$ rpki-client -vvf repo-rpki.idnic.net/repo/b6e504c5-d7ba-4fe9-9e56-792dc01a97cb/0/3130332e37352e35352e302f32342d3234203d3e203436303233.roa File: 3130332e37352e35352e302f32342d3234203d3e203436303233.roa (raw, json) Hash identifier: Wy3XFvvxWlmSMqptgoEgqs9HlG+jenjszHddJNByUP8= Subject key identifier: 27:E4:14:14:03:F6:27:4D:0F:53:AC:ED:89:F7:81:FC:AE:7B:2E:E1 Certificate issuer: /CN=154CAF946B4FEF9C2EE0FFA245BBA429C03B4D2A Certificate serial: 4DC7DE6DB355B0E42B00195A15682C1FF77FFD86 Authority key identifier: 15:4C:AF:94:6B:4F:EF:9C:2E:E0:FF:A2:45:BB:A4:29:C0:3B:4D:2A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154CAF946B4FEF9C2EE0FFA245BBA429C03B4D2A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b6e504c5-d7ba-4fe9-9e56-792dc01a97cb/0/3130332e37352e35352e302f32342d3234203d3e203436303233.roa Signing time: Wed 13 Nov 2024 09:19:49 +0000 ROA not before: Wed 13 Nov 2024 09:14:49 +0000 ROA not after: Wed 12 Nov 2025 09:19:49 +0000 asID: 46023 IP address blocks: 103.75.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b6e504c5-d7ba-4fe9-9e56-792dc01a97cb/0/154CAF946B4FEF9C2EE0FFA245BBA429C03B4D2A.crl rsync://repo-rpki.idnic.net/repo/b6e504c5-d7ba-4fe9-9e56-792dc01a97cb/0/154CAF946B4FEF9C2EE0FFA245BBA429C03B4D2A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154CAF946B4FEF9C2EE0FFA245BBA429C03B4D2A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:c7:de:6d:b3:55:b0:e4:2b:00:19:5a:15:68:2c:1f:f7:7f:fd:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=154CAF946B4FEF9C2EE0FFA245BBA429C03B4D2A Validity Not Before: Nov 13 09:14:49 2024 GMT Not After : Nov 12 09:19:49 2025 GMT Subject: CN=27E4141403F6274D0F53ACED89F781FCAE7B2EE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:b4:de:20:43:87:89:7a:bf:e8:c0:d0:17:2d: 91:9d:2d:06:a9:d1:e2:34:b8:2e:00:4d:34:c4:42: d8:ab:29:08:85:9d:12:6d:ba:00:15:e2:72:8f:40: 8e:4f:93:8d:d8:63:97:77:80:29:e4:8c:b8:2e:ad: 3e:9d:80:5a:50:31:7e:43:9c:03:d6:f5:5c:7b:da: 23:0b:0e:55:62:cf:f7:c7:ae:43:7b:20:a2:bc:c8: 86:4d:8e:0b:bd:74:4e:4b:e2:2a:dd:38:30:6c:04: 73:71:24:33:24:f1:a7:a3:6c:4d:c5:2d:da:81:d2: 92:aa:86:3b:64:f4:4b:9e:82:4a:39:c4:42:be:c6: e9:f6:22:3b:73:2b:a4:22:23:56:30:bc:da:27:75: 76:80:37:31:39:10:95:76:bc:bf:f2:2e:9d:53:34: bf:93:6a:0d:64:2a:1c:84:7f:af:cb:18:cb:02:78: 04:a2:28:7d:ee:08:ee:9d:2c:74:98:f4:97:c2:a1: c6:6c:8a:2a:68:4b:2b:28:fa:0c:f6:dc:84:4d:2e: de:c0:c4:40:bc:c3:77:59:af:92:17:43:ec:58:7b: 24:07:26:74:d6:df:12:0e:b5:6c:71:b8:c5:6d:34: c7:1c:10:07:91:da:61:33:a6:2d:84:59:0e:1e:54: 7b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:E4:14:14:03:F6:27:4D:0F:53:AC:ED:89:F7:81:FC:AE:7B:2E:E1 X509v3 Authority Key Identifier: keyid:15:4C:AF:94:6B:4F:EF:9C:2E:E0:FF:A2:45:BB:A4:29:C0:3B:4D:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b6e504c5-d7ba-4fe9-9e56-792dc01a97cb/0/154CAF946B4FEF9C2EE0FFA245BBA429C03B4D2A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154CAF946B4FEF9C2EE0FFA245BBA429C03B4D2A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b6e504c5-d7ba-4fe9-9e56-792dc01a97cb/0/3130332e37352e35352e302f32342d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.75.55.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:3b:fb:a2:20:c5:94:a9:c4:37:86:c3:d1:97:67:c8:05:4b: 3f:79:e6:55:82:66:e2:e1:4f:d3:a2:46:f7:fa:c6:b8:42:d7: 2d:a9:a6:1f:a9:40:c0:b3:e7:45:6c:f3:9d:86:99:ac:75:29: 38:d5:73:6f:be:e1:ee:d9:30:41:b1:fd:78:3d:31:e4:82:01: 1c:34:fd:86:52:d6:b4:c5:6a:f8:79:59:b8:42:96:b4:27:a0: 5f:fb:6a:8a:27:08:7e:d3:d5:65:0c:24:68:ff:8f:3f:e6:90: dc:9a:0f:89:a2:4e:6c:f9:b6:38:cc:e7:90:f7:e0:e3:9f:a9: 6f:85:fe:8e:e4:0c:7a:da:bf:be:d4:8d:28:06:3f:99:f8:01: af:5b:4b:54:29:d8:bf:1a:30:cb:e4:b3:25:50:1a:f1:ae:76: 50:e0:d2:c9:8a:ea:9f:8b:fc:5d:87:63:93:fc:df:c0:33:e1: a7:82:2f:c2:b0:06:1e:f1:fc:4c:c5:91:a7:96:ab:a4:c1:15: 31:a6:d1:f6:e5:15:20:54:52:9e:99:80:82:34:a3:fd:1d:97: b4:86:3c:00:2d:7e:21:5f:68:23:20:37:4a:56:bc:9a:c9:d7: dd:b8:53:19:bd:04:70:f8:41:bd:ab:2b:27:61:b3:f9:b5:c1: 1a:84:d8:73 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUTcfebbNVsOQrABlaFWgsH/d//YYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU0Q0FGOTQ2QjRGRUY5QzJFRTBGRkEyNDVCQkE0MjlD MDNCNEQyQTAeFw0yNDExMTMwOTE0NDlaFw0yNTExMTIwOTE5NDlaMDMxMTAvBgNV BAMTKDI3RTQxNDE0MDNGNjI3NEQwRjUzQUNFRDg5Rjc4MUZDQUU3QjJFRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwtN4gQ4eJer/owNAXLZGdLQap 0eI0uC4ATTTEQtirKQiFnRJtugAV4nKPQI5Pk43YY5d3gCnkjLgurT6dgFpQMX5D nAPW9Vx72iMLDlViz/fHrkN7IKK8yIZNjgu9dE5L4irdODBsBHNxJDMk8aejbE3F LdqB0pKqhjtk9Euegko5xEK+xun2IjtzK6QiI1YwvNondXaANzE5EJV2vL/yLp1T NL+Tag1kKhyEf6/LGMsCeASiKH3uCO6dLHSY9JfCocZsiipoSyso+gz23IRNLt7A xEC8w3dZr5IXQ+xYeyQHJnTW3xIOtWxxuMVtNMccEAeR2mEzpi2EWQ4eVHtBAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUJ+QUFAP2J00PU6ztifeB/K57LuEwHwYDVR0j BBgwFoAUFUyvlGtP75wu4P+iRbukKcA7TSowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NmU1MDRjNS1kN2JhLTRmZTktOWU1Ni03OTJkYzAxYTk3Y2IvMC8xNTRDQUY5NDZC NEZFRjlDMkVFMEZGQTI0NUJCQTQyOUMwM0I0RDJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU0Q0FGOTQ2QjRGRUY5QzJFRTBGRkEyNDVCQkE0MjlDMDNC NEQyQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I2ZTUwNGM1LWQ3YmEtNGZlOS05 ZTU2LTc5MmRjMDFhOTdjYi8wLzMxMzAzMzJlMzczNTJlMzUzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnSzcwDQYJKoZIhvcN AQELBQADggEBAA07+6IgxZSpxDeGw9GXZ8gFSz955lWCZuLhT9OiRvf6xrhC1y2p ph+pQMCz50Vs852Gmax1KTjVc2++4e7ZMEGx/Xg9MeSCARw0/YZS1rTFavh5WbhC lrQnoF/7aoonCH7T1WUMJGj/jz/mkNyaD4miTmz5tjjM55D34OOfqW+F/o7kDHra v77UjSgGP5n4Aa9bS1Qp2L8aMMvksyVQGvGudlDg0smK6p+L/F2HY5P838Az4aeC L8KwBh7x/EzFkaeWq6TBFTGm0fblFSBUUp6ZgII0o/0dl7SGPAAtfiFfaCMgN0pW vJrJ1924Uxm9BHD4Qb2rKydhs/m1wRqE2HM= -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:40 2024 by rpki-client on console-fra.rpki-client.org