$ rpki-client -vvf repo-rpki.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/3136332e35332e3139352e302f32342d3234203d3e203538333831.roa File: 3136332e35332e3139352e302f32342d3234203d3e203538333831.roa (raw, json) Hash identifier: y6dO/RTV0WG/FB7q+9moElFaVn2GJkU7nSjhW/VxRZE= Subject key identifier: 06:A6:34:AE:65:0B:32:D0:46:E0:0C:3A:CB:18:DB:AB:B2:C1:4F:42 Certificate issuer: /CN=E5A907C4EC6DA6D9342613280CCAF26E98DBEB98 Certificate serial: 228C336A7810275FC12F769344748FA3B3870D9D Authority key identifier: E5:A9:07:C4:EC:6D:A6:D9:34:26:13:28:0C:CA:F2:6E:98:DB:EB:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E5A907C4EC6DA6D9342613280CCAF26E98DBEB98.cer Subject info access: rsync://repo-rpki.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/3136332e35332e3139352e302f32342d3234203d3e203538333831.roa Signing time: Wed 01 May 2024 17:00:02 +0000 ROA not before: Wed 01 May 2024 16:55:02 +0000 ROA not after: Wed 30 Apr 2025 17:00:02 +0000 asID: 58381 IP address blocks: 163.53.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/E5A907C4EC6DA6D9342613280CCAF26E98DBEB98.crl rsync://repo-rpki.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/E5A907C4EC6DA6D9342613280CCAF26E98DBEB98.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E5A907C4EC6DA6D9342613280CCAF26E98DBEB98.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:8c:33:6a:78:10:27:5f:c1:2f:76:93:44:74:8f:a3:b3:87:0d:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E5A907C4EC6DA6D9342613280CCAF26E98DBEB98 Validity Not Before: May 1 16:55:02 2024 GMT Not After : Apr 30 17:00:02 2025 GMT Subject: CN=06A634AE650B32D046E00C3ACB18DBABB2C14F42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:96:4e:d0:05:30:20:33:d2:b6:8c:d1:0f:20: 3f:d1:a9:00:68:c7:81:c0:08:9d:29:49:2d:62:6d: 32:a9:8b:45:1b:0f:79:1a:99:83:a2:50:3e:42:08: a4:50:cf:30:6e:0f:bd:99:df:1a:34:f3:cf:45:6a: 77:07:cf:e2:33:43:7c:50:66:03:c9:fd:1c:86:61: ab:76:b0:dd:dc:95:b2:5d:6a:98:af:85:59:f3:42: 47:1a:79:f3:ae:91:a1:65:64:c1:48:05:55:01:8d: d7:e6:3c:89:3e:bd:21:41:d0:83:4a:12:e9:a5:ca: 1f:f4:63:ce:0b:a5:0b:4c:f6:3d:25:5a:b0:14:fb: 09:f4:97:80:7b:76:8e:91:fb:89:96:e6:77:c1:72: 70:88:31:b5:0d:16:3b:1c:8a:0e:9c:12:c8:13:99: 4a:97:5f:2e:8f:a3:fa:b5:28:2b:0d:b3:c9:43:9f: 32:9e:95:8c:d2:00:90:d6:c8:49:92:e6:ba:42:df: 8f:e7:16:df:67:eb:f1:c0:26:f0:58:20:2d:59:47: 0f:dd:18:7c:b1:5b:94:39:32:6b:a2:7b:72:ad:ef: 45:c8:f3:35:d7:42:ec:13:d8:81:7c:9b:da:5b:96: ce:3b:a7:47:08:52:07:13:e5:f6:0d:ca:19:73:c2: 54:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A6:34:AE:65:0B:32:D0:46:E0:0C:3A:CB:18:DB:AB:B2:C1:4F:42 X509v3 Authority Key Identifier: keyid:E5:A9:07:C4:EC:6D:A6:D9:34:26:13:28:0C:CA:F2:6E:98:DB:EB:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/E5A907C4EC6DA6D9342613280CCAF26E98DBEB98.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E5A907C4EC6DA6D9342613280CCAF26E98DBEB98.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/3136332e35332e3139352e302f32342d3234203d3e203538333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.53.195.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:1c:47:68:3a:b8:6f:0a:73:ae:37:39:89:ab:36:3c:04:68: ac:9d:12:ba:84:a0:93:8b:b0:e6:a3:06:08:7d:c1:cd:e3:b8: ef:b4:c4:95:03:40:ab:d0:9b:a6:18:f5:26:63:27:25:d7:33: 82:5d:7a:94:c9:7a:ff:5d:b3:9f:c4:46:e6:f6:24:ca:82:5e: 92:0f:38:d2:82:05:7a:41:5a:cc:4c:22:f9:65:c0:22:7a:44: 10:67:ef:fc:56:77:23:2b:4f:92:13:2d:c4:9e:da:73:11:71: 43:97:6c:f3:ac:89:04:a1:b3:49:cc:f3:98:44:78:f8:37:ad: 70:7b:e9:f4:c0:04:f0:89:60:1c:21:6d:22:26:6f:36:3f:11: 85:3a:1f:fe:eb:78:06:2b:05:45:b5:b0:e6:79:58:34:cd:84: 34:58:13:a9:04:6e:ee:b0:1e:2f:02:6a:dc:c1:e0:be:2d:b2: 93:da:da:13:62:9d:b4:9e:07:83:3d:d1:84:cd:1e:cc:74:0e: fc:32:42:3e:82:ed:ff:01:6e:87:3a:dc:43:1c:4c:be:a5:c1: b5:80:f5:ef:0e:7e:e2:30:96:7c:ef:2d:f6:a5:39:d8:11:81: c3:90:f0:cf:ce:85:89:4e:c5:ae:25:62:54:da:f0:2c:9f:35: ab:f9:c1:87 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIowzangQJ1/BL3aTRHSPo7OHDZ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTVBOTA3QzRFQzZEQTZEOTM0MjYxMzI4MENDQUYyNkU5 OERCRUI5ODAeFw0yNDA1MDExNjU1MDJaFw0yNTA0MzAxNzAwMDJaMDMxMTAvBgNV BAMTKDA2QTYzNEFFNjUwQjMyRDA0NkUwMEMzQUNCMThEQkFCQjJDMTRGNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYlk7QBTAgM9K2jNEPID/RqQBo x4HACJ0pSS1ibTKpi0UbD3kamYOiUD5CCKRQzzBuD72Z3xo0889FancHz+IzQ3xQ ZgPJ/RyGYat2sN3clbJdapivhVnzQkcaefOukaFlZMFIBVUBjdfmPIk+vSFB0INK Eumlyh/0Y84LpQtM9j0lWrAU+wn0l4B7do6R+4mW5nfBcnCIMbUNFjscig6cEsgT mUqXXy6Po/q1KCsNs8lDnzKelYzSAJDWyEmS5rpC34/nFt9n6/HAJvBYIC1ZRw/d GHyxW5Q5Mmuie3Kt70XI8zXXQuwT2IF8m9pbls47p0cIUgcT5fYNyhlzwlTxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBqY0rmULMtBG4Aw6yxjbq7LBT0IwHwYDVR0j BBgwFoAU5akHxOxtptk0JhMoDMrybpjb65gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MzhkMjc1NS0zODBkLTQ3N2UtYmYyNS0wYWYyOTAyNmJkNzAvMC9FNUE5MDdDNEVD NkRBNkQ5MzQyNjEzMjgwQ0NBRjI2RTk4REJFQjk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTVBOTA3QzRFQzZEQTZEOTM0MjYxMzI4MENDQUYyNkU5OERC RUI5OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzOGQyNzU1LTM4MGQtNDc3ZS1i ZjI1LTBhZjI5MDI2YmQ3MC8wLzMxMzYzMzJlMzUzMzJlMzEzOTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKM1wzANBgkqhkiG 9w0BAQsFAAOCAQEAXBxHaDq4bwpzrjc5ias2PARorJ0SuoSgk4uw5qMGCH3BzeO4 77TElQNAq9Cbphj1JmMnJdczgl16lMl6/12zn8RG5vYkyoJekg840oIFekFazEwi +WXAInpEEGfv/FZ3IytPkhMtxJ7acxFxQ5ds86yJBKGzSczzmER4+DetcHvp9MAE 8IlgHCFtIiZvNj8RhTof/ut4BisFRbWw5nlYNM2ENFgTqQRu7rAeLwJq3MHgvi2y k9raE2KdtJ4Hgz3RhM0ezHQO/DJCPoLt/wFuhzrcQxxMvqXBtYD17w5+4jCWfO8t 9qU52BGBw5Dwz86FiU7FriViVNrwLJ81q/nBhw== -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:00 2024 by rpki-client on console-ams.rpki-client.org