$ rpki-client -vvf repo-rpki.idnic.net/repo/7d02a58d-b958-4219-86d3-61e43cee319a/0/3138302e3133312e3132382e302f32342d3234203d3e20313532303136.roa File: 3138302e3133312e3132382e302f32342d3234203d3e20313532303136.roa (raw, json) Hash identifier: YmpzZpg+cWSd+9uJixfrwNPdQ5zM3aLz4TuMuxHWLMU= Subject key identifier: 5B:73:A2:64:1E:B7:BF:31:8E:B3:80:81:37:E8:7B:E5:28:7C:97:CE Certificate issuer: /CN=AA90F6A6378710CD695B4CC742651F235E503C5B Certificate serial: 2D8621607515227E9D6551413190889AA42AEFB7 Authority key identifier: AA:90:F6:A6:37:87:10:CD:69:5B:4C:C7:42:65:1F:23:5E:50:3C:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AA90F6A6378710CD695B4CC742651F235E503C5B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d02a58d-b958-4219-86d3-61e43cee319a/0/3138302e3133312e3132382e302f32342d3234203d3e20313532303136.roa Signing time: Mon 28 Oct 2024 13:00:01 +0000 ROA not before: Mon 28 Oct 2024 12:55:01 +0000 ROA not after: Mon 27 Oct 2025 13:00:01 +0000 asID: 152016 IP address blocks: 180.131.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d02a58d-b958-4219-86d3-61e43cee319a/0/AA90F6A6378710CD695B4CC742651F235E503C5B.crl rsync://repo-rpki.idnic.net/repo/7d02a58d-b958-4219-86d3-61e43cee319a/0/AA90F6A6378710CD695B4CC742651F235E503C5B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AA90F6A6378710CD695B4CC742651F235E503C5B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 16:05:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:86:21:60:75:15:22:7e:9d:65:51:41:31:90:88:9a:a4:2a:ef:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA90F6A6378710CD695B4CC742651F235E503C5B Validity Not Before: Oct 28 12:55:01 2024 GMT Not After : Oct 27 13:00:01 2025 GMT Subject: CN=5B73A2641EB7BF318EB3808137E87BE5287C97CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:6c:cd:2c:8a:8d:d0:15:15:fc:d0:7d:89:9f: 57:3e:d1:98:44:35:4c:2e:5e:68:0e:33:5e:be:4d: 86:fb:a1:3a:ed:bb:94:dd:1f:37:8f:2f:c0:73:f9: 16:f4:01:11:11:61:ab:a6:7c:2e:5a:33:c7:ec:cd: 94:a6:2a:cd:06:72:f0:a8:66:fe:d0:cd:81:37:43: 43:c1:44:3d:ba:e7:e3:82:dd:7b:6d:dd:3d:28:54: 8f:8b:09:8d:47:4b:9e:85:fa:2e:7b:dd:ac:44:5f: d5:a1:ba:21:88:3c:66:95:fd:a1:67:fc:a8:76:cd: b3:3d:0b:6e:0a:b4:5b:e6:37:8e:17:4d:57:72:ee: 15:bd:a3:02:1b:77:f3:9a:c3:5d:f4:c1:d8:0d:d2: 55:3d:4f:63:ab:2a:3d:ec:3e:66:ed:7c:35:af:40: 1f:c3:6e:5c:96:bb:ca:03:2f:38:de:1b:c5:08:17: d5:12:08:36:4c:be:e0:44:18:4f:f3:de:23:89:29: 52:ab:e7:a3:a5:bc:b1:a3:c6:4c:b9:ae:ad:79:61: 75:ae:11:0b:12:fe:2e:05:92:59:df:1d:0d:bf:a2: 0c:b0:e4:b9:1f:f8:14:f4:c8:14:8f:63:71:14:99: 97:94:8b:71:97:76:e5:cd:7d:ca:ec:49:3a:5c:96: 2a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:73:A2:64:1E:B7:BF:31:8E:B3:80:81:37:E8:7B:E5:28:7C:97:CE X509v3 Authority Key Identifier: keyid:AA:90:F6:A6:37:87:10:CD:69:5B:4C:C7:42:65:1F:23:5E:50:3C:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d02a58d-b958-4219-86d3-61e43cee319a/0/AA90F6A6378710CD695B4CC742651F235E503C5B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AA90F6A6378710CD695B4CC742651F235E503C5B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d02a58d-b958-4219-86d3-61e43cee319a/0/3138302e3133312e3132382e302f32342d3234203d3e20313532303136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.131.128.0/24 Signature Algorithm: sha256WithRSAEncryption 11:a1:1d:f6:23:a5:91:e7:7b:13:93:c6:64:7d:9f:81:f6:ae: 90:4a:c5:02:39:87:86:52:30:77:92:e7:ae:bd:57:28:8f:79: ff:6a:9f:0a:f6:c6:f2:a9:54:85:c7:c6:cd:2d:ed:6f:19:5e: 9a:89:1d:85:14:87:a6:2d:99:4f:2b:84:16:e5:6c:c3:64:9b: 65:01:1b:bb:51:7a:ad:01:f0:54:d8:04:b5:c1:f3:f7:12:47: dc:c3:b1:ae:55:71:cd:db:81:af:c0:11:ac:99:9c:27:1c:fa: 5f:12:3f:44:63:f5:16:83:69:9e:6d:2a:b4:11:6f:2d:02:f5: 8d:e3:20:31:f4:3c:3d:2a:1f:8d:10:e6:84:48:ef:95:ed:0a: 27:a5:d0:64:90:f1:4b:cb:48:2f:dd:09:64:be:f9:ba:66:68: 1f:25:ae:37:98:ec:ca:52:f8:e4:d0:43:74:3a:56:ed:ae:e6: 44:cb:bb:0f:5f:eb:72:83:78:45:79:89:80:ab:84:02:a2:e4: 52:c9:94:27:b2:b7:4e:74:9e:36:0d:81:51:63:a5:a6:87:c1: 36:3e:4c:c0:c7:c4:f2:d1:b4:ea:6f:50:c6:92:ff:fe:aa:7c: bc:dc:89:a2:3e:19:ee:3b:bb:bb:07:b5:71:32:ad:78:b0:05: db:3a:02:e5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULYYhYHUVIn6dZVFBMZCImqQq77cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUE5MEY2QTYzNzg3MTBDRDY5NUI0Q0M3NDI2NTFGMjM1 RTUwM0M1QjAeFw0yNDEwMjgxMjU1MDFaFw0yNTEwMjcxMzAwMDFaMDMxMTAvBgNV BAMTKDVCNzNBMjY0MUVCN0JGMzE4RUIzODA4MTM3RTg3QkU1Mjg3Qzk3Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0bM0sio3QFRX80H2Jn1c+0ZhE NUwuXmgOM16+TYb7oTrtu5TdHzePL8Bz+Rb0ARERYaumfC5aM8fszZSmKs0GcvCo Zv7QzYE3Q0PBRD265+OC3Xtt3T0oVI+LCY1HS56F+i573axEX9WhuiGIPGaV/aFn /Kh2zbM9C24KtFvmN44XTVdy7hW9owIbd/Oaw130wdgN0lU9T2OrKj3sPmbtfDWv QB/DblyWu8oDLzjeG8UIF9USCDZMvuBEGE/z3iOJKVKr56OlvLGjxky5rq15YXWu EQsS/i4FklnfHQ2/ogyw5Lkf+BT0yBSPY3EUmZeUi3GXduXNfcrsSTpclip9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUW3OiZB63vzGOs4CBN+h75Sh8l84wHwYDVR0j BBgwFoAUqpD2pjeHEM1pW0zHQmUfI15QPFswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDAyYTU4ZC1iOTU4LTQyMTktODZkMy02MWU0M2NlZTMxOWEvMC9BQTkwRjZBNjM3 ODcxMENENjk1QjRDQzc0MjY1MUYyMzVFNTAzQzVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUE5MEY2QTYzNzg3MTBDRDY5NUI0Q0M3NDI2NTFGMjM1RTUw M0M1Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkMDJhNThkLWI5NTgtNDIxOS04 NmQzLTYxZTQzY2VlMzE5YS8wLzMxMzgzMDJlMzEzMzMxMmUzMTMyMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzIzMDMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0g4AwDQYJ KoZIhvcNAQELBQADggEBABGhHfYjpZHnexOTxmR9n4H2rpBKxQI5h4ZSMHeS5669 VyiPef9qnwr2xvKpVIXHxs0t7W8ZXpqJHYUUh6YtmU8rhBblbMNkm2UBG7tReq0B 8FTYBLXB8/cSR9zDsa5Vcc3bga/AEayZnCcc+l8SP0Rj9RaDaZ5tKrQRby0C9Y3j IDH0PD0qH40Q5oRI75XtCiel0GSQ8UvLSC/dCWS++bpmaB8lrjeY7MpS+OTQQ3Q6 Vu2u5kTLuw9f63KDeEV5iYCrhAKi5FLJlCeyt050njYNgVFjpaaHwTY+TMDHxPLR tOpvUMaS//6qfLzciaI+Ge47u7sHtXEyrXiwBds6AuU= -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:43 2024 by rpki-client on console-fra.rpki-client.org