$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232312e302f32342d3234203d3e203538333639.roa File: 32372e3132332e3232312e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: aTC8oA3eMdipvzhAqofcsVikw0/3i5nkMKAlgqcNblU= Subject key identifier: B5:6A:5F:A3:B7:59:96:DE:8E:CE:71:EF:CA:5D:86:A9:03:78:B4:09 Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Certificate serial: 1EF4A623C38C29E3BB2B9F956DB9B6F62F79C3C3 Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232312e302f32342d3234203d3e203538333639.roa Signing time: Mon 31 Jul 2023 00:07:32 +0000 ROA not before: Mon 31 Jul 2023 00:02:32 +0000 ROA not after: Mon 29 Jul 2024 00:07:32 +0000 asID: 58369 IP address blocks: 27.123.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 10:54:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:f4:a6:23:c3:8c:29:e3:bb:2b:9f:95:6d:b9:b6:f6:2f:79:c3:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Validity Not Before: Jul 31 00:02:32 2023 GMT Not After : Jul 29 00:07:32 2024 GMT Subject: CN=B56A5FA3B75996DE8ECE71EFCA5D86A90378B409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:fb:0e:e3:0c:54:29:6f:67:fc:b2:07:13:2d: 6e:f3:74:99:99:88:61:b1:fa:c8:1b:b0:04:da:d0: f2:2b:5b:36:99:90:b9:ff:0d:a6:46:ec:a8:bf:75: dc:51:ee:9c:ee:f5:f2:a5:cc:10:fc:00:e1:1b:4a: 0c:c6:00:ae:48:38:9b:f6:2e:02:b7:2f:ea:b0:2b: 39:82:df:a2:8d:be:64:58:60:ee:db:46:37:0b:65: 44:5b:ff:88:6e:62:0d:dc:fd:1d:e5:fe:d0:02:78: b5:17:54:53:23:30:e7:a5:4d:64:9a:37:b4:52:8f: d5:11:ef:23:ab:10:4d:81:e8:b7:e4:19:96:47:dc: 16:6c:d7:9f:ab:c8:68:5c:c0:be:c9:17:ef:06:d9: d1:39:aa:33:52:5a:4f:a0:59:7a:59:fe:5f:3d:c4: 31:86:07:92:15:62:bf:34:bd:01:9d:6b:bc:48:e6: b7:df:ec:8d:0b:cc:2b:31:d0:7c:c8:57:89:68:49: 40:97:47:9b:1b:a8:10:2f:5a:90:37:6d:e3:ef:38: eb:61:9e:de:a8:ab:26:2f:94:52:bb:7b:3b:03:0e: 24:9f:b2:c6:38:d2:bf:83:9a:dc:23:d5:f8:88:a6: 37:11:f2:fb:a6:bb:d7:96:2c:b2:9d:2b:95:0f:c8: bf:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:6A:5F:A3:B7:59:96:DE:8E:CE:71:EF:CA:5D:86:A9:03:78:B4:09 X509v3 Authority Key Identifier: keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232312e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.123.221.0/24 Signature Algorithm: sha256WithRSAEncryption 67:de:1f:8c:98:0a:5c:b2:70:0e:11:a9:bb:ae:f5:9e:fa:97: c6:2a:42:51:59:fd:1a:da:ab:31:25:42:dd:bf:4e:56:f9:b4: 82:6f:35:7a:4c:d2:14:65:c8:ab:e0:af:c1:6b:25:64:90:b7: 5b:b9:7c:a2:bc:b9:40:e7:62:13:42:f2:f3:ed:0a:12:a3:13: ec:9e:0e:73:1e:b7:d9:ef:32:e5:ba:79:7a:4b:74:fd:a8:5a: 01:ea:6c:62:05:6d:4f:70:e8:be:22:8f:9e:c9:70:ab:0c:3f: 28:e8:af:7d:bc:21:b1:5f:22:f3:07:23:ea:fa:5c:54:0b:ab: e7:92:c9:2f:55:76:69:71:c8:f5:6c:e6:e2:de:ee:82:70:79: 3f:63:40:cd:78:62:5a:fe:eb:e2:5e:d4:5a:a3:c3:9a:b5:d4: 08:28:b6:d8:9c:9a:e2:2b:f1:62:c2:4f:d3:ca:5e:5c:e1:b7: db:90:c7:6a:cf:31:94:27:0f:2c:99:63:77:3c:e8:85:c6:29: 8b:84:d6:f3:f9:41:3a:46:3b:31:9e:f1:db:4e:b8:89:6a:5c: 51:2a:09:13:10:23:a2:dc:f8:14:21:5c:50:00:ab:50:f1:fb: 96:39:f8:7b:3f:c5:53:58:53:94:6d:67:e8:37:28:fe:52:5b: 69:1c:27:ae -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHvSmI8OMKeO7K5+Vbbm29i95w8MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNE MjJEMDRCODAeFw0yMzA3MzEwMDAyMzJaFw0yNDA3MjkwMDA3MzJaMDMxMTAvBgNV BAMTKEI1NkE1RkEzQjc1OTk2REU4RUNFNzFFRkNBNUQ4NkE5MDM3OEI0MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY+w7jDFQpb2f8sgcTLW7zdJmZ iGGx+sgbsATa0PIrWzaZkLn/DaZG7Ki/ddxR7pzu9fKlzBD8AOEbSgzGAK5IOJv2 LgK3L+qwKzmC36KNvmRYYO7bRjcLZURb/4huYg3c/R3l/tACeLUXVFMjMOelTWSa N7RSj9UR7yOrEE2B6LfkGZZH3BZs15+ryGhcwL7JF+8G2dE5qjNSWk+gWXpZ/l89 xDGGB5IVYr80vQGda7xI5rff7I0LzCsx0HzIV4loSUCXR5sbqBAvWpA3bePvOOth nt6oqyYvlFK7ezsDDiSfssY40r+Dmtwj1fiIpjcR8vumu9eWLLKdK5UPyL9ZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtWpfo7dZlt6OznHvyl2GqQN4tAkwHwYDVR0j BBgwFoAUoJWppxgGlWyQXVz3y3l4Q9ItBLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmE4MTE4Mi03Y2ViLTQ2NWMtYTViNS1hMTRlYzczOWJmOTkvMC9BMDk1QTlBNzE4 MDY5NTZDOTA1RDVDRjdDQjc5Nzg0M0QyMkQwNEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNEMjJE MDRCOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMyMzcyZTMxMzIzMzJlMzIzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEABt73TANBgkqhkiG 9w0BAQsFAAOCAQEAZ94fjJgKXLJwDhGpu671nvqXxipCUVn9GtqrMSVC3b9OVvm0 gm81ekzSFGXIq+CvwWslZJC3W7l8ory5QOdiE0Ly8+0KEqMT7J4Ocx632e8y5bp5 ekt0/ahaAepsYgVtT3DoviKPnslwqww/KOivfbwhsV8i8wcj6vpcVAur55LJL1V2 aXHI9Wzm4t7ugnB5P2NAzXhiWv7r4l7UWqPDmrXUCCi22Jya4ivxYsJP08peXOG3 25DHas8xlCcPLJljdzzohcYpi4TW8/lBOkY7MZ7x2064iWpcUSoJExAjotz4FCFc UACrUPH7ljn4ez/FU1hTlG1n6Dco/lJbaRwnrg== -----END CERTIFICATE-----Generated at Wed Apr 24 10:29:46 2024 by rpki-client on console-fra.rpki-client.org