$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234322e302f32342d3234203d3e203338313530.roa File: 3138302e3231342e3234322e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: C1gcqSO0oBdwp9BpXOWFzZg2s6goQaazqVUj4XoKSkc= Subject key identifier: 09:91:45:1B:80:8C:17:80:03:A9:36:DE:11:8C:CE:42:1A:25:6D:D3 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 646E821E65F0360D1B3AA00D46EFFD4CEA2BE41A Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234322e302f32342d3234203d3e203338313530.roa Signing time: Mon 01 Jul 2024 01:03:29 +0000 ROA not before: Mon 01 Jul 2024 00:58:29 +0000 ROA not after: Mon 30 Jun 2025 01:03:29 +0000 asID: 38150 IP address blocks: 180.214.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 06:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:6e:82:1e:65:f0:36:0d:1b:3a:a0:0d:46:ef:fd:4c:ea:2b:e4:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 1 00:58:29 2024 GMT Not After : Jun 30 01:03:29 2025 GMT Subject: CN=0991451B808C178003A936DE118CCE421A256DD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cb:ab:f8:d4:19:13:4d:d2:84:1f:c1:4d:f1: 14:56:f6:52:a8:c7:1a:a2:01:1a:7c:7e:54:64:ba: cc:c5:75:a4:9b:73:6a:67:77:bc:e5:12:90:03:19: 59:e5:b1:71:7a:ff:cb:cf:32:36:40:aa:db:41:1c: 01:d1:4f:29:11:9a:2f:f4:19:b8:7b:a1:ef:e3:4b: 0e:d6:31:76:2b:d4:9e:53:08:3e:63:86:51:fb:12: 8e:12:9d:4e:6f:2e:00:ed:c5:fc:5b:9e:08:f7:36: 40:28:83:e3:7c:89:4d:0d:84:67:04:eb:03:30:34: 4e:b6:2f:0a:e5:4d:42:cf:63:ae:8e:0b:ea:e5:33: 3d:08:d6:cc:86:ae:51:26:91:4c:eb:e8:9c:32:5f: d9:41:b3:49:55:16:b8:b0:c8:69:dd:47:65:94:1e: b5:70:a2:a5:3e:c3:37:43:76:46:49:87:e1:3e:b5: 70:d0:9d:7d:a1:37:c2:80:4c:e9:95:08:82:25:8f: fa:09:e7:a6:99:96:79:68:f4:33:8e:ca:7d:34:c4: c9:59:ca:83:3b:04:0f:3d:41:8f:44:f4:f7:c5:b6: 8f:75:62:c1:5e:fd:2f:f9:9c:2f:c0:31:d9:3f:0f: b5:60:83:05:88:74:b2:ac:b5:0e:9e:bf:29:ad:69: 10:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:91:45:1B:80:8C:17:80:03:A9:36:DE:11:8C:CE:42:1A:25:6D:D3 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234322e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.214.242.0/24 Signature Algorithm: sha256WithRSAEncryption 80:52:e3:9f:eb:c4:fb:c0:bf:d4:aa:34:74:f6:18:cb:64:fb: 03:ad:b8:cb:80:d9:be:ce:42:27:49:d4:77:ca:19:05:cb:3d: ff:a2:94:cf:24:38:86:7b:0f:b4:da:e3:db:03:a3:ef:5d:e8: 45:ec:9b:fd:41:38:c0:f1:b5:7e:5f:6c:9f:57:2f:84:2f:6b: 3f:ef:da:32:cd:9c:b5:84:c0:04:d6:84:b4:df:8b:43:87:9d: 2e:54:62:1a:19:62:9f:76:b4:94:e9:bb:8f:ee:74:31:82:6a: 0f:51:55:64:7e:7a:bc:be:a6:2d:8b:e5:3d:67:95:ba:fc:0c: 7d:4b:f3:19:19:fb:e2:9d:67:b0:ec:e5:a2:47:e2:de:84:3c: cf:42:ee:e9:d5:ae:1d:81:65:87:a8:96:79:82:c7:33:1b:a4: 5f:0b:74:14:40:0a:f9:98:2d:20:19:09:ea:1f:2f:b3:30:25: ad:41:51:4e:f7:1f:6e:3a:e5:46:2e:bd:97:a6:57:10:8f:4d: 73:41:e2:5c:cc:19:9e:f4:c9:04:fa:a9:8c:6f:a6:67:c2:86: d4:31:43:0c:4e:c1:a2:c6:82:3d:42:e2:4b:b4:a5:cb:1e:41: a8:5a:91:32:79:f6:dd:50:69:05:80:db:5c:b6:a9:19:fa:41: 25:6c:b1:18 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZG6CHmXwNg0bOqANRu/9TOor5BowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNDA3MDEwMDU4MjlaFw0yNTA2MzAwMTAzMjlaMDMxMTAvBgNV BAMTKDA5OTE0NTFCODA4QzE3ODAwM0E5MzZERTExOENDRTQyMUEyNTZERDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0y6v41BkTTdKEH8FN8RRW9lKo xxqiARp8flRkuszFdaSbc2pnd7zlEpADGVnlsXF6/8vPMjZAqttBHAHRTykRmi/0 Gbh7oe/jSw7WMXYr1J5TCD5jhlH7Eo4SnU5vLgDtxfxbngj3NkAog+N8iU0NhGcE 6wMwNE62LwrlTULPY66OC+rlMz0I1syGrlEmkUzr6JwyX9lBs0lVFriwyGndR2WU HrVwoqU+wzdDdkZJh+E+tXDQnX2hN8KATOmVCIIlj/oJ56aZlnlo9DOOyn00xMlZ yoM7BA89QY9E9PfFto91YsFe/S/5nC/AMdk/D7VggwWIdLKstQ6evymtaRCtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCZFFG4CMF4ADqTbeEYzOQholbdMwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMxMzgzMDJlMzIzMTM0MmUzMjM0MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtNbyMA0GCSqG SIb3DQEBCwUAA4IBAQCAUuOf68T7wL/UqjR09hjLZPsDrbjLgNm+zkInSdR3yhkF yz3/opTPJDiGew+02uPbA6PvXehF7Jv9QTjA8bV+X2yfVy+EL2s/79oyzZy1hMAE 1oS034tDh50uVGIaGWKfdrSU6buP7nQxgmoPUVVkfnq8vqYti+U9Z5W6/Ax9S/MZ GfvinWew7OWiR+LehDzPQu7p1a4dgWWHqJZ5gsczG6RfC3QUQAr5mC0gGQnqHy+z MCWtQVFO9x9uOuVGLr2XplcQj01zQeJczBme9MkE+qmMb6ZnwobUMUMMTsGixoI9 QuJLtKXLHkGoWpEyefbdUGkFgNtctqkZ+kElbLEY -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:37 2024 by rpki-client on console-ams.rpki-client.org