$ rpki-client -vvf repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/3139322e3134302e3232342e302f32332d3234203d3e203536323333.roa File: 3139322e3134302e3232342e302f32332d3234203d3e203536323333.roa (raw, json) Hash identifier: QN3Se42fDrnzH/Sn6RV3bdT6iaS+SIN59XlBOIPV4Lw= Subject key identifier: A8:48:C2:F1:6B:E0:1C:21:12:B5:7F:85:03:28:48:3A:69:E2:BF:9F Certificate issuer: /CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Certificate serial: 032C6E5FECB5E8B2605B4FB03A245D43A97D6C4A Authority key identifier: DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject info access: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/3139322e3134302e3232342e302f32332d3234203d3e203536323333.roa Signing time: Mon 08 Jul 2024 11:00:01 +0000 ROA not before: Mon 08 Jul 2024 10:55:01 +0000 ROA not after: Mon 07 Jul 2025 11:00:01 +0000 asID: 56233 IP address blocks: 192.140.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:2c:6e:5f:ec:b5:e8:b2:60:5b:4f:b0:3a:24:5d:43:a9:7d:6c:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Validity Not Before: Jul 8 10:55:01 2024 GMT Not After : Jul 7 11:00:01 2025 GMT Subject: CN=A848C2F16BE01C2112B57F850328483A69E2BF9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:54:2f:35:a0:77:b6:8d:c6:3d:5b:80:81:e2: c6:c2:43:86:7d:d2:22:e8:54:40:d2:6a:6e:5c:09: f0:2e:91:46:6e:a5:d1:52:ec:91:3d:83:da:07:b5: 1b:fd:ec:1c:62:6e:97:11:7f:b7:b3:bc:83:70:3e: 7b:6a:a3:f4:7f:7b:57:0d:98:48:cc:bf:ed:2f:b4: b4:5d:d9:40:18:a8:85:5b:12:bf:51:f1:54:25:4b: 18:85:e9:ff:fb:93:f6:23:d6:28:2b:b9:79:80:e8: 9c:9e:a1:ed:ea:6e:36:11:ed:e6:e2:9a:8b:e9:de: 6d:bf:65:17:8e:f3:2b:6d:d8:d1:ec:f4:45:1f:3f: 0d:77:56:2b:90:6a:89:47:9c:ad:82:f8:ba:e7:73: bb:af:1f:d2:17:f7:9f:57:cd:57:2b:f3:b4:24:84: 81:9e:da:ab:7c:5b:1a:8f:8a:1a:ec:af:4e:76:04: 95:29:41:77:3c:21:13:36:a4:7b:aa:2d:22:5e:06: 5d:74:fa:c6:cf:13:97:3e:58:f1:d4:6a:fe:3a:34: ef:65:aa:9f:d0:5f:57:a4:f7:ee:93:d9:c6:e5:1c: b5:a5:44:cf:8b:15:07:99:02:57:4b:c6:7c:80:2e: e2:97:1b:07:64:c5:67:7e:f6:82:4b:56:f1:90:66: 70:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:48:C2:F1:6B:E0:1C:21:12:B5:7F:85:03:28:48:3A:69:E2:BF:9F X509v3 Authority Key Identifier: keyid:DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/3139322e3134302e3232342e302f32332d3234203d3e203536323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.140.224.0/23 Signature Algorithm: sha256WithRSAEncryption 71:9d:7a:c7:0d:7b:8b:21:47:73:5f:47:2c:c9:aa:04:b6:d5: 80:ab:5d:2b:2e:39:81:79:0c:75:c4:ae:5c:1a:43:e5:fa:bf: 99:62:b6:e0:ef:84:e3:14:f1:74:11:e7:c9:97:88:01:1d:e0: 1f:98:46:6f:1a:8b:08:d1:6f:5e:c3:84:13:47:c4:dd:12:a0: 88:7e:df:7e:38:72:46:f8:1c:b0:f0:21:4f:84:f3:f7:66:af: 13:65:21:10:27:ef:dd:82:72:5a:2e:df:15:23:e9:20:b9:2f: 4b:ea:98:36:08:06:bc:02:5f:34:36:29:60:ef:f9:a8:0c:03: 6e:43:b4:ef:07:55:25:69:ed:07:dc:57:4e:36:a9:f0:78:83: dc:37:c0:0a:e5:b9:03:f7:d4:e1:51:92:02:56:da:e4:b4:ac: da:f6:ad:26:2e:39:ef:a5:74:8f:89:74:85:2e:3f:4c:ee:83: da:df:87:de:34:4d:e2:4a:13:e2:c6:c1:7b:42:ca:7f:b6:69: dd:b9:f6:e8:e7:60:4a:de:cd:90:42:93:45:9d:b0:bf:d1:6c: 84:de:b0:4b:cb:ef:d8:57:ca:a4:c6:99:7f:27:a2:53:83:3d: 4d:ae:41:6a:9f:51:18:69:78:34:25:af:47:d1:3b:54:b9:77: a2:0b:b6:1f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAyxuX+y16LJgW0+wOiRdQ6l9bEowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVF NTRDQTg1OTAeFw0yNDA3MDgxMDU1MDFaFw0yNTA3MDcxMTAwMDFaMDMxMTAvBgNV BAMTKEE4NDhDMkYxNkJFMDFDMjExMkI1N0Y4NTAzMjg0ODNBNjlFMkJGOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxVC81oHe2jcY9W4CB4sbCQ4Z9 0iLoVEDSam5cCfAukUZupdFS7JE9g9oHtRv97BxibpcRf7ezvINwPntqo/R/e1cN mEjMv+0vtLRd2UAYqIVbEr9R8VQlSxiF6f/7k/Yj1igruXmA6Jyeoe3qbjYR7ebi movp3m2/ZReO8ytt2NHs9EUfPw13ViuQaolHnK2C+Lrnc7uvH9IX959XzVcr87Qk hIGe2qt8WxqPihrsr052BJUpQXc8IRM2pHuqLSJeBl10+sbPE5c+WPHUav46NO9l qp/QX1ek9+6T2cblHLWlRM+LFQeZAldLxnyALuKXGwdkxWd+9oJLVvGQZnCpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqEjC8WvgHCEStX+FAyhIOmniv58wHwYDVR0j BBgwFoAU3xzqAxPadQDXCuCJFptLvuVMqFkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NGZkNGJjMi00MWQ0LTQyZTYtYTdmZi01OTQ5Mzg4NTEyNmEvMC9ERjFDRUEwMzEz REE3NTAwRDcwQUUwODkxNjlCNEJCRUU1NENBODU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVFNTRD QTg1OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0ZmQ0YmMyLTQxZDQtNDJlNi1h N2ZmLTU5NDkzODg1MTI2YS8wLzMxMzkzMjJlMzEzNDMwMmUzMjMyMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNTM2MzIzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwIzgMA0GCSqG SIb3DQEBCwUAA4IBAQBxnXrHDXuLIUdzX0csyaoEttWAq10rLjmBeQx1xK5cGkPl +r+ZYrbg74TjFPF0EefJl4gBHeAfmEZvGosI0W9ew4QTR8TdEqCIft9+OHJG+Byw 8CFPhPP3Zq8TZSEQJ+/dgnJaLt8VI+kguS9L6pg2CAa8Al80Nilg7/moDANuQ7Tv B1Ulae0H3FdONqnweIPcN8AK5bkD99ThUZICVtrktKza9q0mLjnvpXSPiXSFLj9M 7oPa34feNE3iShPixsF7Qsp/tmndufbo52BK3s2QQpNFnbC/0WyE3rBLy+/YV8qk xpl/J6JTgz1NrkFqn1EYaXg0Ja9H0TtUuXeiC7Yf -----END CERTIFICATE-----Generated at Sat Nov 23 17:31:40 2024 by rpki-client on console-fra.rpki-client.org