$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232302e302f32342d3234203d3e203538333639.roa File: 32372e3132332e3232302e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: A3j4kNrKra9cRCHEY81fHZTIHTbDcjHpxbi4eT1y1lQ= Subject key identifier: 8B:8D:6B:56:E0:B4:43:84:6E:8E:E8:5D:A5:16:D0:E7:27:F4:EB:80 Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Certificate serial: 13BCB8CAE505E48F2FB7625292A0E9E9A67DCE26 Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232302e302f32342d3234203d3e203538333639.roa Signing time: Mon 01 Jul 2024 01:04:31 +0000 ROA not before: Mon 01 Jul 2024 00:59:31 +0000 ROA not after: Mon 30 Jun 2025 01:04:31 +0000 asID: 58369 IP address blocks: 27.123.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:bc:b8:ca:e5:05:e4:8f:2f:b7:62:52:92:a0:e9:e9:a6:7d:ce:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Validity Not Before: Jul 1 00:59:31 2024 GMT Not After : Jun 30 01:04:31 2025 GMT Subject: CN=8B8D6B56E0B443846E8EE85DA516D0E727F4EB80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c1:f6:0a:d5:9e:8e:87:c9:93:d7:4e:b3:0c: 28:dc:76:0a:22:1f:0e:c8:10:b9:82:15:fc:b5:23: 8f:c6:d4:85:4f:90:9c:6d:79:88:7f:4f:3d:30:1c: 0b:1e:d2:d7:dd:4b:e0:78:16:5a:fb:96:30:b3:0e: 51:e7:06:15:23:8b:a7:39:c9:f5:6a:86:cd:54:ee: 4d:e7:e6:98:5f:c6:ff:b2:8a:9f:f2:af:ce:70:a3: 28:ce:af:0e:a6:6c:91:68:6f:90:c3:36:9a:e3:f8: a2:83:d6:1a:ce:d2:9f:96:ce:c4:c3:34:86:48:b0: 0d:55:28:bd:16:09:f4:7b:d3:c1:5b:dc:88:dd:fd: 3c:9b:a4:f6:2f:2a:06:d7:ea:5c:80:23:84:50:49: eb:9b:99:3a:03:bb:fd:e8:ce:11:a1:ce:e2:df:71: a5:ac:a0:d5:96:00:93:38:59:98:bd:dc:7c:04:f9: a5:6b:e2:b8:a3:ff:7c:8a:eb:fa:eb:86:96:81:5c: b0:e7:5d:54:19:5d:d0:b8:9f:7f:c1:51:fe:ab:4f: 01:93:89:75:8e:c7:3e:52:ed:34:87:1c:7c:ab:aa: 24:71:ff:74:f3:87:f7:5d:79:af:45:65:32:62:61: 1b:6b:89:97:a0:3a:12:ab:32:15:34:5d:ab:3d:d4: 73:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:8D:6B:56:E0:B4:43:84:6E:8E:E8:5D:A5:16:D0:E7:27:F4:EB:80 X509v3 Authority Key Identifier: keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232302e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.123.220.0/24 Signature Algorithm: sha256WithRSAEncryption 24:24:d7:0e:05:33:5f:5b:01:31:e6:45:56:95:79:7d:e3:02: fe:40:03:cc:8b:90:fa:b6:eb:5a:dc:7b:b8:57:2b:70:60:53: a4:d0:5b:e9:56:16:82:10:20:90:cd:d3:22:92:3c:f3:e7:d9: 75:e5:6f:d0:86:cc:13:f8:3b:71:c5:26:74:3f:37:b2:16:5a: 05:af:0d:25:1c:d1:a6:8b:89:48:d5:20:7c:0d:29:29:bb:0d: 5a:e1:31:ee:9f:70:dd:a2:dd:94:dc:d0:58:11:af:e7:fc:f4: 19:85:e3:0c:dc:87:3d:1b:96:4f:0a:df:ac:ad:90:0a:20:25: 3a:ab:40:ad:34:f5:ae:56:42:c3:fd:f5:aa:a8:64:5e:86:2b: 48:45:54:a4:65:cf:67:35:e1:01:10:b3:f7:fb:21:f0:94:ad: 49:f5:1b:f1:14:9d:7b:f6:07:a2:de:0b:de:5a:87:c2:1d:4f: 6f:9b:39:f5:ff:5a:b4:8d:64:91:27:d2:18:16:fe:5f:5a:82: fa:3c:85:48:9a:1d:73:70:0d:12:88:52:d1:82:e6:e8:18:9c: 6b:93:07:0d:a9:24:0f:75:24:18:b2:4d:e6:2d:07:a9:1e:b5: a4:47:c7:98:a7:b8:7e:b9:b6:3f:3d:91:8f:fb:51:76:d8:13: 34:cc:79:99 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUE7y4yuUF5I8vt2JSkqDp6aZ9ziYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNE MjJEMDRCODAeFw0yNDA3MDEwMDU5MzFaFw0yNTA2MzAwMTA0MzFaMDMxMTAvBgNV BAMTKDhCOEQ2QjU2RTBCNDQzODQ2RThFRTg1REE1MTZEMEU3MjdGNEVCODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGwfYK1Z6Oh8mT106zDCjcdgoi Hw7IELmCFfy1I4/G1IVPkJxteYh/Tz0wHAse0tfdS+B4Flr7ljCzDlHnBhUji6c5 yfVqhs1U7k3n5phfxv+yip/yr85woyjOrw6mbJFob5DDNprj+KKD1hrO0p+WzsTD NIZIsA1VKL0WCfR708Fb3Ijd/TybpPYvKgbX6lyAI4RQSeubmToDu/3ozhGhzuLf caWsoNWWAJM4WZi93HwE+aVr4rij/3yK6/rrhpaBXLDnXVQZXdC4n3/BUf6rTwGT iXWOxz5S7TSHHHyrqiRx/3Tzh/ddea9FZTJiYRtriZegOhKrMhU0Xas91HO5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUi41rVuC0Q4RujuhdpRbQ5yf064AwHwYDVR0j BBgwFoAUoJWppxgGlWyQXVz3y3l4Q9ItBLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmE4MTE4Mi03Y2ViLTQ2NWMtYTViNS1hMTRlYzczOWJmOTkvMC9BMDk1QTlBNzE4 MDY5NTZDOTA1RDVDRjdDQjc5Nzg0M0QyMkQwNEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNEMjJE MDRCOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMyMzcyZTMxMzIzMzJlMzIzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEABt73DANBgkqhkiG 9w0BAQsFAAOCAQEAJCTXDgUzX1sBMeZFVpV5feMC/kADzIuQ+rbrWtx7uFcrcGBT pNBb6VYWghAgkM3TIpI88+fZdeVv0IbME/g7ccUmdD83shZaBa8NJRzRpouJSNUg fA0pKbsNWuEx7p9w3aLdlNzQWBGv5/z0GYXjDNyHPRuWTwrfrK2QCiAlOqtArTT1 rlZCw/31qqhkXoYrSEVUpGXPZzXhARCz9/sh8JStSfUb8RSde/YHot4L3lqHwh1P b5s59f9atI1kkSfSGBb+X1qC+jyFSJodc3ANEohS0YLm6Bica5MHDakkD3UkGLJN 5i0HqR61pEfHmKe4frm2Pz2Rj/tRdtgTNMx5mQ== -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org