$ rpki-client -vvf repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/3130332e3135362e3232372e302f32342d3234203d3e203435373031.roa File: 3130332e3135362e3232372e302f32342d3234203d3e203435373031.roa (raw, json) Hash identifier: /uuHBhafeaoCH+HOZHl14rc39vsEcoNz0FatbJ58vz8= Subject key identifier: B7:C2:47:67:AA:40:6A:19:AA:10:E2:40:93:D8:FA:6E:BC:D2:FF:D8 Certificate issuer: /CN=6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7 Certificate serial: 4878F55E62FD838C4DC0A791E040569BB03A82E4 Authority key identifier: 6E:12:35:C8:FC:3F:2E:F6:D9:D2:45:D0:60:7A:A6:D7:63:C5:D4:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/3130332e3135362e3232372e302f32342d3234203d3e203435373031.roa Signing time: Tue 01 Oct 2024 01:00:01 +0000 ROA not before: Tue 01 Oct 2024 00:55:01 +0000 ROA not after: Tue 30 Sep 2025 01:00:01 +0000 asID: 45701 IP address blocks: 103.156.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.crl rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:78:f5:5e:62:fd:83:8c:4d:c0:a7:91:e0:40:56:9b:b0:3a:82:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7 Validity Not Before: Oct 1 00:55:01 2024 GMT Not After : Sep 30 01:00:01 2025 GMT Subject: CN=B7C24767AA406A19AA10E24093D8FA6EBCD2FFD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c7:37:0e:b5:44:1f:1e:0f:f4:3f:1b:d8:9a: c8:e6:5f:6b:1d:f4:93:5b:c4:51:4b:20:1b:ab:44: 51:bc:ff:33:13:61:ca:97:09:ef:58:6f:6a:05:1d: 45:d8:7e:b0:34:15:89:3a:29:be:d5:1e:1c:8c:88: ee:1f:7f:b1:0c:09:79:6f:0f:b1:bd:91:06:2d:96: 09:0c:74:f1:10:bc:91:5b:d8:5a:96:5e:a5:69:ff: 5d:bb:16:fe:da:d4:a7:cf:ee:2b:61:42:46:e1:58: 3e:35:d6:f3:e5:66:41:10:27:4a:a8:52:68:e0:d2: b7:a7:8c:7a:b8:08:5e:bc:59:c6:d9:81:df:26:77: 51:f1:9c:3e:7a:c9:52:a8:04:dc:a4:94:5f:34:ee: 02:79:68:35:c0:e3:ac:d9:c1:7a:96:17:eb:f4:2f: a4:6a:f5:a4:78:65:f2:4c:f3:46:1c:56:ad:db:4d: 5b:9c:96:d3:a2:ef:a4:5d:ae:98:ea:61:52:10:6c: e6:0d:95:a9:b6:8b:13:49:f9:c1:3a:4a:bd:b3:5c: aa:5e:27:e1:94:10:cd:74:76:dd:eb:00:f1:54:f1: f9:13:f6:0a:3d:94:03:a2:a3:45:6d:95:01:a9:7e: 67:19:fc:8c:32:ee:0b:88:de:bd:b4:54:34:d7:53: cd:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:C2:47:67:AA:40:6A:19:AA:10:E2:40:93:D8:FA:6E:BC:D2:FF:D8 X509v3 Authority Key Identifier: keyid:6E:12:35:C8:FC:3F:2E:F6:D9:D2:45:D0:60:7A:A6:D7:63:C5:D4:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/3130332e3135362e3232372e302f32342d3234203d3e203435373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.227.0/24 Signature Algorithm: sha256WithRSAEncryption 35:75:5c:22:d4:9a:2d:71:33:40:ff:11:88:5c:f4:af:1a:ac: 9e:15:53:3e:f9:d7:50:8f:b2:d7:e4:56:d4:64:be:ed:80:69: 00:1b:5a:8e:d7:14:16:6b:a4:39:84:d0:91:21:bf:07:2f:54: 4f:59:cd:95:3c:0b:29:97:50:d0:82:19:34:25:df:4f:47:0f: 06:48:15:7b:bf:13:61:11:b1:7f:e0:08:b8:3f:8b:e4:99:df: fe:52:d3:18:77:e2:65:6e:36:81:1a:55:83:e4:7a:44:b3:b2: a8:3d:18:e4:dd:89:e3:97:d6:c1:86:e8:83:7a:59:55:96:c2: 90:56:5d:ec:6a:a2:53:d4:ad:ea:99:f9:aa:74:03:bb:5e:b5: d0:09:d0:be:68:0b:c8:44:46:e4:6d:1c:b0:fb:16:df:a3:f5: 3e:b3:3b:8c:d8:99:56:4d:58:93:4c:ee:51:33:6a:39:20:f3: b7:d7:15:7e:74:f5:d1:75:11:b3:49:23:84:43:f9:5c:eb:37: b2:80:43:1d:ab:b7:f5:d5:4b:04:e9:31:02:87:65:79:5e:86: ce:0b:e5:47:65:05:fb:b0:b4:8e:2a:3e:5c:30:ad:7f:32:ad: 8c:e1:7e:07:6a:79:42:d5:1e:5c:4f:bc:48:80:92:ae:3e:3e: a4:f1:16:7d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSHj1XmL9g4xNwKeR4EBWm7A6guQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkUxMjM1QzhGQzNGMkVGNkQ5RDI0NUQwNjA3QUE2RDc2 M0M1RDRFNzAeFw0yNDEwMDEwMDU1MDFaFw0yNTA5MzAwMTAwMDFaMDMxMTAvBgNV BAMTKEI3QzI0NzY3QUE0MDZBMTlBQTEwRTI0MDkzRDhGQTZFQkNEMkZGRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUxzcOtUQfHg/0PxvYmsjmX2sd 9JNbxFFLIBurRFG8/zMTYcqXCe9Yb2oFHUXYfrA0FYk6Kb7VHhyMiO4ff7EMCXlv D7G9kQYtlgkMdPEQvJFb2FqWXqVp/127Fv7a1KfP7ithQkbhWD411vPlZkEQJ0qo Umjg0renjHq4CF68WcbZgd8md1HxnD56yVKoBNyklF807gJ5aDXA46zZwXqWF+v0 L6Rq9aR4ZfJM80YcVq3bTVucltOi76RdrpjqYVIQbOYNlam2ixNJ+cE6Sr2zXKpe J+GUEM10dt3rAPFU8fkT9go9lAOio0VtlQGpfmcZ/Iwy7guI3r20VDTXU83HAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUt8JHZ6pAahmqEOJAk9j6brzS/9gwHwYDVR0j BBgwFoAUbhI1yPw/LvbZ0kXQYHqm12PF1OcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTM1NWM1YS1lZmM4LTQ4ZjctOTAyZi02ZTMxZmM0Mjk5NWEvMC82RTEyMzVDOEZD M0YyRUY2RDlEMjQ1RDA2MDdBQTZENzYzQzVENEU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkUxMjM1QzhGQzNGMkVGNkQ5RDI0NUQwNjA3QUE2RDc2M0M1 RDRFNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1MzU1YzVhLWVmYzgtNDhmNy05 MDJmLTZlMzFmYzQyOTk1YS8wLzMxMzAzMzJlMzEzNTM2MmUzMjMyMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzczMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5zjMA0GCSqG SIb3DQEBCwUAA4IBAQA1dVwi1JotcTNA/xGIXPSvGqyeFVM++ddQj7LX5FbUZL7t gGkAG1qO1xQWa6Q5hNCRIb8HL1RPWc2VPAspl1DQghk0Jd9PRw8GSBV7vxNhEbF/ 4Ai4P4vkmd/+UtMYd+JlbjaBGlWD5HpEs7KoPRjk3Ynjl9bBhuiDellVlsKQVl3s aqJT1K3qmfmqdAO7XrXQCdC+aAvIREbkbRyw+xbfo/U+szuM2JlWTViTTO5RM2o5 IPO31xV+dPXRdRGzSSOEQ/lc6zeygEMdq7f11UsE6TECh2V5XobOC+VHZQX7sLSO Kj5cMK1/Mq2M4X4HanlC1R5cT7xIgJKuPj6k8RZ9 -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org