$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e312e302f32342d3234203d3e203338373533.roa File: 32372e3133312e312e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: 7HZ+B053fMWsz4Du9HgJSlhSfnoSt8dJMB62HC82XlY= Subject key identifier: 33:19:46:87:67:98:DF:C1:70:BA:61:65:2C:8E:AD:4A:01:67:03:69 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 307AAD0204AA6FAFB556F59AFE440BEC508F3F19 Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e312e302f32342d3234203d3e203338373533.roa Signing time: Tue 03 Sep 2024 03:00:01 +0000 ROA not before: Tue 03 Sep 2024 02:55:01 +0000 ROA not after: Tue 02 Sep 2025 03:00:01 +0000 asID: 38753 IP address blocks: 27.131.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:7a:ad:02:04:aa:6f:af:b5:56:f5:9a:fe:44:0b:ec:50:8f:3f:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Sep 3 02:55:01 2024 GMT Not After : Sep 2 03:00:01 2025 GMT Subject: CN=331946876798DFC170BA61652C8EAD4A01670369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ae:e3:69:6f:b2:1f:06:17:f5:5a:10:82:83: 65:79:e9:97:94:ef:28:a9:de:4e:2c:37:37:56:30: ab:49:09:d7:a9:30:ea:d3:8f:4c:72:c2:58:26:4e: 4f:d9:52:54:3a:57:2d:00:bf:8d:6e:f4:16:6e:e3: 19:83:ab:e7:9e:65:d7:77:b1:c1:3b:22:28:d2:88: 38:fa:8d:5b:33:dd:25:41:0a:76:34:33:d7:41:5f: ea:0a:61:7b:ed:20:05:ea:43:b6:76:90:d5:fe:17: ca:a9:4a:26:85:52:e5:cc:c0:4a:84:cf:58:9d:6e: 1e:62:45:30:1c:b1:8e:65:9b:1d:ca:b7:e2:45:a9: 94:95:2c:ce:4f:a6:b6:22:a4:98:f4:18:2f:a9:9c: ac:f8:ce:1d:fd:b3:8d:b3:53:3f:a9:54:1f:28:da: b3:80:db:ac:f4:1a:51:38:4b:ff:31:95:4a:82:00: 93:fe:68:cf:a3:94:71:db:aa:73:6f:73:77:31:e4: bd:d0:06:5d:26:2e:37:56:43:33:58:b4:34:46:cb: c6:0c:36:b7:22:d6:94:79:3f:6e:53:d8:2e:03:a3: 86:72:29:8e:ad:f4:5f:9a:e9:c5:58:61:01:c7:57: 35:83:4e:e8:fc:5a:e8:49:a8:85:6f:dd:fc:d3:3f: ea:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:19:46:87:67:98:DF:C1:70:BA:61:65:2C:8E:AD:4A:01:67:03:69 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e312e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.1.0/24 Signature Algorithm: sha256WithRSAEncryption 28:ea:7d:41:1b:7c:24:10:25:11:d8:93:bd:6a:f1:f7:65:7c: a6:09:60:19:43:e8:d6:32:35:c3:2a:3d:e6:10:91:81:4d:10: 36:ae:19:a5:10:77:2a:95:18:09:fc:17:dc:b3:f9:a3:ae:d6: c9:a6:05:70:08:d0:56:e1:88:f7:57:47:30:2d:e1:7b:4b:05: c0:2b:24:2f:2b:4e:de:ee:1d:e9:83:1b:ae:ae:44:55:8e:5b: 8c:40:3e:f7:37:66:d2:d0:5f:ac:90:0b:24:2b:10:77:bc:e3: 2b:e5:57:69:0a:e5:25:b3:ab:91:82:10:01:b7:05:81:75:5b: 12:8e:38:66:b3:06:3e:97:ff:b6:1e:d5:49:2f:5f:35:a5:22: 16:b3:23:83:4e:f5:b9:a1:ff:db:49:c2:ff:66:57:4d:3a:d5: a8:a0:2b:c9:10:9c:40:db:b2:79:8a:f5:00:de:a8:33:bb:26: d0:79:17:58:a4:79:49:c9:2b:7c:70:65:0e:4b:da:85:08:22: 97:99:45:3b:c9:2a:19:08:e0:b4:e0:5b:28:eb:de:50:9c:9e: d8:5b:86:ea:8e:fa:aa:eb:61:86:1a:fe:92:eb:9a:5f:79:f8: 35:2d:fd:5c:2f:f3:a6:34:aa:f3:18:23:67:ff:15:94:bd:86: 4c:33:b8:5f -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUMHqtAgSqb6+1VvWa/kQL7FCPPxkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNDA5MDMwMjU1MDFaFw0yNTA5MDIwMzAwMDFaMDMxMTAvBgNV BAMTKDMzMTk0Njg3Njc5OERGQzE3MEJBNjE2NTJDOEVBRDRBMDE2NzAzNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4ruNpb7IfBhf1WhCCg2V56ZeU 7yip3k4sNzdWMKtJCdepMOrTj0xywlgmTk/ZUlQ6Vy0Av41u9BZu4xmDq+eeZdd3 scE7IijSiDj6jVsz3SVBCnY0M9dBX+oKYXvtIAXqQ7Z2kNX+F8qpSiaFUuXMwEqE z1idbh5iRTAcsY5lmx3Kt+JFqZSVLM5PprYipJj0GC+pnKz4zh39s42zUz+pVB8o 2rOA26z0GlE4S/8xlUqCAJP+aM+jlHHbqnNvc3cx5L3QBl0mLjdWQzNYtDRGy8YM Nrci1pR5P25T2C4Do4ZyKY6t9F+a6cVYYQHHVzWDTuj8WuhJqIVv3fzTP+pZAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUMxlGh2eY38FwumFlLI6tSgFnA2kwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzIzNzJlMzEzMzMxMmUzMTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbgwEwDQYJKoZIhvcNAQEL BQADggEBACjqfUEbfCQQJRHYk71q8fdlfKYJYBlD6NYyNcMqPeYQkYFNEDauGaUQ dyqVGAn8F9yz+aOu1smmBXAI0FbhiPdXRzAt4XtLBcArJC8rTt7uHemDG66uRFWO W4xAPvc3ZtLQX6yQCyQrEHe84yvlV2kK5SWzq5GCEAG3BYF1WxKOOGazBj6X/7Ye 1UkvXzWlIhazI4NO9bmh/9tJwv9mV0061aigK8kQnEDbsnmK9QDeqDO7JtB5F1ik eUnJK3xwZQ5L2oUIIpeZRTvJKhkI4LTgWyjr3lCcnthbhuqO+qrrYYYa/pLrml95 +DUt/Vwv86Y0qvMYI2f/FZS9hkwzuF8= -----END CERTIFICATE-----Generated at Thu Nov 21 22:33:06 2024 by rpki-client on console-fra.rpki-client.org