$ rpki-client -vvf repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/32372e3131312e33322e302f31392d3234203d3e203234353332.roa File: 32372e3131312e33322e302f31392d3234203d3e203234353332.roa (raw, json) Hash identifier: +3guWGbL0kTWZxMoWABBSF3mVK/ffFvwFajJmSYEEcA= Subject key identifier: 37:CC:22:C5:66:AE:87:01:6B:02:62:E4:40:E7:CE:3B:8C:A1:E6:44 Certificate issuer: /CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Certificate serial: 32729ADB94B04ACBE1DA3217CA3055DD61BA9F5C Authority key identifier: 42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/32372e3131312e33322e302f31392d3234203d3e203234353332.roa Signing time: Mon 31 Jul 2023 00:12:19 +0000 ROA not before: Mon 31 Jul 2023 00:07:19 +0000 ROA not after: Mon 29 Jul 2024 00:12:19 +0000 asID: 24532 IP address blocks: 27.111.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:72:9a:db:94:b0:4a:cb:e1:da:32:17:ca:30:55:dd:61:ba:9f:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Validity Not Before: Jul 31 00:07:19 2023 GMT Not After : Jul 29 00:12:19 2024 GMT Subject: CN=37CC22C566AE87016B0262E440E7CE3B8CA1E644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:dd:3e:7f:2f:18:19:d4:9b:f2:88:12:a5:59: 58:ad:23:7f:95:38:c2:b6:fa:2c:2a:ea:d4:8a:92: 73:17:1e:67:29:2b:4d:4f:35:56:74:65:e6:9d:b6: 33:5d:6a:02:24:6e:3c:c3:9a:a3:f4:91:7f:07:5f: cc:6d:17:46:e5:13:11:e0:3f:ed:e5:56:cd:c9:49: 8f:74:55:1d:29:c7:48:27:21:e6:0a:56:6d:87:08: a6:4b:cf:51:62:d9:93:39:54:60:8f:34:c3:51:ae: 5a:41:f3:53:87:e8:be:82:e9:d5:b2:6e:0c:ba:b3: 43:56:79:20:df:3a:95:f0:ea:8b:5d:0a:9c:83:a6: 05:2f:57:21:f1:bb:10:6a:02:f0:3c:a2:9f:4b:ac: 3d:27:14:3d:44:69:b4:66:2b:23:a4:59:f0:8a:35: 40:63:70:7f:53:81:18:be:37:0d:13:68:2e:ab:3d: bb:5c:db:5e:5a:5a:24:47:1d:53:51:a4:d2:80:16: 36:fe:c2:48:b2:7a:71:c2:36:35:c5:25:ac:61:dd: 16:74:15:98:8b:47:a5:a2:a0:07:9c:11:4e:8a:18: b3:c8:c4:af:63:61:8d:0b:6b:9e:95:3d:d1:6e:9f: b2:19:d7:17:49:46:16:79:64:cb:49:85:65:fa:4d: 4e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:CC:22:C5:66:AE:87:01:6B:02:62:E4:40:E7:CE:3B:8C:A1:E6:44 X509v3 Authority Key Identifier: keyid:42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/32372e3131312e33322e302f31392d3234203d3e203234353332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.111.32.0/19 Signature Algorithm: sha256WithRSAEncryption b3:11:25:77:85:af:19:cb:a0:fa:46:53:b8:49:30:69:bd:5f: f9:28:bc:49:22:49:df:58:36:97:50:7a:ab:b6:ef:05:a6:88: 16:ac:05:21:96:0e:19:a4:ee:09:75:ef:fb:29:0f:e4:d2:56: 9b:56:40:4f:32:06:73:c1:95:9a:50:e6:dc:74:33:eb:72:53: b5:55:62:c6:a4:52:6e:eb:5c:16:48:12:10:bf:82:fd:9e:b4: fa:fc:7c:a6:1f:ca:4e:c4:8b:4c:82:5f:43:44:c0:97:b2:9c: 82:ab:07:b4:2d:5c:b7:4b:71:4c:3c:bc:42:1d:fd:38:3a:11: c1:a2:25:4a:fc:c4:42:37:24:6e:0a:99:fb:9c:35:4f:c8:48: e9:b6:a7:49:d3:84:e0:de:b7:5d:bd:76:fc:a4:b1:e5:0d:c7: 15:2f:92:b9:c7:36:45:68:8f:69:96:31:db:1f:ce:ae:ad:2c: 63:32:f8:2a:96:dd:95:cc:62:cd:4c:56:a5:c7:d4:c4:90:43: 3a:48:d4:b7:a1:3a:34:2e:8f:59:79:03:2d:28:d1:a8:58:54: 2a:47:02:a8:6b:59:d1:d4:1d:cf:43:bf:b2:8d:70:bb:5d:95: 5f:d5:79:db:46:55:d1:cc:f8:3d:c0:4f:b3:0f:fd:52:ce:04: e2:cd:95:52 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUMnKa25SwSsvh2jIXyjBV3WG6n1wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFF Q0M3RkU5NjAeFw0yMzA3MzEwMDA3MTlaFw0yNDA3MjkwMDEyMTlaMDMxMTAvBgNV BAMTKDM3Q0MyMkM1NjZBRTg3MDE2QjAyNjJFNDQwRTdDRTNCOENBMUU2NDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL3T5/LxgZ1JvyiBKlWVitI3+V OMK2+iwq6tSKknMXHmcpK01PNVZ0ZeadtjNdagIkbjzDmqP0kX8HX8xtF0blExHg P+3lVs3JSY90VR0px0gnIeYKVm2HCKZLz1Fi2ZM5VGCPNMNRrlpB81OH6L6C6dWy bgy6s0NWeSDfOpXw6otdCpyDpgUvVyHxuxBqAvA8op9LrD0nFD1EabRmKyOkWfCK NUBjcH9TgRi+Nw0TaC6rPbtc215aWiRHHVNRpNKAFjb+wkiyenHCNjXFJaxh3RZ0 FZiLR6WioAecEU6KGLPIxK9jYY0La56VPdFun7IZ1xdJRhZ5ZMtJhWX6TU5FAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUN8wixWauhwFrAmLkQOfOO4yh5kQwHwYDVR0j BBgwFoAUQoqkJA50Hyfjoh78KdRfCuzH/pYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDNlMmU2Ny1hMTcxLTRkOWUtYTkzNS00MDY5MDJiMWUxM2IvMC80MjhBQTQyNDBF NzQxRjI3RTNBMjFFRkMyOUQ0NUYwQUVDQzdGRTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFFQ0M3 RkU5Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0M2UyZTY3LWExNzEtNGQ5ZS1h OTM1LTQwNjkwMmIxZTEzYi8wLzMyMzcyZTMxMzEzMTJlMzMzMjJlMzAyZjMxMzky ZDMyMzQyMDNkM2UyMDMyMzQzNTMzMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAUbbyAwDQYJKoZIhvcN AQELBQADggEBALMRJXeFrxnLoPpGU7hJMGm9X/kovEkiSd9YNpdQequ27wWmiBas BSGWDhmk7gl17/spD+TSVptWQE8yBnPBlZpQ5tx0M+tyU7VVYsakUm7rXBZIEhC/ gv2etPr8fKYfyk7Ei0yCX0NEwJeynIKrB7QtXLdLcUw8vEId/Tg6EcGiJUr8xEI3 JG4KmfucNU/ISOm2p0nThODet129dvykseUNxxUvkrnHNkVoj2mWMdsfzq6tLGMy +CqW3ZXMYs1MVqXH1MSQQzpI1LehOjQuj1l5Ay0o0ahYVCpHAqhrWdHUHc9Dv7KN cLtdlV/VedtGVdHM+D3AT7MP/VLOBOLNlVI= -----END CERTIFICATE-----Generated at Thu Apr 25 01:19:15 2024 by rpki-client on console-fra.rpki-client.org