$ rpki-client -vvf repo-rpki.idnic.net/repo/e607d929-4ca8-4f53-a298-5e33be1f8604/0/3138302e3137382e39342e302f32342d3234203d3e203435373232.roa File: 3138302e3137382e39342e302f32342d3234203d3e203435373232.roa (raw, json) Hash identifier: bcv9+A8fnNa4nTKxyLUpprqdZBOoY3R/2lzSPgws1GM= Subject key identifier: 92:DB:46:C2:76:4C:94:0D:9C:07:F8:C6:1F:90:6B:03:D1:F1:72:C3 Certificate issuer: /CN=5110A717EFE96B12E5D3A475E9B2179E5DE0EA0C Certificate serial: 3939EF26022B7E1226216389A616121AE392FD9B Authority key identifier: 51:10:A7:17:EF:E9:6B:12:E5:D3:A4:75:E9:B2:17:9E:5D:E0:EA:0C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5110A717EFE96B12E5D3A475E9B2179E5DE0EA0C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e607d929-4ca8-4f53-a298-5e33be1f8604/0/3138302e3137382e39342e302f32342d3234203d3e203435373232.roa Signing time: Mon 01 Jul 2024 01:03:49 +0000 ROA not before: Mon 01 Jul 2024 00:58:49 +0000 ROA not after: Mon 30 Jun 2025 01:03:49 +0000 asID: 45722 IP address blocks: 180.178.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e607d929-4ca8-4f53-a298-5e33be1f8604/0/5110A717EFE96B12E5D3A475E9B2179E5DE0EA0C.crl rsync://repo-rpki.idnic.net/repo/e607d929-4ca8-4f53-a298-5e33be1f8604/0/5110A717EFE96B12E5D3A475E9B2179E5DE0EA0C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5110A717EFE96B12E5D3A475E9B2179E5DE0EA0C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 21:34:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:39:ef:26:02:2b:7e:12:26:21:63:89:a6:16:12:1a:e3:92:fd:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5110A717EFE96B12E5D3A475E9B2179E5DE0EA0C Validity Not Before: Jul 1 00:58:49 2024 GMT Not After : Jun 30 01:03:49 2025 GMT Subject: CN=92DB46C2764C940D9C07F8C61F906B03D1F172C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:42:62:34:bf:78:3b:f4:a0:9c:53:44:e0:ac: 79:c4:bb:6a:67:28:68:76:32:e4:1d:b1:78:35:61: 2c:c3:f7:ec:f0:e6:69:f3:7f:13:d7:a6:ce:cc:7c: 7f:9d:48:d2:fd:2e:38:8a:be:10:2c:99:6b:03:7d: 77:26:a2:a5:67:2d:1b:44:7a:e2:44:33:07:79:e0: a4:86:02:c7:a2:72:4a:50:d9:77:75:55:0f:a8:0d: 29:f6:a9:a2:a0:ec:d2:a4:c0:a7:5f:13:04:6e:27: 32:ae:1e:32:d7:61:8f:ef:fa:5c:55:3b:5f:4d:9a: a0:ad:a7:9f:07:5e:d2:f1:a1:3f:82:6a:f1:b3:13: 65:92:b6:f6:d7:d3:48:4b:8d:49:1a:ad:02:de:bc: 9e:cd:63:1c:49:60:74:93:65:a6:09:fa:78:30:e4: c6:2d:01:51:c4:e8:99:b3:7c:dc:42:21:67:b1:a9: 90:2c:91:64:a1:dc:a6:dd:4c:de:c8:3d:0c:fe:0f: 08:ef:9f:75:e3:20:47:0f:c9:9e:3a:58:8b:74:9d: 38:c7:6b:9e:30:2f:6b:10:de:94:83:9d:af:4f:36: 7c:ff:84:ed:26:b4:50:14:6a:a5:2b:95:36:1e:57: 48:af:8c:24:37:89:3c:f8:37:82:9c:c5:dc:8b:98: 4d:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:DB:46:C2:76:4C:94:0D:9C:07:F8:C6:1F:90:6B:03:D1:F1:72:C3 X509v3 Authority Key Identifier: keyid:51:10:A7:17:EF:E9:6B:12:E5:D3:A4:75:E9:B2:17:9E:5D:E0:EA:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e607d929-4ca8-4f53-a298-5e33be1f8604/0/5110A717EFE96B12E5D3A475E9B2179E5DE0EA0C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5110A717EFE96B12E5D3A475E9B2179E5DE0EA0C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e607d929-4ca8-4f53-a298-5e33be1f8604/0/3138302e3137382e39342e302f32342d3234203d3e203435373232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.178.94.0/24 Signature Algorithm: sha256WithRSAEncryption a1:46:29:39:e4:5c:42:99:c9:54:fc:46:1a:e9:81:86:89:f0: ea:ba:de:26:66:e9:17:a1:50:3a:82:ad:01:93:e6:a1:b1:26: 27:ae:3e:f8:e2:c1:65:29:d2:97:ca:66:4b:ab:ef:d0:70:2c: af:bf:53:61:9d:5d:db:d8:cc:be:9f:6d:9b:55:4b:9a:b2:91: 0e:7f:c7:81:7e:31:4d:c4:b4:e8:3f:6c:76:f5:0c:10:a8:7d: e2:d5:03:f4:89:7b:e3:f1:25:77:67:40:26:69:f3:d5:39:b0: 1d:cd:fb:d0:3f:22:4a:19:7b:f8:3d:b6:40:ad:44:9e:d8:46: 3d:aa:94:fe:63:99:92:3b:e9:db:ea:82:a8:b5:23:71:1c:2c: 06:0c:59:7e:ab:39:23:ff:47:cb:29:ea:eb:79:55:5a:65:cb: f2:5a:6b:12:71:95:c0:0d:7f:4c:2c:78:52:7a:d6:cf:de:ca: b5:78:5c:a9:de:a1:c2:6d:38:bf:69:f3:e3:e1:61:70:a3:65: 94:df:fc:4b:bb:6f:3c:fa:0d:6c:08:24:8a:f2:c4:44:0b:da: 32:1a:3b:63:93:e1:ea:d4:9e:cf:b0:e4:60:01:3a:95:ce:f1: 70:49:48:2b:4d:7c:b4:ee:4f:ed:3f:2f:d8:68:0a:4b:69:f5: 16:e4:0d:1a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOTnvJgIrfhImIWOJphYSGuOS/ZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTExMEE3MTdFRkU5NkIxMkU1RDNBNDc1RTlCMjE3OUU1 REUwRUEwQzAeFw0yNDA3MDEwMDU4NDlaFw0yNTA2MzAwMTAzNDlaMDMxMTAvBgNV BAMTKDkyREI0NkMyNzY0Qzk0MEQ5QzA3RjhDNjFGOTA2QjAzRDFGMTcyQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6QmI0v3g79KCcU0TgrHnEu2pn KGh2MuQdsXg1YSzD9+zw5mnzfxPXps7MfH+dSNL9LjiKvhAsmWsDfXcmoqVnLRtE euJEMwd54KSGAseickpQ2Xd1VQ+oDSn2qaKg7NKkwKdfEwRuJzKuHjLXYY/v+lxV O19NmqCtp58HXtLxoT+CavGzE2WStvbX00hLjUkarQLevJ7NYxxJYHSTZaYJ+ngw 5MYtAVHE6JmzfNxCIWexqZAskWSh3KbdTN7IPQz+Dwjvn3XjIEcPyZ46WIt0nTjH a54wL2sQ3pSDna9PNnz/hO0mtFAUaqUrlTYeV0ivjCQ3iTz4N4KcxdyLmE2DAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUkttGwnZMlA2cB/jGH5BrA9HxcsMwHwYDVR0j BBgwFoAUURCnF+/paxLl06R16bIXnl3g6gwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjA3ZDkyOS00Y2E4LTRmNTMtYTI5OC01ZTMzYmUxZjg2MDQvMC81MTEwQTcxN0VG RTk2QjEyRTVEM0E0NzVFOUIyMTc5RTVERTBFQTBDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTExMEE3MTdFRkU5NkIxMkU1RDNBNDc1RTlCMjE3OUU1REUw RUEwQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2MDdkOTI5LTRjYTgtNGY1My1h Mjk4LTVlMzNiZTFmODYwNC8wLzMxMzgzMDJlMzEzNzM4MmUzOTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTM3MzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALSyXjANBgkqhkiG 9w0BAQsFAAOCAQEAoUYpOeRcQpnJVPxGGumBhonw6rreJmbpF6FQOoKtAZPmobEm J64++OLBZSnSl8pmS6vv0HAsr79TYZ1d29jMvp9tm1VLmrKRDn/HgX4xTcS06D9s dvUMEKh94tUD9Il74/Eld2dAJmnz1TmwHc370D8iShl7+D22QK1EnthGPaqU/mOZ kjvp2+qCqLUjcRwsBgxZfqs5I/9Hyynq63lVWmXL8lprEnGVwA1/TCx4UnrWz97K tXhcqd6hwm04v2nz4+FhcKNllN/8S7tvPPoNbAgkivLERAvaMho7Y5Ph6tSez7Dk YAE6lc7xcElIK018tO5P7T8v2GgKS2n1FuQNGg== -----END CERTIFICATE-----Generated at Thu Nov 21 22:33:06 2024 by rpki-client on console-fra.rpki-client.org