$ rpki-client -vvf repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3136352e302f32342d3234203d3e203436303330.roa File: 3138322e34382e3136352e302f32342d3234203d3e203436303330.roa (raw, json) Hash identifier: r++7vd+gdxt9z/eLhSAte5ZAfnULkbSvxuv/vc8jEv4= Subject key identifier: C2:48:67:D7:E2:DA:56:33:32:51:D6:E1:CF:A6:39:FB:E6:DD:14:67 Certificate issuer: /CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Certificate serial: 725B5801BAAD3DD69116E6844B595FF3042A1BAB Authority key identifier: 56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3136352e302f32342d3234203d3e203436303330.roa Signing time: Fri 18 Oct 2024 12:00:06 +0000 ROA not before: Fri 18 Oct 2024 11:55:06 +0000 ROA not after: Fri 17 Oct 2025 12:00:06 +0000 asID: 46030 IP address blocks: 182.48.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:5b:58:01:ba:ad:3d:d6:91:16:e6:84:4b:59:5f:f3:04:2a:1b:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Validity Not Before: Oct 18 11:55:06 2024 GMT Not After : Oct 17 12:00:06 2025 GMT Subject: CN=C24867D7E2DA56333251D6E1CFA639FBE6DD1467 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ae:13:8b:e4:47:8c:81:cc:56:6a:a4:23:77: b3:cc:fb:bd:b2:20:c0:bd:9a:3b:7d:29:b8:be:b3: 47:fb:a4:e4:7d:14:7e:e8:c8:7a:50:15:45:94:18: 99:0f:5e:8e:9e:64:fd:39:99:ee:4c:87:8f:b6:ba: bf:55:a3:07:89:0d:78:84:6a:05:93:7a:99:1e:23: 78:3e:7a:63:bf:38:e4:aa:96:be:e3:65:e2:4e:a2: 93:71:67:eb:d4:be:78:b0:d7:f9:15:94:89:40:41: 71:ba:aa:d4:77:82:c1:f8:05:77:3b:18:df:1d:00: 36:a7:04:3c:19:2a:0c:92:a1:7e:7e:d3:09:80:eb: 9d:3e:53:c2:67:e0:19:de:5d:f7:30:26:4d:4f:bd: 4f:aa:24:d7:b7:61:59:04:c8:01:a8:23:9f:f9:ac: 95:da:b5:97:49:eb:5b:4e:f6:16:e7:8b:2e:e5:a0: c4:66:18:c6:25:11:ea:4c:49:12:cb:8d:90:d4:cc: e4:67:91:39:0a:76:7d:0d:6e:0f:03:e1:cb:04:6b: 10:16:ba:be:76:c1:4c:3b:dc:81:43:4b:38:c5:b3: 32:62:cb:1f:5a:64:1a:34:f8:f1:39:59:6d:44:ef: d3:12:49:46:76:27:1c:66:37:61:66:f5:ed:e3:5e: bf:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:48:67:D7:E2:DA:56:33:32:51:D6:E1:CF:A6:39:FB:E6:DD:14:67 X509v3 Authority Key Identifier: keyid:56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3136352e302f32342d3234203d3e203436303330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.48.165.0/24 Signature Algorithm: sha256WithRSAEncryption 25:c4:e4:10:36:f1:0b:ee:f2:da:c0:51:fe:69:5f:51:c4:ef: 1e:c5:ac:d6:87:9a:a6:7b:6a:fb:d8:8e:24:08:f1:7c:fd:84: 1f:68:73:95:4d:a1:ba:0c:69:20:90:d5:c6:05:da:13:c8:c7: 16:57:4f:d7:b4:6f:7b:2a:5c:e1:19:ff:da:a9:42:b8:91:ce: f8:42:27:4f:1e:18:2c:45:bf:72:73:71:aa:4b:e9:42:19:99: 88:0e:45:03:7e:f4:45:d0:a8:a5:c1:13:38:45:80:1b:da:e4: 71:8a:47:d6:b2:91:79:7a:b2:64:91:5b:4a:04:7b:2a:4f:d6: 73:ae:c0:ad:d4:56:bc:72:53:e5:18:f4:fb:02:55:c6:ed:51: 03:51:24:03:48:b8:49:b7:12:72:c6:71:b6:0a:c8:b0:7d:a5: ca:df:64:fd:1c:76:80:48:d6:c1:bf:cc:2c:d3:36:15:d1:ce: 34:58:ed:b9:9f:63:d1:56:66:ee:fa:af:82:d6:04:84:15:87: 33:00:c6:88:9f:52:e6:ec:97:56:4a:98:e8:d9:e9:22:c3:e8: 99:d6:04:3c:b7:70:24:da:46:b7:aa:ee:78:8f:72:4f:3a:67: 59:df:92:e7:1f:19:b8:c1:13:bd:f6:37:73:a9:00:ee:32:74: 41:73:5c:2b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcltYAbqtPdaRFuaES1lf8wQqG6swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0 MEZCMDU1NjAeFw0yNDEwMTgxMTU1MDZaFw0yNTEwMTcxMjAwMDZaMDMxMTAvBgNV BAMTKEMyNDg2N0Q3RTJEQTU2MzMzMjUxRDZFMUNGQTYzOUZCRTZERDE0NjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6rhOL5EeMgcxWaqQjd7PM+72y IMC9mjt9Kbi+s0f7pOR9FH7oyHpQFUWUGJkPXo6eZP05me5Mh4+2ur9VoweJDXiE agWTepkeI3g+emO/OOSqlr7jZeJOopNxZ+vUvniw1/kVlIlAQXG6qtR3gsH4BXc7 GN8dADanBDwZKgySoX5+0wmA650+U8Jn4BneXfcwJk1PvU+qJNe3YVkEyAGoI5/5 rJXatZdJ61tO9hbniy7loMRmGMYlEepMSRLLjZDUzORnkTkKdn0Nbg8D4csEaxAW ur52wUw73IFDSzjFszJiyx9aZBo0+PE5WW1E79MSSUZ2JxxmN2Fm9e3jXr91AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwkhn1+LaVjMyUdbhz6Y5++bdFGcwHwYDVR0j BBgwFoAUVmDbOBHBZGrB+Luplql1e0D7BVYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDFkNTk2Yy0wOWUzLTQ2MjEtYTYzYi0yMGE1MTNjZDQ4YjkvMC81NjYwREIzODEx QzE2NDZBQzFGOEJCQTk5NkE5NzU3QjQwRkIwNTU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0MEZC MDU1Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMWQ1OTZjLTA5ZTMtNDYyMS1h NjNiLTIwYTUxM2NkNDhiOS8wLzMxMzgzMjJlMzQzODJlMzEzNjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALYwpTANBgkqhkiG 9w0BAQsFAAOCAQEAJcTkEDbxC+7y2sBR/mlfUcTvHsWs1oeapntq+9iOJAjxfP2E H2hzlU2hugxpIJDVxgXaE8jHFldP17Rveypc4Rn/2qlCuJHO+EInTx4YLEW/cnNx qkvpQhmZiA5FA370RdCopcETOEWAG9rkcYpH1rKReXqyZJFbSgR7Kk/Wc67ArdRW vHJT5Rj0+wJVxu1RA1EkA0i4SbcScsZxtgrIsH2lyt9k/Rx2gEjWwb/MLNM2FdHO NFjtuZ9j0VZm7vqvgtYEhBWHMwDGiJ9S5uyXVkqY6NnpIsPomdYEPLdwJNpGt6ru eI9yTzpnWd+S5x8ZuMETvfY3c6kA7jJ0QXNcKw== -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org