$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e38382e302f32312d3234203d3e203435373235.roa File: 3138302e3231312e38382e302f32312d3234203d3e203435373235.roa (raw, json) Hash identifier: E/UKnr86zLsQEyoibRocTofq4+NWel7/5QD1XKQKqEc= Subject key identifier: EA:1D:B1:C2:1B:F8:0A:E1:A2:E0:63:F3:B5:B7:6D:5C:59:AC:51:D3 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 4C3ACE780092A3379478BE8CD967BF8D28DDAEC2 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e38382e302f32312d3234203d3e203435373235.roa Signing time: Tue 25 Jun 2024 10:00:00 +0000 ROA not before: Tue 25 Jun 2024 09:55:00 +0000 ROA not after: Tue 24 Jun 2025 10:00:00 +0000 asID: 45725 IP address blocks: 180.211.88.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:3a:ce:78:00:92:a3:37:94:78:be:8c:d9:67:bf:8d:28:dd:ae:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Jun 25 09:55:00 2024 GMT Not After : Jun 24 10:00:00 2025 GMT Subject: CN=EA1DB1C21BF80AE1A2E063F3B5B76D5C59AC51D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e4:78:46:b6:46:78:0f:67:21:fb:3e:94:a6: 05:cf:ec:d9:1f:d9:4d:a4:c9:67:8b:94:9d:cc:e5: 4c:2a:98:06:6f:ac:39:c4:23:99:71:5c:ff:a5:77: c9:de:02:79:95:98:87:7f:ac:0e:e0:b0:7f:2c:5a: 94:ac:68:c5:d0:3b:01:4f:71:90:47:d3:b1:9e:75: fe:0a:e5:ff:b5:fe:54:ad:28:40:51:56:e9:8f:8b: f4:57:12:ff:8d:cf:71:1d:86:46:8b:97:5e:45:8b: 9c:e9:55:7d:41:2f:27:26:43:36:e2:5c:fd:3e:e2: ae:db:38:0e:7c:f2:89:56:c1:5d:78:9e:20:4f:47: db:93:d4:66:7e:d3:99:ce:e1:84:f4:68:0e:44:b8: b4:4e:3c:a3:e9:26:ba:5d:91:e0:3b:4a:82:10:2a: ae:88:ce:0e:12:6c:48:5c:a7:2a:12:24:17:8c:87: 7c:2b:a5:59:76:35:07:97:e3:ab:c8:c2:4f:ee:63: d6:7d:f6:df:df:ba:ae:1a:b7:2e:1a:1b:30:ef:d3: b2:74:2d:bf:55:f4:c8:43:40:7b:1f:21:cb:46:e2: a3:87:ea:8c:03:c8:72:ef:8a:b3:7d:90:0f:9d:81: 56:73:cd:bd:16:81:70:88:a6:82:69:3d:a5:52:2d: 07:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:1D:B1:C2:1B:F8:0A:E1:A2:E0:63:F3:B5:B7:6D:5C:59:AC:51:D3 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e38382e302f32312d3234203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.211.88.0/21 Signature Algorithm: sha256WithRSAEncryption 3c:2b:07:8a:e9:a1:e8:6a:84:52:64:0d:97:a7:7f:d1:55:61: c2:2f:d1:a2:74:c1:f0:94:63:45:5f:d5:a7:63:e7:31:52:4b: cd:b5:78:e1:77:51:2d:fc:6c:68:75:3e:a1:b0:9b:d1:92:69: 4e:72:e6:63:d6:b3:8b:7e:8f:92:cb:d8:de:83:4b:30:9e:fb: c4:40:b8:49:61:6a:f4:cc:a9:9d:ae:b2:ad:85:af:28:f8:3d: 57:02:62:97:db:12:d1:61:83:37:19:8c:96:87:d5:47:63:6f: 7c:d4:b5:50:8b:ca:2f:b7:d8:b4:a2:eb:ab:53:c4:bb:4e:4f: 9f:c6:57:c0:08:97:e0:52:c4:4d:99:42:86:66:76:fc:c0:41: 4c:b9:ba:08:71:f1:17:0b:9d:fc:1f:ac:88:53:c8:eb:95:e6: 11:90:c8:a5:0a:db:46:e2:ff:91:19:4c:cb:40:87:83:4e:de: 30:1b:c1:f1:db:cf:b1:4c:9b:10:86:77:30:b2:a8:99:6e:ad: 6c:e0:ac:fc:82:32:81:2f:0d:84:64:37:80:aa:96:97:52:86: cd:95:80:f2:f7:51:97:27:56:d4:22:63:6e:a0:c5:24:7b:a0: 2e:0b:69:e1:79:dc:60:ad:f7:18:ba:23:09:f9:de:a4:a2:53: 2c:20:4b:d8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTDrOeACSozeUeL6M2We/jSjdrsIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNDA2MjUwOTU1MDBaFw0yNTA2MjQxMDAwMDBaMDMxMTAvBgNV BAMTKEVBMURCMUMyMUJGODBBRTFBMkUwNjNGM0I1Qjc2RDVDNTlBQzUxRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz5HhGtkZ4D2ch+z6UpgXP7Nkf 2U2kyWeLlJ3M5UwqmAZvrDnEI5lxXP+ld8neAnmVmId/rA7gsH8sWpSsaMXQOwFP cZBH07Gedf4K5f+1/lStKEBRVumPi/RXEv+Nz3EdhkaLl15Fi5zpVX1BLycmQzbi XP0+4q7bOA588olWwV14niBPR9uT1GZ+05nO4YT0aA5EuLROPKPpJrpdkeA7SoIQ Kq6Izg4SbEhcpyoSJBeMh3wrpVl2NQeX46vIwk/uY9Z99t/fuq4aty4aGzDv07J0 Lb9V9MhDQHsfIctG4qOH6owDyHLvirN9kA+dgVZzzb0WgXCIpoJpPaVSLQfnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6h2xwhv4CuGi4GPztbdtXFmsUdMwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMxMzgzMDJlMzIzMTMxMmUzODM4MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzQzNTM3MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA7TTWDANBgkqhkiG 9w0BAQsFAAOCAQEAPCsHiumh6GqEUmQNl6d/0VVhwi/RonTB8JRjRV/Vp2PnMVJL zbV44XdRLfxsaHU+obCb0ZJpTnLmY9azi36PksvY3oNLMJ77xEC4SWFq9Mypna6y rYWvKPg9VwJil9sS0WGDNxmMlofVR2NvfNS1UIvKL7fYtKLrq1PEu05Pn8ZXwAiX 4FLETZlChmZ2/MBBTLm6CHHxFwud/B+siFPI65XmEZDIpQrbRuL/kRlMy0CHg07e MBvB8dvPsUybEIZ3MLKomW6tbOCs/IIygS8NhGQ3gKqWl1KGzZWA8vdRlydW1CJj bqDFJHugLgtp4XncYK33GLojCfnepKJTLCBL2A== -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org