$ rpki-client -vvf repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/3130332e3232372e352e302f32342d3234203d3e20313531353134.roa File: 3130332e3232372e352e302f32342d3234203d3e20313531353134.roa (raw, json) Hash identifier: cmehz3unFDq/m/HSU3xfJVWnULqlAOmDCa2f/3f1n8Q= Subject key identifier: 9A:AA:1C:99:35:09:C5:37:40:E1:09:69:41:D1:A1:00:94:C9:09:8D Certificate issuer: /CN=83FA427FFAE02D80047A8B5F44D938E2CA6DB609 Certificate serial: 2B91B475083FEDBB9516AC9FB5FE9DCA7EE572D0 Authority key identifier: 83:FA:42:7F:FA:E0:2D:80:04:7A:8B:5F:44:D9:38:E2:CA:6D:B6:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/3130332e3232372e352e302f32342d3234203d3e20313531353134.roa Signing time: Mon 30 Sep 2024 04:00:35 +0000 ROA not before: Mon 30 Sep 2024 03:55:35 +0000 ROA not after: Mon 29 Sep 2025 04:00:35 +0000 asID: 151514 IP address blocks: 103.227.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.crl rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 10:55:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:91:b4:75:08:3f:ed:bb:95:16:ac:9f:b5:fe:9d:ca:7e:e5:72:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83FA427FFAE02D80047A8B5F44D938E2CA6DB609 Validity Not Before: Sep 30 03:55:35 2024 GMT Not After : Sep 29 04:00:35 2025 GMT Subject: CN=9AAA1C993509C53740E1096941D1A10094C9098D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:62:33:b8:5c:ac:7c:d3:a7:7d:32:02:c7:4c: f7:8a:a2:1c:19:0d:6c:08:fa:15:47:96:48:e3:79: 9a:1a:11:73:10:00:7a:a1:21:f0:91:18:6c:e5:e8: 14:fc:a8:02:ec:bc:82:84:fd:ba:86:5c:73:1d:e9: 24:14:75:c9:7a:83:95:64:4e:a1:5f:55:81:69:02: 69:fd:7a:e8:28:a3:b2:18:11:21:f0:10:a0:ad:e1: 25:96:a0:59:ad:94:e3:9f:58:b5:b8:d4:46:38:e0: ae:c4:b6:17:29:cf:fa:48:b9:78:cb:d0:70:24:31: af:55:c7:b5:39:86:cc:ed:ff:64:bc:55:8c:49:54: d7:1d:cd:8a:60:8a:a1:88:95:c9:1b:05:43:a2:38: 6d:77:ee:26:9d:09:55:9d:cf:45:e9:f3:b3:1b:2a: 77:98:9b:1d:92:1b:93:93:47:4c:57:ab:13:e2:d2: 9e:a5:14:b1:57:ca:f9:db:7a:76:12:85:80:f1:5e: 42:56:e2:e6:c3:b8:55:41:f9:45:01:01:46:95:ee: b5:7f:cf:22:f3:7a:1e:5b:63:af:47:df:89:bb:d1: 17:d1:4a:7f:28:85:82:7b:29:a2:21:93:0d:65:33: b0:3e:95:6e:d2:e0:97:9f:b9:ec:12:d8:49:01:30: fd:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:AA:1C:99:35:09:C5:37:40:E1:09:69:41:D1:A1:00:94:C9:09:8D X509v3 Authority Key Identifier: keyid:83:FA:42:7F:FA:E0:2D:80:04:7A:8B:5F:44:D9:38:E2:CA:6D:B6:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/3130332e3232372e352e302f32342d3234203d3e20313531353134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.5.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:ec:a2:a5:61:10:55:ce:a1:8b:24:b5:ed:f9:5d:e6:f6:59: dd:af:8c:84:c9:3a:61:f9:b6:35:e7:4c:97:dd:f6:7f:1d:af: c1:08:6a:bf:8e:45:98:96:9e:27:f0:c8:5d:ed:f5:00:c5:aa: fb:76:6f:17:b3:01:08:ce:b6:42:9b:e6:37:2f:8f:29:b8:48: 43:b4:02:a0:3e:a4:72:7a:cf:7c:88:cf:92:31:72:78:54:32: 2a:07:e7:73:e2:d4:9b:f9:c3:a7:46:39:5e:b8:31:c2:61:d4: 9d:a9:c8:ac:e7:13:f2:db:50:74:55:40:57:67:a4:d3:d3:4c: 81:d1:bf:c0:8b:7a:e3:ea:07:85:1f:53:4a:6c:8a:ee:7c:34: 88:ce:96:10:41:26:d1:ff:9e:b6:5b:c4:18:76:e9:1c:d0:69: 3c:e7:01:93:36:65:8a:1c:3e:0c:77:43:1d:9d:03:48:73:98: 4c:94:40:13:51:82:55:3b:cc:0f:e7:5e:15:f7:0b:01:d7:59: 2a:73:00:1a:52:95:73:d6:43:4c:cd:62:f1:9a:75:07:a3:dd: fe:4e:0b:ce:c1:38:e9:59:9e:9e:86:05:0b:55:b0:e9:d1:e5: 72:4d:49:8f:b4:bd:de:ae:3e:15:8d:1e:7d:d8:f4:77:ce:10: f4:68:85:a5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUK5G0dQg/7buVFqyftf6dyn7lctAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODNGQTQyN0ZGQUUwMkQ4MDA0N0E4QjVGNDREOTM4RTJD QTZEQjYwOTAeFw0yNDA5MzAwMzU1MzVaFw0yNTA5MjkwNDAwMzVaMDMxMTAvBgNV BAMTKDlBQUExQzk5MzUwOUM1Mzc0MEUxMDk2OTQxRDFBMTAwOTRDOTA5OEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEYjO4XKx806d9MgLHTPeKohwZ DWwI+hVHlkjjeZoaEXMQAHqhIfCRGGzl6BT8qALsvIKE/bqGXHMd6SQUdcl6g5Vk TqFfVYFpAmn9eugoo7IYESHwEKCt4SWWoFmtlOOfWLW41EY44K7Ethcpz/pIuXjL 0HAkMa9Vx7U5hszt/2S8VYxJVNcdzYpgiqGIlckbBUOiOG137iadCVWdz0Xp87Mb KneYmx2SG5OTR0xXqxPi0p6lFLFXyvnbenYShYDxXkJW4ubDuFVB+UUBAUaV7rV/ zyLzeh5bY69H34m70RfRSn8ohYJ7KaIhkw1lM7A+lW7S4JefuewS2EkBMP3zAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUmqocmTUJxTdA4QlpQdGhAJTJCY0wHwYDVR0j BBgwFoAUg/pCf/rgLYAEeotfRNk44spttgkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTdiOTQ3Ni03ZTM4LTRjNTAtYTYyNC1iMjQ0M2M3MGJiNGQvMC84M0ZBNDI3RkZB RTAyRDgwMDQ3QThCNUY0NEQ5MzhFMkNBNkRCNjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODNGQTQyN0ZGQUUwMkQ4MDA0N0E4QjVGNDREOTM4RTJDQTZE QjYwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlN2I5NDc2LTdlMzgtNGM1MC1h NjI0LWIyNDQzYzcwYmI0ZC8wLzMxMzAzMzJlMzIzMjM3MmUzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMTM1MzEzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfjBTANBgkqhkiG 9w0BAQsFAAOCAQEAHuyipWEQVc6hiyS17fld5vZZ3a+MhMk6Yfm2NedMl932fx2v wQhqv45FmJaeJ/DIXe31AMWq+3ZvF7MBCM62QpvmNy+PKbhIQ7QCoD6kcnrPfIjP kjFyeFQyKgfnc+LUm/nDp0Y5XrgxwmHUnanIrOcT8ttQdFVAV2ek09NMgdG/wIt6 4+oHhR9TSmyK7nw0iM6WEEEm0f+etlvEGHbpHNBpPOcBkzZlihw+DHdDHZ0DSHOY TJRAE1GCVTvMD+deFfcLAddZKnMAGlKVc9ZDTM1i8Zp1B6Pd/k4LzsE46VmenoYF C1Ww6dHlck1Jj7S93q4+FY0efdj0d84Q9GiFpQ== -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:56 2024 by rpki-client on console-ams.rpki-client.org