$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235332e302f32342d3234203d3e203338313530.roa File: 3138302e3231342e3235332e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: dVyXyeitdxkWoIb0JFvBz6herhcN9vKQBLdnntu/3Os= Subject key identifier: 1A:9E:F6:4A:3E:4C:21:8C:01:61:E7:B8:8A:5C:F8:F6:3A:43:CA:DC Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 6556E51068A5D38C60B59CFA311D6CA548CBEB3F Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235332e302f32342d3234203d3e203338313530.roa Signing time: Mon 01 Jul 2024 01:03:30 +0000 ROA not before: Mon 01 Jul 2024 00:58:30 +0000 ROA not after: Mon 30 Jun 2025 01:03:30 +0000 asID: 38150 IP address blocks: 180.214.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 06:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:56:e5:10:68:a5:d3:8c:60:b5:9c:fa:31:1d:6c:a5:48:cb:eb:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 1 00:58:30 2024 GMT Not After : Jun 30 01:03:30 2025 GMT Subject: CN=1A9EF64A3E4C218C0161E7B88A5CF8F63A43CADC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:07:02:f9:d2:a6:fe:1b:60:a4:3d:c2:29:42: 8f:62:f4:f6:23:4d:09:8b:97:ec:70:5d:61:2c:c7: 4f:9e:99:46:92:d8:a7:69:df:94:1c:0b:2b:6a:62: 6f:ca:28:57:a3:09:76:90:a9:1b:38:0f:5e:6c:14: 4a:dc:9f:30:66:5f:81:9b:cc:bc:3e:f3:dd:84:45: 2e:32:38:11:39:d5:bd:3c:08:86:17:15:ef:aa:30: 4e:73:32:d3:c3:6b:4e:4e:65:59:cb:f0:70:dd:4b: 20:71:7b:84:25:16:00:d4:47:f8:45:4b:8e:8e:7a: 89:34:2b:c8:8b:af:11:1e:d5:a8:24:a7:e8:50:2b: 70:a2:53:77:87:d7:f2:6e:88:4f:6b:20:01:9d:3d: 96:1d:47:40:75:b0:99:56:23:ac:79:db:ac:45:bf: 60:a8:e8:a4:db:79:7c:33:a4:59:79:5d:1a:0c:dd: 84:a8:30:4d:1a:7b:08:07:fe:b3:3a:b9:c7:a0:55: 04:09:55:b0:0a:d6:ec:09:b9:6a:5a:85:47:8d:c1: e7:7f:01:04:bd:d7:04:97:f5:da:b4:33:bf:94:bd: 71:ea:dc:9c:5d:75:ab:ce:1f:93:ee:67:56:80:79: fb:69:f8:13:e8:9a:e7:f2:68:3c:91:a6:b1:80:b9: e0:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:9E:F6:4A:3E:4C:21:8C:01:61:E7:B8:8A:5C:F8:F6:3A:43:CA:DC X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235332e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.214.253.0/24 Signature Algorithm: sha256WithRSAEncryption b5:7d:55:b8:49:71:1e:0c:03:5f:dd:3b:92:ea:e2:f5:9e:75: 33:7d:48:c9:1a:98:0b:5e:37:26:fe:ad:75:ba:7f:7c:91:eb: 20:d3:26:c6:3b:3c:6a:db:12:af:00:99:49:2a:72:f7:06:29: 58:b2:96:eb:82:df:f7:24:da:b6:dd:c2:b6:25:84:3f:5b:e2: 8e:a2:71:81:14:de:08:eb:23:0a:cb:5b:25:db:e7:05:06:29: 03:33:3e:8d:db:63:08:df:bb:34:03:65:ce:45:2a:52:62:c1: cc:ca:71:17:a4:80:ae:02:04:75:42:09:1e:59:80:c1:fb:c9: d5:bc:48:3a:6a:e3:09:d5:53:25:39:f3:30:4a:3f:62:be:da: 46:48:cb:d8:4d:cc:c7:51:c3:c7:6d:d0:14:a0:44:2c:62:d7: 01:54:6b:48:02:9a:16:32:11:b9:bb:a3:7b:d7:a9:ad:ea:c3: 06:1f:16:44:78:d5:83:4e:1f:4d:25:c9:5e:6f:28:3e:d5:5f: b1:46:df:39:c5:a9:98:85:8c:b2:f6:35:f2:a0:46:f3:50:8c: 6c:28:ec:4e:7f:b6:7b:2f:97:2b:5e:3f:49:4d:b4:f3:b2:76: 12:11:26:ef:df:c7:aa:36:5a:da:ae:57:b7:d2:cc:51:66:2e: a2:ac:a5:de -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZVblEGil04xgtZz6MR1spUjL6z8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNDA3MDEwMDU4MzBaFw0yNTA2MzAwMTAzMzBaMDMxMTAvBgNV BAMTKDFBOUVGNjRBM0U0QzIxOEMwMTYxRTdCODhBNUNGOEY2M0E0M0NBREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1BwL50qb+G2CkPcIpQo9i9PYj TQmLl+xwXWEsx0+emUaS2Kdp35QcCytqYm/KKFejCXaQqRs4D15sFErcnzBmX4Gb zLw+892ERS4yOBE51b08CIYXFe+qME5zMtPDa05OZVnL8HDdSyBxe4QlFgDUR/hF S46Oeok0K8iLrxEe1agkp+hQK3CiU3eH1/JuiE9rIAGdPZYdR0B1sJlWI6x526xF v2Co6KTbeXwzpFl5XRoM3YSoME0aewgH/rM6ucegVQQJVbAK1uwJuWpahUeNwed/ AQS91wSX9dq0M7+UvXHq3JxddavOH5PuZ1aAeftp+BPomufyaDyRprGAueCrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGp72Sj5MIYwBYee4ilz49jpDytwwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMxMzgzMDJlMzIzMTM0MmUzMjM1MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtNb9MA0GCSqG SIb3DQEBCwUAA4IBAQC1fVW4SXEeDANf3TuS6uL1nnUzfUjJGpgLXjcm/q11un98 kesg0ybGOzxq2xKvAJlJKnL3BilYspbrgt/3JNq23cK2JYQ/W+KOonGBFN4I6yMK y1sl2+cFBikDMz6N22MI37s0A2XORSpSYsHMynEXpICuAgR1QgkeWYDB+8nVvEg6 auMJ1VMlOfMwSj9ivtpGSMvYTczHUcPHbdAUoEQsYtcBVGtIApoWMhG5u6N716mt 6sMGHxZEeNWDTh9NJclebyg+1V+xRt85xamYhYyy9jXyoEbzUIxsKOxOf7Z7L5cr Xj9JTbTzsnYSESbv38eqNlrarle30sxRZi6irKXe -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:38 2024 by rpki-client on console-ams.rpki-client.org