$ rpki-client -vvf repo-rpki.idnic.net/repo/af62809c-bfb6-4fe7-8dd6-ca6022cdd540/0/32372e3132312e38362e302f32342d3234203d3e203535363532.roa File: 32372e3132312e38362e302f32342d3234203d3e203535363532.roa (raw, json) Hash identifier: XIUZRQaq6Ar2nV3ZFHLpoCHXyLAUe42akQ2OknBSU7A= Subject key identifier: DC:1B:9A:E0:14:33:61:82:60:38:60:C0:25:39:F3:01:99:86:59:82 Certificate issuer: /CN=930A4ED2B85AA9FE77ED90FA85044A9C80B38A46 Certificate serial: 53D16F48D532E51701F3B195E35A8D79618ED579 Authority key identifier: 93:0A:4E:D2:B8:5A:A9:FE:77:ED:90:FA:85:04:4A:9C:80:B3:8A:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/930A4ED2B85AA9FE77ED90FA85044A9C80B38A46.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af62809c-bfb6-4fe7-8dd6-ca6022cdd540/0/32372e3132312e38362e302f32342d3234203d3e203535363532.roa Signing time: Sat 31 Aug 2024 04:00:00 +0000 ROA not before: Sat 31 Aug 2024 03:55:00 +0000 ROA not after: Sat 30 Aug 2025 04:00:00 +0000 asID: 55652 IP address blocks: 27.121.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af62809c-bfb6-4fe7-8dd6-ca6022cdd540/0/930A4ED2B85AA9FE77ED90FA85044A9C80B38A46.crl rsync://repo-rpki.idnic.net/repo/af62809c-bfb6-4fe7-8dd6-ca6022cdd540/0/930A4ED2B85AA9FE77ED90FA85044A9C80B38A46.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/930A4ED2B85AA9FE77ED90FA85044A9C80B38A46.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:d1:6f:48:d5:32:e5:17:01:f3:b1:95:e3:5a:8d:79:61:8e:d5:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=930A4ED2B85AA9FE77ED90FA85044A9C80B38A46 Validity Not Before: Aug 31 03:55:00 2024 GMT Not After : Aug 30 04:00:00 2025 GMT Subject: CN=DC1B9AE014336182603860C02539F30199865982 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b9:24:cc:ee:7a:49:38:a2:3f:66:21:54:72: f5:2b:0d:9c:07:f1:39:f7:7c:ad:3d:70:dc:cb:ee: 3b:a9:eb:8a:15:07:62:06:34:d0:43:00:ab:82:b8: d6:f3:fb:6f:0c:6d:80:6b:ce:53:13:a2:4c:bd:7e: 9d:8d:47:98:31:c0:9b:35:63:8e:c1:23:16:90:ea: c5:ad:11:6b:ce:5e:de:07:76:88:5c:68:2a:07:af: b5:c4:87:87:36:0d:31:59:94:b5:0a:fa:6f:bc:2f: e9:25:a1:b2:9d:5c:67:62:cc:b6:4e:ad:6e:d3:f3: 52:8f:d5:2a:ce:1b:fa:da:8d:1c:fa:18:73:85:c8: b1:7b:b2:b9:66:63:39:a6:7f:02:06:3c:a3:9a:c9: 5c:82:b8:a9:66:7d:59:b1:36:95:55:54:f3:a5:90: 90:52:73:87:2d:cd:7e:9d:1b:51:ab:13:47:86:a0: cb:94:11:c8:c8:7f:b7:80:e3:8a:20:17:a4:88:c0: 15:ed:ee:80:d2:4a:e4:21:0f:57:7e:12:e3:8c:94: 46:50:6d:0c:86:7a:9a:9f:0b:53:c1:ef:27:7d:f6: b9:d2:c5:e9:be:5b:d1:1d:dc:c5:97:15:12:c4:bb: e6:d2:dc:00:e3:61:3d:54:f5:09:c1:e0:a4:49:fa: cb:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:1B:9A:E0:14:33:61:82:60:38:60:C0:25:39:F3:01:99:86:59:82 X509v3 Authority Key Identifier: keyid:93:0A:4E:D2:B8:5A:A9:FE:77:ED:90:FA:85:04:4A:9C:80:B3:8A:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af62809c-bfb6-4fe7-8dd6-ca6022cdd540/0/930A4ED2B85AA9FE77ED90FA85044A9C80B38A46.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/930A4ED2B85AA9FE77ED90FA85044A9C80B38A46.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af62809c-bfb6-4fe7-8dd6-ca6022cdd540/0/32372e3132312e38362e302f32342d3234203d3e203535363532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.121.86.0/24 Signature Algorithm: sha256WithRSAEncryption 68:4f:46:7a:b6:b3:33:ba:a7:3d:92:bc:44:40:47:55:ee:12: 93:a8:d6:9d:b9:4b:96:c4:b5:82:e1:af:f2:e6:44:63:83:68: c0:2c:27:92:0e:5a:52:65:0f:55:7b:ef:49:8f:48:94:48:2e: ef:14:46:bc:3b:94:f4:72:0e:50:78:f7:be:da:7f:88:3b:52: 9e:65:f4:c2:74:31:db:22:a6:24:40:8f:b2:92:7e:e9:5b:4d: 74:f7:63:6d:91:ce:b5:47:87:52:03:86:fa:51:be:e4:76:5d: 9e:4d:00:75:56:7f:ef:92:ea:a1:ec:ad:46:09:23:56:5e:a0: 8e:15:b1:da:6a:5e:23:c6:97:55:4c:e8:63:81:88:e5:f0:e5: 9d:fe:f3:9c:ac:20:8d:6d:e0:74:25:3d:3c:a0:85:fc:c0:0c: 3b:9c:13:99:bb:22:0b:34:11:c6:57:83:27:9c:99:88:1d:d5: b7:8b:e3:6d:e4:d8:30:18:9e:85:29:27:d1:45:a5:61:ad:db: 36:a3:34:35:0a:25:9e:23:f8:2c:d3:df:b9:36:1e:db:fc:24: ff:a1:19:0f:6d:28:39:78:c4:da:d1:70:9f:d1:a6:77:db:98: 51:9d:c9:96:e6:64:4d:a4:b0:9c:7a:4f:b6:73:46:d8:e5:8e: 6e:ee:27:4c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUU9FvSNUy5RcB87GV41qNeWGO1XkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTMwQTRFRDJCODVBQTlGRTc3RUQ5MEZBODUwNDRBOUM4 MEIzOEE0NjAeFw0yNDA4MzEwMzU1MDBaFw0yNTA4MzAwNDAwMDBaMDMxMTAvBgNV BAMTKERDMUI5QUUwMTQzMzYxODI2MDM4NjBDMDI1MzlGMzAxOTk4NjU5ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGuSTM7npJOKI/ZiFUcvUrDZwH 8Tn3fK09cNzL7jup64oVB2IGNNBDAKuCuNbz+28MbYBrzlMToky9fp2NR5gxwJs1 Y47BIxaQ6sWtEWvOXt4HdohcaCoHr7XEh4c2DTFZlLUK+m+8L+klobKdXGdizLZO rW7T81KP1SrOG/rajRz6GHOFyLF7srlmYzmmfwIGPKOayVyCuKlmfVmxNpVVVPOl kJBSc4ctzX6dG1GrE0eGoMuUEcjIf7eA44ogF6SIwBXt7oDSSuQhD1d+EuOMlEZQ bQyGepqfC1PB7yd99rnSxem+W9Ed3MWXFRLEu+bS3ADjYT1U9QnB4KRJ+ss7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU3Bua4BQzYYJgOGDAJTnzAZmGWYIwHwYDVR0j BBgwFoAUkwpO0rhaqf537ZD6hQRKnICzikYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjYyODA5Yy1iZmI2LTRmZTctOGRkNi1jYTYwMjJjZGQ1NDAvMC85MzBBNEVEMkI4 NUFBOUZFNzdFRDkwRkE4NTA0NEE5QzgwQjM4QTQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTMwQTRFRDJCODVBQTlGRTc3RUQ5MEZBODUwNDRBOUM4MEIz OEE0Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmNjI4MDljLWJmYjYtNGZlNy04 ZGQ2LWNhNjAyMmNkZDU0MC8wLzMyMzcyZTMxMzIzMTJlMzgzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNjM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbeVYwDQYJKoZIhvcN AQELBQADggEBAGhPRnq2szO6pz2SvERAR1XuEpOo1p25S5bEtYLhr/LmRGODaMAs J5IOWlJlD1V770mPSJRILu8URrw7lPRyDlB4977af4g7Up5l9MJ0MdsipiRAj7KS fulbTXT3Y22RzrVHh1IDhvpRvuR2XZ5NAHVWf++S6qHsrUYJI1ZeoI4VsdpqXiPG l1VM6GOBiOXw5Z3+85ysII1t4HQlPTyghfzADDucE5m7Igs0EcZXgyecmYgd1beL 423k2DAYnoUpJ9FFpWGt2zajNDUKJZ4j+CzT37k2Htv8JP+hGQ9tKDl4xNrRcJ/R pnfbmFGdyZbmZE2ksJx6T7ZzRtjljm7uJ0w= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:48 2024 by rpki-client on console-fra.rpki-client.org