$ rpki-client -vvf repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3138332e302f32342d3234203d3e203436303330.roa File: 3138322e34382e3138332e302f32342d3234203d3e203436303330.roa (raw, json) Hash identifier: nn+YViD8iPMYRRHFPKoRPa0Fdfw/822DV5P0FtNw2b8= Subject key identifier: 64:ED:5E:44:3B:EA:12:A3:4A:FC:57:9E:FE:8C:E3:4C:35:E4:6F:00 Certificate issuer: /CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Certificate serial: 4D2084EA4D902F437701293B0B2CBF36D94D9331 Authority key identifier: 56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3138332e302f32342d3234203d3e203436303330.roa Signing time: Fri 18 Oct 2024 12:00:03 +0000 ROA not before: Fri 18 Oct 2024 11:55:03 +0000 ROA not after: Fri 17 Oct 2025 12:00:03 +0000 asID: 46030 IP address blocks: 182.48.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 15 Mar 2025 04:26:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:20:84:ea:4d:90:2f:43:77:01:29:3b:0b:2c:bf:36:d9:4d:93:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Validity Not Before: Oct 18 11:55:03 2024 GMT Not After : Oct 17 12:00:03 2025 GMT Subject: CN=64ED5E443BEA12A34AFC579EFE8CE34C35E46F00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ec:f0:0a:a2:71:da:6e:ab:74:2c:43:ac:56: 14:42:e7:31:47:b6:0a:ba:96:46:ef:26:c2:d8:a8: dd:70:27:ab:58:6e:aa:e4:f9:14:52:e6:d1:44:db: 13:36:c9:e7:c1:05:cd:a7:1e:63:b2:f7:73:f2:12: 96:74:86:4b:f2:22:21:fb:16:8b:22:02:32:42:9c: 8f:f3:52:c4:ea:2d:a9:50:a0:26:43:fc:e4:1f:29: 94:9c:37:2c:fc:e1:35:ed:17:b4:d6:b8:34:72:7d: 21:9b:d1:ca:ac:b3:bc:25:ec:56:70:d7:fc:eb:7e: bd:d0:91:d8:df:26:c7:62:c1:17:d2:a5:a9:93:82: 56:b8:84:fb:11:a5:25:ea:81:8d:05:42:17:16:bd: 17:52:b8:ab:8e:7e:c2:55:3f:9c:e7:63:a4:d3:ee: 36:36:67:46:8e:db:c1:18:ee:ef:fb:2b:e5:b6:34: d8:7c:8a:41:d8:28:0f:75:5c:43:35:d4:1d:0e:fd: 2e:1f:3d:df:40:fd:8d:98:58:e6:48:78:76:01:10: 88:c1:16:f1:af:24:d7:73:36:33:3c:76:7f:a5:b5: c7:8d:b8:06:d5:fb:df:cf:2e:97:ed:6f:aa:21:b3: 6f:43:e8:a2:7e:79:81:34:1f:fd:66:91:9e:5d:af: 1d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:ED:5E:44:3B:EA:12:A3:4A:FC:57:9E:FE:8C:E3:4C:35:E4:6F:00 X509v3 Authority Key Identifier: keyid:56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3138332e302f32342d3234203d3e203436303330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.48.183.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:2b:2e:06:78:4f:e1:9d:57:e0:9a:f5:10:b5:5d:59:76:bc: d5:04:4e:24:7c:9f:14:15:57:ef:4c:b7:8e:b4:c2:ab:1c:41: 5f:89:8e:09:8c:77:6a:4f:cc:91:36:e1:97:7e:5e:9f:fb:bb: 4f:95:ed:64:ed:df:83:de:d5:37:84:00:99:39:e8:88:66:84: 45:bc:9c:b1:be:b5:8b:d6:55:b6:a4:c3:f9:f0:f2:0b:d5:a6: 60:2b:14:82:23:14:7b:34:ca:46:88:55:63:fc:ea:8a:18:85: 0f:1b:f1:27:5f:85:ef:9b:88:de:63:b7:a7:cf:00:b8:cd:1b: 69:8d:41:f7:e7:44:9f:20:2e:1f:a7:8e:90:e6:b6:33:08:a3: 3b:f1:4a:ad:ed:a1:4f:d4:a5:ca:df:30:3c:4b:de:72:0c:16: e3:1a:36:63:41:83:72:45:fe:c2:9c:a1:eb:85:28:6c:f5:c2: e3:22:f6:24:20:47:14:19:57:48:b6:97:69:bb:ae:25:c3:3a: 39:93:1c:21:da:5d:63:b9:51:74:1a:8f:1b:31:36:22:a3:38: 56:23:15:db:c2:82:2a:09:88:cc:fd:99:27:ce:30:c8:a0:77: 9a:38:91:a0:79:64:07:89:2b:59:23:ba:76:10:b3:7f:28:8f: fd:de:a4:43 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTSCE6k2QL0N3ASk7Cyy/NtlNkzEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0 MEZCMDU1NjAeFw0yNDEwMTgxMTU1MDNaFw0yNTEwMTcxMjAwMDNaMDMxMTAvBgNV BAMTKDY0RUQ1RTQ0M0JFQTEyQTM0QUZDNTc5RUZFOENFMzRDMzVFNDZGMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDh7PAKonHabqt0LEOsVhRC5zFH tgq6lkbvJsLYqN1wJ6tYbqrk+RRS5tFE2xM2yefBBc2nHmOy93PyEpZ0hkvyIiH7 FosiAjJCnI/zUsTqLalQoCZD/OQfKZScNyz84TXtF7TWuDRyfSGb0cqss7wl7FZw 1/zrfr3QkdjfJsdiwRfSpamTgla4hPsRpSXqgY0FQhcWvRdSuKuOfsJVP5znY6TT 7jY2Z0aO28EY7u/7K+W2NNh8ikHYKA91XEM11B0O/S4fPd9A/Y2YWOZIeHYBEIjB FvGvJNdzNjM8dn+ltceNuAbV+9/PLpftb6ohs29D6KJ+eYE0H/1mkZ5drx2JAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZO1eRDvqEqNK/Fee/ozjTDXkbwAwHwYDVR0j BBgwFoAUVmDbOBHBZGrB+Luplql1e0D7BVYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDFkNTk2Yy0wOWUzLTQ2MjEtYTYzYi0yMGE1MTNjZDQ4YjkvMC81NjYwREIzODEx QzE2NDZBQzFGOEJCQTk5NkE5NzU3QjQwRkIwNTU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0MEZC MDU1Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMWQ1OTZjLTA5ZTMtNDYyMS1h NjNiLTIwYTUxM2NkNDhiOS8wLzMxMzgzMjJlMzQzODJlMzEzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALYwtzANBgkqhkiG 9w0BAQsFAAOCAQEAnysuBnhP4Z1X4Jr1ELVdWXa81QROJHyfFBVX70y3jrTCqxxB X4mOCYx3ak/MkTbhl35en/u7T5XtZO3fg97VN4QAmTnoiGaERbycsb61i9ZVtqTD +fDyC9WmYCsUgiMUezTKRohVY/zqihiFDxvxJ1+F75uI3mO3p88AuM0baY1B9+dE nyAuH6eOkOa2MwijO/FKre2hT9Slyt8wPEvecgwW4xo2Y0GDckX+wpyh64UobPXC 4yL2JCBHFBlXSLaXabuuJcM6OZMcIdpdY7lRdBqPGzE2IqM4ViMV28KCKgmIzP2Z J84wyKB3mjiRoHlkB4krWSO6dhCzfyiP/d6kQw== -----END CERTIFICATE-----Generated at Thu Mar 13 23:58:06 2025 by rpki-client