$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232332e302f32342d3234203d3e203538333639.roa File: 32372e3132332e3232332e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: 7yxhs/2iu1DVvLF0OOQ8Q5fCuYyh7uk17SskldTcXYY= Subject key identifier: 79:BA:46:57:54:4A:B9:70:AC:9B:AD:5A:30:4E:32:8C:64:C7:1C:B4 Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Certificate serial: 6A9D203503A3CBF410A1494B7E8DA13C9D759D33 Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232332e302f32342d3234203d3e203538333639.roa Signing time: Mon 01 Jul 2024 01:04:36 +0000 ROA not before: Mon 01 Jul 2024 00:59:36 +0000 ROA not after: Mon 30 Jun 2025 01:04:36 +0000 asID: 58369 IP address blocks: 27.123.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:9d:20:35:03:a3:cb:f4:10:a1:49:4b:7e:8d:a1:3c:9d:75:9d:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Validity Not Before: Jul 1 00:59:36 2024 GMT Not After : Jun 30 01:04:36 2025 GMT Subject: CN=79BA4657544AB970AC9BAD5A304E328C64C71CB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:54:c1:44:f3:74:bd:e1:89:f7:0a:4a:6f:ed: 2d:a3:3a:3e:b8:08:67:ae:0f:ab:d8:8b:b8:9f:83: 7d:c8:94:54:3c:f5:d4:e1:b9:f9:56:92:bf:86:a3: 55:88:4d:d0:f8:b4:4e:7d:4e:7e:57:12:d1:5a:bf: dd:4b:ab:84:de:dc:12:60:21:c3:a3:88:31:43:eb: 46:a8:1f:94:e0:41:8f:52:4e:47:6a:e8:e8:22:7c: ef:6a:f2:0c:39:3a:bb:10:78:a2:7e:07:50:bc:31: 18:89:33:fc:80:c1:65:dd:f9:24:89:1c:11:e0:33: 97:b6:dd:df:a1:fd:8b:20:44:4c:77:c3:c1:d0:70: 46:34:03:db:0f:97:95:3d:5f:b3:39:fb:45:6e:d0: 78:7c:b3:5b:26:34:bb:27:35:7c:c3:87:6b:1e:c3: 1c:5f:8b:68:6e:6a:1b:43:f5:57:46:39:0f:d0:3a: 60:b1:47:9b:d5:76:83:4a:1b:b8:d0:1b:f1:04:05: 32:3b:b4:e1:c8:70:bd:27:75:bd:3a:c0:65:f5:1a: 86:a5:52:b0:27:a7:19:16:3c:10:4e:2a:d4:26:4b: d5:31:9e:66:6e:39:69:73:85:f0:4c:30:ab:f0:ba: 1a:9d:5b:ec:93:f3:59:22:b8:cd:7f:37:d4:a7:4f: 3b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:BA:46:57:54:4A:B9:70:AC:9B:AD:5A:30:4E:32:8C:64:C7:1C:B4 X509v3 Authority Key Identifier: keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232332e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.123.223.0/24 Signature Algorithm: sha256WithRSAEncryption 99:2d:98:be:5e:a2:f0:23:b3:f0:95:bb:9b:95:1f:52:f5:b2: 02:96:fd:ff:95:c8:a9:5d:18:8f:f7:f4:1c:3a:44:c1:91:c9: 21:98:7d:b1:95:43:8e:bd:07:be:44:b4:b1:ce:62:df:ce:ab: c8:72:d4:0e:53:51:ef:d2:f7:34:1d:55:c4:5b:fe:7e:9e:a9: 19:da:5a:4d:7a:45:89:ca:b8:05:47:74:17:09:03:48:6c:1c: ca:38:ee:7e:6d:4a:14:9d:c5:58:15:32:11:46:42:25:e7:01: 64:ee:c2:87:99:1a:6f:2a:06:e6:bc:3d:26:d4:78:00:9a:36: 74:80:17:f4:d9:42:bd:4b:66:3e:ae:33:a5:52:8b:c1:cb:22: 10:99:f3:72:0a:8a:8b:8c:67:59:8c:1c:fb:ee:22:1b:a6:6f: c3:be:00:ff:2b:60:f0:ca:03:d0:24:32:f4:87:c0:6c:04:09: ae:39:99:f4:ce:de:7c:bf:e8:11:75:30:0f:1e:8d:43:45:f6: 3f:97:f1:cb:41:a4:f2:48:d7:51:dc:ad:83:4a:b0:99:90:3e: a8:a4:6e:1f:ca:61:1b:61:3d:86:ca:79:58:c4:75:c8:f5:05: de:c1:d4:3d:42:c7:71:fa:76:5e:0c:6a:09:57:4e:89:8d:e2: 24:7b:bc:09 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUap0gNQOjy/QQoUlLfo2hPJ11nTMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNE MjJEMDRCODAeFw0yNDA3MDEwMDU5MzZaFw0yNTA2MzAwMTA0MzZaMDMxMTAvBgNV BAMTKDc5QkE0NjU3NTQ0QUI5NzBBQzlCQUQ1QTMwNEUzMjhDNjRDNzFDQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPVMFE83S94Yn3Ckpv7S2jOj64 CGeuD6vYi7ifg33IlFQ89dThuflWkr+Go1WITdD4tE59Tn5XEtFav91Lq4Te3BJg IcOjiDFD60aoH5TgQY9STkdq6OgifO9q8gw5OrsQeKJ+B1C8MRiJM/yAwWXd+SSJ HBHgM5e23d+h/YsgREx3w8HQcEY0A9sPl5U9X7M5+0Vu0Hh8s1smNLsnNXzDh2se wxxfi2huahtD9VdGOQ/QOmCxR5vVdoNKG7jQG/EEBTI7tOHIcL0ndb06wGX1Goal UrAnpxkWPBBOKtQmS9UxnmZuOWlzhfBMMKvwuhqdW+yT81kiuM1/N9SnTzvFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUebpGV1RKuXCsm61aME4yjGTHHLQwHwYDVR0j BBgwFoAUoJWppxgGlWyQXVz3y3l4Q9ItBLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmE4MTE4Mi03Y2ViLTQ2NWMtYTViNS1hMTRlYzczOWJmOTkvMC9BMDk1QTlBNzE4 MDY5NTZDOTA1RDVDRjdDQjc5Nzg0M0QyMkQwNEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNEMjJE MDRCOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMyMzcyZTMxMzIzMzJlMzIzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEABt73zANBgkqhkiG 9w0BAQsFAAOCAQEAmS2Yvl6i8COz8JW7m5UfUvWyApb9/5XIqV0Yj/f0HDpEwZHJ IZh9sZVDjr0HvkS0sc5i386ryHLUDlNR79L3NB1VxFv+fp6pGdpaTXpFicq4BUd0 FwkDSGwcyjjufm1KFJ3FWBUyEUZCJecBZO7Ch5kabyoG5rw9JtR4AJo2dIAX9NlC vUtmPq4zpVKLwcsiEJnzcgqKi4xnWYwc++4iG6Zvw74A/ytg8MoD0CQy9IfAbAQJ rjmZ9M7efL/oEXUwDx6NQ0X2P5fxy0Gk8kjXUdytg0qwmZA+qKRuH8phG2E9hsp5 WMR1yPUF3sHUPULHcfp2XgxqCVdOiY3iJHu8CQ== -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org