$ rpki-client -vvf repo-rpki.idnic.net/repo/56f1eb4b-48dc-4eea-9181-128cb28b3dba/0/3138302e39342e392e302f32342d3234203d3e20313532303430.roa File: 3138302e39342e392e302f32342d3234203d3e20313532303430.roa (raw, json) Hash identifier: 5Zt/kk8Dw0qy4zc/WFLPy9TAGPkYFXVBp5S1dyKcLr0= Subject key identifier: 1C:FB:8A:69:3B:8B:E8:AB:7B:08:32:13:8B:22:9D:A2:0B:9B:26:A2 Certificate issuer: /CN=FA5F6CC99BAC829D4DE7BECEE823199657D018CD Certificate serial: 49412A75C068E1D0DB1399C6C510FDA153F63314 Authority key identifier: FA:5F:6C:C9:9B:AC:82:9D:4D:E7:BE:CE:E8:23:19:96:57:D0:18:CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5F6CC99BAC829D4DE7BECEE823199657D018CD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/56f1eb4b-48dc-4eea-9181-128cb28b3dba/0/3138302e39342e392e302f32342d3234203d3e20313532303430.roa Signing time: Fri 12 Jan 2024 01:17:23 +0000 ROA not before: Fri 12 Jan 2024 01:12:23 +0000 ROA not after: Fri 10 Jan 2025 01:17:23 +0000 asID: 152040 IP address blocks: 180.94.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/56f1eb4b-48dc-4eea-9181-128cb28b3dba/0/FA5F6CC99BAC829D4DE7BECEE823199657D018CD.crl rsync://repo-rpki.idnic.net/repo/56f1eb4b-48dc-4eea-9181-128cb28b3dba/0/FA5F6CC99BAC829D4DE7BECEE823199657D018CD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5F6CC99BAC829D4DE7BECEE823199657D018CD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:41:2a:75:c0:68:e1:d0:db:13:99:c6:c5:10:fd:a1:53:f6:33:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5F6CC99BAC829D4DE7BECEE823199657D018CD Validity Not Before: Jan 12 01:12:23 2024 GMT Not After : Jan 10 01:17:23 2025 GMT Subject: CN=1CFB8A693B8BE8AB7B0832138B229DA20B9B26A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:df:d5:af:57:76:7d:b1:7d:53:4b:09:37:44: 42:c1:02:dd:9c:20:a0:81:8a:67:42:b0:ba:5c:5d: 23:bc:24:c3:19:4f:59:9a:2f:58:a1:0c:49:04:6a: 4e:22:7c:17:d9:0a:b6:7c:36:b9:2b:e1:26:a7:d6: 99:20:c0:46:1b:64:da:0c:8a:63:ee:2c:80:63:56: 2a:1d:c3:d9:1e:d8:be:91:0b:9e:ce:f5:e3:9d:f0: 69:bb:01:1f:cf:a2:19:99:44:3c:6b:27:5b:cc:7a: ba:28:e9:09:81:01:6c:48:34:d8:cd:62:95:26:fa: b2:9b:67:d1:94:94:af:38:87:65:8e:7d:f3:4b:f7: c6:17:69:ea:2b:6e:3e:f9:67:96:4b:3f:09:53:13: dc:b5:31:4b:57:a7:36:8a:27:b1:ee:27:2f:c5:70: c2:e2:ba:15:e2:48:7e:84:8e:c6:64:e6:65:4d:48: ec:01:1b:5b:c9:77:8d:1e:74:93:aa:30:11:22:49: 2c:cd:b4:ee:c3:4c:f0:a3:b7:58:ef:83:1e:8e:42: 34:26:0a:c1:7f:d5:6c:64:df:e9:82:ae:9f:f0:0f: b9:bb:79:29:ef:b7:3c:a6:52:b5:78:1d:1a:7e:33: a3:72:0b:03:e0:89:da:bf:c3:6a:6d:06:b5:b1:3f: ba:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:FB:8A:69:3B:8B:E8:AB:7B:08:32:13:8B:22:9D:A2:0B:9B:26:A2 X509v3 Authority Key Identifier: keyid:FA:5F:6C:C9:9B:AC:82:9D:4D:E7:BE:CE:E8:23:19:96:57:D0:18:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/56f1eb4b-48dc-4eea-9181-128cb28b3dba/0/FA5F6CC99BAC829D4DE7BECEE823199657D018CD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5F6CC99BAC829D4DE7BECEE823199657D018CD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/56f1eb4b-48dc-4eea-9181-128cb28b3dba/0/3138302e39342e392e302f32342d3234203d3e20313532303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.94.9.0/24 Signature Algorithm: sha256WithRSAEncryption 09:16:24:05:0a:cf:12:6e:ef:b7:38:ea:9f:62:83:b5:8f:8f: d7:40:e6:69:5e:15:64:14:8c:22:1e:3b:81:be:11:2b:e4:7b: 66:b2:bf:43:a5:f0:b1:8a:c7:d2:72:1f:98:a7:99:4a:5b:36: a4:c3:0c:6d:46:ba:fc:51:31:6e:5b:9d:d2:6c:b6:e2:f7:f2: 6d:32:03:72:8c:10:d8:1b:2d:62:f8:d0:7a:4d:a3:f3:f4:81: f3:cf:77:d8:85:a6:d1:c5:a4:66:a9:04:c5:1c:50:ef:07:ff: 6c:32:18:a6:97:a4:8a:b5:de:13:ca:b7:85:1c:25:bd:ac:20: 13:21:01:97:13:88:12:32:53:35:83:d5:c1:1b:c5:f5:09:13: 0c:f5:fd:a7:28:40:b1:40:cb:14:28:6f:ca:6d:bb:48:ca:9c: 9b:ca:8b:3e:19:c4:1b:0a:25:b5:19:6f:a6:4a:b8:79:64:d2: 92:d9:7f:bb:c5:9a:83:13:af:34:0f:fd:b7:b6:e3:6d:29:96: ad:8e:1f:b7:02:f4:1b:6e:bd:f6:bd:52:06:21:b6:ad:7b:e2: 55:59:77:32:ac:31:17:26:77:46:a7:2f:ce:95:9f:1b:ec:7c: d3:bd:5a:61:d2:55:2d:0f:a9:e0:7c:ae:d8:af:f3:f5:f0:be: ae:d9:8f:42 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSUEqdcBo4dDbE5nGxRD9oVP2MxQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1RjZDQzk5QkFDODI5RDRERTdCRUNFRTgyMzE5OTY1 N0QwMThDRDAeFw0yNDAxMTIwMTEyMjNaFw0yNTAxMTAwMTE3MjNaMDMxMTAvBgNV BAMTKDFDRkI4QTY5M0I4QkU4QUI3QjA4MzIxMzhCMjI5REEyMEI5QjI2QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI39WvV3Z9sX1TSwk3RELBAt2c IKCBimdCsLpcXSO8JMMZT1maL1ihDEkEak4ifBfZCrZ8Nrkr4San1pkgwEYbZNoM imPuLIBjViodw9ke2L6RC57O9eOd8Gm7AR/PohmZRDxrJ1vMeroo6QmBAWxINNjN YpUm+rKbZ9GUlK84h2WOffNL98YXaeorbj75Z5ZLPwlTE9y1MUtXpzaKJ7HuJy/F cMLiuhXiSH6EjsZk5mVNSOwBG1vJd40edJOqMBEiSSzNtO7DTPCjt1jvgx6OQjQm CsF/1Wxk3+mCrp/wD7m7eSnvtzymUrV4HRp+M6NyCwPgidq/w2ptBrWxP7qpAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUHPuKaTuL6Kt7CDITiyKdogubJqIwHwYDVR0j BBgwFoAU+l9syZusgp1N577O6CMZllfQGM0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NmYxZWI0Yi00OGRjLTRlZWEtOTE4MS0xMjhjYjI4YjNkYmEvMC9GQTVGNkNDOTlC QUM4MjlENERFN0JFQ0VFODIzMTk5NjU3RDAxOENELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1RjZDQzk5QkFDODI5RDRERTdCRUNFRTgyMzE5OTY1N0Qw MThDRC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU2ZjFlYjRiLTQ4ZGMtNGVlYS05 MTgxLTEyOGNiMjhiM2RiYS8wLzMxMzgzMDJlMzkzNDJlMzkyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTM1MzIzMDM0MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0XgkwDQYJKoZIhvcN AQELBQADggEBAAkWJAUKzxJu77c46p9ig7WPj9dA5mleFWQUjCIeO4G+ESvke2ay v0Ol8LGKx9JyH5inmUpbNqTDDG1GuvxRMW5bndJstuL38m0yA3KMENgbLWL40HpN o/P0gfPPd9iFptHFpGapBMUcUO8H/2wyGKaXpIq13hPKt4UcJb2sIBMhAZcTiBIy UzWD1cEbxfUJEwz1/acoQLFAyxQob8ptu0jKnJvKiz4ZxBsKJbUZb6ZKuHlk0pLZ f7vFmoMTrzQP/be2420plq2OH7cC9Btuvfa9UgYhtq174lVZdzKsMRcmd0anL86V nxvsfNO9WmHSVS0PqeB8rtiv8/Xwvq7Zj0I= -----END CERTIFICATE-----Generated at Sun Nov 24 20:57:50 2024 by rpki-client on console-fra.rpki-client.org