:e7:55:89:e6: 54:c6:29:4f:47:78:aa:6f:aa:45:84:82:8e:df:c6:27:71:4a: 93:fb:b1:4b:89:23:2c:94:2f:fb:37:28:4f:dd:4b:e0:74:67: ab:07:9d:01:e6:88:15:93:ea:54:da:95:4c:f0:fd:8a:1b:9b: 85:64:17:1d:08:d9:98:e5:2c:a4:d4:f1:4d:fc:9a:bd:8c:f9: 04:84:cd:23 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUE6hgARJkMdOYI5yNUgngAuBnpaUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjc5OTJCODQxQzcxN0E5MEIzRkRCRDgxQjQ3NkYzRkY5 MDQ1MjEyRDAeFw0yNDExMjQwNzU1MDBaFw0yNTExMjMwODAwMDBaMDMxMTAvBgNV BAMTKEI3NTc5NUFENEM2REFGOUEwRUI1ODY2ODc1ODU5NTk4NjZFNzE5NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoj2kGvGzMUhCy8GzSOh6OCX/k uW/YaoDas2fGhBEM8q3ZRbB5ALhSZxLtWAICLh72OCJWOC5+dHhhe/FwGv33JTrj zxD/GTVMADn8DU7/jGWMB8J0WOJOLSXxUS2vtnT76i9KxFbcKQH89NcEk71aR9jS uStW5rXWCor+r10uoE+NMNYadTWtYbSN6zy+qxGtDv6HuXaasCRJDaCxPbIuPy82 r8IHTHS1Vg4RYglFHHQ70PJNIdtkctOkRKDBeUtsU34NGdlDLOEOOKqAYqyySMRz 0zBvB4nYUS7oYC+pXayUTA12iM5y6QcWGxb/58HjkhzxJQLMEkeptb7gmJwlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUt1eVrUxtr5oOtYZodYWVmGbnGUIwHwYDVR0j BBgwFoAUJ5krhBxxepCz/b2BtHbz/5BFIS0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NmUzZGQ5NS0yYTg1LTQzOWUtODRmMi05NzJhMjNlMzI3MWUvMC8yNzk5MkI4NDFD NzE3QTkwQjNGREJEODFCNDc2RjNGRjkwNDUyMTJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjc5OTJCODQxQzcxN0E5MEIzRkRCRDgxQjQ3NkYzRkY5MDQ1 MjEyRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2ZTNkZDk1LTJhODUtNDM5ZS04 NGYyLTk3MmEyM2UzMjcxZS8wLzMxMzAzMzJlMzUzNTJlMzIzMjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzQzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzfjMA0GCSqG SIb3DQEBCwUAA4IBAQBnNU4RsWkzyjl6crighSr9wjQANRe8Fww0Pt3tk98L6ZrB K7wzlN8h9GqnlUCznoCxnufs/l8/5JkgaYw46D9N3vTC6bpwEae2VAnP+r74ScW1 QkxhAGrqJH7ohb4IUU607RZwy92byouM0MQC+Fou7JYShp3s12xSfUGz8SG5HdqS ZAQVkYGFhiGV7vdfTI5qxVmrfmq5RdgKbMqR82LHXG89DGqxzKzFqaFW2iT+wOdV ieZUxilPR3iqb6pFhIKO38YncUqT+7FLiSMslC/7NyhP3UvgdGerB50B5ogVk+pU 2pVM8P2KG5uFZBcdCNmY5Syk1PFN/Jq9jPkEhM0j -----END CERTIFICATE-----Generated at Wed Apr 9 16:11:36 2025 by rpki-client