$ rpki-client -vvf repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/32372e3132342e37342e302f32332d3234203d3e20313532303532.roa File: 32372e3132342e37342e302f32332d3234203d3e20313532303532.roa (raw, json) Hash identifier: m4o9tmG8VWbfYauSbCi6chKVKssFkKAm15xM3xmJaes= Subject key identifier: E4:B6:FA:CC:1A:DF:D0:A7:F3:DB:EE:F8:B3:DE:56:A1:8E:93:90:0D Certificate issuer: /CN=29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A Certificate serial: 64F9C837FAED2C9D10B446AF2307F7D4BD3C8211 Authority key identifier: 29:C0:64:0D:D9:07:6D:C0:4C:F8:A3:90:EA:73:DF:C0:E0:E7:CF:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/32372e3132342e37342e302f32332d3234203d3e20313532303532.roa Signing time: Fri 31 May 2024 13:55:56 +0000 ROA not before: Fri 31 May 2024 13:50:56 +0000 ROA not after: Fri 30 May 2025 13:55:56 +0000 asID: 152052 IP address blocks: 27.124.74.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.crl rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 16:02:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:f9:c8:37:fa:ed:2c:9d:10:b4:46:af:23:07:f7:d4:bd:3c:82:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A Validity Not Before: May 31 13:50:56 2024 GMT Not After : May 30 13:55:56 2025 GMT Subject: CN=E4B6FACC1ADFD0A7F3DBEEF8B3DE56A18E93900D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e2:fe:fd:dd:ae:b8:0b:ee:da:c4:40:70:bf: a2:79:48:ce:3c:3d:8f:60:f2:ed:19:0c:87:6f:c0: 73:4b:cb:c8:5a:c2:c6:53:cf:3a:db:51:45:c5:5d: a8:fd:29:b3:78:76:22:6f:24:fa:1b:7d:c2:bb:ab: 63:f7:f0:df:83:65:cf:fa:9e:23:57:0e:2d:4a:15: 12:dd:f1:91:5d:15:89:a4:68:1f:a3:95:6b:92:13: 09:ff:67:6c:02:2e:83:55:e6:41:a5:f3:00:d0:c0: 65:e2:7e:60:cd:0d:c1:a5:29:c4:ba:3b:49:a9:99: 0e:26:16:6b:43:8c:d9:7e:44:71:8b:04:1f:b1:60: 5c:ce:c2:2c:17:a0:5b:95:79:49:fd:2d:f9:a1:91: 9e:b9:a7:ef:9c:c4:ed:cd:2f:a8:4a:70:de:68:00: a9:5c:5a:d7:ec:d6:ce:fb:c9:1a:7b:70:e9:99:8a: d4:b5:ff:c1:3e:a3:1a:66:da:00:34:57:0a:12:ba: 0e:41:50:14:22:5d:11:7b:2b:6c:8e:d7:96:d3:97: d6:1e:5d:d8:4c:c2:c1:b4:77:f8:84:a7:89:dc:43: e5:ef:76:c9:6f:32:1a:0d:09:d9:5e:19:13:cd:ad: 33:44:92:84:b5:10:cd:cf:a4:c5:04:f7:1f:26:a2: 8f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:B6:FA:CC:1A:DF:D0:A7:F3:DB:EE:F8:B3:DE:56:A1:8E:93:90:0D X509v3 Authority Key Identifier: keyid:29:C0:64:0D:D9:07:6D:C0:4C:F8:A3:90:EA:73:DF:C0:E0:E7:CF:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/32372e3132342e37342e302f32332d3234203d3e20313532303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.124.74.0/23 Signature Algorithm: sha256WithRSAEncryption 21:ca:7c:95:66:76:5f:fe:f4:1d:c8:09:f2:ac:3e:da:9d:38: 96:8f:c6:35:86:67:88:30:e0:89:80:d3:ff:df:c4:d1:c7:8f: 3f:a8:8a:f4:8a:eb:a4:54:5b:b8:e1:03:ff:ad:e4:79:62:b2: ef:66:79:5c:fe:d9:84:7f:52:fb:28:03:26:87:b9:52:09:7a: 47:80:d3:c9:dd:44:09:cd:e7:bd:ea:db:21:ea:59:82:1a:54: fb:80:d4:34:82:c0:1d:0a:07:d3:d5:8f:01:fc:91:cc:f0:64: 81:f3:61:ec:d9:64:89:71:d6:9e:e7:f2:ab:d8:51:a2:e0:32: 97:4d:a1:11:89:84:35:55:ab:f2:b4:1c:e6:bf:9e:5d:98:5d: 03:30:a3:cd:53:61:16:c5:64:72:fa:57:46:3f:5c:2c:e2:2c: 0a:2a:e0:7a:e2:73:32:41:88:f8:1e:4f:34:75:ae:99:ec:52: ed:60:b6:d8:f3:36:46:de:e6:2f:ab:47:0f:db:c2:4b:22:b6: f7:8c:ba:ca:cd:f8:e2:52:84:f0:c7:e2:89:3e:ea:fa:a4:07: 51:c9:f8:46:a7:85:1b:64:d8:1b:66:e0:85:e2:ad:04:e5:62: 3d:9a:26:5e:38:71:a5:62:a5:b6:2d:38:77:09:78:fb:ee:4a: 8b:65:5c:95 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZPnIN/rtLJ0QtEavIwf31L08ghEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlDMDY0MEREOTA3NkRDMDRDRjhBMzkwRUE3M0RGQzBF MEU3Q0Y5QTAeFw0yNDA1MzExMzUwNTZaFw0yNTA1MzAxMzU1NTZaMDMxMTAvBgNV BAMTKEU0QjZGQUNDMUFERkQwQTdGM0RCRUVGOEIzREU1NkExOEU5MzkwMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh4v793a64C+7axEBwv6J5SM48 PY9g8u0ZDIdvwHNLy8hawsZTzzrbUUXFXaj9KbN4diJvJPobfcK7q2P38N+DZc/6 niNXDi1KFRLd8ZFdFYmkaB+jlWuSEwn/Z2wCLoNV5kGl8wDQwGXifmDNDcGlKcS6 O0mpmQ4mFmtDjNl+RHGLBB+xYFzOwiwXoFuVeUn9LfmhkZ65p++cxO3NL6hKcN5o AKlcWtfs1s77yRp7cOmZitS1/8E+oxpm2gA0VwoSug5BUBQiXRF7K2yO15bTl9Ye XdhMwsG0d/iEp4ncQ+XvdslvMhoNCdleGRPNrTNEkoS1EM3PpMUE9x8moo8pAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU5Lb6zBrf0Kfz2+74s95WoY6TkA0wHwYDVR0j BBgwFoAUKcBkDdkHbcBM+KOQ6nPfwODnz5owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZGFmOWYwZi00ZmIxLTQwYzAtYjM4MC01OWEzOGRiYzlhMTYvMC8yOUMwNjQwREQ5 MDc2REMwNENGOEEzOTBFQTczREZDMEUwRTdDRjlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlDMDY0MEREOTA3NkRDMDRDRjhBMzkwRUE3M0RGQzBFMEU3 Q0Y5QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkYWY5ZjBmLTRmYjEtNDBjMC1i MzgwLTU5YTM4ZGJjOWExNi8wLzMyMzcyZTMxMzIzNDJlMzczNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEARt8SjANBgkqhkiG 9w0BAQsFAAOCAQEAIcp8lWZ2X/70HcgJ8qw+2p04lo/GNYZniDDgiYDT/9/E0ceP P6iK9IrrpFRbuOED/63keWKy72Z5XP7ZhH9S+ygDJoe5Ugl6R4DTyd1ECc3nverb IepZghpU+4DUNILAHQoH09WPAfyRzPBkgfNh7NlkiXHWnufyq9hRouAyl02hEYmE NVWr8rQc5r+eXZhdAzCjzVNhFsVkcvpXRj9cLOIsCirgeuJzMkGI+B5PNHWumexS 7WC22PM2Rt7mL6tHD9vCSyK294y6ys344lKE8MfiiT7q+qQHUcn4RqeFG2TYG2bg heKtBOViPZomXjhxpWKlti04dwl4++5Ki2VclQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:43 2024 by rpki-client on console-fra.rpki-client.org