$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235322e302f32342d3234203d3e203338313530.roa File: 3138302e3231342e3235322e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: VGkd3qyb5RgrQP18pdu6ONcUZAOkXXeZJwZvx9Z15f0= Subject key identifier: 89:C5:AE:E0:EF:AF:2B:9F:71:D7:E7:4D:38:3B:E2:CB:DC:64:3D:77 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 1ED6011E0DE6BC467A434C6C78230132A653DFE9 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235322e302f32342d3234203d3e203338313530.roa Signing time: Mon 01 Jul 2024 01:03:31 +0000 ROA not before: Mon 01 Jul 2024 00:58:31 +0000 ROA not after: Mon 30 Jun 2025 01:03:31 +0000 asID: 38150 IP address blocks: 180.214.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 06:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:d6:01:1e:0d:e6:bc:46:7a:43:4c:6c:78:23:01:32:a6:53:df:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 1 00:58:31 2024 GMT Not After : Jun 30 01:03:31 2025 GMT Subject: CN=89C5AEE0EFAF2B9F71D7E74D383BE2CBDC643D77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:04:ca:37:64:73:01:b7:43:79:38:b4:1c:68: fc:51:04:53:0a:d1:15:17:7c:43:2f:ed:98:1b:c4: 92:e2:63:59:c3:a3:c5:ba:30:95:b1:ad:36:22:4b: 1c:94:b9:7d:1a:91:cf:a4:62:df:ce:66:53:49:b1: 41:91:f7:a8:df:d0:c7:6b:cc:fe:75:2e:19:e8:cf: a3:17:57:4a:ec:fc:b7:96:79:c7:d2:ec:87:43:33: 9e:13:d6:c8:c8:23:04:c2:52:7e:f5:58:50:ef:95: ba:ad:7c:a2:d4:72:1e:7a:4d:9a:85:7c:9a:11:94: a4:1b:e0:dd:fb:12:71:2c:c8:08:05:71:83:5c:c4: ec:35:5e:eb:7f:7c:dc:c9:e0:5b:f9:3a:1d:6a:aa: 13:a3:f3:03:11:31:98:3c:ff:ef:da:3f:b8:90:51: 82:44:7d:ce:ef:3c:86:75:d7:c3:f0:bb:1d:a3:45: c3:01:85:60:61:04:48:d2:90:eb:70:43:ff:a6:1b: 5d:87:9b:27:ce:bf:6c:86:23:17:c9:a1:ba:dd:6a: 26:70:69:c0:3f:5a:94:42:62:4a:78:3e:d9:ad:05: 1f:cd:15:d7:5e:2b:0d:77:ba:1d:95:a6:db:aa:69: 59:cd:f9:1b:ae:17:89:b3:bf:21:97:4e:51:12:6e: 63:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:C5:AE:E0:EF:AF:2B:9F:71:D7:E7:4D:38:3B:E2:CB:DC:64:3D:77 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235322e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.214.252.0/24 Signature Algorithm: sha256WithRSAEncryption 72:1f:63:18:4c:47:e7:9f:88:39:56:f3:46:2e:1d:0f:a1:f1: 2e:c5:ac:29:3d:af:3d:f8:71:47:c6:02:df:81:88:21:a8:09: be:b9:ea:91:9e:17:45:6d:bc:46:6c:52:47:4b:11:b5:67:7d: e2:59:23:b7:e3:4f:d8:73:4c:a5:16:23:b6:46:a2:64:f2:ae: 08:a8:8d:bd:2a:d2:e4:6c:9b:b8:2a:4f:d3:88:ce:ce:83:64: 74:58:5e:df:51:72:b8:69:fd:46:d2:07:69:bb:c4:a9:92:34: 5e:84:23:67:cc:05:fd:f6:f3:3f:50:df:dc:51:76:64:e6:41: 1c:5e:e6:0c:32:cb:0d:58:ce:e4:9e:bb:26:da:b8:c3:a9:8c: 00:64:ad:ce:c1:a8:79:27:f1:f9:d6:af:e1:d7:b9:5b:65:59: 10:9e:f4:29:e9:f3:ea:45:00:79:74:32:92:cd:f3:c0:7c:0b: 67:52:a3:65:96:4c:18:97:f6:a8:c7:86:d2:c3:13:fd:d6:c0: 9c:b1:d5:b0:21:97:13:fb:52:ed:59:7b:15:e6:2c:cd:47:5d: 72:b3:a2:14:3c:dc:d8:9c:62:3e:b8:3b:91:d5:67:eb:62:bf: 55:e4:6b:c8:ff:d4:27:db:a2:38:32:25:04:61:fa:f0:df:bb: 3b:32:c5:3d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHtYBHg3mvEZ6Q0xseCMBMqZT3+kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNDA3MDEwMDU4MzFaFw0yNTA2MzAwMTAzMzFaMDMxMTAvBgNV BAMTKDg5QzVBRUUwRUZBRjJCOUY3MUQ3RTc0RDM4M0JFMkNCREM2NDNENzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7BMo3ZHMBt0N5OLQcaPxRBFMK 0RUXfEMv7ZgbxJLiY1nDo8W6MJWxrTYiSxyUuX0akc+kYt/OZlNJsUGR96jf0Mdr zP51Lhnoz6MXV0rs/LeWecfS7IdDM54T1sjIIwTCUn71WFDvlbqtfKLUch56TZqF fJoRlKQb4N37EnEsyAgFcYNcxOw1Xut/fNzJ4Fv5Oh1qqhOj8wMRMZg8/+/aP7iQ UYJEfc7vPIZ118Pwux2jRcMBhWBhBEjSkOtwQ/+mG12HmyfOv2yGIxfJobrdaiZw acA/WpRCYkp4PtmtBR/NFddeKw13uh2VptuqaVnN+RuuF4mzvyGXTlESbmPzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUicWu4O+vK59x1+dNODviy9xkPXcwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMxMzgzMDJlMzIzMTM0MmUzMjM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtNb8MA0GCSqG SIb3DQEBCwUAA4IBAQByH2MYTEfnn4g5VvNGLh0PofEuxawpPa89+HFHxgLfgYgh qAm+ueqRnhdFbbxGbFJHSxG1Z33iWSO340/Yc0ylFiO2RqJk8q4IqI29KtLkbJu4 Kk/TiM7Og2R0WF7fUXK4af1G0gdpu8SpkjRehCNnzAX99vM/UN/cUXZk5kEcXuYM MssNWM7knrsm2rjDqYwAZK3Owah5J/H51q/h17lbZVkQnvQp6fPqRQB5dDKSzfPA fAtnUqNllkwYl/aox4bSwxP91sCcsdWwIZcT+1LtWXsV5izNR11ys6IUPNzYnGI+ uDuR1WfrYr9V5GvI/9Qn26I4MiUEYfrw37s7MsU9 -----END CERTIFICATE-----Generated at Fri Nov 22 03:50:41 2024 by rpki-client on console-fra.rpki-client.org