$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232322e302f32332d3233203d3e203538333639.roa File: 32372e3132332e3232322e302f32332d3233203d3e203538333639.roa (raw, json) Hash identifier: 8XQUfMw6GnwS2E0201RAPWtJ23dTHrioqOdXJ4tabqE= Subject key identifier: 45:4E:54:D9:93:43:27:F4:2C:12:9C:F5:47:0F:0E:03:BE:D2:7A:F2 Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Certificate serial: 52DEE5DB0F95F5A7B38AC6C9C6B59A2CD723259B Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232322e302f32332d3233203d3e203538333639.roa Signing time: Mon 31 Jul 2023 00:07:32 +0000 ROA not before: Mon 31 Jul 2023 00:02:32 +0000 ROA not after: Mon 29 Jul 2024 00:07:32 +0000 asID: 58369 IP address blocks: 27.123.222.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 10:54:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:de:e5:db:0f:95:f5:a7:b3:8a:c6:c9:c6:b5:9a:2c:d7:23:25:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Validity Not Before: Jul 31 00:02:32 2023 GMT Not After : Jul 29 00:07:32 2024 GMT Subject: CN=454E54D9934327F42C129CF5470F0E03BED27AF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:5b:ef:c7:28:dc:49:f5:bf:ec:9e:b8:a9:a0: e7:65:1d:e7:2f:af:98:27:94:f8:2f:55:46:5d:5c: ef:b8:0e:d1:35:33:15:9e:8e:cb:9a:bd:5f:63:5c: f4:eb:3d:6f:97:33:17:47:70:3f:58:2f:80:f9:7c: f4:0c:bb:0e:7e:06:ec:82:ea:b7:5c:13:5e:6b:c0: 43:a8:a5:b5:e3:de:76:5b:76:36:f0:b6:4d:71:48: 60:74:4b:79:39:23:f7:d2:cd:74:f1:7f:6a:d1:ba: 67:b0:74:01:20:8d:27:0d:7f:e1:b2:88:5c:e9:68: 0f:f7:ef:0d:53:ad:a2:5e:92:f5:66:eb:54:2b:a7: 25:c9:dd:f1:8f:11:e0:be:6e:49:e2:b3:89:dc:df: a7:5d:00:a5:e4:8b:5c:e0:02:2d:3d:1e:97:83:6f: e4:86:8e:2d:b1:e9:1a:55:8f:56:dd:f0:c6:50:59: c8:2f:4d:46:03:04:fc:66:a5:82:11:0e:4f:e6:9b: 67:c9:09:f5:17:20:92:74:50:f0:e6:3f:21:4e:8c: 21:21:05:f0:1c:53:84:96:00:8e:0b:7a:cd:f5:7e: 03:36:a2:71:f5:7f:cb:5e:b7:31:bd:a2:6e:51:5c: a0:e5:dd:9f:d4:a0:35:b7:c8:1a:90:f2:2f:7c:e3: 39:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:4E:54:D9:93:43:27:F4:2C:12:9C:F5:47:0F:0E:03:BE:D2:7A:F2 X509v3 Authority Key Identifier: keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232322e302f32332d3233203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.123.222.0/23 Signature Algorithm: sha256WithRSAEncryption 87:64:13:fa:54:fe:aa:ba:98:b8:32:bb:13:8e:17:29:72:30: 08:49:f4:ed:65:bc:9d:25:d9:36:f9:ff:c3:d9:a3:b0:89:01: 37:6d:7e:21:e9:7a:0f:d8:fb:c2:51:bd:ca:34:f6:6f:a1:0e: d0:a7:cf:28:14:6f:f3:5f:84:4c:b0:26:c2:9c:81:e3:a2:93: 30:7e:da:1e:4b:62:43:d6:c0:6c:49:e6:f4:a8:2a:0e:f9:53: 2a:66:f5:30:6f:76:f5:8c:1a:b5:58:a4:b9:b6:c6:79:38:8d: 18:0a:94:4b:df:de:e8:98:96:6b:d5:55:f4:d2:4d:ad:bb:04: 54:06:4b:7e:04:69:fa:6d:f0:74:77:3d:62:c9:e5:9e:94:40: 25:2e:40:62:9b:21:59:7e:1d:fe:95:e8:13:cf:a1:6d:9b:17: 76:8d:80:39:8a:66:15:10:da:9a:9e:86:a5:98:ba:e5:ae:f4: 2b:9e:b6:ae:15:0a:fa:cf:40:7b:80:c1:9d:db:93:cc:d1:a0: cf:72:5e:9e:00:97:9d:90:d9:e6:48:a6:88:73:b9:fb:9d:d0: d1:5c:c5:e2:94:76:57:c0:8a:b2:cc:de:13:b1:b0:44:1c:b6: dc:0e:b1:32:35:27:e9:b0:3d:72:b2:d5:25:a0:ca:f6:95:3c: 40:33:83:95 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUt7l2w+V9aezisbJxrWaLNcjJZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNE MjJEMDRCODAeFw0yMzA3MzEwMDAyMzJaFw0yNDA3MjkwMDA3MzJaMDMxMTAvBgNV BAMTKDQ1NEU1NEQ5OTM0MzI3RjQyQzEyOUNGNTQ3MEYwRTAzQkVEMjdBRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhW+/HKNxJ9b/snripoOdlHecv r5gnlPgvVUZdXO+4DtE1MxWejsuavV9jXPTrPW+XMxdHcD9YL4D5fPQMuw5+BuyC 6rdcE15rwEOopbXj3nZbdjbwtk1xSGB0S3k5I/fSzXTxf2rRumewdAEgjScNf+Gy iFzpaA/37w1TraJekvVm61QrpyXJ3fGPEeC+bknis4nc36ddAKXki1zgAi09HpeD b+SGji2x6RpVj1bd8MZQWcgvTUYDBPxmpYIRDk/mm2fJCfUXIJJ0UPDmPyFOjCEh BfAcU4SWAI4Les31fgM2onH1f8tetzG9om5RXKDl3Z/UoDW3yBqQ8i984zkRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURU5U2ZNDJ/QsEpz1Rw8OA77SevIwHwYDVR0j BBgwFoAUoJWppxgGlWyQXVz3y3l4Q9ItBLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmE4MTE4Mi03Y2ViLTQ2NWMtYTViNS1hMTRlYzczOWJmOTkvMC9BMDk1QTlBNzE4 MDY5NTZDOTA1RDVDRjdDQjc5Nzg0M0QyMkQwNEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNEMjJE MDRCOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMyMzcyZTMxMzIzMzJlMzIzMjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzUzODMzMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEARt73jANBgkqhkiG 9w0BAQsFAAOCAQEAh2QT+lT+qrqYuDK7E44XKXIwCEn07WW8nSXZNvn/w9mjsIkB N21+Iel6D9j7wlG9yjT2b6EO0KfPKBRv81+ETLAmwpyB46KTMH7aHktiQ9bAbEnm 9KgqDvlTKmb1MG929YwatVikubbGeTiNGAqUS9/e6JiWa9VV9NJNrbsEVAZLfgRp +m3wdHc9YsnlnpRAJS5AYpshWX4d/pXoE8+hbZsXdo2AOYpmFRDamp6GpZi65a70 K562rhUK+s9Ae4DBnduTzNGgz3JengCXnZDZ5kimiHO5+53Q0VzF4pR2V8CKssze E7GwRBy23A6xMjUn6bA9crLVJaDK9pU8QDODlQ== -----END CERTIFICATE-----Generated at Wed Apr 24 11:01:37 2024 by rpki-client on console-ams.rpki-client.org