$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e342e302f32332d3233203d3e203338373533.roa File: 32372e3133312e342e302f32332d3233203d3e203338373533.roa (raw, json) Hash identifier: TKBtDQsG5nfFN8KSrW+UWV+H89JrycCP+r/ughzsutQ= Subject key identifier: 59:41:CB:50:47:A7:F1:95:E7:1C:55:8F:6D:2C:39:50:0E:1C:B2:DC Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 78A02FA1070A863452C4BE209129BE1AAEAEB7F9 Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e342e302f32332d3233203d3e203338373533.roa Signing time: Tue 02 Jul 2024 08:03:18 +0000 ROA not before: Tue 02 Jul 2024 07:58:18 +0000 ROA not after: Tue 01 Jul 2025 08:03:18 +0000 asID: 38753 IP address blocks: 27.131.4.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:a0:2f:a1:07:0a:86:34:52:c4:be:20:91:29:be:1a:ae:ae:b7:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Jul 2 07:58:18 2024 GMT Not After : Jul 1 08:03:18 2025 GMT Subject: CN=5941CB5047A7F195E71C558F6D2C39500E1CB2DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:91:51:d3:e1:9b:44:47:4b:15:34:86:c9:18: 6a:0a:3e:5a:05:94:13:d2:b9:81:2b:40:55:60:6b: 42:60:8e:46:7b:eb:4d:23:d7:40:02:41:ee:b1:3b: 7b:1c:38:41:fc:ec:30:b3:67:52:32:19:dd:93:dd: 19:95:b6:99:38:4a:c1:e4:13:6f:bf:b5:b3:80:d6: 0c:f1:51:d8:e3:10:bb:b9:e8:0a:da:e0:14:43:47: 58:d3:08:31:ef:84:8e:1a:42:db:b9:a5:42:f0:f8: cb:3c:cf:3b:00:93:4e:58:c9:16:92:b9:bc:be:2f: 4b:68:c6:29:c5:8d:23:e0:06:f8:dd:e0:97:e5:78: 27:bd:9b:bc:13:a3:b3:69:72:04:39:41:87:2d:fa: c0:5d:5c:cb:25:c1:6a:b4:90:e8:aa:4e:54:ae:a7: 60:29:9b:0c:e7:00:f0:88:30:1b:06:5f:dc:f7:00: 5f:b5:44:7a:05:56:d1:4f:81:95:2f:eb:79:93:88: 45:1c:15:23:6b:81:e7:bb:9b:9d:98:f0:bc:53:e2: 54:4f:7c:46:2c:a6:4a:53:e9:a3:63:f6:90:19:2d: 4a:c8:fb:08:fa:f6:25:97:6b:77:13:90:ca:34:44: d4:98:37:9b:22:60:25:95:c1:c3:0f:a2:12:d0:28: b6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:41:CB:50:47:A7:F1:95:E7:1C:55:8F:6D:2C:39:50:0E:1C:B2:DC X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e342e302f32332d3233203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.4.0/23 Signature Algorithm: sha256WithRSAEncryption 68:40:4b:2c:9e:8c:f6:09:e2:25:44:7e:9a:1e:37:d3:f0:9d: a3:f7:17:67:56:2f:52:2d:07:6e:df:20:94:e5:0f:ca:63:61: 3e:df:0e:fb:3e:c3:cd:18:0d:3a:29:b7:cf:76:89:29:5d:d7: 4f:08:2e:c7:df:14:2a:1c:20:a5:16:b7:a6:f9:33:8f:6b:71: 66:e2:db:11:56:10:9a:2d:5a:9f:43:bc:0b:ae:d4:f9:3d:6f: 78:f4:bb:7c:6e:46:3a:5d:2c:5c:c7:1d:da:e4:35:89:f4:d0: 25:4a:89:c9:68:5d:a3:c6:71:40:7d:fa:4a:ec:39:cd:1e:73: e1:cb:dd:47:21:a2:c0:df:1d:08:0c:19:30:f6:f9:5d:99:75: a3:cd:2a:83:7b:fe:90:1c:13:46:a5:f3:81:39:af:9d:b0:0f: f8:23:d7:6b:8c:b6:b4:3a:a7:c3:c7:ad:79:f0:20:73:4d:40: 73:b4:37:4f:ac:04:ac:31:8e:d8:8b:ad:c1:12:b9:db:16:2a: 35:69:ed:3f:2a:8c:9e:1a:d9:a2:e7:58:ac:f6:cc:2f:47:2e: d6:f1:3d:24:f7:96:c1:c5:13:5d:d9:ba:81:6c:9c:6a:9f:f8: 87:86:47:6e:af:87:c1:ee:a2:32:15:2d:e9:89:af:ee:97:b2: ad:72:de:c7 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUeKAvoQcKhjRSxL4gkSm+Gq6ut/kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNDA3MDIwNzU4MThaFw0yNTA3MDEwODAzMThaMDMxMTAvBgNV BAMTKDU5NDFDQjUwNDdBN0YxOTVFNzFDNTU4RjZEMkMzOTUwMEUxQ0IyREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNkVHT4ZtER0sVNIbJGGoKPloF lBPSuYErQFVga0JgjkZ7600j10ACQe6xO3scOEH87DCzZ1IyGd2T3RmVtpk4SsHk E2+/tbOA1gzxUdjjELu56Ara4BRDR1jTCDHvhI4aQtu5pULw+Ms8zzsAk05YyRaS uby+L0toxinFjSPgBvjd4JfleCe9m7wTo7NpcgQ5QYct+sBdXMslwWq0kOiqTlSu p2ApmwznAPCIMBsGX9z3AF+1RHoFVtFPgZUv63mTiEUcFSNrgee7m52Y8LxT4lRP fEYspkpT6aNj9pAZLUrI+wj69iWXa3cTkMo0RNSYN5siYCWVwcMPohLQKLY7AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUWUHLUEen8ZXnHFWPbSw5UA4cstwwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzIzNzJlMzEzMzMxMmUzNDJlMzAyZjMyMzMyZDMy MzMyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEbgwQwDQYJKoZIhvcNAQEL BQADggEBAGhASyyejPYJ4iVEfpoeN9PwnaP3F2dWL1ItB27fIJTlD8pjYT7fDvs+ w80YDTopt892iSld108ILsffFCocIKUWt6b5M49rcWbi2xFWEJotWp9DvAuu1Pk9 b3j0u3xuRjpdLFzHHdrkNYn00CVKicloXaPGcUB9+krsOc0ec+HL3UchosDfHQgM GTD2+V2ZdaPNKoN7/pAcE0al84E5r52wD/gj12uMtrQ6p8PHrXnwIHNNQHO0N0+s BKwxjtiLrcESudsWKjVp7T8qjJ4a2aLnWKz2zC9HLtbxPST3lsHFE13ZuoFsnGqf +IeGR26vh8HuojIVLemJr+6Xsq1y3sc= -----END CERTIFICATE-----Generated at Thu Nov 21 22:33:06 2024 by rpki-client on console-fra.rpki-client.org