$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3232332e32372e3135392e302f32342d3234203d3e203338343936.roa File: 3232332e32372e3135392e302f32342d3234203d3e203338343936.roa (raw, json) Hash identifier: u97Ax9LEOweesL+shq2VGlgQ2PGz3JLjmj/dDoMs+pk= Subject key identifier: 2C:7F:2E:D8:C9:E8:B9:87:7D:05:E3:99:F4:75:D1:7E:9E:15:DD:81 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 63C7F43858E099B44CDFAF71E338A9981DA1D372 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3232332e32372e3135392e302f32342d3234203d3e203338343936.roa Signing time: Fri 24 May 2024 05:02:17 +0000 ROA not before: Fri 24 May 2024 04:57:17 +0000 ROA not after: Fri 23 May 2025 05:02:17 +0000 asID: 38496 IP address blocks: 223.27.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 08:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:c7:f4:38:58:e0:99:b4:4c:df:af:71:e3:38:a9:98:1d:a1:d3:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: May 24 04:57:17 2024 GMT Not After : May 23 05:02:17 2025 GMT Subject: CN=2C7F2ED8C9E8B9877D05E399F475D17E9E15DD81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5b:dc:c8:a8:9a:92:c6:35:dd:f4:77:a4:f7: 8e:33:38:83:f4:c6:86:29:84:5c:9b:04:99:29:e3: eb:4e:10:63:ff:0f:ba:de:82:92:66:06:76:d2:fb: 21:ba:9c:e0:a6:12:ef:58:e7:7a:d3:6c:87:08:ce: 96:c0:91:82:d0:1d:79:bb:e2:45:50:e0:58:17:4e: db:a3:3d:13:74:8b:6f:ef:89:9f:fc:66:fa:70:7e: ce:59:dd:ec:47:c6:fc:43:06:f4:34:0c:7e:1a:dd: e4:e5:e3:d0:b8:ff:18:8d:81:25:cd:51:53:56:03: 5d:68:a7:a7:25:c1:15:48:46:80:41:9e:de:7f:ec: ed:61:10:c8:3b:23:1e:bc:7d:56:40:ea:f1:92:9d: bc:b0:d9:0e:0f:10:b2:8b:eb:51:81:9b:ba:e9:92: 5f:87:9f:a7:ff:b5:e3:7b:c4:29:5a:f1:e1:b3:89: c6:aa:da:dd:4f:68:89:7f:f8:22:07:97:34:ad:72: f9:98:3d:4d:a7:b4:20:5f:9f:f9:44:a5:12:39:3b: 7e:41:43:d8:34:cb:0e:9c:fc:0a:f3:8b:9b:24:26: 3a:c3:b3:98:24:7f:65:98:3d:5c:4c:2f:54:b3:f0: d9:65:dd:6d:ef:34:5c:8b:40:6b:ba:df:28:ad:6c: dd:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:7F:2E:D8:C9:E8:B9:87:7D:05:E3:99:F4:75:D1:7E:9E:15:DD:81 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3232332e32372e3135392e302f32342d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.27.159.0/24 Signature Algorithm: sha256WithRSAEncryption 04:36:70:4a:39:a0:21:e1:e6:d7:fd:02:61:ac:03:36:b7:ef: 60:73:e1:6e:fe:80:3e:45:9a:0e:9f:cb:d6:d9:65:c1:d0:25: ee:e8:39:fd:af:8e:56:07:59:20:ae:4c:bd:6b:ab:b7:c5:1f: 9d:88:40:0c:14:e8:ec:ff:27:f1:d7:70:34:da:e7:c6:1d:9e: 21:47:9b:a8:0e:2f:d9:0d:2f:a1:4d:44:ba:8a:2c:a8:bf:f3: af:e2:07:3f:96:f0:e8:4e:98:50:ba:ab:9c:34:57:3e:6a:ad: 26:80:0e:fb:4c:e3:b6:c0:4b:8f:23:50:5e:01:78:fc:63:40: 9d:46:80:68:98:66:1b:6a:cc:34:78:43:43:fb:c0:8a:ff:93: d5:73:dc:26:d8:3d:6b:a3:ec:d5:4a:f2:18:d6:3e:33:de:fe: f9:ae:7c:71:a3:c5:b3:7b:62:a8:38:96:4f:8d:3e:8a:f3:e8: e8:70:76:dd:c3:98:7b:d3:f4:1d:c2:0c:6d:e7:07:62:b1:4c: 7e:29:9d:e5:89:9e:8f:45:dd:81:8a:cd:61:f5:83:cf:70:41: d1:2d:c9:a7:d1:8f:19:7e:0b:5e:e6:39:f2:99:af:03:3c:2f: c1:34:14:c0:6d:44:19:20:9e:c4:38:f4:09:b4:87:c9:b8:ba: 6a:78:36:eb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUY8f0OFjgmbRM369x4zipmB2h03IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNDA1MjQwNDU3MTdaFw0yNTA1MjMwNTAyMTdaMDMxMTAvBgNV BAMTKDJDN0YyRUQ4QzlFOEI5ODc3RDA1RTM5OUY0NzVEMTdFOUUxNUREODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFW9zIqJqSxjXd9Hek944zOIP0 xoYphFybBJkp4+tOEGP/D7regpJmBnbS+yG6nOCmEu9Y53rTbIcIzpbAkYLQHXm7 4kVQ4FgXTtujPRN0i2/viZ/8Zvpwfs5Z3exHxvxDBvQ0DH4a3eTl49C4/xiNgSXN UVNWA11op6clwRVIRoBBnt5/7O1hEMg7Ix68fVZA6vGSnbyw2Q4PELKL61GBm7rp kl+Hn6f/teN7xCla8eGzicaq2t1PaIl/+CIHlzStcvmYPU2ntCBfn/lEpRI5O35B Q9g0yw6c/Arzi5skJjrDs5gkf2WYPVxML1Sz8Nll3W3vNFyLQGu63yitbN3nAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULH8u2MnouYd9BeOZ9HXRfp4V3YEwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMyMzIzMzJlMzIzNzJlMzEzNTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM0MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bnzANBgkqhkiG 9w0BAQsFAAOCAQEABDZwSjmgIeHm1/0CYawDNrfvYHPhbv6APkWaDp/L1tllwdAl 7ug5/a+OVgdZIK5MvWurt8UfnYhADBTo7P8n8ddwNNrnxh2eIUebqA4v2Q0voU1E uoosqL/zr+IHP5bw6E6YULqrnDRXPmqtJoAO+0zjtsBLjyNQXgF4/GNAnUaAaJhm G2rMNHhDQ/vAiv+T1XPcJtg9a6Ps1UryGNY+M97++a58caPFs3tiqDiWT40+ivPo 6HB23cOYe9P0HcIMbecHYrFMfimd5Ymej0XdgYrNYfWDz3BB0S3Jp9GPGX4LXuY5 8pmvAzwvwTQUwG1EGSCexDj0CbSHybi6ang26w== -----END CERTIFICATE-----Generated at Sun Apr 6 10:55:07 2025 by rpki-client