$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232302e302f32332d3233203d3e203538333639.roa File: 32372e3132332e3232302e302f32332d3233203d3e203538333639.roa (raw, json) Hash identifier: NNdSuqw9IEZIpuMJI4Kbjd7FbcPvPCqTofcevXppCJM= Subject key identifier: 5B:EB:D9:AA:94:64:31:B6:E9:3C:8F:2B:7D:0E:55:B7:89:9D:50:85 Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Certificate serial: 25E0BE278B3E379C78C4D3C46E5E9BB13CAB9F71 Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232302e302f32332d3233203d3e203538333639.roa Signing time: Mon 31 Jul 2023 00:07:30 +0000 ROA not before: Mon 31 Jul 2023 00:02:30 +0000 ROA not after: Mon 29 Jul 2024 00:07:30 +0000 asID: 58369 IP address blocks: 27.123.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Apr 2024 17:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:e0:be:27:8b:3e:37:9c:78:c4:d3:c4:6e:5e:9b:b1:3c:ab:9f:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Validity Not Before: Jul 31 00:02:30 2023 GMT Not After : Jul 29 00:07:30 2024 GMT Subject: CN=5BEBD9AA946431B6E93C8F2B7D0E55B7899D5085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:91:9a:59:41:84:ff:57:e7:8d:c7:9f:81:6c: f5:da:97:a4:47:44:39:a4:f5:00:b3:62:94:aa:7e: 6b:4b:37:f6:e7:29:20:69:6b:34:2d:7f:4b:99:ca: 99:cf:e3:70:03:26:f1:09:74:78:f3:d2:a3:61:5d: 76:f1:cb:21:9e:81:ee:f0:fe:07:68:72:2f:cd:da: ac:37:25:31:88:f5:6b:3c:7b:72:a3:18:04:74:e1: c1:73:33:e1:59:14:1d:2e:72:4c:e5:d5:6d:64:ad: da:4f:4b:aa:07:18:86:18:79:ea:a4:62:53:68:f7: e4:f9:83:3e:e4:4e:3d:2d:18:85:01:f7:04:77:d1: f9:c8:df:c1:7a:a6:8c:8b:fe:3e:4c:88:7b:fc:ad: 54:2d:3b:46:77:d3:12:a9:2e:aa:00:cf:2d:c7:13: c5:67:4e:91:ca:a5:75:81:69:b4:eb:bf:51:9c:8f: 25:bc:69:06:06:9e:0e:2d:d4:84:14:78:97:05:f1: 3b:4c:28:46:82:49:e9:fc:62:3b:e1:b0:bb:b4:86: 5f:5e:47:e0:1f:aa:40:e2:bc:cf:33:b9:8b:78:2b: dd:3e:05:34:6b:7b:db:ee:4e:da:b9:67:43:dd:f8: c0:9a:8a:84:3e:26:d6:2b:b6:0c:65:d9:c5:06:db: 1b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:EB:D9:AA:94:64:31:B6:E9:3C:8F:2B:7D:0E:55:B7:89:9D:50:85 X509v3 Authority Key Identifier: keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232302e302f32332d3233203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.123.220.0/23 Signature Algorithm: sha256WithRSAEncryption 90:ab:a5:44:f0:06:e8:d9:76:1a:cc:bb:b3:7a:4c:1b:23:df: cf:1e:19:9a:b3:c0:26:d9:b3:79:c0:5b:cd:47:3f:a6:ad:a6: 7f:86:37:f3:9f:50:71:f4:54:b1:e5:c4:4e:e7:5c:d3:4d:8c: 4b:06:14:8c:4f:6d:f3:0e:40:34:e1:b6:6b:53:54:1d:ae:31: af:0d:4c:d2:0a:0a:dc:1d:a4:12:04:09:73:1c:92:c9:59:b1: 67:65:7b:3c:01:8d:2a:81:27:7e:b5:d1:5f:ae:de:be:1e:7d: 14:d6:d1:78:ad:ee:54:8b:66:c7:3a:95:22:e2:70:04:bc:78: 72:24:72:fe:f6:12:4f:8f:d8:d6:79:c8:1f:08:fc:cd:e3:12: 4f:56:ab:dd:1e:28:1f:9e:01:5d:69:a3:86:16:c8:97:58:c4: 06:5f:d6:f5:5f:22:77:bf:42:ca:30:82:f2:63:01:f5:c6:c2: 67:82:7e:0a:00:cb:67:b0:c2:c8:18:a8:58:a9:00:20:bf:f6: de:d2:d5:8e:d8:e7:05:b3:c6:17:5e:0d:81:f7:9a:c6:23:1d: 19:18:c2:3e:e2:4d:c1:34:ff:6a:15:20:45:a2:d6:55:a9:c6: 40:32:51:b7:e4:79:09:b0:d0:60:c3:1f:c3:cf:e8:04:38:21: 66:a4:5f:4c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJeC+J4s+N5x4xNPEbl6bsTyrn3EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNE MjJEMDRCODAeFw0yMzA3MzEwMDAyMzBaFw0yNDA3MjkwMDA3MzBaMDMxMTAvBgNV BAMTKDVCRUJEOUFBOTQ2NDMxQjZFOTNDOEYyQjdEMEU1NUI3ODk5RDUwODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7kZpZQYT/V+eNx5+BbPXal6RH RDmk9QCzYpSqfmtLN/bnKSBpazQtf0uZypnP43ADJvEJdHjz0qNhXXbxyyGege7w /gdoci/N2qw3JTGI9Ws8e3KjGAR04cFzM+FZFB0uckzl1W1krdpPS6oHGIYYeeqk YlNo9+T5gz7kTj0tGIUB9wR30fnI38F6poyL/j5MiHv8rVQtO0Z30xKpLqoAzy3H E8VnTpHKpXWBabTrv1GcjyW8aQYGng4t1IQUeJcF8TtMKEaCSen8YjvhsLu0hl9e R+AfqkDivM8zuYt4K90+BTRre9vuTtq5Z0Pd+MCaioQ+JtYrtgxl2cUG2xvtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUW+vZqpRkMbbpPI8rfQ5Vt4mdUIUwHwYDVR0j BBgwFoAUoJWppxgGlWyQXVz3y3l4Q9ItBLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmE4MTE4Mi03Y2ViLTQ2NWMtYTViNS1hMTRlYzczOWJmOTkvMC9BMDk1QTlBNzE4 MDY5NTZDOTA1RDVDRjdDQjc5Nzg0M0QyMkQwNEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNEMjJE MDRCOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMyMzcyZTMxMzIzMzJlMzIzMjMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzUzODMzMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEARt73DANBgkqhkiG 9w0BAQsFAAOCAQEAkKulRPAG6Nl2Gsy7s3pMGyPfzx4ZmrPAJtmzecBbzUc/pq2m f4Y3859QcfRUseXETudc002MSwYUjE9t8w5ANOG2a1NUHa4xrw1M0goK3B2kEgQJ cxySyVmxZ2V7PAGNKoEnfrXRX67evh59FNbReK3uVItmxzqVIuJwBLx4ciRy/vYS T4/Y1nnIHwj8zeMST1ar3R4oH54BXWmjhhbIl1jEBl/W9V8id79CyjCC8mMB9cbC Z4J+CgDLZ7DCyBioWKkAIL/23tLVjtjnBbPGF14NgfeaxiMdGRjCPuJNwTT/ahUg RaLWVanGQDJRt+R5CbDQYMMfw8/oBDghZqRfTA== -----END CERTIFICATE-----Generated at Wed Apr 17 13:13:45 2024 by rpki-client on console-ams.rpki-client.org