$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3138322e32332e3137302e302f32342d3234203d3e203338373535.roa File: 3138322e32332e3137302e302f32342d3234203d3e203338373535.roa (raw, json) Hash identifier: t93dN71ohMin2E9vW1Es+ibd26QorBmuUK5QBToBGQ0= Subject key identifier: 91:E1:97:F2:54:43:C4:E3:60:EB:CB:6D:6F:8A:5A:37:64:91:03:D8 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 7CC5792B0ACC2ACE7358E276CF6805689853F76A Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3138322e32332e3137302e302f32342d3234203d3e203338373535.roa Signing time: Fri 29 Nov 2024 08:00:02 +0000 ROA not before: Fri 29 Nov 2024 07:55:02 +0000 ROA not after: Fri 28 Nov 2025 08:00:02 +0000 asID: 38755 IP address blocks: 182.23.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 08:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:c5:79:2b:0a:cc:2a:ce:73:58:e2:76:cf:68:05:68:98:53:f7:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Nov 29 07:55:02 2024 GMT Not After : Nov 28 08:00:02 2025 GMT Subject: CN=91E197F25443C4E360EBCB6D6F8A5A37649103D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:07:eb:35:73:1f:22:8f:ec:27:ae:6b:2c:50: 58:c9:71:7a:07:c9:49:58:a9:fc:6c:74:04:a1:66: e5:cb:d2:37:5a:13:6d:f2:1b:3c:52:f2:22:aa:b4: ef:67:e3:1d:b9:ea:e2:3b:24:2c:07:f7:71:10:a8: 48:37:72:c8:ed:62:5b:e5:9a:8b:0d:d9:f4:dc:7f: e9:3f:e8:1c:6b:17:31:c9:51:93:0e:28:ef:b8:7d: a1:b6:a7:03:26:6c:7e:da:91:5a:a7:be:db:4c:73: 8f:f4:09:2c:d1:df:39:75:53:fd:c5:18:39:e0:c7: 21:20:75:d2:2e:92:48:d7:cc:e9:5f:15:8a:4a:20: b8:c3:2c:93:33:97:92:22:7b:90:d0:26:13:b0:c9: 51:bd:2e:33:84:0f:db:39:21:53:43:ed:9a:e8:5f: 5c:30:d1:23:ff:0a:86:20:91:68:0e:a2:04:dc:41: 70:0e:da:9d:83:f5:48:de:41:79:e9:a8:c7:dd:08: 3f:bf:d2:8d:ae:7e:6e:49:19:90:a2:8d:f2:c1:88: 80:86:f9:6f:9a:43:34:59:04:24:01:b7:eb:77:24: 80:93:cc:73:99:d0:67:6c:67:ad:aa:00:d9:7c:ed: 57:50:99:18:13:bc:64:b2:3c:75:23:51:9a:67:61: a4:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:E1:97:F2:54:43:C4:E3:60:EB:CB:6D:6F:8A:5A:37:64:91:03:D8 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3138322e32332e3137302e302f32342d3234203d3e203338373535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.23.170.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:fc:73:75:f4:92:b6:76:bc:21:60:31:ec:7c:0d:34:5f:79: 2b:4c:bc:98:a4:28:c2:5b:98:9a:82:a7:38:02:ef:98:57:79: 85:b9:14:19:ee:a6:0a:8b:95:00:dd:b9:10:df:35:80:ba:58: 66:7b:45:54:d6:95:e0:05:d2:3c:24:f7:ac:62:b5:39:c7:3e: fe:d7:e5:84:de:ef:44:ae:d6:d0:9c:8d:8f:ee:a2:a3:76:18: 42:4d:a9:9b:f5:3e:bf:9e:3e:87:4f:eb:e6:81:fd:32:54:89: d0:64:3c:df:eb:84:ea:6d:92:27:5f:44:7d:86:d8:03:e8:85: 72:45:52:5a:55:72:25:fb:af:0d:d4:ff:2d:b2:e9:62:65:6c: d0:f2:c9:11:28:37:09:6a:68:7f:f7:58:a2:f2:67:92:f2:b1: 5a:fb:bc:8b:ce:7d:e9:b1:52:6d:ad:38:0b:97:63:6d:96:63: 18:36:05:2e:f4:ad:a6:1f:c2:6f:e6:e9:c9:4b:3f:cf:c9:1c: 96:b0:7a:f9:7b:63:48:e3:cc:57:6b:b0:4c:57:8b:b5:09:9f: f8:5a:17:fd:f1:32:ea:d0:c7:2b:1b:e2:f3:f9:1b:ee:a8:a7: a4:8e:58:3f:02:a1:8b:52:ee:25:d9:3d:92:03:b2:b6:7c:84: c4:5b:38:9c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfMV5KwrMKs5zWOJ2z2gFaJhT92owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNDExMjkwNzU1MDJaFw0yNTExMjgwODAwMDJaMDMxMTAvBgNV BAMTKDkxRTE5N0YyNTQ0M0M0RTM2MEVCQ0I2RDZGOEE1QTM3NjQ5MTAzRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJB+s1cx8ij+wnrmssUFjJcXoH yUlYqfxsdAShZuXL0jdaE23yGzxS8iKqtO9n4x256uI7JCwH93EQqEg3csjtYlvl mosN2fTcf+k/6BxrFzHJUZMOKO+4faG2pwMmbH7akVqnvttMc4/0CSzR3zl1U/3F GDngxyEgddIukkjXzOlfFYpKILjDLJMzl5Iie5DQJhOwyVG9LjOED9s5IVND7Zro X1ww0SP/CoYgkWgOogTcQXAO2p2D9UjeQXnpqMfdCD+/0o2ufm5JGZCijfLBiICG +W+aQzRZBCQBt+t3JICTzHOZ0GdsZ62qANl87VdQmRgTvGSyPHUjUZpnYaTPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUkeGX8lRDxONg68ttb4paN2SRA9gwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzgzMjJlMzIzMzJlMzEzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALYXqjANBgkqhkiG 9w0BAQsFAAOCAQEAn/xzdfSStna8IWAx7HwNNF95K0y8mKQowluYmoKnOALvmFd5 hbkUGe6mCouVAN25EN81gLpYZntFVNaV4AXSPCT3rGK1Occ+/tflhN7vRK7W0JyN j+6io3YYQk2pm/U+v54+h0/r5oH9MlSJ0GQ83+uE6m2SJ19EfYbYA+iFckVSWlVy JfuvDdT/LbLpYmVs0PLJESg3CWpof/dYovJnkvKxWvu8i8596bFSba04C5djbZZj GDYFLvStph/Cb+bpyUs/z8kclrB6+XtjSOPMV2uwTFeLtQmf+FoX/fEy6tDHKxvi 8/kb7qinpI5YPwKhi1LuJdk9kgOytnyExFs4nA== -----END CERTIFICATE-----Generated at Sun Apr 6 14:46:55 2025 by rpki-client