$ rpki-client -vvf repo-rpki.idnic.net/repo/d6f4767d-e84f-4210-8423-40696618f377/0/3130332e31352e3231342e302f32342d3234203d3e20313335343737.roa File: 3130332e31352e3231342e302f32342d3234203d3e20313335343737.roa (raw, json) Hash identifier: h/uy7fDq50r7e+j8rs3WUchCkceLYr7uM1RGCqWPN9Y= Subject key identifier: 84:12:EE:80:79:DF:25:DC:39:D6:68:10:0E:42:40:C6:76:B7:94:07 Certificate issuer: /CN=A777F080277567701C7EF464D9A7351ADB0B538E Certificate serial: 27491011A20E843DAE3EA66ECBF4D5DCFA5DDF22 Authority key identifier: A7:77:F0:80:27:75:67:70:1C:7E:F4:64:D9:A7:35:1A:DB:0B:53:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A777F080277567701C7EF464D9A7351ADB0B538E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d6f4767d-e84f-4210-8423-40696618f377/0/3130332e31352e3231342e302f32342d3234203d3e20313335343737.roa Signing time: Thu 13 Jun 2024 04:00:01 +0000 ROA not before: Thu 13 Jun 2024 03:55:01 +0000 ROA not after: Thu 12 Jun 2025 04:00:01 +0000 asID: 135477 IP address blocks: 103.15.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d6f4767d-e84f-4210-8423-40696618f377/0/A777F080277567701C7EF464D9A7351ADB0B538E.crl rsync://repo-rpki.idnic.net/repo/d6f4767d-e84f-4210-8423-40696618f377/0/A777F080277567701C7EF464D9A7351ADB0B538E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A777F080277567701C7EF464D9A7351ADB0B538E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 05:17:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:49:10:11:a2:0e:84:3d:ae:3e:a6:6e:cb:f4:d5:dc:fa:5d:df:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A777F080277567701C7EF464D9A7351ADB0B538E Validity Not Before: Jun 13 03:55:01 2024 GMT Not After : Jun 12 04:00:01 2025 GMT Subject: CN=8412EE8079DF25DC39D668100E4240C676B79407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:72:bb:74:9d:ca:b9:c7:64:e4:3a:74:85:c4: 6f:76:5b:bc:72:bf:f5:e8:23:d5:06:98:f1:0a:bc: cb:30:f8:71:65:13:7e:a0:0b:23:04:ef:9f:92:c7: ce:ef:e1:30:ed:64:d7:a1:d5:b9:5c:e7:b0:4a:6e: 31:b9:98:71:cb:ba:47:34:bc:1f:b5:c9:e6:43:f8: 9f:2c:55:41:ac:c3:5f:9b:c7:5c:a0:a7:6d:80:8a: 91:a1:ce:cf:a2:6c:5b:cf:bd:15:19:66:1a:61:36: b6:6a:35:08:d3:0d:e1:3e:ec:55:44:28:47:2a:4b: 5e:01:4e:f6:26:74:0b:6f:d4:e8:5a:8c:1d:b6:ed: 25:90:52:1e:8d:ba:9b:fc:cc:17:ee:86:c0:d1:33: d1:c8:5a:d2:0b:ab:af:3c:26:ee:92:6f:4a:05:8e: 33:9d:8c:1e:24:b0:c3:ac:d0:e0:fc:38:5a:62:5b: 80:b9:36:3a:3d:1a:6c:2e:e9:88:a4:7c:58:52:8f: 50:76:7e:69:f8:46:7f:02:15:3c:36:64:dc:d1:84: 9f:c7:55:1b:45:c9:26:53:93:84:db:97:32:a5:32: 3c:93:98:51:75:5c:26:a3:4d:3c:fd:30:7b:cb:8d: 0d:ed:5f:49:9d:d8:a0:86:18:74:8b:a5:b4:4d:09: fd:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:12:EE:80:79:DF:25:DC:39:D6:68:10:0E:42:40:C6:76:B7:94:07 X509v3 Authority Key Identifier: keyid:A7:77:F0:80:27:75:67:70:1C:7E:F4:64:D9:A7:35:1A:DB:0B:53:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d6f4767d-e84f-4210-8423-40696618f377/0/A777F080277567701C7EF464D9A7351ADB0B538E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A777F080277567701C7EF464D9A7351ADB0B538E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d6f4767d-e84f-4210-8423-40696618f377/0/3130332e31352e3231342e302f32342d3234203d3e20313335343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.15.214.0/24 Signature Algorithm: sha256WithRSAEncryption 63:bf:10:dd:87:00:13:01:f3:90:51:ed:9d:de:f3:e7:45:5f: ec:63:2d:c1:8a:91:bd:3c:ba:dd:ac:fc:c6:77:a6:e7:44:10: 34:51:25:d6:ff:21:24:5e:f8:98:03:b9:46:c1:28:25:b2:0b: d0:21:14:eb:89:af:05:9c:5e:45:92:0d:8e:4e:07:8d:a7:2b: 83:64:9d:78:89:76:8a:15:4a:dc:5d:a7:68:1f:73:c7:4e:0a: 4e:fe:7b:2a:7f:73:f1:34:a9:7e:af:e8:0e:06:d6:39:24:d8: af:f9:e9:4d:a2:42:38:44:06:51:47:45:4a:b1:c2:80:3c:c1: bd:82:c3:9c:db:e6:49:46:6e:06:ec:32:90:28:1e:49:81:27: ba:f7:32:5f:db:7d:5c:49:74:04:38:69:23:d8:b9:98:1e:a2: e2:bb:9c:98:f7:f6:54:6f:9e:0d:e6:02:93:48:d7:b5:d1:f8: 51:ad:da:ba:d2:43:af:f0:6a:cb:ba:34:00:bb:9d:f4:b2:e4: f8:ec:b4:08:f2:99:b2:44:b6:30:c3:39:7b:35:1a:17:0f:a4: 66:b5:9b:24:ba:2f:75:a0:77:76:f7:9c:d8:5f:ac:6f:74:1e: e5:6c:ef:86:2d:73:ec:0f:31:2c:da:51:e6:0c:bf:91:98:ed: 49:58:16:65 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJ0kQEaIOhD2uPqZuy/TV3Ppd3yIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTc3N0YwODAyNzc1Njc3MDFDN0VGNDY0RDlBNzM1MUFE QjBCNTM4RTAeFw0yNDA2MTMwMzU1MDFaFw0yNTA2MTIwNDAwMDFaMDMxMTAvBgNV BAMTKDg0MTJFRTgwNzlERjI1REMzOUQ2NjgxMDBFNDI0MEM2NzZCNzk0MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdcrt0ncq5x2TkOnSFxG92W7xy v/XoI9UGmPEKvMsw+HFlE36gCyME75+Sx87v4TDtZNeh1blc57BKbjG5mHHLukc0 vB+1yeZD+J8sVUGsw1+bx1ygp22AipGhzs+ibFvPvRUZZhphNrZqNQjTDeE+7FVE KEcqS14BTvYmdAtv1OhajB227SWQUh6Nupv8zBfuhsDRM9HIWtILq688Ju6Sb0oF jjOdjB4ksMOs0OD8OFpiW4C5Njo9Gmwu6YikfFhSj1B2fmn4Rn8CFTw2ZNzRhJ/H VRtFySZTk4TblzKlMjyTmFF1XCajTTz9MHvLjQ3tX0md2KCGGHSLpbRNCf2TAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhBLugHnfJdw51mgQDkJAxna3lAcwHwYDVR0j BBgwFoAUp3fwgCd1Z3AcfvRk2ac1GtsLU44wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NmY0NzY3ZC1lODRmLTQyMTAtODQyMy00MDY5NjYxOGYzNzcvMC9BNzc3RjA4MDI3 NzU2NzcwMUM3RUY0NjREOUE3MzUxQURCMEI1MzhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTc3N0YwODAyNzc1Njc3MDFDN0VGNDY0RDlBNzM1MUFEQjBC NTM4RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2ZjQ3NjdkLWU4NGYtNDIxMC04 NDIzLTQwNjk2NjE4ZjM3Ny8wLzMxMzAzMzJlMzEzNTJlMzIzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZw/WMA0GCSqG SIb3DQEBCwUAA4IBAQBjvxDdhwATAfOQUe2d3vPnRV/sYy3BipG9PLrdrPzGd6bn RBA0USXW/yEkXviYA7lGwSglsgvQIRTria8FnF5Fkg2OTgeNpyuDZJ14iXaKFUrc XadoH3PHTgpO/nsqf3PxNKl+r+gOBtY5JNiv+elNokI4RAZRR0VKscKAPMG9gsOc 2+ZJRm4G7DKQKB5JgSe69zJf231cSXQEOGkj2LmYHqLiu5yY9/ZUb54N5gKTSNe1 0fhRrdq60kOv8GrLujQAu530suT47LQI8pmyRLYwwzl7NRoXD6RmtZskui91oHd2 95zYX6xvdB7lbO+GLXPsDzEs2lHmDL+RmO1JWBZl -----END CERTIFICATE-----Generated at Sat Nov 23 05:00:45 2024 by rpki-client on console-fra.rpki-client.org