$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234382e302f32342d3234203d3e203338313530.roa File: 3138302e3231342e3234382e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: MPKCsRZDZNYsOLsUI2cCtDDIcaytMV4pMvYW85eFW6g= Subject key identifier: CD:BB:4D:12:36:BC:3C:96:EF:E9:1B:DE:AC:F6:C8:C9:E5:B8:82:10 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 2C0EDFC94AD190ECD8632B3C44F7F9C11EF373A7 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234382e302f32342d3234203d3e203338313530.roa Signing time: Mon 01 Jul 2024 01:03:31 +0000 ROA not before: Mon 01 Jul 2024 00:58:31 +0000 ROA not after: Mon 30 Jun 2025 01:03:31 +0000 asID: 38150 IP address blocks: 180.214.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 06:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:0e:df:c9:4a:d1:90:ec:d8:63:2b:3c:44:f7:f9:c1:1e:f3:73:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 1 00:58:31 2024 GMT Not After : Jun 30 01:03:31 2025 GMT Subject: CN=CDBB4D1236BC3C96EFE91BDEACF6C8C9E5B88210 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b1:46:70:9e:44:d6:96:d1:cd:1e:3f:d8:33: f9:bc:d4:12:7b:ed:fa:1e:a6:1a:02:33:b1:0d:6c: 3e:31:fc:66:c8:79:d2:5e:fe:5e:8d:89:1e:c0:d7: e8:74:b1:4b:e1:2b:ac:6a:43:f5:08:40:4e:bc:61: 3c:de:e1:e4:23:9b:c4:ff:05:3d:dc:47:80:63:8e: 14:b8:32:f4:f8:39:b7:21:ff:1a:b4:74:03:ea:78: ba:a5:fb:03:ba:a6:47:54:bc:00:69:83:d4:4a:28: 45:bd:9e:74:1e:49:f5:8c:74:e4:cc:e5:62:01:c1: 74:0b:9a:f2:1e:91:c6:66:42:59:44:fd:63:14:92: 1b:29:d3:14:52:c8:b8:f7:9c:9c:c8:1a:95:23:c8: 21:59:3c:58:7f:a4:cd:2b:9c:b9:27:83:07:5d:ec: bb:40:45:e9:90:f8:d3:19:80:e9:9f:1a:65:96:3e: a5:8c:ca:c2:0f:59:0f:87:33:78:10:71:29:56:76: 6b:fa:a2:73:c9:d7:ff:06:36:35:dc:15:7c:62:85: dc:8c:6e:64:9d:be:80:7a:82:13:46:ce:1c:68:6f: aa:14:d5:f8:be:83:42:f7:68:40:0c:fb:a1:46:2f: 04:23:72:6f:0c:55:d1:63:8c:99:83:be:b1:aa:e0: ee:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:BB:4D:12:36:BC:3C:96:EF:E9:1B:DE:AC:F6:C8:C9:E5:B8:82:10 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234382e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.214.248.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:a2:86:bc:05:31:f9:fc:6a:52:1e:cf:6c:0f:a3:27:c2:62: d4:16:3d:02:b4:a1:90:9e:7a:8a:e2:a4:92:84:50:08:7d:0e: 9c:bf:c3:20:cf:f2:5c:76:a7:d1:ad:45:44:a6:d2:82:9a:54: 20:d7:cb:25:68:db:f1:0e:5e:fa:9d:f9:0d:6f:7c:40:f8:59: 43:81:15:36:fc:e7:36:2a:ee:43:f1:97:88:7c:a4:c8:1f:80: c0:d6:1f:59:ea:0c:5b:00:62:72:43:48:b1:d9:7d:6c:e4:42: 95:8e:c5:8c:a4:35:ec:dd:f7:98:8c:23:08:e5:a4:70:b0:c0: f1:bb:65:21:85:09:40:ae:0e:0c:9e:c6:d7:ea:d9:ef:6b:c0: 36:0a:11:38:a6:ea:bc:63:58:ab:78:36:38:83:fc:2f:54:7d: 8d:75:f7:9b:5b:f3:a4:2a:c4:00:7c:75:aa:37:e8:63:d5:a2: 38:1a:e7:bc:ea:d7:e9:fc:22:db:8d:4e:e6:74:6c:28:c1:39: 2b:1d:8e:89:92:cb:8d:f1:2c:d2:79:a1:6e:f7:80:ba:88:e3: 3a:ed:80:5b:cf:cd:91:ba:05:a0:e7:ed:dd:0c:df:3c:aa:89: dc:0a:cd:e9:5f:9a:b5:14:d9:25:19:b4:de:ac:c1:3b:18:9b: 86:6e:e6:2e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULA7fyUrRkOzYYys8RPf5wR7zc6cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNDA3MDEwMDU4MzFaFw0yNTA2MzAwMTAzMzFaMDMxMTAvBgNV BAMTKENEQkI0RDEyMzZCQzNDOTZFRkU5MUJERUFDRjZDOEM5RTVCODgyMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8sUZwnkTWltHNHj/YM/m81BJ7 7foephoCM7ENbD4x/GbIedJe/l6NiR7A1+h0sUvhK6xqQ/UIQE68YTze4eQjm8T/ BT3cR4BjjhS4MvT4Obch/xq0dAPqeLql+wO6pkdUvABpg9RKKEW9nnQeSfWMdOTM 5WIBwXQLmvIekcZmQllE/WMUkhsp0xRSyLj3nJzIGpUjyCFZPFh/pM0rnLkngwdd 7LtARemQ+NMZgOmfGmWWPqWMysIPWQ+HM3gQcSlWdmv6onPJ1/8GNjXcFXxihdyM bmSdvoB6ghNGzhxob6oU1fi+g0L3aEAM+6FGLwQjcm8MVdFjjJmDvrGq4O5RAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzbtNEja8PJbv6RverPbIyeW4ghAwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMxMzgzMDJlMzIzMTM0MmUzMjM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtNb4MA0GCSqG SIb3DQEBCwUAA4IBAQCOooa8BTH5/GpSHs9sD6MnwmLUFj0CtKGQnnqK4qSShFAI fQ6cv8Mgz/JcdqfRrUVEptKCmlQg18slaNvxDl76nfkNb3xA+FlDgRU2/Oc2Ku5D 8ZeIfKTIH4DA1h9Z6gxbAGJyQ0ix2X1s5EKVjsWMpDXs3feYjCMI5aRwsMDxu2Uh hQlArg4MnsbX6tnva8A2ChE4puq8Y1ireDY4g/wvVH2NdfebW/OkKsQAfHWqN+hj 1aI4Gue86tfp/CLbjU7mdGwowTkrHY6JksuN8SzSeaFu94C6iOM67YBbz82RugWg 5+3dDN88qoncCs3pX5q1FNklGbTerME7GJuGbuYu -----END CERTIFICATE-----Generated at Fri Nov 22 03:50:41 2024 by rpki-client on console-fra.rpki-client.org