$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3138322e32332e3136392e302f32342d3234203d3e203338343936.roa File: 3138322e32332e3136392e302f32342d3234203d3e203338343936.roa (raw, json) Hash identifier: 4z8n3Rl93JocxmytkXqQRK/0bFETMb1zQiY4b7S+BmI= Subject key identifier: 11:70:9C:F7:5D:0C:CC:85:14:45:79:8E:EB:4B:66:13:66:97:03:8C Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 78F63EF64783001C4C5A5D3861A10E207DF7257C Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3138322e32332e3136392e302f32342d3234203d3e203338343936.roa Signing time: Mon 01 Jul 2024 01:05:35 +0000 ROA not before: Mon 01 Jul 2024 01:00:35 +0000 ROA not after: Mon 30 Jun 2025 01:05:35 +0000 asID: 38496 IP address blocks: 182.23.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:f6:3e:f6:47:83:00:1c:4c:5a:5d:38:61:a1:0e:20:7d:f7:25:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Jul 1 01:00:35 2024 GMT Not After : Jun 30 01:05:35 2025 GMT Subject: CN=11709CF75D0CCC851445798EEB4B66136697038C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b8:26:cb:dd:5d:3b:fc:be:03:9a:73:84:b4: ee:21:c8:99:b9:8d:ea:cf:29:ef:b1:04:ad:96:e6: 43:53:3b:78:45:97:90:7a:92:18:95:28:05:e1:e4: f8:b1:d1:aa:03:34:d5:25:11:96:23:af:32:01:73: 1e:46:77:f7:31:54:7e:ae:2a:87:ac:05:0c:dc:70: a7:88:87:21:b3:a0:29:16:c0:38:fa:9c:cc:1b:64: 77:2e:c6:05:ad:61:ab:91:e0:a1:4b:de:db:94:06: ee:8a:41:72:17:b9:5f:50:6a:a1:84:c3:dc:78:2c: 33:95:b6:05:20:a7:ad:e0:f6:c7:ff:da:2a:13:5c: 60:ed:26:ab:44:1e:9e:16:d1:6d:b6:4c:4a:45:c2: 42:bb:aa:b2:55:a8:8d:3d:e9:43:4e:31:90:d2:54: de:43:7a:2b:ab:5e:56:dd:b4:4a:31:3d:db:d6:42: c4:e0:5f:2a:e0:3d:5a:16:53:59:56:6c:52:c9:19: 68:fe:e0:a2:5a:ff:b8:68:5c:96:72:de:81:66:3e: 51:59:00:be:3e:69:1d:26:e9:eb:db:ae:8c:8a:15: 26:94:de:11:0c:d0:18:0d:40:5d:5d:4a:11:81:4b: 3c:56:7f:d4:58:4e:c6:2e:f8:83:70:8c:66:ce:8f: 26:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:70:9C:F7:5D:0C:CC:85:14:45:79:8E:EB:4B:66:13:66:97:03:8C X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3138322e32332e3136392e302f32342d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.23.169.0/24 Signature Algorithm: sha256WithRSAEncryption 73:e2:61:84:86:f1:5e:1c:6c:78:d1:a0:41:86:13:d9:6e:cd: 59:71:71:68:34:ba:60:49:1c:8f:23:43:00:b4:77:34:31:51: 05:7a:d5:6a:b1:53:fa:9d:c1:4e:a2:43:aa:41:b3:34:6a:ce: 01:e7:98:7f:93:93:f6:0d:c0:3d:06:f2:15:fb:45:0c:86:88: 06:ad:e3:48:a0:d8:ee:08:23:39:63:90:66:6a:05:49:93:6e: 35:44:6c:b8:57:ce:9a:0f:c0:e4:05:fe:19:dc:2b:97:2e:2d: bc:ba:b0:23:cd:d5:c5:25:17:27:cc:25:c1:c7:99:4c:e2:9c: 3d:f4:75:e0:94:f8:e8:ca:6b:0f:8a:ab:99:e5:fd:38:4c:16: 43:38:3d:fe:ec:5e:d8:b1:dc:c4:f4:18:d4:f5:ea:a2:fa:81: 96:db:97:79:cb:1c:41:c5:a9:35:38:50:63:72:1c:c8:d7:fd: af:72:2d:f1:54:0f:8f:9f:90:60:6c:b6:94:cd:0f:9f:ba:57: 8b:12:7d:ea:c4:41:ab:ed:5a:22:a2:62:11:03:45:45:96:1b: 29:60:dd:b0:d6:7a:9e:12:56:d7:e5:11:6a:e0:c7:ea:a5:3b: a8:2d:b0:ae:ef:62:b3:14:f8:65:0d:21:5a:33:89:f7:02:d7: 36:65:e8:58 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUePY+9keDABxMWl04YaEOIH33JXwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNDA3MDEwMTAwMzVaFw0yNTA2MzAwMTA1MzVaMDMxMTAvBgNV BAMTKDExNzA5Q0Y3NUQwQ0NDODUxNDQ1Nzk4RUVCNEI2NjEzNjY5NzAzOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMuCbL3V07/L4DmnOEtO4hyJm5 jerPKe+xBK2W5kNTO3hFl5B6khiVKAXh5Pix0aoDNNUlEZYjrzIBcx5Gd/cxVH6u KoesBQzccKeIhyGzoCkWwDj6nMwbZHcuxgWtYauR4KFL3tuUBu6KQXIXuV9QaqGE w9x4LDOVtgUgp63g9sf/2ioTXGDtJqtEHp4W0W22TEpFwkK7qrJVqI096UNOMZDS VN5DeiurXlbdtEoxPdvWQsTgXyrgPVoWU1lWbFLJGWj+4KJa/7hoXJZy3oFmPlFZ AL4+aR0m6evbroyKFSaU3hEM0BgNQF1dShGBSzxWf9RYTsYu+INwjGbOjyaRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUEXCc910MzIUURXmO60tmE2aXA4wwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzgzMjJlMzIzMzJlMzEzNjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM0MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALYXqTANBgkqhkiG 9w0BAQsFAAOCAQEAc+JhhIbxXhxseNGgQYYT2W7NWXFxaDS6YEkcjyNDALR3NDFR BXrVarFT+p3BTqJDqkGzNGrOAeeYf5OT9g3APQbyFftFDIaIBq3jSKDY7ggjOWOQ ZmoFSZNuNURsuFfOmg/A5AX+Gdwrly4tvLqwI83VxSUXJ8wlwceZTOKcPfR14JT4 6MprD4qrmeX9OEwWQzg9/uxe2LHcxPQY1PXqovqBltuXecscQcWpNThQY3IcyNf9 r3It8VQPj5+QYGy2lM0Pn7pXixJ96sRBq+1aIqJiEQNFRZYbKWDdsNZ6nhJW1+UR auDH6qU7qC2wru9isxT4ZQ0hWjOJ9wLXNmXoWA== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org