$ rpki-client -vvf repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/3130332e3232372e3234302e302f32322d3234203d3e203539323738.roa File: 3130332e3232372e3234302e302f32322d3234203d3e203539323738.roa (raw, json) Hash identifier: h7IiV0kh9O/RK06uMG1rhN5D8mRuZrUlThAbqSxDils= Subject key identifier: B6:9B:60:C2:6D:2B:B7:50:3F:9C:E9:F1:88:08:4C:B4:D0:EC:C2:1D Certificate issuer: /CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Certificate serial: 22DDE3F4F484054FD5374D6688AA08138F7551D7 Authority key identifier: 2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/3130332e3232372e3234302e302f32322d3234203d3e203539323738.roa Signing time: Wed 07 Aug 2024 05:00:46 +0000 ROA not before: Wed 07 Aug 2024 04:55:46 +0000 ROA not after: Wed 06 Aug 2025 05:00:46 +0000 asID: 59278 IP address blocks: 103.227.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:20:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:dd:e3:f4:f4:84:05:4f:d5:37:4d:66:88:aa:08:13:8f:75:51:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Validity Not Before: Aug 7 04:55:46 2024 GMT Not After : Aug 6 05:00:46 2025 GMT Subject: CN=B69B60C26D2BB7503F9CE9F188084CB4D0ECC21D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:50:81:4a:2b:84:73:cd:4b:5d:3c:3b:80:44: 48:0b:7f:52:47:fc:db:e0:22:3e:62:41:db:b2:4e: a0:da:ba:a9:33:05:03:c5:33:b8:af:3b:40:0b:13: ea:25:60:05:b7:1e:6c:41:d6:1a:87:7e:91:bf:36: 25:07:c9:00:60:8f:13:3e:5c:53:2f:73:5b:41:f0: f9:49:c5:b1:46:ae:f9:a5:4b:14:5c:48:42:24:12: 0a:59:df:71:6e:97:ab:90:5a:72:f4:7b:5f:90:6e: fe:c4:24:06:8f:91:59:c5:8d:ea:ee:97:42:41:42: d3:84:0d:d8:b4:bb:ee:77:f2:df:39:19:d9:20:fa: ef:08:61:e9:d7:78:45:b4:4a:42:7a:a3:8e:12:67: 9d:9d:ab:32:75:98:9f:64:5b:a7:d7:ed:46:47:00: 3a:c5:4a:a7:68:e7:9f:a7:7e:19:af:c6:8e:43:e6: bc:46:e3:5c:7b:d5:ba:23:66:09:22:bf:88:f0:fc: d7:e6:4a:57:25:a8:f1:e2:bd:a0:1c:2e:6d:a8:7e: f7:94:37:69:d1:ed:2f:22:4c:09:de:74:90:af:2a: a1:d8:5a:71:fe:1b:b2:7e:02:5f:6d:e3:dd:01:fc: db:16:e2:50:ac:e7:93:99:8b:80:cf:bb:f5:2a:3c: 92:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:9B:60:C2:6D:2B:B7:50:3F:9C:E9:F1:88:08:4C:B4:D0:EC:C2:1D X509v3 Authority Key Identifier: keyid:2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/3130332e3232372e3234302e302f32322d3234203d3e203539323738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.240.0/22 Signature Algorithm: sha256WithRSAEncryption 6b:64:3a:2d:d4:ee:f7:c7:e7:30:b0:da:57:f4:84:7b:51:b6: 9a:82:e7:cd:53:37:18:df:7d:dd:46:8a:21:19:d9:24:57:82: ad:8a:2f:ba:4e:46:94:d2:d0:cb:c6:b8:68:1e:00:cf:5b:81: 7a:22:24:f1:5f:e0:48:60:49:ff:ae:75:8f:43:e2:ec:71:03: d8:ee:ef:93:51:5b:2d:b3:39:e9:44:12:89:eb:57:da:ba:43: 83:c0:76:b0:e8:ca:84:1e:15:c5:51:c1:95:f6:66:97:06:20: 80:ad:8c:dc:df:10:95:f7:fa:8b:10:4c:73:62:88:25:36:b5: 37:2a:cf:53:80:fc:42:aa:84:50:a6:ea:b2:3d:7e:05:d6:3f: 4a:a0:77:9d:87:8b:bd:2b:99:90:06:de:3f:7c:56:c4:b5:ac: 33:02:3a:c6:11:7e:b6:92:4d:ca:88:65:a0:ca:c5:84:60:94: f6:42:cd:2c:ef:12:6e:f2:b2:78:c8:f8:11:72:2c:ab:68:e1: fc:7b:8f:18:60:99:1d:ba:f9:ba:35:be:ef:64:77:9e:a0:42: 4e:b8:18:2a:8f:c0:bd:af:67:6e:11:1e:f1:f6:cc:d0:d7:57: ca:99:41:ec:ca:e9:69:7b:a4:3a:4e:8d:1b:88:25:5c:bf:24: 14:fa:87:18 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIt3j9PSEBU/VN01miKoIE491UdcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVE RDc4QzVCRDAeFw0yNDA4MDcwNDU1NDZaFw0yNTA4MDYwNTAwNDZaMDMxMTAvBgNV BAMTKEI2OUI2MEMyNkQyQkI3NTAzRjlDRTlGMTg4MDg0Q0I0RDBFQ0MyMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6UIFKK4RzzUtdPDuAREgLf1JH /NvgIj5iQduyTqDauqkzBQPFM7ivO0ALE+olYAW3HmxB1hqHfpG/NiUHyQBgjxM+ XFMvc1tB8PlJxbFGrvmlSxRcSEIkEgpZ33Ful6uQWnL0e1+Qbv7EJAaPkVnFjeru l0JBQtOEDdi0u+538t85Gdkg+u8IYenXeEW0SkJ6o44SZ52dqzJ1mJ9kW6fX7UZH ADrFSqdo55+nfhmvxo5D5rxG41x71bojZgkiv4jw/NfmSlclqPHivaAcLm2ofveU N2nR7S8iTAnedJCvKqHYWnH+G7J+Al9t490B/NsW4lCs55OZi4DPu/UqPJKVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtptgwm0rt1A/nOnxiAhMtNDswh0wHwYDVR0j BBgwFoAULSMR9WPfCvjr79ohhxYmtd14xb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjFjNzlmMS0yNjRlLTQyM2YtOWUwOC0wYjI5MDBkYTY5NDkvMC8yRDIzMTFGNTYz REYwQUY4RUJFRkRBMjE4NzE2MjZCNURENzhDNUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVERDc4 QzVCRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmMWM3OWYxLTI2NGUtNDIzZi05 ZTA4LTBiMjkwMGRhNjk0OS8wLzMxMzAzMzJlMzIzMjM3MmUzMjM0MzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM5MzIzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+PwMA0GCSqG SIb3DQEBCwUAA4IBAQBrZDot1O73x+cwsNpX9IR7UbaagufNUzcY333dRoohGdkk V4Ktii+6TkaU0tDLxrhoHgDPW4F6IiTxX+BIYEn/rnWPQ+LscQPY7u+TUVstsznp RBKJ61faukODwHaw6MqEHhXFUcGV9maXBiCArYzc3xCV9/qLEExzYoglNrU3Ks9T gPxCqoRQpuqyPX4F1j9KoHedh4u9K5mQBt4/fFbEtawzAjrGEX62kk3KiGWgysWE YJT2Qs0s7xJu8rJ4yPgRciyraOH8e48YYJkduvm6Nb7vZHeeoEJOuBgqj8C9r2du ER7x9szQ11fKmUHsyulpe6Q6To0biCVcvyQU+ocY -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:33 2024 by rpki-client on console-fra.rpki-client.org