$ rpki-client -vvf repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36352e302f32342d3234203d3e203436303633.roa File: 32372e3131322e36352e302f32342d3234203d3e203436303633.roa (raw, json) Hash identifier: hLB0u4Pvac766uVNNHRQldQ+SI0MJNlYhxvuGaXeDIA= Subject key identifier: 21:F0:74:AA:D2:D6:6C:D9:8D:C2:AD:80:74:F6:C8:9D:3D:05:6D:07 Certificate issuer: /CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Certificate serial: 7CCD7C99D60360A96D4CEE10088F9B42505F440B Authority key identifier: D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36352e302f32342d3234203d3e203436303633.roa Signing time: Fri 04 Oct 2024 12:02:25 +0000 ROA not before: Fri 04 Oct 2024 11:57:25 +0000 ROA not after: Fri 03 Oct 2025 12:02:25 +0000 asID: 46063 IP address blocks: 27.112.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:cd:7c:99:d6:03:60:a9:6d:4c:ee:10:08:8f:9b:42:50:5f:44:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Validity Not Before: Oct 4 11:57:25 2024 GMT Not After : Oct 3 12:02:25 2025 GMT Subject: CN=21F074AAD2D66CD98DC2AD8074F6C89D3D056D07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:8f:49:62:3b:a6:34:41:90:51:06:ec:a7:06: 43:a4:53:9a:36:ea:28:20:37:54:b9:25:d3:e2:82: 59:bb:f5:97:8b:ed:fd:1b:86:17:ee:62:1f:fa:48: 95:58:2a:55:0a:73:da:22:c3:eb:b3:fe:93:21:d9: 7f:bd:7c:bf:fb:10:43:5c:0b:7a:30:c6:1f:76:b5: 24:e8:01:ad:20:5f:ad:53:bd:5f:5d:3a:c0:c7:2e: 11:e8:95:c0:6b:2e:5d:82:63:66:da:e8:58:cd:17: 94:52:a6:30:33:2b:10:b5:f7:c2:f9:06:72:10:f5: 08:36:a6:75:65:eb:ce:e3:74:ac:5f:f4:18:c2:80: e0:68:85:ad:78:63:92:31:f8:08:02:e1:c2:81:13: 8b:27:b7:45:77:08:51:87:1a:b3:6f:81:7a:44:ad: d5:17:8c:c9:f1:c4:ad:98:cd:d7:aa:63:e6:e0:c4: 73:a9:4d:62:c2:23:8a:a0:be:d3:d3:63:45:d2:85: 04:74:08:6c:21:4f:5e:dd:8b:ce:ce:fa:88:94:ec: ae:69:6a:25:cd:bd:5c:1d:a8:5d:e6:07:05:71:0a: ee:6d:e0:58:f0:07:90:95:13:f0:a1:70:b3:c8:0d: d3:62:9d:fa:45:0d:cb:31:bd:7e:4a:23:71:c2:55: d5:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:F0:74:AA:D2:D6:6C:D9:8D:C2:AD:80:74:F6:C8:9D:3D:05:6D:07 X509v3 Authority Key Identifier: keyid:D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36352e302f32342d3234203d3e203436303633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.112.65.0/24 Signature Algorithm: sha256WithRSAEncryption 60:e7:41:ad:f8:46:8e:34:0c:a6:8d:ee:4f:a8:47:19:1c:96: 8d:1f:d0:3e:ee:97:c7:de:ea:0e:9f:25:b8:1c:76:cc:b8:d3: 93:34:37:1f:95:d6:36:93:c5:22:34:93:f0:58:b8:44:80:87: e7:09:db:49:2c:9a:e2:41:ea:c8:4a:ee:fc:46:97:d3:a2:53: 33:99:1f:35:1c:06:f4:73:63:01:38:40:65:f2:33:26:c3:30: fb:3a:8d:bd:f7:9f:18:d0:c2:77:5a:ab:fb:5e:e3:fc:54:d5: cc:13:03:25:d2:0c:e6:e6:ef:14:15:05:8b:76:99:25:47:b8: 11:36:ae:a2:81:74:01:bd:19:e0:39:ff:13:4a:74:08:44:ca: c4:7c:6a:34:c2:a9:4b:95:1b:33:7c:0b:27:26:fd:60:a9:8d: 9c:ef:37:1d:5f:89:1a:d7:d2:b2:dc:f7:2f:34:85:4a:34:10: 48:06:32:09:90:6e:05:79:ef:63:97:fd:c2:32:66:cf:ac:3e: 7f:0d:02:a6:78:af:b1:24:9a:e2:09:f0:cb:1f:23:6b:72:16: e7:19:65:72:e6:dd:61:5b:ff:4a:3b:6f:2a:35:84:8b:5e:bb: bc:a4:40:8d:b0:e2:0c:7d:be:4a:ae:6f:0a:00:b3:67:02:8d: 0e:41:50:d7 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUfM18mdYDYKltTO4QCI+bQlBfRAswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5 NTkyNTMxMjAeFw0yNDEwMDQxMTU3MjVaFw0yNTEwMDMxMjAyMjVaMDMxMTAvBgNV BAMTKDIxRjA3NEFBRDJENjZDRDk4REMyQUQ4MDc0RjZDODlEM0QwNTZEMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD5j0liO6Y0QZBRBuynBkOkU5o2 6iggN1S5JdPiglm79ZeL7f0bhhfuYh/6SJVYKlUKc9oiw+uz/pMh2X+9fL/7EENc C3owxh92tSToAa0gX61TvV9dOsDHLhHolcBrLl2CY2ba6FjNF5RSpjAzKxC198L5 BnIQ9Qg2pnVl687jdKxf9BjCgOBoha14Y5Ix+AgC4cKBE4snt0V3CFGHGrNvgXpE rdUXjMnxxK2YzdeqY+bgxHOpTWLCI4qgvtPTY0XShQR0CGwhT17di87O+oiU7K5p aiXNvVwdqF3mBwVxCu5t4FjwB5CVE/ChcLPIDdNinfpFDcsxvX5KI3HCVdXVAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUIfB0qtLWbNmNwq2AdPbInT0FbQcwHwYDVR0j BBgwFoAU0qaryh74lyUQnL6l1C5oPJWSUxIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWQxZTE2YS0wYTRkLTQ0YjEtOTg0NS05YzBjZDdhNmYzOGYvMC9EMkE2QUJDQTFF Rjg5NzI1MTA5Q0JFQTVENDJFNjgzQzk1OTI1MzEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5NTky NTMxMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhZDFlMTZhLTBhNGQtNDRiMS05 ODQ1LTljMGNkN2E2ZjM4Zi8wLzMyMzcyZTMxMzEzMjJlMzYzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbcEEwDQYJKoZIhvcN AQELBQADggEBAGDnQa34Ro40DKaN7k+oRxkclo0f0D7ul8fe6g6fJbgcdsy405M0 Nx+V1jaTxSI0k/BYuESAh+cJ20ksmuJB6shK7vxGl9OiUzOZHzUcBvRzYwE4QGXy MybDMPs6jb33nxjQwndaq/te4/xU1cwTAyXSDObm7xQVBYt2mSVHuBE2rqKBdAG9 GeA5/xNKdAhEysR8ajTCqUuVGzN8Cycm/WCpjZzvNx1fiRrX0rLc9y80hUo0EEgG MgmQbgV572OX/cIyZs+sPn8NAqZ4r7EkmuIJ8MsfI2tyFucZZXLm3WFb/0o7byo1 hIteu7ykQI2w4gx9vkqubwoAs2cCjQ5BUNc= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:49 2024 by rpki-client on console-fra.rpki-client.org