$ rpki-client -vvf repo-rpki.idnic.net/repo/b27b11c2-ab90-420f-b49c-3cc332eb7d64/0/3130332e3135352e32382e302f32342d3234203d3e20313431303636.roa File: 3130332e3135352e32382e302f32342d3234203d3e20313431303636.roa (raw, json) Hash identifier: wZIxpj3dwGCzcl7cZh9X0VQ9p0ml4TLvq9R2W6nIlhM= Subject key identifier: D2:19:33:5B:E8:FD:0D:DF:6B:D3:06:EE:5B:74:B2:99:2F:F7:92:FF Certificate issuer: /CN=62C35B9AD91CB5B6A52F4D28F2C5F7B252FC480E Certificate serial: 69C9DCD27C03D4BFA8C7D11557C5EEEF9D59747F Authority key identifier: 62:C3:5B:9A:D9:1C:B5:B6:A5:2F:4D:28:F2:C5:F7:B2:52:FC:48:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/62C35B9AD91CB5B6A52F4D28F2C5F7B252FC480E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b27b11c2-ab90-420f-b49c-3cc332eb7d64/0/3130332e3135352e32382e302f32342d3234203d3e20313431303636.roa Signing time: Fri 04 Oct 2024 08:02:11 +0000 ROA not before: Fri 04 Oct 2024 07:57:11 +0000 ROA not after: Fri 03 Oct 2025 08:02:11 +0000 asID: 141066 IP address blocks: 103.155.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b27b11c2-ab90-420f-b49c-3cc332eb7d64/0/62C35B9AD91CB5B6A52F4D28F2C5F7B252FC480E.crl rsync://repo-rpki.idnic.net/repo/b27b11c2-ab90-420f-b49c-3cc332eb7d64/0/62C35B9AD91CB5B6A52F4D28F2C5F7B252FC480E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/62C35B9AD91CB5B6A52F4D28F2C5F7B252FC480E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 10:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:c9:dc:d2:7c:03:d4:bf:a8:c7:d1:15:57:c5:ee:ef:9d:59:74:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62C35B9AD91CB5B6A52F4D28F2C5F7B252FC480E Validity Not Before: Oct 4 07:57:11 2024 GMT Not After : Oct 3 08:02:11 2025 GMT Subject: CN=D219335BE8FD0DDF6BD306EE5B74B2992FF792FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:16:e3:57:89:f2:68:82:45:4f:2c:a7:1e:ba: 34:7d:31:dd:c7:a3:37:1f:b7:fa:fa:ce:a4:2d:26: 7d:42:d5:f1:bd:c9:de:b5:c9:ab:71:9f:ba:f4:0d: f3:a0:fd:ad:4e:d2:61:0e:a9:7a:48:38:ae:e5:3e: 75:88:d4:68:66:5e:c9:e0:57:fe:af:19:4e:e5:98: 38:67:5c:32:3b:bf:25:b3:4a:cd:27:e7:c7:1f:64: 3b:b5:89:6b:d5:f5:c2:6e:ae:af:4f:e7:41:bc:42: be:6a:68:3b:d7:88:48:75:df:83:51:ac:9e:3a:d0: 62:98:d0:ff:9f:84:2f:a8:c1:f8:1d:bb:df:3c:b3: 9c:c8:87:c7:12:19:63:78:20:8b:6d:ed:e0:74:0c: 85:80:27:7d:b1:58:31:1c:4a:20:5a:cd:af:8f:d6: 05:5f:85:b8:26:31:52:94:ff:0b:d1:8c:e3:73:d8: aa:09:14:ff:47:57:27:5b:b8:20:57:c8:c6:cb:02: fd:b1:97:36:2e:74:2b:6d:d6:b2:3d:4a:35:b3:b6: 7e:2b:bc:2d:bd:d5:55:12:39:f3:7d:70:30:e7:ee: 33:57:45:79:93:cf:eb:51:4a:fb:66:66:7b:8f:aa: 9f:a2:28:1b:7b:fe:ca:b0:2f:f2:6d:ff:71:7d:0e: a6:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:19:33:5B:E8:FD:0D:DF:6B:D3:06:EE:5B:74:B2:99:2F:F7:92:FF X509v3 Authority Key Identifier: keyid:62:C3:5B:9A:D9:1C:B5:B6:A5:2F:4D:28:F2:C5:F7:B2:52:FC:48:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b27b11c2-ab90-420f-b49c-3cc332eb7d64/0/62C35B9AD91CB5B6A52F4D28F2C5F7B252FC480E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/62C35B9AD91CB5B6A52F4D28F2C5F7B252FC480E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b27b11c2-ab90-420f-b49c-3cc332eb7d64/0/3130332e3135352e32382e302f32342d3234203d3e20313431303636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.28.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:fb:e2:75:2f:dd:5b:ff:bb:48:68:be:6d:4b:4b:57:ab:02: 38:6a:42:a9:68:18:58:a7:44:7a:c7:ac:29:8e:15:d5:2b:8b: 6f:48:4e:69:88:25:96:25:35:3d:e5:9f:6d:e1:26:6b:12:bb: 5d:ef:2e:ba:09:64:32:db:41:1b:f6:87:bd:15:37:2f:c4:72: 24:df:ac:8c:39:03:df:db:d6:b2:97:1f:08:c9:73:7e:7f:5e: c0:cb:1e:05:8c:58:0f:93:6a:ee:03:84:64:a0:af:45:f0:d2: 07:a9:26:10:d4:0a:80:db:dd:4f:65:5b:12:18:93:c7:e4:3a: 30:0b:c1:70:fa:f6:36:ac:13:fc:91:37:f5:52:0f:00:9d:e9: 7f:2f:29:44:e0:83:c8:8d:6a:aa:f0:df:b8:1c:c6:07:f2:29: e9:51:c1:59:d7:b7:c8:bd:09:a0:01:f5:a6:ae:61:67:8f:d2: 44:43:17:f6:fa:bc:6d:bc:3b:b3:26:e2:9c:7c:a1:86:25:45: bc:a7:42:16:fb:66:94:83:5a:38:8a:0c:e8:95:02:fb:74:ad: 7d:b1:20:a8:d0:fc:46:50:99:b2:21:bd:8b:2f:f1:3c:33:93: c5:5c:20:4a:27:eb:13:1c:0a:6a:e0:6a:a6:47:da:98:84:95: 23:bd:89:ac -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUacnc0nwD1L+ox9EVV8Xu751ZdH8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjJDMzVCOUFEOTFDQjVCNkE1MkY0RDI4RjJDNUY3QjI1 MkZDNDgwRTAeFw0yNDEwMDQwNzU3MTFaFw0yNTEwMDMwODAyMTFaMDMxMTAvBgNV BAMTKEQyMTkzMzVCRThGRDBEREY2QkQzMDZFRTVCNzRCMjk5MkZGNzkyRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQFuNXifJogkVPLKceujR9Md3H ozcft/r6zqQtJn1C1fG9yd61yatxn7r0DfOg/a1O0mEOqXpIOK7lPnWI1GhmXsng V/6vGU7lmDhnXDI7vyWzSs0n58cfZDu1iWvV9cJurq9P50G8Qr5qaDvXiEh134NR rJ460GKY0P+fhC+owfgdu988s5zIh8cSGWN4IItt7eB0DIWAJ32xWDEcSiBaza+P 1gVfhbgmMVKU/wvRjONz2KoJFP9HVydbuCBXyMbLAv2xlzYudCtt1rI9SjWztn4r vC291VUSOfN9cDDn7jNXRXmTz+tRSvtmZnuPqp+iKBt7/sqwL/Jt/3F9DqZlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0hkzW+j9Dd9r0wbuW3SymS/3kv8wHwYDVR0j BBgwFoAUYsNbmtkctbalL00o8sX3slL8SA4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjdiMTFjMi1hYjkwLTQyMGYtYjQ5Yy0zY2MzMzJlYjdkNjQvMC82MkMzNUI5QUQ5 MUNCNUI2QTUyRjREMjhGMkM1RjdCMjUyRkM0ODBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjJDMzVCOUFEOTFDQjVCNkE1MkY0RDI4RjJDNUY3QjI1MkZD NDgwRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyN2IxMWMyLWFiOTAtNDIwZi1i NDljLTNjYzMzMmViN2Q2NC8wLzMxMzAzMzJlMzEzNTM1MmUzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzAzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5scMA0GCSqG SIb3DQEBCwUAA4IBAQCe++J1L91b/7tIaL5tS0tXqwI4akKpaBhYp0R6x6wpjhXV K4tvSE5piCWWJTU95Z9t4SZrErtd7y66CWQy20Eb9oe9FTcvxHIk36yMOQPf29ay lx8IyXN+f17Ayx4FjFgPk2ruA4RkoK9F8NIHqSYQ1AqA291PZVsSGJPH5DowC8Fw +vY2rBP8kTf1Ug8Anel/LylE4IPIjWqq8N+4HMYH8inpUcFZ17fIvQmgAfWmrmFn j9JEQxf2+rxtvDuzJuKcfKGGJUW8p0IW+2aUg1o4igzolQL7dK19sSCo0PxGUJmy Ib2LL/E8M5PFXCBKJ+sTHApq4GqmR9qYhJUjvYms -----END CERTIFICATE-----Generated at Fri Nov 22 09:30:03 2024 by rpki-client on console-fra.rpki-client.org