$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234332e302f32342d3234203d3e203338313530.roa File: 3138302e3231342e3234332e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: NfXkvyJjdz3lMbP2RK80QjI1Az4nVDj8tmiqN24vkXc= Subject key identifier: CF:C5:80:CD:7D:AE:3E:A2:3D:AA:39:27:5C:97:C1:3B:BE:E9:0E:98 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 194E5948C9B3ABF9834090D95002C0CD51262F77 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234332e302f32342d3234203d3e203338313530.roa Signing time: Mon 01 Jul 2024 01:03:31 +0000 ROA not before: Mon 01 Jul 2024 00:58:31 +0000 ROA not after: Mon 30 Jun 2025 01:03:31 +0000 asID: 38150 IP address blocks: 180.214.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 06:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:4e:59:48:c9:b3:ab:f9:83:40:90:d9:50:02:c0:cd:51:26:2f:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 1 00:58:31 2024 GMT Not After : Jun 30 01:03:31 2025 GMT Subject: CN=CFC580CD7DAE3EA23DAA39275C97C13BBEE90E98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:cd:40:f4:b4:32:bd:27:31:b1:f7:7f:ec:0f: c5:50:02:24:d1:bf:bc:87:35:95:51:14:47:de:4c: e0:97:c1:d3:ad:79:03:0e:b4:ec:69:97:36:33:83: b7:88:13:d7:e1:64:b7:a6:7a:02:13:42:e8:0b:4f: e8:6f:c8:34:6d:65:a3:21:bd:9c:60:fe:99:fc:a1: d6:02:21:af:6f:f1:25:a0:80:9a:aa:44:d9:49:91: ad:13:d7:9a:02:df:f1:87:e8:79:75:f6:97:ae:79: 18:cf:16:22:07:88:01:95:39:81:a6:9b:95:7a:7d: e7:18:52:a2:61:d7:09:11:cd:35:99:cc:48:a1:21: b5:5b:74:f6:8f:3b:10:d7:28:cf:fc:bf:98:a2:72: d5:d3:9b:bf:66:06:d7:32:47:36:f5:75:f7:b5:ee: 5f:cf:01:cc:48:27:f8:7a:f5:ee:4f:16:78:40:c7: 00:09:09:f5:5c:a3:bd:1c:f2:ee:32:22:76:20:f6: ea:5c:89:ee:76:25:c1:11:41:74:95:81:ba:7f:25: 6b:9d:1a:6f:47:5d:08:21:fb:86:c7:2a:98:30:1e: a9:04:22:73:d6:c2:98:c0:1f:fb:b3:87:e4:4a:31: 94:fa:1c:98:5a:b4:12:b6:c9:05:44:59:58:45:9a: e8:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:C5:80:CD:7D:AE:3E:A2:3D:AA:39:27:5C:97:C1:3B:BE:E9:0E:98 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234332e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.214.243.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:90:be:86:2f:80:49:e9:61:b2:f1:fa:07:52:f5:fa:98:dd: ce:09:6d:dd:8d:22:23:0d:e1:a9:7b:00:86:10:af:58:af:32: 49:a9:04:2c:42:de:2b:89:fa:60:f9:c7:83:e8:5e:7b:67:be: 10:2f:c7:df:57:24:3d:d1:1f:ac:3a:7b:21:e3:7e:f7:95:43: 55:13:45:93:df:c6:73:1d:a6:e9:f3:d0:31:6f:b4:a6:8d:28: fe:b6:5b:d3:fb:9a:de:ca:82:7e:c9:91:9b:d0:b5:e6:d2:56: a2:b8:c8:2b:d9:ba:64:0b:df:87:46:9e:d4:56:db:f7:69:80: c4:38:0a:29:0b:b8:b9:23:20:88:21:7a:6f:dc:6c:62:89:09: 31:cc:72:32:83:63:8a:9d:f3:c6:d7:1b:e9:37:6e:46:65:a2: 54:f0:44:5d:13:44:ff:bc:df:ca:e1:3f:d7:1c:b4:aa:5b:02: 11:fe:9f:50:b8:3c:86:67:cf:2f:33:ff:d9:33:8e:cf:6a:8e: be:2a:a2:01:e4:97:6b:84:0c:f3:f8:d5:11:6d:13:7c:f6:65: c9:14:ce:63:3c:da:43:fd:e7:0d:8e:0b:2c:dd:ba:13:8f:c6: 08:61:0a:a4:5e:76:ee:ff:c8:63:87:e3:32:e4:69:ff:db:67: bf:a3:ab:bb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGU5ZSMmzq/mDQJDZUALAzVEmL3cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNDA3MDEwMDU4MzFaFw0yNTA2MzAwMTAzMzFaMDMxMTAvBgNV BAMTKENGQzU4MENEN0RBRTNFQTIzREFBMzkyNzVDOTdDMTNCQkVFOTBFOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYzUD0tDK9JzGx93/sD8VQAiTR v7yHNZVRFEfeTOCXwdOteQMOtOxplzYzg7eIE9fhZLemegITQugLT+hvyDRtZaMh vZxg/pn8odYCIa9v8SWggJqqRNlJka0T15oC3/GH6Hl19peueRjPFiIHiAGVOYGm m5V6fecYUqJh1wkRzTWZzEihIbVbdPaPOxDXKM/8v5iictXTm79mBtcyRzb1dfe1 7l/PAcxIJ/h69e5PFnhAxwAJCfVco70c8u4yInYg9upcie52JcERQXSVgbp/JWud Gm9HXQgh+4bHKpgwHqkEInPWwpjAH/uzh+RKMZT6HJhatBK2yQVEWVhFmuhFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUz8WAzX2uPqI9qjknXJfBO77pDpgwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMxMzgzMDJlMzIzMTM0MmUzMjM0MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtNbzMA0GCSqG SIb3DQEBCwUAA4IBAQAvkL6GL4BJ6WGy8foHUvX6mN3OCW3djSIjDeGpewCGEK9Y rzJJqQQsQt4rifpg+ceD6F57Z74QL8ffVyQ90R+sOnsh4373lUNVE0WT38ZzHabp 89Axb7SmjSj+tlvT+5reyoJ+yZGb0LXm0laiuMgr2bpkC9+HRp7UVtv3aYDEOAop C7i5IyCIIXpv3GxiiQkxzHIyg2OKnfPG1xvpN25GZaJU8ERdE0T/vN/K4T/XHLSq WwIR/p9QuDyGZ88vM//ZM47Pao6+KqIB5JdrhAzz+NURbRN89mXJFM5jPNpD/ecN jgss3boTj8YIYQqkXnbu/8hjh+My5Gn/22e/o6u7 -----END CERTIFICATE-----Generated at Fri Nov 22 03:50:41 2024 by rpki-client on console-fra.rpki-client.org