$ rpki-client -vvf repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/32372e3131312e33322e302f31392d3234203d3e203234353332.roa File: 32372e3131312e33322e302f31392d3234203d3e203234353332.roa (raw, json) Hash identifier: wEPYX74PJW0e23h+Erkt8/FRL+TupCEB/27FgHd4lV0= Subject key identifier: FB:BC:A4:77:60:66:0A:20:1A:B0:20:D5:17:E7:6B:FB:F0:20:43:FF Certificate issuer: /CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Certificate serial: 7DA7470F3D8E1F5E42B9B3051C45297C9634949C Authority key identifier: 42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/32372e3131312e33322e302f31392d3234203d3e203234353332.roa Signing time: Mon 01 Jul 2024 01:05:46 +0000 ROA not before: Mon 01 Jul 2024 01:00:46 +0000 ROA not after: Mon 30 Jun 2025 01:05:46 +0000 asID: 24532 IP address blocks: 27.111.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:a7:47:0f:3d:8e:1f:5e:42:b9:b3:05:1c:45:29:7c:96:34:94:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Validity Not Before: Jul 1 01:00:46 2024 GMT Not After : Jun 30 01:05:46 2025 GMT Subject: CN=FBBCA47760660A201AB020D517E76BFBF02043FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:6c:ed:16:38:d5:c8:83:67:0c:49:56:6f:8b: 07:6a:34:35:16:73:f1:46:ba:1f:0f:c4:8e:34:4e: d9:fa:17:e6:bd:5b:74:df:b2:a7:c2:5c:80:0d:9a: 09:b0:8d:59:39:6e:83:92:6e:b7:46:0c:9a:cf:85: 3c:f9:94:52:75:70:40:3c:5e:92:f3:a7:f9:d9:5c: aa:3a:fc:d4:ea:d2:4a:46:35:08:e2:af:1c:84:63: b0:e7:c7:bc:94:ea:4b:b1:71:63:ff:06:c3:d9:b2: d2:be:f1:5a:e1:8b:96:3e:ab:2e:3c:9b:9a:75:1b: 61:27:da:27:ba:3e:27:30:1f:19:90:9c:02:db:8a: af:c9:44:32:7f:a9:8f:98:f5:a6:6f:be:f9:3b:58: c5:51:56:d6:2f:ba:cf:01:1d:0b:94:97:d3:63:cb: af:6c:f4:fe:15:08:98:4d:15:82:3f:1d:ab:3e:d5: 6c:aa:69:28:2d:19:05:db:56:ee:8c:21:98:8a:13: 1f:e2:47:15:1d:b2:2f:16:12:d6:e0:80:c5:b5:e0: 71:e6:6a:4a:6c:0a:08:d4:29:77:54:42:62:19:f2: 30:c6:c6:e9:20:b7:ef:5d:73:fa:ef:da:62:02:2f: eb:40:e1:a6:3b:5c:b7:45:bd:0c:44:51:8a:9c:59: ad:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:BC:A4:77:60:66:0A:20:1A:B0:20:D5:17:E7:6B:FB:F0:20:43:FF X509v3 Authority Key Identifier: keyid:42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/32372e3131312e33322e302f31392d3234203d3e203234353332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.111.32.0/19 Signature Algorithm: sha256WithRSAEncryption 45:6a:47:d4:14:0f:29:35:20:23:56:f0:7a:e5:62:ea:ae:9a: 09:38:67:0a:99:c9:34:89:e5:4a:3f:f1:a4:0e:4d:8b:aa:f2: 59:77:52:dd:e5:7c:f0:ba:93:c5:2d:1f:d4:3d:27:ac:42:c3: 0e:f6:cb:c1:ac:9c:9d:7f:28:3b:43:0e:83:a8:1b:2d:45:fe: 3d:df:56:b3:c5:48:5c:3f:d4:00:2b:8f:0f:e8:45:b5:64:fd: de:c4:ab:b3:69:51:ee:56:94:a2:92:6a:35:e4:78:3d:72:f2: ef:61:ca:72:62:07:4d:ac:16:1b:e8:46:e5:bb:ee:b8:cf:f6: 7b:77:93:be:cb:e0:53:ec:78:54:a6:88:c5:81:da:b6:9c:d3: 3b:b5:c8:51:85:de:75:f1:7e:f6:11:40:b0:c5:2a:4f:8c:b9: 4d:bd:5a:7c:ee:1b:41:b2:ae:2d:93:bc:58:17:89:c9:13:62: 85:ec:47:a9:fa:12:79:d9:fc:58:24:5a:bd:84:d9:8d:2f:7e: c5:33:71:e9:71:fb:3d:cd:ef:67:56:88:c0:14:cc:2a:3d:34: 31:b2:a9:fd:e5:d3:7d:dc:08:c3:09:44:7a:6a:21:68:b4:d8: 6e:89:b6:a5:85:10:52:73:65:7f:23:bf:a9:80:5b:38:8e:14: 05:c6:c6:f2 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUfadHDz2OH15CubMFHEUpfJY0lJwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFF Q0M3RkU5NjAeFw0yNDA3MDEwMTAwNDZaFw0yNTA2MzAwMTA1NDZaMDMxMTAvBgNV BAMTKEZCQkNBNDc3NjA2NjBBMjAxQUIwMjBENTE3RTc2QkZCRjAyMDQzRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNbO0WONXIg2cMSVZviwdqNDUW c/FGuh8PxI40Ttn6F+a9W3TfsqfCXIANmgmwjVk5boOSbrdGDJrPhTz5lFJ1cEA8 XpLzp/nZXKo6/NTq0kpGNQjirxyEY7Dnx7yU6kuxcWP/BsPZstK+8Vrhi5Y+qy48 m5p1G2En2ie6PicwHxmQnALbiq/JRDJ/qY+Y9aZvvvk7WMVRVtYvus8BHQuUl9Nj y69s9P4VCJhNFYI/Has+1WyqaSgtGQXbVu6MIZiKEx/iRxUdsi8WEtbggMW14HHm akpsCgjUKXdUQmIZ8jDGxukgt+9dc/rv2mICL+tA4aY7XLdFvQxEUYqcWa1LAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU+7ykd2BmCiAasCDVF+dr+/AgQ/8wHwYDVR0j BBgwFoAUQoqkJA50Hyfjoh78KdRfCuzH/pYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDNlMmU2Ny1hMTcxLTRkOWUtYTkzNS00MDY5MDJiMWUxM2IvMC80MjhBQTQyNDBF NzQxRjI3RTNBMjFFRkMyOUQ0NUYwQUVDQzdGRTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFFQ0M3 RkU5Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0M2UyZTY3LWExNzEtNGQ5ZS1h OTM1LTQwNjkwMmIxZTEzYi8wLzMyMzcyZTMxMzEzMTJlMzMzMjJlMzAyZjMxMzky ZDMyMzQyMDNkM2UyMDMyMzQzNTMzMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAUbbyAwDQYJKoZIhvcN AQELBQADggEBAEVqR9QUDyk1ICNW8HrlYuqumgk4ZwqZyTSJ5Uo/8aQOTYuq8ll3 Ut3lfPC6k8UtH9Q9J6xCww72y8GsnJ1/KDtDDoOoGy1F/j3fVrPFSFw/1AArjw/o RbVk/d7Eq7NpUe5WlKKSajXkeD1y8u9hynJiB02sFhvoRuW77rjP9nt3k77L4FPs eFSmiMWB2rac0zu1yFGF3nXxfvYRQLDFKk+MuU29WnzuG0Gyri2TvFgXickTYoXs R6n6EnnZ/FgkWr2E2Y0vfsUzcelx+z3N72dWiMAUzCo9NDGyqf3l033cCMMJRHpq IWi02G6JtqWFEFJzZX8jv6mAWziOFAXGxvI= -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:03 2024 by rpki-client on console-ams.rpki-client.org