$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235332e302f32342d3234203d3e203338313530.roa File: 3138302e3231342e3235332e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: a2yQRkv46gDTg7EBJUodVaxGXax2M3CvgVNOPY6BfdY= Subject key identifier: B7:60:C8:26:76:32:E6:15:6B:FC:3A:0F:FA:DD:FE:B1:E4:D2:E3:38 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 15D61728852F2FAD00B1B28FBCBBC593CF20999C Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235332e302f32342d3234203d3e203338313530.roa Signing time: Mon 31 Jul 2023 00:05:07 +0000 ROA not before: Mon 31 Jul 2023 00:00:07 +0000 ROA not after: Mon 29 Jul 2024 00:05:07 +0000 asID: 38150 IP address blocks: 180.214.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:d6:17:28:85:2f:2f:ad:00:b1:b2:8f:bc:bb:c5:93:cf:20:99:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 31 00:00:07 2023 GMT Not After : Jul 29 00:05:07 2024 GMT Subject: CN=B760C8267632E6156BFC3A0FFADDFEB1E4D2E338 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:cd:e4:d0:26:92:cd:83:6a:f5:9c:17:1a:85: 37:84:d6:49:e6:3c:46:b5:7f:3c:83:71:ed:7c:bb: 8b:b1:0f:51:9f:6c:07:30:58:e8:a0:d9:db:c5:63: d3:47:e9:be:92:6f:ba:60:63:a7:c6:4b:04:12:41: 59:0a:57:14:27:4f:f0:1c:ca:ef:8e:1d:3b:39:9a: 4d:94:8b:7f:3f:79:de:6a:17:55:29:cb:94:06:3d: 8f:12:20:ff:19:55:86:8b:a8:5c:ef:b4:95:c7:b6: 12:de:a4:b3:df:a8:90:92:06:a3:38:80:db:48:3b: 6e:87:22:27:47:5c:f0:5b:d6:d1:1c:54:ab:0a:ac: 33:76:2b:07:45:48:cf:00:17:dd:af:f9:0d:d6:c0: 4f:dd:62:8f:03:29:d1:34:01:12:32:1b:f6:c7:a0: 68:0e:79:ab:54:b9:90:f4:3e:5e:07:3d:30:fe:e9: 59:3a:61:4b:33:68:8f:97:30:d3:71:65:c3:e0:86: 4b:9f:5e:25:aa:ad:66:c8:dd:e4:dd:22:8d:45:0d: bd:5b:74:74:6a:14:3d:26:0b:5c:64:86:3d:b2:a8: 92:49:2f:b8:77:99:91:e4:a9:11:57:fa:21:ef:a6: 7f:f9:b4:6a:60:14:86:06:d4:97:78:a2:54:f7:92: 82:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:60:C8:26:76:32:E6:15:6B:FC:3A:0F:FA:DD:FE:B1:E4:D2:E3:38 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235332e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.214.253.0/24 Signature Algorithm: sha256WithRSAEncryption 18:e5:93:59:a4:8b:19:f3:f9:7d:88:a5:9a:63:e5:8e:3c:a6: f6:c9:d6:15:32:ff:df:95:73:f9:14:97:b8:9a:df:e5:a6:eb: a5:99:3b:e5:78:65:ac:af:cd:06:51:b0:d5:4d:9e:e8:e8:14: 40:2d:42:b3:58:18:07:8c:9f:2d:09:fd:39:9b:f6:76:63:74: 42:1b:91:8e:5b:a6:06:7a:1d:f7:e2:d9:b9:dc:8f:e7:ac:c9: 3a:80:df:73:06:f2:3f:4e:05:39:69:e6:5a:dd:5c:dd:fa:0a: 22:b8:34:eb:6a:7f:1b:e0:dc:e5:37:d7:10:01:aa:a7:e8:b9: 7f:35:6c:b3:9e:40:53:6b:59:77:4d:e4:56:37:6b:9c:81:8d: 4b:d6:03:6a:26:da:d0:2c:d3:b1:38:38:7d:be:3f:3d:f9:3f: e3:da:83:d6:85:be:fe:59:c6:47:69:c8:a6:76:5b:6f:a6:64: 9d:f0:90:da:dc:d2:79:e4:a1:54:f4:c2:5b:f9:92:4c:49:1a: 8c:fc:d1:85:15:4c:49:a8:58:16:51:dc:6d:fa:01:97:8b:8b: e4:f5:4b:5d:cd:2e:04:c6:53:41:74:28:7c:6d:2f:aa:c6:3c: ec:be:19:fb:2a:b6:51:1a:04:43:78:40:63:07:68:5b:cc:e7: 14:f9:b7:f5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFdYXKIUvL60AsbKPvLvFk88gmZwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yMzA3MzEwMDAwMDdaFw0yNDA3MjkwMDA1MDdaMDMxMTAvBgNV BAMTKEI3NjBDODI2NzYzMkU2MTU2QkZDM0EwRkZBRERGRUIxRTREMkUzMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnzeTQJpLNg2r1nBcahTeE1knm PEa1fzyDce18u4uxD1GfbAcwWOig2dvFY9NH6b6Sb7pgY6fGSwQSQVkKVxQnT/Ac yu+OHTs5mk2Ui38/ed5qF1Upy5QGPY8SIP8ZVYaLqFzvtJXHthLepLPfqJCSBqM4 gNtIO26HIidHXPBb1tEcVKsKrDN2KwdFSM8AF92v+Q3WwE/dYo8DKdE0ARIyG/bH oGgOeatUuZD0Pl4HPTD+6Vk6YUszaI+XMNNxZcPghkufXiWqrWbI3eTdIo1FDb1b dHRqFD0mC1xkhj2yqJJJL7h3mZHkqRFX+iHvpn/5tGpgFIYG1Jd4olT3koITAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUt2DIJnYy5hVr/DoP+t3+seTS4zgwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMxMzgzMDJlMzIzMTM0MmUzMjM1MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtNb9MA0GCSqG SIb3DQEBCwUAA4IBAQAY5ZNZpIsZ8/l9iKWaY+WOPKb2ydYVMv/flXP5FJe4mt/l puulmTvleGWsr80GUbDVTZ7o6BRALUKzWBgHjJ8tCf05m/Z2Y3RCG5GOW6YGeh33 4tm53I/nrMk6gN9zBvI/TgU5aeZa3Vzd+goiuDTran8b4NzlN9cQAaqn6Ll/NWyz nkBTa1l3TeRWN2ucgY1L1gNqJtrQLNOxODh9vj89+T/j2oPWhb7+WcZHacimdltv pmSd8JDa3NJ55KFU9MJb+ZJMSRqM/NGFFUxJqFgWUdxt+gGXi4vk9UtdzS4ExlNB dCh8bS+qxjzsvhn7KrZRGgRDeEBjB2hbzOcU+bf1 -----END CERTIFICATE-----Generated at Thu Apr 25 22:30:50 2024 by rpki-client on console-fra.rpki-client.org