$ rpki-client -vvf repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/3138322e3235352e302e302f32322d3232203d3e203436303439.roa File: 3138322e3235352e302e302f32322d3232203d3e203436303439.roa (raw, json) Hash identifier: 4lUl/bGr3LsLR/vnV3xMIVxucYqdv89T4oDlo5SwVJ0= Subject key identifier: 64:9B:D9:DA:B2:AA:3F:D6:94:AA:E4:F2:22:E8:D7:B0:F4:E5:E3:2B Certificate issuer: /CN=F490341241E1B1C7D170AB872CA39A68309B3F3B Certificate serial: 3B898025E1AA1837F480D9AD1B90AC56CC370BFD Authority key identifier: F4:90:34:12:41:E1:B1:C7:D1:70:AB:87:2C:A3:9A:68:30:9B:3F:3B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F490341241E1B1C7D170AB872CA39A68309B3F3B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/3138322e3235352e302e302f32322d3232203d3e203436303439.roa Signing time: Thu 18 Jul 2024 06:00:00 +0000 ROA not before: Thu 18 Jul 2024 05:55:00 +0000 ROA not after: Thu 17 Jul 2025 06:00:00 +0000 asID: 46049 IP address blocks: 182.255.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/F490341241E1B1C7D170AB872CA39A68309B3F3B.crl rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/F490341241E1B1C7D170AB872CA39A68309B3F3B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F490341241E1B1C7D170AB872CA39A68309B3F3B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:89:80:25:e1:aa:18:37:f4:80:d9:ad:1b:90:ac:56:cc:37:0b:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F490341241E1B1C7D170AB872CA39A68309B3F3B Validity Not Before: Jul 18 05:55:00 2024 GMT Not After : Jul 17 06:00:00 2025 GMT Subject: CN=649BD9DAB2AA3FD694AAE4F222E8D7B0F4E5E32B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b2:7c:57:7f:b5:2e:48:71:6c:43:15:c2:95: 93:bc:cd:c5:99:c9:93:ce:14:c4:e5:af:d1:d1:7b: ba:e0:6b:09:7f:b5:a5:2b:d9:28:87:cb:28:f0:c5: 96:b2:ee:4c:0a:c9:83:47:19:8d:b0:49:be:56:9c: c5:09:e7:66:38:f6:91:20:d6:6e:07:69:60:07:6e: 20:dd:c7:e6:2a:7f:fa:ea:69:7b:6c:b1:e4:d0:4b: f2:68:c4:bf:e2:de:75:8c:dc:12:57:b7:bc:6a:6d: 69:48:c7:44:ee:26:12:fc:6e:5f:65:ad:b5:fb:de: 8f:20:a5:da:f3:0c:18:a0:45:22:7f:58:06:38:04: 9a:07:01:20:61:b8:82:03:d2:d5:ae:a5:ae:fb:e9: 97:f3:9a:08:50:9f:24:d4:1a:54:10:5a:1c:f4:ca: 70:16:1c:cc:76:da:7f:b7:f6:ab:8c:80:3a:3c:0b: 72:ef:64:a9:dc:fc:66:81:2c:fb:15:b8:0a:1e:89: 66:7f:8f:5e:13:e9:30:0f:93:65:1c:e6:22:f1:b9: 70:86:b5:cb:2a:d5:7e:4d:a1:f7:3e:da:0b:90:f8: 26:7e:19:0b:b7:37:85:c6:2d:8e:34:12:65:61:31: d2:08:a9:17:a4:62:e5:a9:c6:06:8b:77:05:04:46: 25:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:9B:D9:DA:B2:AA:3F:D6:94:AA:E4:F2:22:E8:D7:B0:F4:E5:E3:2B X509v3 Authority Key Identifier: keyid:F4:90:34:12:41:E1:B1:C7:D1:70:AB:87:2C:A3:9A:68:30:9B:3F:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/F490341241E1B1C7D170AB872CA39A68309B3F3B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F490341241E1B1C7D170AB872CA39A68309B3F3B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/3138322e3235352e302e302f32322d3232203d3e203436303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.255.0.0/22 Signature Algorithm: sha256WithRSAEncryption 95:73:0c:db:89:a4:0b:a2:ed:be:26:f2:a3:7d:06:84:3d:b3: 82:81:32:d4:10:72:f0:95:5d:dd:b5:5c:c9:e9:1f:13:47:0f: aa:07:5f:b3:ee:de:f7:8b:27:d7:bc:cf:02:17:7b:1c:1c:8a: c2:1a:49:cf:d3:50:c5:c0:47:9e:1a:76:60:16:64:3d:8f:4f: e0:63:40:96:82:58:db:a6:52:63:3b:16:c1:1d:05:a7:93:be: 17:64:39:65:b0:d6:f2:a5:75:10:eb:73:d8:c5:2b:54:09:6b: f4:0c:90:75:04:fc:bb:5f:e4:80:12:8e:fa:b7:8c:da:eb:4c: b5:64:62:aa:c0:e9:39:fd:b7:68:62:62:96:94:b4:97:1d:b8: 21:0e:70:6f:a7:6f:9f:24:bd:61:95:31:9c:61:b4:2b:15:19: 38:5b:7e:02:6c:6b:57:b7:f9:6c:10:8e:b1:0a:b0:5c:05:3b: d5:2e:5a:72:3c:15:40:46:1b:1b:f7:f4:77:cb:15:af:12:d3: 4b:9d:63:99:01:b9:37:0a:b3:e9:0d:10:be:e2:23:dc:e8:54: 9c:34:26:2b:6f:6c:e0:0c:9a:40:13:20:6f:86:cf:56:1f:39: b6:06:f8:60:6e:0d:bd:36:56:7f:88:96:d9:b9:bc:39:91:cc: 48:e1:9e:d9 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUO4mAJeGqGDf0gNmtG5CsVsw3C/0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQ5MDM0MTI0MUUxQjFDN0QxNzBBQjg3MkNBMzlBNjgz MDlCM0YzQjAeFw0yNDA3MTgwNTU1MDBaFw0yNTA3MTcwNjAwMDBaMDMxMTAvBgNV BAMTKDY0OUJEOURBQjJBQTNGRDY5NEFBRTRGMjIyRThEN0IwRjRFNUUzMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9snxXf7UuSHFsQxXClZO8zcWZ yZPOFMTlr9HRe7rgawl/taUr2SiHyyjwxZay7kwKyYNHGY2wSb5WnMUJ52Y49pEg 1m4HaWAHbiDdx+Yqf/rqaXtsseTQS/JoxL/i3nWM3BJXt7xqbWlIx0TuJhL8bl9l rbX73o8gpdrzDBigRSJ/WAY4BJoHASBhuIID0tWupa776ZfzmghQnyTUGlQQWhz0 ynAWHMx22n+39quMgDo8C3LvZKnc/GaBLPsVuAoeiWZ/j14T6TAPk2Uc5iLxuXCG tcsq1X5Nofc+2guQ+CZ+GQu3N4XGLY40EmVhMdIIqRekYuWpxgaLdwUERiWdAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUZJvZ2rKqP9aUquTyIujXsPTl4yswHwYDVR0j BBgwFoAU9JA0EkHhscfRcKuHLKOaaDCbPzswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTg2YjA5Mi01MjdkLTQ4OGYtYTlmNy0yNDc5N2Q5Nzc0Y2IvMC9GNDkwMzQxMjQx RTFCMUM3RDE3MEFCODcyQ0EzOUE2ODMwOUIzRjNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjQ5MDM0MTI0MUUxQjFDN0QxNzBBQjg3MkNBMzlBNjgzMDlC M0YzQi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlODZiMDkyLTUyN2QtNDg4Zi1h OWY3LTI0Nzk3ZDk3NzRjYi8wLzMxMzgzMjJlMzIzNTM1MmUzMDJlMzAyZjMyMzIy ZDMyMzIyMDNkM2UyMDM0MzYzMDM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK2/wAwDQYJKoZIhvcN AQELBQADggEBAJVzDNuJpAui7b4m8qN9BoQ9s4KBMtQQcvCVXd21XMnpHxNHD6oH X7Pu3veLJ9e8zwIXexwcisIaSc/TUMXAR54admAWZD2PT+BjQJaCWNumUmM7FsEd BaeTvhdkOWWw1vKldRDrc9jFK1QJa/QMkHUE/Ltf5IASjvq3jNrrTLVkYqrA6Tn9 t2hiYpaUtJcduCEOcG+nb58kvWGVMZxhtCsVGThbfgJsa1e3+WwQjrEKsFwFO9Uu WnI8FUBGGxv39HfLFa8S00udY5kBuTcKs+kNEL7iI9zoVJw0JitvbOAMmkATIG+G z1YfObYG+GBuDb02Vn+Iltm5vDmRzEjhntk= -----END CERTIFICATE-----Generated at Sun Nov 24 08:01:26 2024 by rpki-client on console-fra.rpki-client.org