$ rpki-client -vvf repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/3130332e3232372e342e302f32342d3234203d3e20313531353134.roa File: 3130332e3232372e342e302f32342d3234203d3e20313531353134.roa (raw, json) Hash identifier: TQUOGgnpygpm3E58lKQ0df5PgwIbrwKhVW+LboJlm4g= Subject key identifier: 34:75:DB:96:83:7E:AF:4A:9D:53:DE:0F:27:0A:65:3F:EF:3C:5E:52 Certificate issuer: /CN=83FA427FFAE02D80047A8B5F44D938E2CA6DB609 Certificate serial: 5FA58A7DB355D860427D36D0122E1758DE5FF632 Authority key identifier: 83:FA:42:7F:FA:E0:2D:80:04:7A:8B:5F:44:D9:38:E2:CA:6D:B6:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/3130332e3232372e342e302f32342d3234203d3e20313531353134.roa Signing time: Mon 30 Sep 2024 04:00:35 +0000 ROA not before: Mon 30 Sep 2024 03:55:35 +0000 ROA not after: Mon 29 Sep 2025 04:00:35 +0000 asID: 151514 IP address blocks: 103.227.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.crl rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 10:55:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:a5:8a:7d:b3:55:d8:60:42:7d:36:d0:12:2e:17:58:de:5f:f6:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83FA427FFAE02D80047A8B5F44D938E2CA6DB609 Validity Not Before: Sep 30 03:55:35 2024 GMT Not After : Sep 29 04:00:35 2025 GMT Subject: CN=3475DB96837EAF4A9D53DE0F270A653FEF3C5E52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ea:f8:0c:0a:55:33:3d:3f:30:fb:52:eb:b2: f4:1a:15:4b:ed:90:17:82:30:bf:ab:1b:e6:69:87: 3e:45:61:12:87:bf:50:d3:ef:41:80:a7:9b:44:65: 54:4b:14:e4:fa:79:4a:42:a9:be:62:27:42:dc:b0: da:78:95:ca:d7:3b:d5:80:7f:88:47:d6:a3:9d:0f: 12:10:64:3a:ea:9b:e1:6c:6c:fe:66:29:c4:98:05: f5:d3:56:8f:50:95:43:e2:1a:37:e0:96:8a:76:ab: 56:65:e0:cd:d5:e9:56:ea:db:e2:5a:8f:20:fd:9a: a9:3e:28:2b:4d:9d:73:14:e3:f7:c7:e6:23:e0:7d: 44:5b:4f:09:6c:dd:24:c7:dd:16:a1:dd:70:d5:d6: 3a:0f:cb:9d:41:99:44:9c:33:51:c0:f7:ff:ba:50: cc:45:33:f7:97:0d:01:d8:0d:23:40:c3:0b:72:8d: a7:3a:40:f1:c8:6a:87:1f:94:c6:bd:3f:c4:b6:ef: 39:eb:7d:de:70:f8:6b:2c:13:28:10:26:53:84:03: 00:fa:e8:ce:94:dd:bb:ec:2a:13:01:7e:f5:6b:28: 1b:58:fe:10:45:cd:6c:fb:21:08:5b:82:fb:05:82: 3b:2c:2e:bf:74:07:30:61:19:03:4e:dc:a2:09:4e: 61:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:75:DB:96:83:7E:AF:4A:9D:53:DE:0F:27:0A:65:3F:EF:3C:5E:52 X509v3 Authority Key Identifier: keyid:83:FA:42:7F:FA:E0:2D:80:04:7A:8B:5F:44:D9:38:E2:CA:6D:B6:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/3130332e3232372e342e302f32342d3234203d3e20313531353134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.4.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:bd:8d:2b:29:bb:77:42:0c:d6:3f:da:80:57:f8:09:cd:ab: f4:c4:21:d9:7d:bb:46:e7:75:48:fd:0b:2f:61:92:3f:30:aa: 07:fd:b9:91:51:55:7b:d5:f9:49:00:59:8b:2d:67:bd:05:8f: 84:ec:17:c9:bb:e5:77:fc:4a:30:de:a9:1a:9e:86:e5:b1:a0: 41:2e:77:9f:a8:25:7b:cb:13:f0:bf:2f:0a:5c:e9:00:00:9a: 27:53:bd:98:d1:af:6a:cd:17:39:89:23:e1:66:21:3a:81:bb: 05:41:8b:d7:41:35:c5:c9:d9:db:65:ea:af:d7:a4:2a:56:aa: a4:b5:54:0f:7b:2c:10:9b:99:7d:02:08:27:4e:d6:af:f9:63: b8:f6:ea:6d:df:a5:5a:1a:55:c9:9b:7a:cc:99:86:48:1f:0d: 88:35:37:74:a6:49:07:9c:99:23:17:b9:d8:a2:16:9e:30:5e: 48:0d:e9:0d:65:51:7a:a4:dd:9d:88:6f:f1:cf:01:8c:80:2c: 22:e5:26:5a:12:12:45:df:c4:cf:9e:41:1a:23:21:b7:5e:c4: c1:14:ba:d3:23:04:de:fc:e7:84:73:d2:83:0b:92:c2:93:34: 14:2a:44:e4:a0:2a:bd:f2:f8:d2:a8:f7:63:37:c7:a3:01:9b: 64:92:21:ca -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUX6WKfbNV2GBCfTbQEi4XWN5f9jIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODNGQTQyN0ZGQUUwMkQ4MDA0N0E4QjVGNDREOTM4RTJD QTZEQjYwOTAeFw0yNDA5MzAwMzU1MzVaFw0yNTA5MjkwNDAwMzVaMDMxMTAvBgNV BAMTKDM0NzVEQjk2ODM3RUFGNEE5RDUzREUwRjI3MEE2NTNGRUYzQzVFNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA6vgMClUzPT8w+1LrsvQaFUvt kBeCML+rG+Zphz5FYRKHv1DT70GAp5tEZVRLFOT6eUpCqb5iJ0LcsNp4lcrXO9WA f4hH1qOdDxIQZDrqm+FsbP5mKcSYBfXTVo9QlUPiGjfglop2q1Zl4M3V6Vbq2+Ja jyD9mqk+KCtNnXMU4/fH5iPgfURbTwls3STH3Rah3XDV1joPy51BmUScM1HA9/+6 UMxFM/eXDQHYDSNAwwtyjac6QPHIaocflMa9P8S27znrfd5w+GssEygQJlOEAwD6 6M6U3bvsKhMBfvVrKBtY/hBFzWz7IQhbgvsFgjssLr90BzBhGQNO3KIJTmFBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNHXbloN+r0qdU94PJwplP+88XlIwHwYDVR0j BBgwFoAUg/pCf/rgLYAEeotfRNk44spttgkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTdiOTQ3Ni03ZTM4LTRjNTAtYTYyNC1iMjQ0M2M3MGJiNGQvMC84M0ZBNDI3RkZB RTAyRDgwMDQ3QThCNUY0NEQ5MzhFMkNBNkRCNjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODNGQTQyN0ZGQUUwMkQ4MDA0N0E4QjVGNDREOTM4RTJDQTZE QjYwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlN2I5NDc2LTdlMzgtNGM1MC1h NjI0LWIyNDQzYzcwYmI0ZC8wLzMxMzAzMzJlMzIzMjM3MmUzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMTM1MzEzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfjBDANBgkqhkiG 9w0BAQsFAAOCAQEAKr2NKym7d0IM1j/agFf4Cc2r9MQh2X27Rud1SP0LL2GSPzCq B/25kVFVe9X5SQBZiy1nvQWPhOwXybvld/xKMN6pGp6G5bGgQS53n6gle8sT8L8v ClzpAACaJ1O9mNGvas0XOYkj4WYhOoG7BUGL10E1xcnZ22Xqr9ekKlaqpLVUD3ss EJuZfQIIJ07Wr/ljuPbqbd+lWhpVyZt6zJmGSB8NiDU3dKZJB5yZIxe52KIWnjBe SA3pDWVReqTdnYhv8c8BjIAsIuUmWhISRd/Ez55BGiMht17EwRS60yME3vznhHPS gwuSwpM0FCpE5KAqvfL40qj3YzfHowGbZJIhyg== -----END CERTIFICATE-----Generated at Fri Nov 22 03:51:02 2024 by rpki-client on console-fra.rpki-client.org