$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e302e302f32342d3234203d3e203338373533.roa File: 32372e3133312e302e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: qfDm23UIKuc8HghwmHkY6Gz3GOgPO09Db7qezb363sk= Subject key identifier: 19:1C:F6:44:40:E8:5E:4D:E3:19:FD:B0:C7:F9:28:9E:C3:BA:91:08 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 534C3154E1898240C2557110BB49A80AC1A55499 Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e302e302f32342d3234203d3e203338373533.roa Signing time: Tue 18 Jun 2024 03:00:01 +0000 ROA not before: Tue 18 Jun 2024 02:55:01 +0000 ROA not after: Tue 17 Jun 2025 03:00:01 +0000 asID: 38753 IP address blocks: 27.131.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:4c:31:54:e1:89:82:40:c2:55:71:10:bb:49:a8:0a:c1:a5:54:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Jun 18 02:55:01 2024 GMT Not After : Jun 17 03:00:01 2025 GMT Subject: CN=191CF64440E85E4DE319FDB0C7F9289EC3BA9108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:c0:6d:b2:09:0a:14:98:83:01:d5:68:6b:07: 7b:d0:bf:4d:90:13:68:64:63:0d:9c:3f:bd:5a:cb: a2:0c:5c:ef:ae:39:5b:3c:ba:64:1c:32:cc:8e:b6: 3c:50:eb:68:79:ab:6b:07:2f:1f:94:b0:78:28:a9: 31:b0:4a:44:be:a8:70:29:87:d4:56:54:9c:44:be: fe:f6:47:df:e6:f5:0f:de:aa:47:7f:c3:54:17:9d: 78:d0:ba:63:24:d4:26:1d:8d:51:b3:a3:d8:90:5e: 9b:32:c2:69:57:6c:6b:10:8a:03:27:e5:ca:4e:4b: 20:52:ce:b1:d6:20:f7:d9:f3:83:02:2f:35:47:ed: 02:0f:00:e2:ed:5d:c7:c9:6a:be:18:cb:84:1c:2a: 63:3b:76:ac:2d:b1:40:37:54:10:e4:0e:8c:14:f7: 3a:a0:82:fc:6b:c3:3f:81:76:ef:df:19:5d:99:d6: 81:49:03:b0:78:e8:7e:f5:69:5e:0b:52:34:6b:82: 3b:85:fb:1d:12:80:51:49:37:a6:c8:b3:f9:15:c0: 8c:82:15:9b:13:2f:cf:3f:58:66:f5:30:a5:89:e3: a9:11:e9:00:c6:18:4b:8e:5a:b3:74:ba:19:fe:61: ac:94:89:85:39:0b:0c:54:e8:a6:71:e5:d3:09:65: 40:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:1C:F6:44:40:E8:5E:4D:E3:19:FD:B0:C7:F9:28:9E:C3:BA:91:08 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e302e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.0.0/24 Signature Algorithm: sha256WithRSAEncryption 21:33:8b:0f:7b:15:fa:07:1b:a9:00:7b:d1:2f:5b:08:cd:b2: 19:b6:a7:68:37:a2:3f:e5:a6:4c:1f:ed:c5:49:72:86:97:8b: da:09:c5:cb:74:58:16:6b:b1:18:ea:08:02:4d:f8:fd:4f:e1: 27:96:f6:d6:bc:e1:cf:5c:57:de:a2:6f:71:ee:b8:e3:a2:e7: 78:1d:3d:66:88:37:9d:b8:94:e4:09:8d:92:b5:42:2f:18:13: d3:c2:c5:81:63:d8:d7:6d:f2:12:51:66:0d:7c:b6:9f:df:00: 97:ac:65:ac:c2:fd:0f:10:5f:22:f3:97:c0:e0:0c:3f:62:9e: 34:b0:ef:b2:d4:03:93:d9:0a:44:fd:db:c0:64:74:f0:26:fa: 2a:42:7f:59:7d:81:71:69:9b:6e:fa:54:b7:fb:f8:cb:e5:ac: 75:83:d3:d2:92:f2:fa:94:47:ca:c3:da:53:8e:1f:f2:ec:e3: 9f:b5:3d:25:aa:d8:ae:cf:6e:b6:e4:62:1d:e9:4f:15:b9:1e: 73:be:f8:9a:36:69:ff:ea:e7:97:7d:ec:36:d3:07:e8:09:2a: 0f:28:af:3d:da:ac:4f:ae:da:ce:91:29:fe:6d:e7:98:49:1a: d0:f1:94:54:1f:a1:cd:2e:1c:e1:1b:58:f6:3d:a9:cb:e2:58: 17:75:37:a3 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUU0wxVOGJgkDCVXEQu0moCsGlVJkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNDA2MTgwMjU1MDFaFw0yNTA2MTcwMzAwMDFaMDMxMTAvBgNV BAMTKDE5MUNGNjQ0NDBFODVFNERFMzE5RkRCMEM3RjkyODlFQzNCQTkxMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDowG2yCQoUmIMB1WhrB3vQv02Q E2hkYw2cP71ay6IMXO+uOVs8umQcMsyOtjxQ62h5q2sHLx+UsHgoqTGwSkS+qHAp h9RWVJxEvv72R9/m9Q/eqkd/w1QXnXjQumMk1CYdjVGzo9iQXpsywmlXbGsQigMn 5cpOSyBSzrHWIPfZ84MCLzVH7QIPAOLtXcfJar4Yy4QcKmM7dqwtsUA3VBDkDowU 9zqggvxrwz+Bdu/fGV2Z1oFJA7B46H71aV4LUjRrgjuF+x0SgFFJN6bIs/kVwIyC FZsTL88/WGb1MKWJ46kR6QDGGEuOWrN0uhn+YayUiYU5CwxU6KZx5dMJZUDTAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUGRz2REDoXk3jGf2wx/konsO6kQgwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzIzNzJlMzEzMzMxMmUzMDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbgwAwDQYJKoZIhvcNAQEL BQADggEBACEziw97FfoHG6kAe9EvWwjNshm2p2g3oj/lpkwf7cVJcoaXi9oJxct0 WBZrsRjqCAJN+P1P4SeW9ta84c9cV96ib3HuuOOi53gdPWaIN524lOQJjZK1Qi8Y E9PCxYFj2Ndt8hJRZg18tp/fAJesZazC/Q8QXyLzl8DgDD9injSw77LUA5PZCkT9 28BkdPAm+ipCf1l9gXFpm276VLf7+MvlrHWD09KS8vqUR8rD2lOOH/Ls45+1PSWq 2K7PbrbkYh3pTxW5HnO++Jo2af/q55d97DbTB+gJKg8orz3arE+u2s6RKf5t55hJ GtDxlFQfoc0uHOEbWPY9qcviWBd1N6M= -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org