$ rpki-client -vvf repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3138392e302f32342d3234203d3e203436303330.roa File: 3138322e34382e3138392e302f32342d3234203d3e203436303330.roa (raw, json) Hash identifier: xZ7N0Y4uMOiwZDEXq8NBNpcOhrO2mBzlc3rxHFlTag8= Subject key identifier: 0B:23:0E:88:BA:85:AE:42:43:A7:B8:04:1A:AD:A3:97:29:2B:CC:33 Certificate issuer: /CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Certificate serial: 4D85398E4AE34A541E3BF34EA5DCCE99A3DB8022 Authority key identifier: 56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3138392e302f32342d3234203d3e203436303330.roa Signing time: Fri 18 Oct 2024 12:00:06 +0000 ROA not before: Fri 18 Oct 2024 11:55:06 +0000 ROA not after: Fri 17 Oct 2025 12:00:06 +0000 asID: 46030 IP address blocks: 182.48.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:85:39:8e:4a:e3:4a:54:1e:3b:f3:4e:a5:dc:ce:99:a3:db:80:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Validity Not Before: Oct 18 11:55:06 2024 GMT Not After : Oct 17 12:00:06 2025 GMT Subject: CN=0B230E88BA85AE4243A7B8041AADA397292BCC33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:24:23:6f:56:65:c9:57:8b:29:33:04:b7:1f: cc:1f:8e:5e:d6:59:2e:31:cf:24:50:c9:30:91:24: 39:d8:0e:4e:81:52:a0:60:28:13:37:7d:b7:4b:e8: e8:9b:5d:3e:a4:3e:5d:3a:49:97:13:76:21:51:7f: 11:bb:2b:52:00:15:a7:3e:71:dc:89:da:8a:94:fc: cb:82:d1:e8:d1:bf:b7:02:50:39:e5:39:59:ca:bb: e0:52:14:a4:c8:6e:e8:e9:b1:05:52:f5:ab:3d:a3: 1f:01:e5:bf:16:0a:1a:57:80:c7:fd:1a:aa:50:fa: 0b:a5:f3:25:b1:98:01:4d:26:96:e2:23:84:c5:c5: 15:0d:65:12:61:71:5b:7b:44:75:ec:53:a5:5d:ae: 60:49:e4:85:77:25:8a:bd:44:f3:6f:a8:81:1f:03: 52:c7:7c:b1:36:b8:9e:81:da:b8:1e:b8:23:a3:c8: 77:4b:20:be:ea:2f:87:0a:22:29:d1:53:c5:80:b6: 58:d9:73:7e:e6:b1:b5:de:c2:aa:43:f3:fa:17:9d: c7:7b:0c:d2:b8:f5:4b:f7:41:60:19:60:18:c1:82: 75:3f:1d:06:4a:37:fb:ed:40:2e:ba:5b:bc:7d:48: 21:12:c3:15:c5:f0:ba:37:76:54:7a:af:98:f5:be: 42:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:23:0E:88:BA:85:AE:42:43:A7:B8:04:1A:AD:A3:97:29:2B:CC:33 X509v3 Authority Key Identifier: keyid:56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3138392e302f32342d3234203d3e203436303330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.48.189.0/24 Signature Algorithm: sha256WithRSAEncryption 89:7d:e6:18:43:5c:da:87:f4:0c:1d:29:d7:85:96:5e:3a:ed: dd:ba:14:6c:d0:8f:f2:9c:07:38:a7:97:8a:f7:e5:70:e2:8f: 83:ec:15:f2:4c:5d:1d:0c:fb:de:90:2a:91:ec:cd:5c:e2:e0: dd:90:02:ca:b9:6b:4c:37:b3:f5:b1:37:3b:2e:4c:36:00:c5: a6:9f:75:a9:6e:80:a5:db:90:f0:36:cf:39:e0:5b:7a:66:0d: d8:62:bc:39:99:6b:2c:07:2e:9d:e0:9e:04:1d:31:48:41:8a: b9:7c:81:c0:91:b7:12:5e:87:19:22:48:36:1c:1a:cf:53:47: dd:bd:6e:f0:ef:17:5d:43:09:e2:13:4f:5a:66:78:61:ef:0e: 75:e8:0c:c6:3e:10:81:7e:dc:ec:e6:08:f9:d8:20:29:52:6f: 24:5c:e4:37:2c:38:b9:70:95:bc:1b:96:9d:eb:57:8b:49:7e: a1:69:07:ee:24:47:1c:19:20:69:c8:c5:ae:e4:d2:65:c1:5e: bf:30:86:9c:97:90:ff:51:97:cf:74:ef:af:bb:99:d0:ea:a9: b3:fe:69:2c:e8:f7:c6:d3:b5:be:5f:21:1c:41:2f:9c:d1:8d: cf:0b:3b:9c:be:78:60:5c:d4:e1:df:f0:ec:f4:aa:29:f8:e9: a5:85:b9:a6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTYU5jkrjSlQeO/NOpdzOmaPbgCIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0 MEZCMDU1NjAeFw0yNDEwMTgxMTU1MDZaFw0yNTEwMTcxMjAwMDZaMDMxMTAvBgNV BAMTKDBCMjMwRTg4QkE4NUFFNDI0M0E3QjgwNDFBQURBMzk3MjkyQkNDMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKJCNvVmXJV4spMwS3H8wfjl7W WS4xzyRQyTCRJDnYDk6BUqBgKBM3fbdL6OibXT6kPl06SZcTdiFRfxG7K1IAFac+ cdyJ2oqU/MuC0ejRv7cCUDnlOVnKu+BSFKTIbujpsQVS9as9ox8B5b8WChpXgMf9 GqpQ+gul8yWxmAFNJpbiI4TFxRUNZRJhcVt7RHXsU6VdrmBJ5IV3JYq9RPNvqIEf A1LHfLE2uJ6B2rgeuCOjyHdLIL7qL4cKIinRU8WAtljZc37msbXewqpD8/oXncd7 DNK49Uv3QWAZYBjBgnU/HQZKN/vtQC66W7x9SCESwxXF8Lo3dlR6r5j1vkJ7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCyMOiLqFrkJDp7gEGq2jlykrzDMwHwYDVR0j BBgwFoAUVmDbOBHBZGrB+Luplql1e0D7BVYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDFkNTk2Yy0wOWUzLTQ2MjEtYTYzYi0yMGE1MTNjZDQ4YjkvMC81NjYwREIzODEx QzE2NDZBQzFGOEJCQTk5NkE5NzU3QjQwRkIwNTU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0MEZC MDU1Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMWQ1OTZjLTA5ZTMtNDYyMS1h NjNiLTIwYTUxM2NkNDhiOS8wLzMxMzgzMjJlMzQzODJlMzEzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALYwvTANBgkqhkiG 9w0BAQsFAAOCAQEAiX3mGENc2of0DB0p14WWXjrt3boUbNCP8pwHOKeXivflcOKP g+wV8kxdHQz73pAqkezNXOLg3ZACyrlrTDez9bE3Oy5MNgDFpp91qW6ApduQ8DbP OeBbemYN2GK8OZlrLAcuneCeBB0xSEGKuXyBwJG3El6HGSJINhwaz1NH3b1u8O8X XUMJ4hNPWmZ4Ye8OdegMxj4QgX7c7OYI+dggKVJvJFzkNyw4uXCVvBuWnetXi0l+ oWkH7iRHHBkgacjFruTSZcFevzCGnJeQ/1GXz3Tvr7uZ0Oqps/5pLOj3xtO1vl8h HEEvnNGNzws7nL54YFzU4d/w7PSqKfjppYW5pg== -----END CERTIFICATE-----Generated at Sun Nov 24 20:07:39 2024 by rpki-client on console-ams.rpki-client.org