$ rpki-client -vvf repo-rpki.idnic.net/repo/af62809c-bfb6-4fe7-8dd6-ca6022cdd540/0/32372e3132312e38312e302f32342d3234203d3e203535363532.roa File: 32372e3132312e38312e302f32342d3234203d3e203535363532.roa (raw, json) Hash identifier: OPw2qIoiwwy7ASYHOGCX10NAN40v1tPJ0GZbmeP5o0Y= Subject key identifier: 84:90:9A:72:86:21:A3:05:16:A3:48:0C:5B:E1:5F:0F:38:4D:34:1F Certificate issuer: /CN=930A4ED2B85AA9FE77ED90FA85044A9C80B38A46 Certificate serial: 6E027CAE0241202EC294E16157EB182ED81FA243 Authority key identifier: 93:0A:4E:D2:B8:5A:A9:FE:77:ED:90:FA:85:04:4A:9C:80:B3:8A:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/930A4ED2B85AA9FE77ED90FA85044A9C80B38A46.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af62809c-bfb6-4fe7-8dd6-ca6022cdd540/0/32372e3132312e38312e302f32342d3234203d3e203535363532.roa Signing time: Sat 31 Aug 2024 04:00:00 +0000 ROA not before: Sat 31 Aug 2024 03:55:00 +0000 ROA not after: Sat 30 Aug 2025 04:00:00 +0000 asID: 55652 IP address blocks: 27.121.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af62809c-bfb6-4fe7-8dd6-ca6022cdd540/0/930A4ED2B85AA9FE77ED90FA85044A9C80B38A46.crl rsync://repo-rpki.idnic.net/repo/af62809c-bfb6-4fe7-8dd6-ca6022cdd540/0/930A4ED2B85AA9FE77ED90FA85044A9C80B38A46.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/930A4ED2B85AA9FE77ED90FA85044A9C80B38A46.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 15:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:02:7c:ae:02:41:20:2e:c2:94:e1:61:57:eb:18:2e:d8:1f:a2:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=930A4ED2B85AA9FE77ED90FA85044A9C80B38A46 Validity Not Before: Aug 31 03:55:00 2024 GMT Not After : Aug 30 04:00:00 2025 GMT Subject: CN=84909A728621A30516A3480C5BE15F0F384D341F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0d:bc:d8:9c:ae:d3:af:c9:b6:48:60:62:80: e7:64:a5:e1:d2:b5:8f:6b:08:a0:56:83:4e:88:67: 18:35:83:09:dd:c1:0f:a5:9d:a6:07:80:7f:19:e8: 8c:8e:5f:9c:38:0d:24:d3:e5:82:3b:40:78:f5:8f: 37:5b:da:66:aa:53:a8:d6:b5:ad:bc:89:f0:90:06: 91:e9:47:c0:70:3d:0e:4b:39:04:50:48:61:ce:82: cf:de:96:43:9d:34:42:ef:b9:ae:47:66:e5:7c:09: 5c:9a:b7:b7:33:a2:5a:1a:2e:aa:4b:93:b5:2f:8b: f9:54:a7:d2:0f:6f:01:61:8d:a3:1f:88:b3:eb:2f: be:32:fa:19:6f:b0:87:c3:59:7c:cf:d4:b9:23:65: db:67:bf:cd:56:a5:2e:de:e2:f9:f3:c9:95:22:86: ad:5d:a7:05:30:e9:4a:ac:32:23:8a:1f:66:b7:3c: c3:4e:e1:c0:82:b6:e9:4a:3f:7f:fe:c3:19:af:51: 12:21:8b:76:1d:93:5a:fe:8b:a6:00:91:52:c0:94: 52:6c:64:d6:d9:e1:5e:d5:bb:5b:02:c8:f6:6d:df: 42:b3:f4:7f:31:6e:93:ba:de:76:04:aa:fe:64:c9: fa:5c:9b:0e:27:c6:c4:68:31:ca:f7:34:3a:8b:c5: e6:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:90:9A:72:86:21:A3:05:16:A3:48:0C:5B:E1:5F:0F:38:4D:34:1F X509v3 Authority Key Identifier: keyid:93:0A:4E:D2:B8:5A:A9:FE:77:ED:90:FA:85:04:4A:9C:80:B3:8A:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af62809c-bfb6-4fe7-8dd6-ca6022cdd540/0/930A4ED2B85AA9FE77ED90FA85044A9C80B38A46.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/930A4ED2B85AA9FE77ED90FA85044A9C80B38A46.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af62809c-bfb6-4fe7-8dd6-ca6022cdd540/0/32372e3132312e38312e302f32342d3234203d3e203535363532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.121.81.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:1d:0f:4f:14:9c:6f:88:6c:31:e0:cf:7d:05:38:d2:2d:d0: 80:2e:6c:2b:a8:05:de:bc:d0:87:c1:59:4c:1e:da:34:d1:f2: ce:b5:53:50:4a:b0:aa:16:0c:d7:6d:67:fc:9c:08:ea:17:a7: 97:fd:5e:8a:46:eb:ec:97:48:d7:22:80:31:82:9b:1d:af:a7: 05:df:bd:92:31:21:9d:a1:8a:6f:b9:fe:1d:e4:a4:58:ab:e9: e6:79:04:1b:30:10:07:8c:87:ce:97:e2:12:5e:5e:d5:15:66: b2:a7:aa:a9:ac:e8:1b:07:7b:66:71:8d:f5:6f:ad:3e:7b:9e: 07:03:40:27:c0:ad:84:2d:a6:d5:49:b0:a9:5b:a9:5d:b5:c9: d0:cd:a9:10:78:0e:63:52:61:b7:7a:ff:d4:b0:f7:1f:cf:57: 34:59:86:bb:f0:af:e2:b4:5f:92:4d:28:e1:08:3e:b8:ad:0d: e8:66:59:18:4e:a4:b6:59:95:f8:f6:b2:59:61:be:4f:bb:13: 37:57:e6:a5:d5:0a:e6:54:99:6c:07:fe:27:33:6d:3c:58:7b: 1e:3b:9d:b5:a4:e2:ce:4f:d1:f1:e0:f2:f0:80:f0:a3:26:2f: ef:3b:dd:aa:a0:73:48:57:c4:4d:d7:ab:c7:45:f2:fb:56:2d: 90:b5:ab:6d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUbgJ8rgJBIC7ClOFhV+sYLtgfokMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTMwQTRFRDJCODVBQTlGRTc3RUQ5MEZBODUwNDRBOUM4 MEIzOEE0NjAeFw0yNDA4MzEwMzU1MDBaFw0yNTA4MzAwNDAwMDBaMDMxMTAvBgNV BAMTKDg0OTA5QTcyODYyMUEzMDUxNkEzNDgwQzVCRTE1RjBGMzg0RDM0MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/DbzYnK7Tr8m2SGBigOdkpeHS tY9rCKBWg06IZxg1gwndwQ+lnaYHgH8Z6IyOX5w4DSTT5YI7QHj1jzdb2maqU6jW ta28ifCQBpHpR8BwPQ5LOQRQSGHOgs/elkOdNELvua5HZuV8CVyat7czoloaLqpL k7Uvi/lUp9IPbwFhjaMfiLPrL74y+hlvsIfDWXzP1LkjZdtnv81WpS7e4vnzyZUi hq1dpwUw6UqsMiOKH2a3PMNO4cCCtulKP3/+wxmvURIhi3Ydk1r+i6YAkVLAlFJs ZNbZ4V7Vu1sCyPZt30Kz9H8xbpO63nYEqv5kyfpcmw4nxsRoMcr3NDqLxeYLAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUhJCacoYhowUWo0gMW+FfDzhNNB8wHwYDVR0j BBgwFoAUkwpO0rhaqf537ZD6hQRKnICzikYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjYyODA5Yy1iZmI2LTRmZTctOGRkNi1jYTYwMjJjZGQ1NDAvMC85MzBBNEVEMkI4 NUFBOUZFNzdFRDkwRkE4NTA0NEE5QzgwQjM4QTQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTMwQTRFRDJCODVBQTlGRTc3RUQ5MEZBODUwNDRBOUM4MEIz OEE0Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmNjI4MDljLWJmYjYtNGZlNy04 ZGQ2LWNhNjAyMmNkZDU0MC8wLzMyMzcyZTMxMzIzMTJlMzgzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNjM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbeVEwDQYJKoZIhvcN AQELBQADggEBACwdD08UnG+IbDHgz30FONIt0IAubCuoBd680IfBWUwe2jTR8s61 U1BKsKoWDNdtZ/ycCOoXp5f9XopG6+yXSNcigDGCmx2vpwXfvZIxIZ2him+5/h3k pFir6eZ5BBswEAeMh86X4hJeXtUVZrKnqqms6BsHe2ZxjfVvrT57ngcDQCfArYQt ptVJsKlbqV21ydDNqRB4DmNSYbd6/9Sw9x/PVzRZhrvwr+K0X5JNKOEIPritDehm WRhOpLZZlfj2sllhvk+7EzdX5qXVCuZUmWwH/iczbTxYex47nbWk4s5P0fHg8vCA 8KMmL+873aqgc0hXxE3Xq8dF8vtWLZC1q20= -----END CERTIFICATE-----Generated at Tue Mar 11 05:05:22 2025 by rpki-client