$ rpki-client -vvf repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3138322e31362e3234322e302f32342d3234203d3e203435323938.roa File: 3138322e31362e3234322e302f32342d3234203d3e203435323938.roa (raw, json) Hash identifier: Hox/R8px+ZTMxpu4aexzi2sogOYO6rU8oDA354FaCqo= Subject key identifier: B8:C2:47:DA:62:66:A2:7E:BB:0E:52:88:86:8F:15:3A:88:7F:F3:5B Certificate issuer: /CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Certificate serial: 7BAACB8EF9140AD3C6BE96B7016523A8374E34D4 Authority key identifier: 1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3138322e31362e3234322e302f32342d3234203d3e203435323938.roa Signing time: Tue 26 Mar 2024 03:43:02 +0000 ROA not before: Tue 26 Mar 2024 03:38:02 +0000 ROA not after: Tue 25 Mar 2025 03:43:02 +0000 asID: 45298 IP address blocks: 182.16.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 20:07:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:aa:cb:8e:f9:14:0a:d3:c6:be:96:b7:01:65:23:a8:37:4e:34:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Validity Not Before: Mar 26 03:38:02 2024 GMT Not After : Mar 25 03:43:02 2025 GMT Subject: CN=B8C247DA6266A27EBB0E5288868F153A887FF35B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:4d:5b:a9:6c:18:79:71:6b:31:0d:99:34:ea: 46:a5:cc:6f:e5:26:aa:a2:1c:d4:88:92:ce:02:9f: 02:ec:e9:d4:12:fd:69:01:69:83:2b:6d:4e:92:a5: 98:5f:f1:05:9b:dc:6f:e5:2e:20:1c:a7:4d:7e:d3: 6b:bd:1f:00:66:4c:7d:9a:3b:b7:42:6d:fc:5a:37: 33:cc:fe:86:fc:77:f6:76:2c:6c:e5:c4:e4:39:f7: 76:58:59:73:a9:a2:81:48:26:49:11:ec:39:1b:26: 50:8b:c5:72:52:1e:b9:15:c2:dc:9c:13:6e:97:c5: 3a:1f:3e:a6:23:41:77:cc:b0:d6:b9:98:62:0d:e5: 51:b0:39:05:7b:2e:48:f6:2c:72:d5:e9:88:68:31: 95:b3:c1:00:a0:a4:bf:96:86:f0:c5:f8:7d:84:c9: 60:71:eb:a0:49:07:79:f6:c7:08:9c:55:b4:0b:56: 5e:cb:42:1d:2f:1d:a4:62:85:75:85:f7:87:ee:77: 76:73:76:8f:7e:9e:ca:e8:58:76:8e:f8:15:f0:bf: 95:0b:4e:0d:b1:be:e2:d0:93:df:03:b0:af:d5:5d: 97:01:69:dc:23:87:46:85:86:37:6f:fc:ac:ea:f0: b0:47:37:a8:e1:44:8e:66:16:6f:b9:f2:00:1f:bc: 03:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:C2:47:DA:62:66:A2:7E:BB:0E:52:88:86:8F:15:3A:88:7F:F3:5B X509v3 Authority Key Identifier: keyid:1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3138322e31362e3234322e302f32342d3234203d3e203435323938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.16.242.0/24 Signature Algorithm: sha256WithRSAEncryption a5:21:83:37:a3:a0:23:46:f0:90:7b:15:72:f2:64:1c:ea:02: 33:50:f6:b6:bb:f8:e6:8b:e1:9f:32:d2:4c:19:eb:3e:56:0e: 28:9f:1b:77:a8:18:f0:0c:d2:5a:00:ff:99:e6:97:5d:bf:30: 1a:26:b9:97:7b:b2:ee:0d:f5:f8:34:59:82:7c:de:69:7f:4f: 0d:27:14:5a:8e:e8:1b:29:7e:ab:de:ed:df:95:cf:d3:8a:ff: 40:51:f7:80:d3:8f:05:9f:31:0e:b1:5b:55:22:22:c3:a6:56: c9:3a:14:ca:a6:74:04:a4:5b:3c:13:ec:fd:a2:08:46:83:f2: 20:88:f6:c0:40:f0:80:b5:99:b7:34:52:c0:da:f2:1a:f5:2a: 18:20:e1:63:f7:9c:0e:07:bf:16:bc:e9:e1:55:0d:32:16:ea: 0d:67:67:14:34:44:a1:44:74:6e:84:9c:1d:70:1b:97:18:b8: bb:b6:e4:4d:23:ac:ee:29:99:31:ba:d2:19:0c:bf:da:1e:44: ac:eb:73:df:c4:f5:4e:c7:bf:a1:49:40:05:48:ca:d8:a0:44: ea:1d:09:90:31:67:76:00:46:30:ff:88:a1:ca:84:6a:03:76: 68:43:59:af:8e:b7:4b:c6:ee:14:41:bc:e5:89:3d:54:66:d2: 15:3e:7d:19 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUe6rLjvkUCtPGvpa3AWUjqDdONNQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JD ODg2RjFERTAeFw0yNDAzMjYwMzM4MDJaFw0yNTAzMjUwMzQzMDJaMDMxMTAvBgNV BAMTKEI4QzI0N0RBNjI2NkEyN0VCQjBFNTI4ODg2OEYxNTNBODg3RkYzNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKTVupbBh5cWsxDZk06kalzG/l JqqiHNSIks4CnwLs6dQS/WkBaYMrbU6SpZhf8QWb3G/lLiAcp01+02u9HwBmTH2a O7dCbfxaNzPM/ob8d/Z2LGzlxOQ593ZYWXOpooFIJkkR7DkbJlCLxXJSHrkVwtyc E26XxTofPqYjQXfMsNa5mGIN5VGwOQV7Lkj2LHLV6YhoMZWzwQCgpL+WhvDF+H2E yWBx66BJB3n2xwicVbQLVl7LQh0vHaRihXWF94fud3Zzdo9+nsroWHaO+BXwv5UL Tg2xvuLQk98DsK/VXZcBadwjh0aFhjdv/Kzq8LBHN6jhRI5mFm+58gAfvAPbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUuMJH2mJmon67DlKIho8VOoh/81swHwYDVR0j BBgwFoAUGtWX00A/vRN8gUKePebYe8iG8d4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWVjMjVlNC05YWE4LTRiZWYtOTA5Ny1jMGJlYzBiMjY2YTcvMC8xQUQ1OTdEMzQw M0ZCRDEzN0M4MTQyOUUzREU2RDg3QkM4ODZGMURFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JDODg2 RjFERS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1ZWMyNWU0LTlhYTgtNGJlZi05 MDk3LWMwYmVjMGIyNjZhNy8wLzMxMzgzMjJlMzEzNjJlMzIzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMyMzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALYQ8jANBgkqhkiG 9w0BAQsFAAOCAQEApSGDN6OgI0bwkHsVcvJkHOoCM1D2trv45ovhnzLSTBnrPlYO KJ8bd6gY8AzSWgD/meaXXb8wGia5l3uy7g31+DRZgnzeaX9PDScUWo7oGyl+q97t 35XP04r/QFH3gNOPBZ8xDrFbVSIiw6ZWyToUyqZ0BKRbPBPs/aIIRoPyIIj2wEDw gLWZtzRSwNryGvUqGCDhY/ecDge/Frzp4VUNMhbqDWdnFDREoUR0boScHXAblxi4 u7bkTSOs7imZMbrSGQy/2h5ErOtz38T1Tse/oUlABUjK2KBE6h0JkDFndgBGMP+I ocqEagN2aENZr463S8buFEG85Yk9VGbSFT59GQ== -----END CERTIFICATE-----Generated at Fri May 31 19:47:00 2024 by rpki-client on console-fra.rpki-client.org