$ rpki-client -vvf repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/32372e3131312e33342e302f32342d3234203d3e203538343737.roa File: 32372e3131312e33342e302f32342d3234203d3e203538343737.roa (raw, json) Hash identifier: WP2a3mqmpHS88/eMPFKKdSw0yMT5X5wgEeVzGMtnjlw= Subject key identifier: 7F:32:F2:BC:38:73:CC:34:F0:3A:F9:10:A9:58:2C:A8:38:9E:92:1C Certificate issuer: /CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Certificate serial: 223DF5D6CE78864D06017C0CC256C9CCEE88B1EE Authority key identifier: 42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/32372e3131312e33342e302f32342d3234203d3e203538343737.roa Signing time: Thu 14 Nov 2024 12:01:24 +0000 ROA not before: Thu 14 Nov 2024 11:56:24 +0000 ROA not after: Thu 13 Nov 2025 12:01:24 +0000 asID: 58477 IP address blocks: 27.111.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:3d:f5:d6:ce:78:86:4d:06:01:7c:0c:c2:56:c9:cc:ee:88:b1:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Validity Not Before: Nov 14 11:56:24 2024 GMT Not After : Nov 13 12:01:24 2025 GMT Subject: CN=7F32F2BC3873CC34F03AF910A9582CA8389E921C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:44:dc:e6:d1:31:9a:3a:9c:8d:6d:02:1c:22: dd:91:d3:94:6f:09:d3:07:99:44:25:93:e5:a9:85: 8b:f2:3e:7a:14:fa:cb:b4:5b:af:c8:49:94:82:87: 5c:f7:62:5b:d4:df:4d:29:54:81:16:2a:37:e2:f9: fc:ab:c4:f4:cb:6c:11:a7:99:92:43:94:21:b5:bd: ce:4b:ba:cb:4e:0b:54:07:e3:09:d2:3d:b8:41:f6: 6c:d4:71:9f:2d:01:8e:45:48:10:83:8d:bf:a7:ea: 20:68:61:af:57:12:19:a0:26:04:85:a7:c2:e5:c1: 2d:f3:14:ef:5d:90:a9:29:01:7b:8b:b9:c6:4e:73: 3f:09:29:a4:1d:62:35:0c:ca:b6:1a:12:50:b6:aa: 2f:2f:e1:cf:3c:03:16:c6:b1:97:1c:32:1f:cc:d7: 50:0d:8d:8f:ea:bc:09:7b:a7:a3:93:b7:2c:1a:de: 26:40:b4:da:5f:18:63:9d:ef:ae:54:1f:a5:54:73: 2d:6b:1a:5b:62:7d:1e:c3:96:f9:ba:1a:68:86:ce: 62:96:0d:11:71:ae:23:86:c2:37:90:3a:bb:f3:cf: 19:90:45:b4:0d:7c:7b:8b:5a:24:2b:2a:ff:9f:11: 9f:c1:ce:a9:15:14:fd:24:2f:c0:f3:e0:23:81:b9: 8c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:32:F2:BC:38:73:CC:34:F0:3A:F9:10:A9:58:2C:A8:38:9E:92:1C X509v3 Authority Key Identifier: keyid:42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/32372e3131312e33342e302f32342d3234203d3e203538343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.111.34.0/24 Signature Algorithm: sha256WithRSAEncryption 04:c0:53:e5:0e:17:14:3c:65:70:5d:a4:07:0d:b9:dd:9d:76: ab:eb:90:b9:b8:11:28:ee:98:3c:a4:a1:64:ac:40:9b:86:6b: 91:54:43:c6:c9:c0:91:82:8c:c0:6f:37:a0:4e:14:99:0a:ba: a1:a6:a2:ea:1a:62:c4:a0:a9:9c:12:e2:2b:3d:aa:7e:b2:86: 17:d4:1b:f1:44:72:94:d2:9c:de:47:97:33:70:b2:e3:09:4e: 21:b7:b1:c9:83:44:2b:bb:23:6c:1f:ad:b7:b3:0c:9e:8c:3a: 25:4a:72:54:25:de:15:14:5d:40:81:44:95:83:86:99:05:05: f4:6a:49:04:72:8f:98:81:d1:2f:f0:66:5c:79:80:bb:41:f7: fb:05:1b:34:12:6d:44:4b:e1:52:16:3e:86:5d:05:57:cb:7e: 35:b1:da:c6:99:6e:99:bb:a5:5b:6a:74:46:37:cb:30:b2:f7: 34:14:09:c7:f6:af:8b:06:a5:d9:9b:66:73:51:d5:5f:15:c5: 2f:6f:ce:3e:9e:69:02:4b:92:94:8b:4f:90:ec:c4:ea:c4:01: fa:82:89:7a:7d:ba:e2:1d:df:87:40:d2:43:7f:2c:e9:5a:38: 0f:6d:5e:8b:6d:9b:9d:c1:34:37:1b:54:c3:5a:fa:f3:b9:8a: 27:ee:a6:a2 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUIj311s54hk0GAXwMwlbJzO6Ise4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFF Q0M3RkU5NjAeFw0yNDExMTQxMTU2MjRaFw0yNTExMTMxMjAxMjRaMDMxMTAvBgNV BAMTKDdGMzJGMkJDMzg3M0NDMzRGMDNBRjkxMEE5NTgyQ0E4Mzg5RTkyMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+RNzm0TGaOpyNbQIcIt2R05Rv CdMHmUQlk+WphYvyPnoU+su0W6/ISZSCh1z3YlvU300pVIEWKjfi+fyrxPTLbBGn mZJDlCG1vc5LustOC1QH4wnSPbhB9mzUcZ8tAY5FSBCDjb+n6iBoYa9XEhmgJgSF p8LlwS3zFO9dkKkpAXuLucZOcz8JKaQdYjUMyrYaElC2qi8v4c88AxbGsZccMh/M 11ANjY/qvAl7p6OTtywa3iZAtNpfGGOd765UH6VUcy1rGltifR7Dlvm6GmiGzmKW DRFxriOGwjeQOrvzzxmQRbQNfHuLWiQrKv+fEZ/BzqkVFP0kL8Dz4COBuYxVAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUfzLyvDhzzDTwOvkQqVgsqDiekhwwHwYDVR0j BBgwFoAUQoqkJA50Hyfjoh78KdRfCuzH/pYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDNlMmU2Ny1hMTcxLTRkOWUtYTkzNS00MDY5MDJiMWUxM2IvMC80MjhBQTQyNDBF NzQxRjI3RTNBMjFFRkMyOUQ0NUYwQUVDQzdGRTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFFQ0M3 RkU5Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0M2UyZTY3LWExNzEtNGQ5ZS1h OTM1LTQwNjkwMmIxZTEzYi8wLzMyMzcyZTMxMzEzMTJlMzMzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNDM3Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbbyIwDQYJKoZIhvcN AQELBQADggEBAATAU+UOFxQ8ZXBdpAcNud2ddqvrkLm4ESjumDykoWSsQJuGa5FU Q8bJwJGCjMBvN6BOFJkKuqGmouoaYsSgqZwS4is9qn6yhhfUG/FEcpTSnN5HlzNw suMJTiG3scmDRCu7I2wfrbezDJ6MOiVKclQl3hUUXUCBRJWDhpkFBfRqSQRyj5iB 0S/wZlx5gLtB9/sFGzQSbURL4VIWPoZdBVfLfjWx2saZbpm7pVtqdEY3yzCy9zQU Ccf2r4sGpdmbZnNR1V8VxS9vzj6eaQJLkpSLT5DsxOrEAfqCiXp9uuId34dA0kN/ LOlaOA9tXottm53BNDcbVMNa+vO5iifupqI= -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org