$ rpki-client -vvf repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3137322e302f32342d3234203d3e203436303330.roa File: 3138322e34382e3137322e302f32342d3234203d3e203436303330.roa (raw, json) Hash identifier: c/XXZqHYOXjpYHVGdSoE0QNSnKAtAYncR4+lDVCTcSA= Subject key identifier: 25:DB:D7:E8:1F:0B:D6:B4:A1:2C:DB:5A:59:DC:0E:38:92:9F:91:B6 Certificate issuer: /CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Certificate serial: 4141C8A9C4B9951B6253183D8105A355F1C59A96 Authority key identifier: 56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3137322e302f32342d3234203d3e203436303330.roa Signing time: Fri 18 Oct 2024 12:00:04 +0000 ROA not before: Fri 18 Oct 2024 11:55:04 +0000 ROA not after: Fri 17 Oct 2025 12:00:04 +0000 asID: 46030 IP address blocks: 182.48.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:41:c8:a9:c4:b9:95:1b:62:53:18:3d:81:05:a3:55:f1:c5:9a:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Validity Not Before: Oct 18 11:55:04 2024 GMT Not After : Oct 17 12:00:04 2025 GMT Subject: CN=25DBD7E81F0BD6B4A12CDB5A59DC0E38929F91B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ab:ef:03:3a:a7:64:dc:9e:93:ef:d0:9a:45: b6:73:d4:7c:dc:9c:72:e5:fc:ac:42:37:d7:9d:3a: 86:b3:40:ea:e4:90:5b:21:26:bb:bc:ab:f4:08:14: 34:1b:95:a3:c7:cd:9d:ba:22:e9:9c:f0:f9:80:85: 58:7a:ac:a5:01:e3:62:99:5b:2a:53:a1:9e:fe:1f: 85:85:44:64:0f:11:a3:f4:47:c6:77:ef:a6:c2:2f: f5:d7:c7:f6:5b:85:1b:8c:1b:67:06:b3:7b:ae:0b: 86:ec:ba:a6:60:cc:17:1b:11:af:64:a6:eb:61:44: 7d:59:92:59:c0:08:d1:49:04:d8:d7:e0:26:b3:35: 67:a2:8c:ed:db:fc:c2:55:74:9a:47:84:92:c0:55: 3e:d2:31:39:51:5c:f4:31:d8:fa:c3:e0:22:c4:23: e5:98:4b:9d:19:eb:a4:d4:d4:d2:4d:71:81:29:01: de:50:d5:ef:5e:56:5c:33:3e:a1:47:1b:4a:03:c2: be:de:67:45:1d:df:c5:b7:f7:8e:47:bf:11:6f:04: 19:2a:4d:37:34:5e:a4:1f:81:a5:1f:79:b5:83:f7: 76:16:10:ea:a9:85:c2:ec:e4:60:01:3c:4c:aa:25: 8e:26:a9:2e:d6:15:26:92:66:38:3b:fc:52:f7:69: 2c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:DB:D7:E8:1F:0B:D6:B4:A1:2C:DB:5A:59:DC:0E:38:92:9F:91:B6 X509v3 Authority Key Identifier: keyid:56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3137322e302f32342d3234203d3e203436303330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.48.172.0/24 Signature Algorithm: sha256WithRSAEncryption 88:85:68:c3:cb:7e:f5:18:a7:6b:45:04:d3:36:6d:8d:ca:d8: cf:93:98:73:b6:f1:70:8f:e4:d8:72:7b:2b:69:2d:45:55:60: f5:7a:f1:d7:2d:6b:d1:46:3a:7c:b1:46:d8:36:c4:2e:f2:95: 17:6b:cb:8b:bb:8a:eb:82:cf:5f:0f:1b:27:c6:a0:5e:ec:eb: 57:cb:22:d2:48:e2:92:3d:e7:0a:2c:ed:53:bc:79:bc:e9:4e: 4e:96:f1:0a:ce:2e:9d:fa:57:f5:74:23:c3:48:1a:88:c2:05: 47:16:4f:d1:ef:71:ad:0c:fa:13:cd:96:2a:5d:cf:5e:cf:58: 4d:37:7f:52:3e:94:55:fb:f7:76:ab:80:1f:cf:b2:52:06:53: 02:67:2a:d5:7d:c2:41:7b:4f:35:b3:2a:00:e4:86:6a:8f:07: b4:1d:ed:5e:4f:85:32:49:fe:29:cc:05:64:b2:6b:f7:18:2c: 45:4a:6b:e6:57:2c:a3:11:5d:8e:21:2a:5e:a1:0d:b2:d0:56: da:86:17:ec:dd:eb:6c:be:91:a8:05:96:e7:00:55:b8:f8:fb: 7e:34:ba:40:f2:27:fb:f9:26:60:e0:de:f0:dd:16:eb:75:4e: 7d:83:25:20:63:d0:fe:e0:98:36:fa:d1:dc:52:77:b5:51:8c: b5:39:73:0f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQUHIqcS5lRtiUxg9gQWjVfHFmpYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0 MEZCMDU1NjAeFw0yNDEwMTgxMTU1MDRaFw0yNTEwMTcxMjAwMDRaMDMxMTAvBgNV BAMTKDI1REJEN0U4MUYwQkQ2QjRBMTJDREI1QTU5REMwRTM4OTI5RjkxQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKq+8DOqdk3J6T79CaRbZz1Hzc nHLl/KxCN9edOoazQOrkkFshJru8q/QIFDQblaPHzZ26Iumc8PmAhVh6rKUB42KZ WypToZ7+H4WFRGQPEaP0R8Z376bCL/XXx/ZbhRuMG2cGs3uuC4bsuqZgzBcbEa9k puthRH1ZklnACNFJBNjX4CazNWeijO3b/MJVdJpHhJLAVT7SMTlRXPQx2PrD4CLE I+WYS50Z66TU1NJNcYEpAd5Q1e9eVlwzPqFHG0oDwr7eZ0Ud38W3945HvxFvBBkq TTc0XqQfgaUfebWD93YWEOqphcLs5GABPEyqJY4mqS7WFSaSZjg7/FL3aSydAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJdvX6B8L1rShLNtaWdwOOJKfkbYwHwYDVR0j BBgwFoAUVmDbOBHBZGrB+Luplql1e0D7BVYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDFkNTk2Yy0wOWUzLTQ2MjEtYTYzYi0yMGE1MTNjZDQ4YjkvMC81NjYwREIzODEx QzE2NDZBQzFGOEJCQTk5NkE5NzU3QjQwRkIwNTU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0MEZC MDU1Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMWQ1OTZjLTA5ZTMtNDYyMS1h NjNiLTIwYTUxM2NkNDhiOS8wLzMxMzgzMjJlMzQzODJlMzEzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALYwrDANBgkqhkiG 9w0BAQsFAAOCAQEAiIVow8t+9Rina0UE0zZtjcrYz5OYc7bxcI/k2HJ7K2ktRVVg 9Xrx1y1r0UY6fLFG2DbELvKVF2vLi7uK64LPXw8bJ8agXuzrV8si0kjikj3nCizt U7x5vOlOTpbxCs4unfpX9XQjw0gaiMIFRxZP0e9xrQz6E82WKl3PXs9YTTd/Uj6U Vfv3dquAH8+yUgZTAmcq1X3CQXtPNbMqAOSGao8HtB3tXk+FMkn+KcwFZLJr9xgs RUpr5lcsoxFdjiEqXqENstBW2oYX7N3rbL6RqAWW5wBVuPj7fjS6QPIn+/kmYODe 8N0W63VOfYMlIGPQ/uCYNvrR3FJ3tVGMtTlzDw== -----END CERTIFICATE-----Generated at Sun Nov 24 20:07:39 2024 by rpki-client on console-ams.rpki-client.org