$ rpki-client -vvf repo-rpki.idnic.net/repo/a017b828-17fa-48a2-a113-149f9467a328/0/3138302e3135302e3233322e302f32312d3234203d3e203234323130.roa File: 3138302e3135302e3233322e302f32312d3234203d3e203234323130.roa (raw, json) Hash identifier: Abkbz+JB96AsAJeWYsjGUVFZ5UI+53UJYjdT2RBIo/8= Subject key identifier: 4F:77:25:4F:E2:FD:24:ED:7F:63:57:AC:0A:E4:E8:7B:5C:DE:5D:B1 Certificate issuer: /CN=63003FFDD063104898793061BDB2DB8D0788745D Certificate serial: 1D2A4FD9A74EE3013171A7641BF22DDF4B2C7254 Authority key identifier: 63:00:3F:FD:D0:63:10:48:98:79:30:61:BD:B2:DB:8D:07:88:74:5D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63003FFDD063104898793061BDB2DB8D0788745D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a017b828-17fa-48a2-a113-149f9467a328/0/3138302e3135302e3233322e302f32312d3234203d3e203234323130.roa Signing time: Sat 10 Aug 2024 07:02:11 +0000 ROA not before: Sat 10 Aug 2024 06:57:11 +0000 ROA not after: Sat 09 Aug 2025 07:02:11 +0000 asID: 24210 IP address blocks: 180.150.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a017b828-17fa-48a2-a113-149f9467a328/0/63003FFDD063104898793061BDB2DB8D0788745D.crl rsync://repo-rpki.idnic.net/repo/a017b828-17fa-48a2-a113-149f9467a328/0/63003FFDD063104898793061BDB2DB8D0788745D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63003FFDD063104898793061BDB2DB8D0788745D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:2a:4f:d9:a7:4e:e3:01:31:71:a7:64:1b:f2:2d:df:4b:2c:72:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63003FFDD063104898793061BDB2DB8D0788745D Validity Not Before: Aug 10 06:57:11 2024 GMT Not After : Aug 9 07:02:11 2025 GMT Subject: CN=4F77254FE2FD24ED7F6357AC0AE4E87B5CDE5DB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:45:c1:1d:a7:ea:65:d1:2d:bc:20:97:28:b5: 8b:09:d4:5e:de:43:79:f9:0f:b4:13:04:31:f0:cb: 0c:7d:aa:f8:90:bf:20:a0:c5:35:b7:55:f0:10:e1: e0:b3:57:a9:22:88:73:b5:1e:e0:58:4b:8c:95:c3: a2:c5:e8:bc:17:35:29:3a:12:a3:ac:8a:0a:c5:00: aa:79:e2:f8:b6:80:e5:5e:40:a3:4d:2d:ac:b8:5b: 1a:6b:16:44:86:80:cd:c9:87:5d:fa:d3:01:45:8f: 2e:7e:45:e8:de:6e:ef:d8:19:45:94:38:cc:4b:48: 09:2c:c0:75:9c:59:b0:94:24:2b:0f:4f:7c:f8:cf: 8c:4a:33:93:06:e8:55:c3:06:33:7c:8f:b3:ae:33: 4d:a8:93:76:21:c8:05:4b:18:89:60:ef:69:dc:02: 29:f5:d3:bf:ce:0a:c9:f5:0a:f8:41:84:64:ee:2a: 6f:24:f7:c5:ce:c0:89:9f:98:c8:b9:e1:ee:5c:64: cc:2e:ce:03:d1:69:45:f8:4b:ae:6c:49:7a:80:20: b4:10:9b:32:6a:86:65:26:df:e7:81:e4:87:ad:fb: dd:af:80:f4:34:60:d2:f0:de:e9:fe:08:95:d9:9b: 1a:6c:a1:7d:85:27:7d:e6:ea:c4:9d:3b:83:23:f5: 35:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:77:25:4F:E2:FD:24:ED:7F:63:57:AC:0A:E4:E8:7B:5C:DE:5D:B1 X509v3 Authority Key Identifier: keyid:63:00:3F:FD:D0:63:10:48:98:79:30:61:BD:B2:DB:8D:07:88:74:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a017b828-17fa-48a2-a113-149f9467a328/0/63003FFDD063104898793061BDB2DB8D0788745D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63003FFDD063104898793061BDB2DB8D0788745D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a017b828-17fa-48a2-a113-149f9467a328/0/3138302e3135302e3233322e302f32312d3234203d3e203234323130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.150.232.0/21 Signature Algorithm: sha256WithRSAEncryption 00:02:d9:7e:d3:9f:20:e7:d4:57:df:d8:88:a9:ed:68:16:44: ef:c5:83:f4:0b:42:03:9a:7e:8a:dc:e8:45:b8:41:53:8d:11: ae:ff:7a:9e:25:56:29:36:08:75:63:25:04:07:60:28:ae:1b: cd:88:8e:d1:3c:b5:e1:21:e2:2e:a6:b9:35:e1:1a:65:9d:b3: 96:ce:82:82:24:6f:a7:20:0f:e5:4f:3d:58:83:e0:f7:21:1a: 7b:8f:d1:5b:96:0f:fd:06:4a:b0:8d:ec:7f:36:e9:be:d3:fb: ae:cc:03:fe:17:6f:97:29:ab:bc:f6:56:5a:4c:10:83:3f:bc: c3:6a:47:d4:73:b1:be:e6:ee:7f:6d:11:12:02:e4:25:9c:6d: f1:a8:89:77:d5:bd:16:48:34:bf:ee:9d:4c:bb:9e:e8:e3:49: eb:db:f1:00:93:56:d9:d2:d1:e1:69:92:e2:71:52:f1:5d:33: 94:1a:ac:bf:6e:87:4e:c9:08:43:62:21:88:c4:03:8b:86:cf: 84:a8:32:6d:f0:75:1c:1f:69:7e:0a:46:60:d6:96:a6:bc:d8: be:2f:87:41:a0:54:e0:27:b1:54:8c:2a:69:f7:c0:5b:f1:6d: 82:d0:c0:94:52:f7:9b:77:15:09:f0:61:f0:2a:d4:2d:68:9c: f9:0c:78:44 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHSpP2adO4wExcadkG/It30ssclQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjMwMDNGRkREMDYzMTA0ODk4NzkzMDYxQkRCMkRCOEQw Nzg4NzQ1RDAeFw0yNDA4MTAwNjU3MTFaFw0yNTA4MDkwNzAyMTFaMDMxMTAvBgNV BAMTKDRGNzcyNTRGRTJGRDI0RUQ3RjYzNTdBQzBBRTRFODdCNUNERTVEQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMRcEdp+pl0S28IJcotYsJ1F7e Q3n5D7QTBDHwywx9qviQvyCgxTW3VfAQ4eCzV6kiiHO1HuBYS4yVw6LF6LwXNSk6 EqOsigrFAKp54vi2gOVeQKNNLay4WxprFkSGgM3Jh1360wFFjy5+Rejebu/YGUWU OMxLSAkswHWcWbCUJCsPT3z4z4xKM5MG6FXDBjN8j7OuM02ok3YhyAVLGIlg72nc Ain107/OCsn1CvhBhGTuKm8k98XOwImfmMi54e5cZMwuzgPRaUX4S65sSXqAILQQ mzJqhmUm3+eB5Iet+92vgPQ0YNLw3un+CJXZmxpsoX2FJ33m6sSdO4Mj9TW3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUT3clT+L9JO1/Y1esCuToe1zeXbEwHwYDVR0j BBgwFoAUYwA//dBjEEiYeTBhvbLbjQeIdF0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDE3YjgyOC0xN2ZhLTQ4YTItYTExMy0xNDlmOTQ2N2EzMjgvMC82MzAwM0ZGREQw NjMxMDQ4OTg3OTMwNjFCREIyREI4RDA3ODg3NDVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjMwMDNGRkREMDYzMTA0ODk4NzkzMDYxQkRCMkRCOEQwNzg4 NzQ1RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwMTdiODI4LTE3ZmEtNDhhMi1h MTEzLTE0OWY5NDY3YTMyOC8wLzMxMzgzMDJlMzEzNTMwMmUzMjMzMzIyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMjM0MzIzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDtJboMA0GCSqG SIb3DQEBCwUAA4IBAQAAAtl+058g59RX39iIqe1oFkTvxYP0C0IDmn6K3OhFuEFT jRGu/3qeJVYpNgh1YyUEB2AorhvNiI7RPLXhIeIuprk14RplnbOWzoKCJG+nIA/l Tz1Yg+D3IRp7j9Fblg/9Bkqwjex/Num+0/uuzAP+F2+XKau89lZaTBCDP7zDakfU c7G+5u5/bRESAuQlnG3xqIl31b0WSDS/7p1Mu57o40nr2/EAk1bZ0tHhaZLicVLx XTOUGqy/bodOyQhDYiGIxAOLhs+EqDJt8HUcH2l+CkZg1pamvNi+L4dBoFTgJ7FU jCpp98Bb8W2C0MCUUvebdxUJ8GHwKtQtaJz5DHhE -----END CERTIFICATE-----Generated at Mon Nov 25 23:52:55 2024 by rpki-client on console-ams.rpki-client.org