$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235352e302f32342d3234203d3e203338313530.roa File: 3138302e3231342e3235352e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: tvjhexGXpSO7wuXjwm6qesuL1mCCAS1JQj5RFE6BDNY= Subject key identifier: 05:5B:D6:E0:A7:18:5E:14:5D:10:09:97:64:07:27:45:1F:A0:E2:0F Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 12CA7D27F3968DE3651710C6AA3519D4A834D80D Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235352e302f32342d3234203d3e203338313530.roa Signing time: Mon 31 Jul 2023 00:05:07 +0000 ROA not before: Mon 31 Jul 2023 00:00:07 +0000 ROA not after: Mon 29 Jul 2024 00:05:07 +0000 asID: 38150 IP address blocks: 180.214.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 13:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:ca:7d:27:f3:96:8d:e3:65:17:10:c6:aa:35:19:d4:a8:34:d8:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 31 00:00:07 2023 GMT Not After : Jul 29 00:05:07 2024 GMT Subject: CN=055BD6E0A7185E145D100997640727451FA0E20F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:cb:1f:d5:46:61:08:b2:a9:05:be:7e:02:99: df:39:b9:00:52:0e:ce:c6:bf:88:00:7e:45:d1:11: 51:85:9e:fe:42:dc:5c:b5:c8:8e:69:c7:01:ba:b7: 3f:3b:d7:c9:58:f2:e5:32:d7:d7:95:54:a6:f2:14: 28:cd:bc:27:d5:a4:25:4a:f2:9f:8a:06:a4:83:99: e0:b8:3f:60:b5:4b:4c:fa:dd:93:bf:99:66:f3:cc: 06:25:cb:e8:b7:f8:9c:81:40:2d:d9:0f:0f:77:2c: a7:cc:6f:c8:5b:5a:17:9b:c5:79:3e:fb:0f:20:00: db:6f:f8:d4:66:2a:ad:88:3a:c1:80:61:ac:8c:cb: b5:e5:01:8d:f4:96:85:87:06:e4:e8:ff:ff:39:f1: ed:4b:72:3f:4f:0f:85:d9:c9:e0:39:9f:9c:85:29: 4a:71:50:e5:d5:2f:c6:61:fd:81:2f:ae:c3:72:e8: ab:92:ca:82:5c:fe:8f:8b:ad:44:69:20:91:12:e5: 33:d9:30:6c:47:33:e0:24:28:85:40:46:82:09:89: cb:5a:e3:01:20:fe:f9:64:08:cd:40:95:49:cc:54: a3:e5:64:9f:61:4a:af:67:21:5a:1a:b6:9c:2c:03: 9d:a0:5a:3e:86:03:51:d1:33:7e:9b:dd:0e:e6:a2: c6:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:5B:D6:E0:A7:18:5E:14:5D:10:09:97:64:07:27:45:1F:A0:E2:0F X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235352e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.214.255.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:58:8c:41:ae:ce:30:ec:02:29:83:32:cf:df:0c:59:c3:bc: 30:0d:f8:73:15:26:c7:5e:46:bd:10:84:37:7a:e9:7f:89:11: 31:0b:5e:cd:bd:e8:b9:69:50:26:28:aa:f9:81:3d:ec:4e:38: c6:28:57:81:fe:2a:74:02:04:6e:d3:cf:1f:e4:12:8b:7c:7f: 0c:3c:38:bc:43:c6:49:9a:5f:2d:14:86:19:57:b3:e0:e8:eb: d0:ba:f1:ea:23:c8:07:3b:d2:40:77:d7:02:2c:5a:bf:9d:8c: b6:a3:53:23:66:b4:14:4c:42:f8:2e:16:64:01:a2:f0:57:cf: 75:cd:bd:18:6d:eb:ee:c8:7e:18:68:44:31:15:ea:23:fa:11: 9f:66:4a:6e:d2:26:18:4f:a3:a9:5b:16:71:39:1c:38:f7:f1: c4:af:fc:01:dc:f6:0a:61:00:6e:aa:70:e7:ce:17:a0:63:a1: e8:bd:ce:73:fa:59:a6:c7:69:65:75:db:f7:d9:e1:45:f8:bc: 14:17:c8:7a:56:ac:28:a0:fb:6f:c8:08:5b:d6:f6:c1:fd:4f: e9:8f:83:93:db:d3:7d:0b:e1:84:90:f0:e7:b0:29:9d:26:23: 49:f4:4a:5f:8a:a5:80:76:05:69:d4:23:33:ce:fd:3a:69:3d: 65:2e:b8:55 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEsp9J/OWjeNlFxDGqjUZ1Kg02A0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yMzA3MzEwMDAwMDdaFw0yNDA3MjkwMDA1MDdaMDMxMTAvBgNV BAMTKDA1NUJENkUwQTcxODVFMTQ1RDEwMDk5NzY0MDcyNzQ1MUZBMEUyMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6yx/VRmEIsqkFvn4Cmd85uQBS Ds7Gv4gAfkXREVGFnv5C3Fy1yI5pxwG6tz8718lY8uUy19eVVKbyFCjNvCfVpCVK 8p+KBqSDmeC4P2C1S0z63ZO/mWbzzAYly+i3+JyBQC3ZDw93LKfMb8hbWhebxXk+ +w8gANtv+NRmKq2IOsGAYayMy7XlAY30loWHBuTo//858e1Lcj9PD4XZyeA5n5yF KUpxUOXVL8Zh/YEvrsNy6KuSyoJc/o+LrURpIJES5TPZMGxHM+AkKIVARoIJicta 4wEg/vlkCM1AlUnMVKPlZJ9hSq9nIVoatpwsA52gWj6GA1HRM36b3Q7mosZhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBVvW4KcYXhRdEAmXZAcnRR+g4g8wHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMxMzgzMDJlMzIzMTM0MmUzMjM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtNb/MA0GCSqG SIb3DQEBCwUAA4IBAQB7WIxBrs4w7AIpgzLP3wxZw7wwDfhzFSbHXka9EIQ3eul/ iRExC17Nvei5aVAmKKr5gT3sTjjGKFeB/ip0AgRu088f5BKLfH8MPDi8Q8ZJml8t FIYZV7Pg6OvQuvHqI8gHO9JAd9cCLFq/nYy2o1MjZrQUTEL4LhZkAaLwV891zb0Y bevuyH4YaEQxFeoj+hGfZkpu0iYYT6OpWxZxORw49/HEr/wB3PYKYQBuqnDnzheg Y6Hovc5z+lmmx2llddv32eFF+LwUF8h6VqwooPtvyAhb1vbB/U/pj4OT29N9C+GE kPDnsCmdJiNJ9EpfiqWAdgVp1CMzzv06aT1lLrhV -----END CERTIFICATE-----Generated at Thu May 2 10:16:52 2024 by rpki-client on console-ams.rpki-client.org