$ rpki-client -vvf repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36362e302f32342d3234203d3e203436303633.roa File: 32372e3131322e36362e302f32342d3234203d3e203436303633.roa (raw, json) Hash identifier: F6GRhs4Ym7cQbHiZ1S3rtjfG9sguZ904TOjc50vTNgY= Subject key identifier: DD:BF:EB:55:6E:18:55:77:4D:7D:2F:75:43:D1:F5:F6:4B:54:64:C3 Certificate issuer: /CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Certificate serial: 1A860BB3C3CB8BA0C2B244C40AC4C8BDF886673C Authority key identifier: D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36362e302f32342d3234203d3e203436303633.roa Signing time: Fri 04 Oct 2024 11:00:01 +0000 ROA not before: Fri 04 Oct 2024 10:55:01 +0000 ROA not after: Fri 03 Oct 2025 11:00:01 +0000 asID: 46063 IP address blocks: 27.112.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 00:21:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:86:0b:b3:c3:cb:8b:a0:c2:b2:44:c4:0a:c4:c8:bd:f8:86:67:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Validity Not Before: Oct 4 10:55:01 2024 GMT Not After : Oct 3 11:00:01 2025 GMT Subject: CN=DDBFEB556E1855774D7D2F7543D1F5F64B5464C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fa:b4:96:11:70:20:63:8c:bc:bd:43:08:f3: 69:d9:e9:85:ae:e8:d7:50:7e:b0:40:e4:68:4e:a8: bc:15:0e:d6:06:4e:14:19:77:b4:1e:67:38:1a:c4: 51:36:bd:90:4e:7a:25:a4:af:d8:2c:eb:9f:5c:02: df:6a:d6:53:92:40:84:36:3c:74:e0:cc:39:ce:cd: 40:21:47:18:a6:8e:15:57:c3:d9:03:c2:f3:ec:a4: b3:04:e9:01:91:98:95:87:82:aa:64:e9:5e:a4:34: d0:e0:54:ca:2d:eb:2b:6c:c7:e9:3a:16:e6:5d:1f: 79:b7:81:24:c1:22:eb:8d:be:66:67:4e:c0:1a:38: a8:11:3d:51:2a:04:93:dc:a5:76:4d:99:7c:78:57: 06:c6:60:ef:1a:a3:a4:02:81:42:19:4b:66:e7:4e: 1a:eb:c1:d9:30:b0:4e:bb:f3:22:18:b5:db:23:c0: ad:73:12:2a:b5:59:29:c2:86:cd:52:6e:ea:da:a1: 4b:ba:6b:cd:ca:29:d8:98:83:01:81:8e:8c:f7:c5: 65:48:f9:7f:6b:84:04:15:8b:a0:85:43:2b:16:1c: b0:d2:13:c4:9a:2b:f8:07:83:01:65:03:77:dd:31: 77:e1:2a:ff:e5:68:c3:d9:23:52:5a:1d:2e:11:04: 4a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:BF:EB:55:6E:18:55:77:4D:7D:2F:75:43:D1:F5:F6:4B:54:64:C3 X509v3 Authority Key Identifier: keyid:D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36362e302f32342d3234203d3e203436303633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.112.66.0/24 Signature Algorithm: sha256WithRSAEncryption 14:ff:44:0f:1e:bd:93:2f:05:6c:e4:28:eb:82:3d:fe:36:48: 6f:03:51:c6:89:eb:3c:dd:ca:6e:16:7e:01:f4:2d:ba:c0:d6: c6:5f:08:25:6f:3f:60:22:f3:f8:de:6e:f0:3b:0c:2f:7a:49: 11:be:c5:ec:2e:8e:0d:10:03:c6:d1:c4:cb:14:96:b7:91:78: d1:52:8f:b9:0a:91:9b:a5:ea:8c:36:7c:f8:90:29:42:e9:c6: c4:c5:54:f0:e6:3b:db:fd:b3:3c:09:f0:ae:45:5f:47:f7:e3: c9:17:14:b4:02:be:98:0c:15:a0:04:02:a7:66:7f:2f:36:a3: 31:17:02:56:1e:9c:26:4e:2b:a0:92:f1:3a:e9:01:48:9b:eb: 19:da:8c:a3:d9:1f:13:ad:40:ea:f5:7b:d5:4c:c3:0b:1f:6c: 46:dc:32:e3:30:f5:7c:25:84:c0:4c:9e:ee:b2:01:d5:fc:52: d4:44:39:6c:7b:62:19:4e:8a:60:ad:33:b8:df:0d:a9:ea:18: 65:ef:88:aa:6a:c9:1d:61:a5:08:7b:15:93:c2:c8:87:fb:4e: 6c:4b:4a:b8:d8:52:31:94:d2:a2:9d:77:2b:32:b2:85:6d:10: f9:b3:62:f1:dd:8d:99:84:59:a1:87:aa:e2:d6:44:58:2a:2a: 3e:78:67:16 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUGoYLs8PLi6DCskTECsTIvfiGZzwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5 NTkyNTMxMjAeFw0yNDEwMDQxMDU1MDFaFw0yNTEwMDMxMTAwMDFaMDMxMTAvBgNV BAMTKEREQkZFQjU1NkUxODU1Nzc0RDdEMkY3NTQzRDFGNUY2NEI1NDY0QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6+rSWEXAgY4y8vUMI82nZ6YWu 6NdQfrBA5GhOqLwVDtYGThQZd7QeZzgaxFE2vZBOeiWkr9gs659cAt9q1lOSQIQ2 PHTgzDnOzUAhRximjhVXw9kDwvPspLME6QGRmJWHgqpk6V6kNNDgVMot6ytsx+k6 FuZdH3m3gSTBIuuNvmZnTsAaOKgRPVEqBJPcpXZNmXx4VwbGYO8ao6QCgUIZS2bn ThrrwdkwsE678yIYtdsjwK1zEiq1WSnChs1SburaoUu6a83KKdiYgwGBjoz3xWVI +X9rhAQVi6CFQysWHLDSE8SaK/gHgwFlA3fdMXfhKv/laMPZI1JaHS4RBEqVAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU3b/rVW4YVXdNfS91Q9H19ktUZMMwHwYDVR0j BBgwFoAU0qaryh74lyUQnL6l1C5oPJWSUxIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWQxZTE2YS0wYTRkLTQ0YjEtOTg0NS05YzBjZDdhNmYzOGYvMC9EMkE2QUJDQTFF Rjg5NzI1MTA5Q0JFQTVENDJFNjgzQzk1OTI1MzEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5NTky NTMxMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhZDFlMTZhLTBhNGQtNDRiMS05 ODQ1LTljMGNkN2E2ZjM4Zi8wLzMyMzcyZTMxMzEzMjJlMzYzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbcEIwDQYJKoZIhvcN AQELBQADggEBABT/RA8evZMvBWzkKOuCPf42SG8DUcaJ6zzdym4WfgH0LbrA1sZf CCVvP2Ai8/jebvA7DC96SRG+xewujg0QA8bRxMsUlreReNFSj7kKkZul6ow2fPiQ KULpxsTFVPDmO9v9szwJ8K5FX0f348kXFLQCvpgMFaAEAqdmfy82ozEXAlYenCZO K6CS8TrpAUib6xnajKPZHxOtQOr1e9VMwwsfbEbcMuMw9XwlhMBMnu6yAdX8UtRE OWx7YhlOimCtM7jfDanqGGXviKpqyR1hpQh7FZPCyIf7TmxLSrjYUjGU0qKddysy soVtEPmzYvHdjZmEWaGHquLWRFgqKj54ZxY= -----END CERTIFICATE-----Generated at Tue Mar 11 05:03:50 2025 by rpki-client