$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e322e302f32342d3234203d3e203338373533.roa File: 32372e3133312e322e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: pw2TlTpdPMTP9srkm8pqvWVp8VPJ7wznWnjzphGpd+g= Subject key identifier: 56:39:C4:7E:6F:DC:36:5E:27:33:C5:48:E6:95:7E:C2:59:DD:B0:A5 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 694FB6A19FA92EE5153AE115AE87117C6DC41B89 Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e322e302f32342d3234203d3e203338373533.roa Signing time: Tue 03 Sep 2024 07:01:06 +0000 ROA not before: Tue 03 Sep 2024 06:56:06 +0000 ROA not after: Tue 02 Sep 2025 07:01:06 +0000 asID: 38753 IP address blocks: 27.131.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:4f:b6:a1:9f:a9:2e:e5:15:3a:e1:15:ae:87:11:7c:6d:c4:1b:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Sep 3 06:56:06 2024 GMT Not After : Sep 2 07:01:06 2025 GMT Subject: CN=5639C47E6FDC365E2733C548E6957EC259DDB0A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b5:e7:33:36:f7:07:78:7a:33:8d:ec:bb:4b: b7:bb:29:ff:96:ec:6b:0d:8a:88:d1:b9:a7:53:05: cb:1a:13:a2:8c:8a:05:74:12:bb:d7:51:ea:76:ff: f6:33:bb:27:f8:94:6d:cb:e9:6e:ee:d8:ef:f0:5b: 86:aa:c6:63:b2:c8:f0:7e:d5:6b:82:14:12:cc:d6: bb:ee:fb:e2:37:c0:09:a8:11:2f:26:79:43:95:d3: 81:f0:b5:38:87:b9:0d:44:38:26:4f:87:99:64:02: be:1d:34:1c:4d:24:a8:47:b2:6b:43:c3:72:b8:41: d8:8d:75:ec:46:ae:8c:0e:e5:5f:dd:7b:02:a2:33: 9b:cc:f7:2a:22:c9:7c:66:28:1e:64:6f:bf:87:1a: f5:90:c7:ae:8c:45:13:03:05:95:7c:2a:10:e5:11: aa:50:28:3f:4d:03:eb:6e:84:bf:34:6c:ea:3b:5b: 0d:20:ab:2d:54:19:c7:3c:60:c7:36:8e:c7:73:94: 59:04:a2:16:28:2f:a1:75:92:bb:98:72:5f:50:ce: cf:1b:3b:90:35:75:69:3d:bb:a1:8b:25:e8:af:78: c1:60:e2:8e:4e:d2:15:4d:d9:b6:6a:e0:78:00:64: 95:22:7f:c8:f2:6a:11:12:1a:40:09:f4:f9:ef:90: ee:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:39:C4:7E:6F:DC:36:5E:27:33:C5:48:E6:95:7E:C2:59:DD:B0:A5 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e322e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.2.0/24 Signature Algorithm: sha256WithRSAEncryption 07:ef:fb:ef:78:f4:0c:1c:e2:28:32:01:19:09:9c:f3:09:27: 96:a6:c4:dd:f3:e6:03:d3:b1:6b:2d:0f:9d:d2:62:c6:7b:0c: 74:fc:92:22:cf:88:7f:c7:40:c7:b2:cb:17:eb:36:95:eb:8c: 86:e7:43:58:9f:76:74:29:94:4b:77:13:d1:6b:89:76:0b:75: 72:06:45:a2:f5:65:78:15:08:2a:52:c2:37:5d:d2:f3:e4:2c: 78:70:49:6e:af:ae:ab:53:81:55:de:b9:0a:fa:99:3d:b6:fb: 15:06:12:0d:d2:c0:a6:37:48:54:cf:63:13:74:c3:1e:f7:54: a8:76:6a:13:e6:a9:f4:29:bb:83:77:d6:db:30:c6:e3:aa:ed: 1b:6b:c7:bf:65:74:02:18:17:90:71:32:4f:ca:b7:2e:54:c0: fe:78:a3:cd:ea:9a:13:f8:59:ff:a6:43:d8:fc:23:1d:cd:bf: e5:b8:0d:32:88:12:3c:d5:78:e8:c9:ce:e3:61:82:aa:45:9c: e8:66:27:8f:9d:c9:72:53:77:06:9e:9a:2b:ee:3d:50:d9:f9: 6c:62:0c:59:32:38:20:76:a1:d0:ca:01:f8:70:aa:0b:bf:e7: 1a:03:93:ba:2c:ad:4c:5e:c1:f0:32:76:ab:32:4e:2e:07:d6: 3a:2f:fc:cb -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUaU+2oZ+pLuUVOuEVrocRfG3EG4kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNDA5MDMwNjU2MDZaFw0yNTA5MDIwNzAxMDZaMDMxMTAvBgNV BAMTKDU2MzlDNDdFNkZEQzM2NUUyNzMzQzU0OEU2OTU3RUMyNTlEREIwQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5teczNvcHeHozjey7S7e7Kf+W 7GsNiojRuadTBcsaE6KMigV0ErvXUep2//Yzuyf4lG3L6W7u2O/wW4aqxmOyyPB+ 1WuCFBLM1rvu++I3wAmoES8meUOV04HwtTiHuQ1EOCZPh5lkAr4dNBxNJKhHsmtD w3K4QdiNdexGrowO5V/dewKiM5vM9yoiyXxmKB5kb7+HGvWQx66MRRMDBZV8KhDl EapQKD9NA+tuhL80bOo7Ww0gqy1UGcc8YMc2jsdzlFkEohYoL6F1kruYcl9Qzs8b O5A1dWk9u6GLJeiveMFg4o5O0hVN2bZq4HgAZJUif8jyahESGkAJ9PnvkO6dAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUVjnEfm/cNl4nM8VI5pV+wlndsKUwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzIzNzJlMzEzMzMxMmUzMjJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbgwIwDQYJKoZIhvcNAQEL BQADggEBAAfv++949Awc4igyARkJnPMJJ5amxN3z5gPTsWstD53SYsZ7DHT8kiLP iH/HQMeyyxfrNpXrjIbnQ1ifdnQplEt3E9FriXYLdXIGRaL1ZXgVCCpSwjdd0vPk LHhwSW6vrqtTgVXeuQr6mT22+xUGEg3SwKY3SFTPYxN0wx73VKh2ahPmqfQpu4N3 1tswxuOq7Rtrx79ldAIYF5BxMk/Kty5UwP54o83qmhP4Wf+mQ9j8Ix3Nv+W4DTKI EjzVeOjJzuNhgqpFnOhmJ4+dyXJTdwaemivuPVDZ+WxiDFkyOCB2odDKAfhwqgu/ 5xoDk7osrUxewfAydqsyTi4H1jov/Ms= -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org