$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235322e302f32342d3234203d3e203338313530.roa File: 3138302e3231342e3235322e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: 2dVJiZlf3veI9BsuqMirzL0JJaTXGI3l6ihDTMARuYU= Subject key identifier: D5:28:E6:09:30:0D:4F:94:C8:A1:F0:AF:9D:AD:90:41:EE:93:E6:D1 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 57B552984E5877ECA8838DCBCC81756FF0DC4210 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235322e302f32342d3234203d3e203338313530.roa Signing time: Mon 31 Jul 2023 00:05:08 +0000 ROA not before: Mon 31 Jul 2023 00:00:08 +0000 ROA not after: Mon 29 Jul 2024 00:05:08 +0000 asID: 38150 IP address blocks: 180.214.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 13:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:b5:52:98:4e:58:77:ec:a8:83:8d:cb:cc:81:75:6f:f0:dc:42:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 31 00:00:08 2023 GMT Not After : Jul 29 00:05:08 2024 GMT Subject: CN=D528E609300D4F94C8A1F0AF9DAD9041EE93E6D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:a0:45:70:a3:27:47:85:21:61:bb:71:ae:29: 31:c2:60:f3:b3:f6:27:60:50:f7:3e:ca:34:18:7a: a1:d1:43:e9:aa:2b:94:bf:9c:18:a7:7d:67:6d:47: 72:54:16:9e:23:f6:96:56:0c:51:08:54:5b:20:d6: 76:60:6b:97:ce:b1:c5:d9:78:58:31:64:3f:8a:70: a2:51:59:42:3e:ec:12:06:f2:ba:0e:44:81:2a:ca: 7b:8c:9e:95:c3:3e:bb:9f:44:cc:bd:f2:63:df:4e: cd:78:33:44:fb:ec:a7:97:86:82:34:84:60:31:83: a8:f4:0a:ad:24:1f:b2:09:3c:58:ca:a5:52:a4:0f: 68:a0:de:6e:9b:54:42:0b:65:0a:2b:6a:bf:38:4f: 67:86:a4:c3:12:6c:62:9f:e9:12:75:9b:ee:3c:f9: da:d3:61:29:05:12:15:29:87:a3:b5:bf:27:a5:a9: 59:a3:78:94:df:61:2c:94:52:23:b9:8a:32:80:e7: e3:9a:91:62:12:00:0c:85:31:e2:61:d5:c0:ca:9e: c1:45:cd:0d:b7:f1:f0:0a:3b:86:84:88:f6:26:da: 50:53:e7:f1:fe:f9:f7:94:7b:0b:5e:34:3b:31:c7: 90:08:b6:aa:dd:b5:f3:c0:54:fe:95:53:fc:24:a3: d2:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:28:E6:09:30:0D:4F:94:C8:A1:F0:AF:9D:AD:90:41:EE:93:E6:D1 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235322e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.214.252.0/24 Signature Algorithm: sha256WithRSAEncryption 85:31:28:7f:54:19:c2:b9:a6:9f:c1:77:43:59:2f:08:61:b1: 74:6c:0f:e8:7e:48:93:20:7f:04:71:81:39:27:3a:47:aa:9c: cb:45:ed:91:8f:53:14:31:fa:9f:0b:17:db:a9:98:1f:14:15: c5:ce:1f:44:c1:56:e8:34:b1:b6:a2:87:33:75:72:13:f1:b8: 6e:63:85:c1:2f:12:25:65:ad:c2:1f:92:97:ab:f0:98:2d:7c: 02:c0:5e:d8:86:fd:23:34:c1:a2:3e:d6:38:78:16:f9:0f:7d: 49:30:23:5a:a3:e1:42:bd:e2:14:6a:db:e6:1d:64:e4:a1:02: 49:30:f3:2a:39:28:c8:6e:69:d0:e5:b8:6a:8b:93:e0:01:7c: 38:4e:a2:66:c9:23:5a:27:a9:6f:e8:82:db:7b:68:a1:0d:90: b9:5d:61:c1:03:2b:35:90:e2:a1:7b:26:9c:cd:2e:70:85:25: 45:72:40:49:3f:ea:0a:fa:36:67:31:49:cc:d9:80:03:95:57: cc:ea:97:0a:20:45:6e:3e:01:54:52:33:98:30:8f:de:29:32: 84:9f:3d:aa:f6:65:be:32:98:94:f8:6d:4b:a6:89:e9:35:c8: 41:88:c1:9b:f1:b4:85:f2:56:2f:f8:75:c9:ad:90:1f:38:1a: ef:2e:42:1d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUV7VSmE5Yd+yog43LzIF1b/DcQhAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yMzA3MzEwMDAwMDhaFw0yNDA3MjkwMDA1MDhaMDMxMTAvBgNV BAMTKEQ1MjhFNjA5MzAwRDRGOTRDOEExRjBBRjlEQUQ5MDQxRUU5M0U2RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDroEVwoydHhSFhu3GuKTHCYPOz 9idgUPc+yjQYeqHRQ+mqK5S/nBinfWdtR3JUFp4j9pZWDFEIVFsg1nZga5fOscXZ eFgxZD+KcKJRWUI+7BIG8roORIEqynuMnpXDPrufRMy98mPfTs14M0T77KeXhoI0 hGAxg6j0Cq0kH7IJPFjKpVKkD2ig3m6bVEILZQorar84T2eGpMMSbGKf6RJ1m+48 +drTYSkFEhUph6O1vyelqVmjeJTfYSyUUiO5ijKA5+OakWISAAyFMeJh1cDKnsFF zQ238fAKO4aEiPYm2lBT5/H++feUewteNDsxx5AItqrdtfPAVP6VU/wko9L/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1SjmCTANT5TIofCvna2QQe6T5tEwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMxMzgzMDJlMzIzMTM0MmUzMjM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtNb8MA0GCSqG SIb3DQEBCwUAA4IBAQCFMSh/VBnCuaafwXdDWS8IYbF0bA/ofkiTIH8EcYE5JzpH qpzLRe2Rj1MUMfqfCxfbqZgfFBXFzh9EwVboNLG2ooczdXIT8bhuY4XBLxIlZa3C H5KXq/CYLXwCwF7Yhv0jNMGiPtY4eBb5D31JMCNao+FCveIUatvmHWTkoQJJMPMq OSjIbmnQ5bhqi5PgAXw4TqJmySNaJ6lv6ILbe2ihDZC5XWHBAys1kOKheyaczS5w hSVFckBJP+oK+jZnMUnM2YADlVfM6pcKIEVuPgFUUjOYMI/eKTKEnz2q9mW+MpiU +G1LponpNchBiMGb8bSF8lYv+HXJrZAfOBrvLkId -----END CERTIFICATE-----Generated at Thu May 2 11:32:08 2024 by rpki-client on console-fra.rpki-client.org