$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3232332e32372e3134342e302f32342d3234203d3e203338343936.roa File: 3232332e32372e3134342e302f32342d3234203d3e203338343936.roa (raw, json) Hash identifier: BxGUlJjpZ004XnkYpGoNpO9FATW5xicQSbDPGI4XGTY= Subject key identifier: F5:A5:AA:26:63:80:94:FD:7C:57:69:98:54:AC:DA:6C:DA:B4:06:FF Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 2F3C9C70D430C41C889FA1DE96E61186306D4744 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3232332e32372e3134342e302f32342d3234203d3e203338343936.roa Signing time: Thu 22 Aug 2024 11:00:02 +0000 ROA not before: Thu 22 Aug 2024 10:55:02 +0000 ROA not after: Thu 21 Aug 2025 11:00:02 +0000 asID: 38496 IP address blocks: 223.27.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:3c:9c:70:d4:30:c4:1c:88:9f:a1:de:96:e6:11:86:30:6d:47:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Aug 22 10:55:02 2024 GMT Not After : Aug 21 11:00:02 2025 GMT Subject: CN=F5A5AA26638094FD7C57699854ACDA6CDAB406FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:4b:eb:2c:d5:1b:c8:9f:ff:28:6c:b2:a4:09: fe:cf:c9:b2:b1:8e:c9:17:74:84:af:a9:9a:9d:0e: 4f:cb:1e:f6:9b:71:52:e3:1c:1d:9e:31:f1:71:d0: 26:5a:88:63:f5:87:37:9f:ea:53:2a:35:68:97:c9: 27:c5:9b:a9:e7:8f:c6:ed:ad:9c:82:a8:7a:d9:5d: 65:27:5d:21:20:b7:16:33:34:38:17:a2:32:bd:72: fa:df:59:47:5a:25:51:17:84:59:19:1e:be:dd:85: 0b:87:86:b0:e7:ce:a9:b0:ab:90:ea:e3:74:55:df: b1:95:7f:37:d2:24:59:6b:92:55:90:57:c2:1c:01: bb:1a:fc:0f:87:b2:08:e6:45:6f:3b:d2:ca:83:00: 02:a2:2f:26:23:2b:f8:d2:d9:e8:d7:18:25:34:91: 37:3a:b9:99:e2:e9:d4:63:fa:ae:fd:13:d5:aa:b2: f9:40:92:1f:7e:ea:9d:75:22:ae:2f:31:f1:dd:73: 48:30:f2:08:67:a7:da:d1:fe:90:c4:59:37:4a:1e: 8b:17:bd:50:8a:d1:f8:52:ee:88:f6:3a:b5:09:8a: 84:0d:92:a7:79:4e:82:45:b4:ff:8e:db:42:22:fa: 8b:11:71:d5:5f:16:d4:36:41:cc:85:f8:fb:72:94: 37:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:A5:AA:26:63:80:94:FD:7C:57:69:98:54:AC:DA:6C:DA:B4:06:FF X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3232332e32372e3134342e302f32342d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.27.144.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:c8:93:ad:28:19:cc:b4:1b:81:72:49:cf:48:3b:ee:65:28: 95:ad:3d:dd:aa:9a:5f:cf:45:2a:19:c1:e9:f3:42:c1:3d:c7: 06:cf:c1:4d:79:93:77:90:56:29:23:16:a8:0e:ae:fa:5b:bb: 90:e0:d7:56:c8:22:93:32:69:53:89:80:f5:87:11:6c:3a:91: 42:ef:50:9b:ad:95:f6:46:1d:a2:98:f1:23:06:f6:4b:1d:a1: 4e:85:b0:2d:d4:c0:03:b3:69:9c:7f:b6:3a:cd:ad:ff:4f:66: 50:20:04:7c:3b:f6:60:86:f4:4a:86:52:d3:7c:4d:bb:ed:66: e1:60:8d:03:5b:11:f6:d1:0c:8d:4e:57:8b:2f:d3:06:9e:94: 60:37:2b:98:51:1f:8d:27:dd:c2:2c:4b:5d:c2:58:f7:1c:df: 98:55:16:c5:a2:4f:63:c2:ed:ba:ee:1d:2d:82:e6:c9:49:e9: 14:a9:f0:0d:f2:f8:2d:7c:ba:23:78:be:57:a6:86:0a:f0:b9: 91:b9:a0:02:36:d4:2d:61:a1:cc:5a:f2:09:a3:99:c5:13:2c: e7:1a:bc:46:20:9f:0d:7b:ee:71:7f:2d:3e:b7:56:93:92:72: 21:93:37:e8:ff:a5:7b:5e:eb:a5:bb:d6:6f:cf:29:26:ac:56: d5:92:ef:0f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULzyccNQwxByIn6HeluYRhjBtR0QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNDA4MjIxMDU1MDJaFw0yNTA4MjExMTAwMDJaMDMxMTAvBgNV BAMTKEY1QTVBQTI2NjM4MDk0RkQ3QzU3Njk5ODU0QUNEQTZDREFCNDA2RkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmS+ss1RvIn/8obLKkCf7PybKx jskXdISvqZqdDk/LHvabcVLjHB2eMfFx0CZaiGP1hzef6lMqNWiXySfFm6nnj8bt rZyCqHrZXWUnXSEgtxYzNDgXojK9cvrfWUdaJVEXhFkZHr7dhQuHhrDnzqmwq5Dq 43RV37GVfzfSJFlrklWQV8IcAbsa/A+HsgjmRW870sqDAAKiLyYjK/jS2ejXGCU0 kTc6uZni6dRj+q79E9WqsvlAkh9+6p11Iq4vMfHdc0gw8ghnp9rR/pDEWTdKHosX vVCK0fhS7oj2OrUJioQNkqd5ToJFtP+O20Ii+osRcdVfFtQ2QcyF+PtylDfpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9aWqJmOAlP18V2mYVKzabNq0Bv8wHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMyMzIzMzJlMzIzNzJlMzEzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM0MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bkDANBgkqhkiG 9w0BAQsFAAOCAQEAi8iTrSgZzLQbgXJJz0g77mUola093aqaX89FKhnB6fNCwT3H Bs/BTXmTd5BWKSMWqA6u+lu7kODXVsgikzJpU4mA9YcRbDqRQu9Qm62V9kYdopjx Iwb2Sx2hToWwLdTAA7NpnH+2Os2t/09mUCAEfDv2YIb0SoZS03xNu+1m4WCNA1sR 9tEMjU5Xiy/TBp6UYDcrmFEfjSfdwixLXcJY9xzfmFUWxaJPY8Ltuu4dLYLmyUnp FKnwDfL4LXy6I3i+V6aGCvC5kbmgAjbULWGhzFryCaOZxRMs5xq8RiCfDXvucX8t PrdWk5JyIZM36P+le17rpbvWb88pJqxW1ZLvDw== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org