$ rpki-client -vvf repo-rpki.idnic.net/repo/fe7cc976-69f6-4db8-a7ab-856a2bb8eafe/0/3130332e3132372e3136382e302f32332d3234203d3e203435323837.roa File: 3130332e3132372e3136382e302f32332d3234203d3e203435323837.roa (raw, json) Hash identifier: Tyd8yGn8ZfrP241mEe0h/elBdiYSCQvBo3OP5Lp2rl4= Subject key identifier: AD:5B:F1:61:C3:3B:2D:C1:E0:25:D2:29:CB:B5:C2:13:0E:35:DA:16 Certificate issuer: /CN=54A1848904113F647F5C294B41B7D143112C7137 Certificate serial: 32CB622521C5CDADF71EB741FD2D59CAD7036305 Authority key identifier: 54:A1:84:89:04:11:3F:64:7F:5C:29:4B:41:B7:D1:43:11:2C:71:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/54A1848904113F647F5C294B41B7D143112C7137.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fe7cc976-69f6-4db8-a7ab-856a2bb8eafe/0/3130332e3132372e3136382e302f32332d3234203d3e203435323837.roa Signing time: Wed 27 Dec 2023 04:00:44 +0000 ROA not before: Wed 27 Dec 2023 03:55:44 +0000 ROA not after: Wed 25 Dec 2024 04:00:44 +0000 asID: 45287 IP address blocks: 103.127.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fe7cc976-69f6-4db8-a7ab-856a2bb8eafe/0/54A1848904113F647F5C294B41B7D143112C7137.crl rsync://repo-rpki.idnic.net/repo/fe7cc976-69f6-4db8-a7ab-856a2bb8eafe/0/54A1848904113F647F5C294B41B7D143112C7137.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/54A1848904113F647F5C294B41B7D143112C7137.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:cb:62:25:21:c5:cd:ad:f7:1e:b7:41:fd:2d:59:ca:d7:03:63:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54A1848904113F647F5C294B41B7D143112C7137 Validity Not Before: Dec 27 03:55:44 2023 GMT Not After : Dec 25 04:00:44 2024 GMT Subject: CN=AD5BF161C33B2DC1E025D229CBB5C2130E35DA16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3d:68:ae:e6:3e:b4:a8:d4:33:af:e9:d2:27: 00:22:26:ed:70:ca:24:64:e6:3c:1b:29:dc:37:8c: 1a:02:b4:23:59:e2:0e:32:c9:2f:54:d5:38:26:76: 63:ed:a0:14:31:fc:ad:7a:a4:62:65:9b:01:42:b4: 93:44:d0:30:cd:79:bc:26:fd:d7:a7:4b:ab:6c:9c: 04:c4:c3:02:d6:06:cf:55:a1:81:b2:d9:7e:46:50: 89:dd:29:65:8e:a8:dc:74:20:b6:fe:c2:78:ed:d6: ad:c2:cc:41:62:7b:4d:1c:8f:5a:5c:ad:3b:13:65: 70:fd:71:b8:57:8e:cd:88:a9:db:ac:f7:93:67:74: ea:b8:a1:d8:26:86:cd:e9:4a:0a:f0:43:76:06:e6: 41:25:cb:4f:f5:59:1e:5e:35:c8:cf:31:35:c6:ba: 54:ee:38:9c:6f:a1:78:d4:1b:ab:65:16:7a:b7:4a: f7:9d:d8:d2:41:39:6d:34:28:43:db:a1:11:a1:0e: 00:bb:bd:fc:69:5f:f9:73:21:c0:3f:d8:7d:ed:eb: ad:e8:fa:33:4b:bb:b6:ef:3a:93:c2:19:10:85:86: f7:81:15:6e:24:19:d7:d2:c0:e5:60:08:cc:c5:4e: 1d:c5:d6:69:a5:ac:e6:28:61:fa:96:81:1d:e8:f9: 91:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:5B:F1:61:C3:3B:2D:C1:E0:25:D2:29:CB:B5:C2:13:0E:35:DA:16 X509v3 Authority Key Identifier: keyid:54:A1:84:89:04:11:3F:64:7F:5C:29:4B:41:B7:D1:43:11:2C:71:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fe7cc976-69f6-4db8-a7ab-856a2bb8eafe/0/54A1848904113F647F5C294B41B7D143112C7137.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/54A1848904113F647F5C294B41B7D143112C7137.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fe7cc976-69f6-4db8-a7ab-856a2bb8eafe/0/3130332e3132372e3136382e302f32332d3234203d3e203435323837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.127.168.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:7f:d4:72:97:04:af:29:20:71:1e:c4:94:bf:d5:b3:fd:1c: 85:2d:7a:e5:0f:c0:3a:40:b0:bd:53:f5:89:6a:da:22:2b:fd: 4f:fe:3b:a1:eb:39:c1:71:22:a2:25:cb:ba:de:c3:0f:ac:1e: b3:85:4a:88:85:05:36:a7:ea:cc:cc:5e:ab:6a:86:d9:fa:59: 34:f5:7e:e4:1a:a2:1f:8e:00:f0:b9:91:e6:39:72:e1:0d:cc: 1b:a7:f6:77:fa:67:79:be:ee:fe:f1:f2:a8:86:9f:5b:b4:f4: bd:e9:e4:22:1d:53:b6:01:fe:dc:7c:cd:37:24:77:37:a4:e6: d5:61:9c:a7:cd:00:d6:a6:46:5c:dc:05:65:ef:19:c4:cf:45: 89:ff:a3:4c:e4:8e:5d:15:d4:ed:5f:30:a5:d0:d4:88:e6:d5: 6c:9e:6a:f3:f0:63:15:33:37:ad:89:d9:7d:64:82:b7:37:9c: 58:50:a2:cf:4a:8c:24:b3:86:3e:42:7d:08:a8:ae:e0:07:6a: 99:e4:27:01:54:ad:fe:40:96:ee:ea:6d:47:6e:ee:10:19:ea: 0d:68:9d:b4:cd:14:bd:e2:9a:a0:24:12:9a:88:01:a3:df:b5: f8:2f:c2:30:af:58:b4:74:76:ff:9d:52:dd:ee:9b:a5:0a:a6: 7d:64:65:ce -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMstiJSHFza33HrdB/S1ZytcDYwUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTRBMTg0ODkwNDExM0Y2NDdGNUMyOTRCNDFCN0QxNDMx MTJDNzEzNzAeFw0yMzEyMjcwMzU1NDRaFw0yNDEyMjUwNDAwNDRaMDMxMTAvBgNV BAMTKEFENUJGMTYxQzMzQjJEQzFFMDI1RDIyOUNCQjVDMjEzMEUzNURBMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1PWiu5j60qNQzr+nSJwAiJu1w yiRk5jwbKdw3jBoCtCNZ4g4yyS9U1TgmdmPtoBQx/K16pGJlmwFCtJNE0DDNebwm /denS6tsnATEwwLWBs9VoYGy2X5GUIndKWWOqNx0ILb+wnjt1q3CzEFie00cj1pc rTsTZXD9cbhXjs2Iqdus95NndOq4odgmhs3pSgrwQ3YG5kEly0/1WR5eNcjPMTXG ulTuOJxvoXjUG6tlFnq3Sved2NJBOW00KEPboRGhDgC7vfxpX/lzIcA/2H3t663o +jNLu7bvOpPCGRCFhveBFW4kGdfSwOVgCMzFTh3F1mmlrOYoYfqWgR3o+ZFBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrVvxYcM7LcHgJdIpy7XCEw412hYwHwYDVR0j BBgwFoAUVKGEiQQRP2R/XClLQbfRQxEscTcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZTdjYzk3Ni02OWY2LTRkYjgtYTdhYi04NTZhMmJiOGVhZmUvMC81NEExODQ4OTA0 MTEzRjY0N0Y1QzI5NEI0MUI3RDE0MzExMkM3MTM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTRBMTg0ODkwNDExM0Y2NDdGNUMyOTRCNDFCN0QxNDMxMTJD NzEzNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZlN2NjOTc2LTY5ZjYtNGRiOC1h N2FiLTg1NmEyYmI4ZWFmZS8wLzMxMzAzMzJlMzEzMjM3MmUzMTM2MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNDM1MzIzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ3+oMA0GCSqG SIb3DQEBCwUAA4IBAQCef9RylwSvKSBxHsSUv9Wz/RyFLXrlD8A6QLC9U/WJatoi K/1P/juh6znBcSKiJcu63sMPrB6zhUqIhQU2p+rMzF6raobZ+lk09X7kGqIfjgDw uZHmOXLhDcwbp/Z3+md5vu7+8fKohp9btPS96eQiHVO2Af7cfM03JHc3pObVYZyn zQDWpkZc3AVl7xnEz0WJ/6NM5I5dFdTtXzCl0NSI5tVsnmrz8GMVMzetidl9ZIK3 N5xYUKLPSowks4Y+Qn0IqK7gB2qZ5CcBVK3+QJbu6m1Hbu4QGeoNaJ20zRS94pqg JBKaiAGj37X4L8Iwr1i0dHb/nVLd7pulCqZ9ZGXO -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:16 2024 by rpki-client on console-ams.rpki-client.org