$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55695.roa File: AS55695.roa (raw, json) Hash identifier: cXaldAbCxQh4KKANFnMox1vGY5+6XC/AkVBxSQzWrzo= Subject key identifier: 38:1A:F6:2F:25:24:C8:63:6E:EA:ED:5C:D4:6E:94:41:61:89:67:23 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0AAC63A39F39476A873333B63F120807FFB3E730 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55695.roa Signing time: Tue 10 Sep 2024 04:21:04 +0000 ROA not before: Tue 10 Sep 2024 04:16:04 +0000 ROA not after: Tue 09 Sep 2025 04:21:04 +0000 asID: 55695 IP address blocks: 2405:2d40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:ac:63:a3:9f:39:47:6a:87:33:33:b6:3f:12:08:07:ff:b3:e7:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 10 04:16:04 2024 GMT Not After : Sep 9 04:21:04 2025 GMT Subject: CN=381AF62F2524C8636EEAED5CD46E944161896723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f1:2b:0a:6f:f7:37:d2:4c:d2:79:cc:ec:28: 48:57:72:7e:a4:91:14:cb:5f:7c:e2:41:3c:07:31: b7:25:67:fe:99:39:7c:95:4e:51:dc:73:f7:fc:63: de:70:0a:37:3e:0a:0c:e0:ed:9e:50:8d:2f:ba:4c: 40:05:24:32:2e:9c:7a:61:d0:d9:a0:94:f6:e2:a6: 2a:b7:e1:ba:a9:90:41:34:45:ff:48:26:e5:ce:01: 4e:8b:0c:c7:51:f2:dc:9e:d4:ad:6d:3f:bb:88:15: d9:6e:b4:d5:0d:3b:cf:39:07:b6:4e:96:4a:07:20: e3:5f:21:a3:34:d0:58:0b:00:a5:fc:2d:a0:b8:ba: 91:06:ed:8e:22:82:15:d4:b2:ff:f2:92:aa:a1:e2: 15:56:8f:f8:26:aa:52:90:f9:cc:3b:7a:86:b3:29: 89:0f:e6:5f:85:6a:b5:d8:27:9c:ee:a3:98:e9:bc: d3:d5:32:bf:2e:5d:a3:8c:16:f4:b3:d3:f5:d9:13: 78:19:6a:f6:d6:bc:55:ac:2b:d9:8e:27:da:05:66: 03:78:5c:db:03:fe:a4:17:24:92:49:e7:f0:ee:a6: 7f:03:0f:76:42:2f:df:cc:ec:fd:d3:68:12:55:90: e6:7c:1f:4a:bc:ae:9f:87:79:31:2e:14:c5:c5:60: 83:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:1A:F6:2F:25:24:C8:63:6E:EA:ED:5C:D4:6E:94:41:61:89:67:23 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55695.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2d40::/32 Signature Algorithm: sha256WithRSAEncryption 1d:49:ec:97:18:4c:3a:09:da:f8:06:3c:23:92:51:10:d5:e0: 5b:6c:26:4d:18:b2:dd:4b:ed:5d:a1:cb:a8:b6:de:7f:00:33: a5:94:fd:48:9f:24:b3:16:55:61:13:4e:49:1d:58:e5:7d:b1: cb:43:29:21:b2:7e:a2:47:60:fe:0f:04:0f:b4:70:a9:28:80: 92:ae:23:59:b0:36:68:d9:fe:f6:c8:fb:9c:d9:02:ed:db:9f: 10:12:e4:5b:ba:00:54:18:7c:5d:60:78:1e:9c:33:4b:1f:1f: 40:d4:c9:21:19:e3:c9:7c:29:ea:a8:b9:20:5b:93:a1:a0:8c: 4b:16:66:20:50:b6:64:f5:ac:b6:09:cd:79:e4:b2:78:d8:d8: 49:b8:91:29:be:45:1f:1a:e9:cc:36:24:fd:b9:13:0e:75:e6: fa:f6:6f:a8:f2:7c:19:85:c2:db:9d:2a:13:ef:89:cc:0c:b8: 9e:ba:53:d8:fa:e6:7f:7c:4c:6c:7c:7f:54:1e:62:e8:b3:b1: c6:cc:4c:5d:1d:d8:7e:a1:77:67:11:c5:ff:0b:95:32:b1:f5: 86:56:fe:64:16:7a:25:d1:05:fe:b2:60:32:d2:38:60:39:46: 31:2c:07:81:69:99:d4:12:18:c1:9d:72:6f:2c:0f:4d:f4:a2: eb:54:b6:bc -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUCqxjo585R2qHMzO2PxIIB/+z5zAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkxMDA0MTYwNFoX DTI1MDkwOTA0MjEwNFowMzExMC8GA1UEAxMoMzgxQUY2MkYyNTI0Qzg2MzZFRUFF RDVDRDQ2RTk0NDE2MTg5NjcyMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANLxKwpv9zfSTNJ5zOwoSFdyfqSRFMtffOJBPAcxtyVn/pk5fJVOUdxz9/xj 3nAKNz4KDODtnlCNL7pMQAUkMi6cemHQ2aCU9uKmKrfhuqmQQTRF/0gm5c4BTosM x1Hy3J7UrW0/u4gV2W601Q07zzkHtk6WSgcg418hozTQWAsApfwtoLi6kQbtjiKC FdSy//KSqqHiFVaP+CaqUpD5zDt6hrMpiQ/mX4VqtdgnnO6jmOm809Uyvy5do4wW 9LPT9dkTeBlq9ta8Vawr2Y4n2gVmA3hc2wP+pBckkknn8O6mfwMPdkIv38zs/dNo ElWQ5nwfSryun4d5MS4UxcVgg0cCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ4GvYv JSTIY27q7VzUbpRBYYlnIzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU1Njk1LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAUtQDANBgkqhkiG9w0BAQsFAAOCAQEAHUnslxhMOgna+AY8I5JR ENXgW2wmTRiy3UvtXaHLqLbefwAzpZT9SJ8ksxZVYRNOSR1Y5X2xy0MpIbJ+okdg /g8ED7RwqSiAkq4jWbA2aNn+9sj7nNkC7dufEBLkW7oAVBh8XWB4HpwzSx8fQNTJ IRnjyXwp6qi5IFuToaCMSxZmIFC2ZPWstgnNeeSyeNjYSbiRKb5FHxrpzDYk/bkT DnXm+vZvqPJ8GYXC250qE++JzAy4nrpT2Prmf3xMbHx/VB5i6LOxxsxMXR3YfqF3 ZxHF/wuVMrH1hlb+ZBZ6JdEF/rJgMtI4YDlGMSwHgWmZ1BIYwZ1ybywPTfSi61S2 vA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:28 2024 by rpki-client on console-fra.rpki-client.org