$ rpki-client -vvf repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36372e302f32342d3234203d3e203436303633.roa File: 32372e3131322e36372e302f32342d3234203d3e203436303633.roa (raw, json) Hash identifier: LgLDtCuEdSQlPSZzcgwEqZ1vX43kzJx0LbWqbn9CCMI= Subject key identifier: DD:47:8B:DC:96:8C:5D:79:2B:85:70:D3:B2:D1:EB:D9:E7:CA:DD:95 Certificate issuer: /CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Certificate serial: 1CBABD2C60FE720B4D7D0F189D2D68DA3FDDBDB4 Authority key identifier: D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36372e302f32342d3234203d3e203436303633.roa Signing time: Fri 03 Nov 2023 11:00:01 +0000 ROA not before: Fri 03 Nov 2023 10:55:01 +0000 ROA not after: Fri 01 Nov 2024 11:00:01 +0000 asID: 46063 IP address blocks: 27.112.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 03:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:ba:bd:2c:60:fe:72:0b:4d:7d:0f:18:9d:2d:68:da:3f:dd:bd:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Validity Not Before: Nov 3 10:55:01 2023 GMT Not After : Nov 1 11:00:01 2024 GMT Subject: CN=DD478BDC968C5D792B8570D3B2D1EBD9E7CADD95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a4:8a:87:4f:69:f4:ca:89:96:27:65:36:5b: 5a:a9:9b:d5:62:34:64:7e:f1:e6:c2:c8:f6:f1:f9: 84:04:52:10:0f:69:b2:e9:bc:26:7d:91:e1:8c:55: 93:06:de:9f:44:50:90:e9:f6:cc:7c:05:5d:fa:54: ff:23:ea:9b:4d:bf:5e:2a:dc:36:6d:1a:31:a4:b3: 00:42:c3:5b:e0:73:b8:c6:13:38:cf:ae:04:85:20: eb:95:a8:73:a2:e1:92:64:4e:d5:fb:f6:96:e8:4c: 47:7c:04:39:05:a6:f9:09:6e:95:55:e3:ad:b1:9e: 3d:6e:50:8b:97:3b:66:ae:bc:70:66:6b:63:ca:05: de:b1:84:b3:ff:ec:af:a8:e6:d5:40:fb:a3:bc:31: 2b:78:42:78:37:36:45:f5:4f:0d:1a:bb:7a:3f:01: 0e:82:b4:e4:19:16:1c:34:38:20:73:39:3f:38:a6: 27:99:92:1c:d2:81:e6:13:66:12:aa:40:20:14:c2: da:07:2a:ad:f7:d7:8c:2f:c3:38:47:25:2d:28:22: a9:81:e6:06:a8:d7:fa:30:34:09:4a:52:e0:43:a7: ea:12:5e:4b:e6:19:e1:93:e7:c4:57:28:32:cd:a9: b8:75:03:8a:80:df:48:40:db:0a:ed:94:d9:17:47: 5b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:47:8B:DC:96:8C:5D:79:2B:85:70:D3:B2:D1:EB:D9:E7:CA:DD:95 X509v3 Authority Key Identifier: keyid:D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36372e302f32342d3234203d3e203436303633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.112.67.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:e3:39:a2:8e:ed:79:25:a9:32:7e:4f:10:6f:b1:66:65:b3: e3:56:29:34:3a:6b:f6:e4:72:91:b5:f8:6e:09:6d:27:7b:30: ce:97:49:93:b2:99:2e:78:12:1f:de:39:cc:81:17:e9:50:3c: 09:bf:98:3d:6e:21:d8:5f:88:3e:7a:4f:e8:21:5f:36:c6:7e: fc:d5:7d:09:84:d6:d5:5a:b1:d2:00:c4:d3:16:e0:e9:60:db: 41:4f:1c:6e:a8:90:36:01:a8:12:2f:17:b4:0a:ec:ba:8b:b4: fb:10:02:1b:7b:c5:db:e3:ae:80:19:89:4c:12:a1:b3:cc:f9: 62:c3:c5:6d:bb:be:39:2c:f1:5f:8a:4a:dc:fb:d5:e0:e8:7d: c9:32:5e:06:88:d2:a3:ca:7e:3b:41:a1:8e:b3:6d:6f:d0:6a: fb:72:3a:cb:35:64:a8:88:ea:3c:67:cb:27:ae:e1:66:48:9d: 28:3c:ea:f4:67:5d:65:0f:a0:b6:19:86:e8:17:e9:33:9e:8b: d5:7f:63:76:64:04:5e:eb:ed:d2:55:e6:61:97:42:d3:cd:96: 2f:ce:db:cb:29:42:8c:2c:79:6c:3e:9b:8f:91:46:03:c7:f8: ab:10:4a:17:6c:20:8a:25:98:0d:02:c3:f4:aa:d7:b8:e8:e9: 82:b6:5e:56 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUHLq9LGD+cgtNfQ8YnS1o2j/dvbQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5 NTkyNTMxMjAeFw0yMzExMDMxMDU1MDFaFw0yNDExMDExMTAwMDFaMDMxMTAvBgNV BAMTKERENDc4QkRDOTY4QzVENzkyQjg1NzBEM0IyRDFFQkQ5RTdDQUREOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOpIqHT2n0yomWJ2U2W1qpm9Vi NGR+8ebCyPbx+YQEUhAPabLpvCZ9keGMVZMG3p9EUJDp9sx8BV36VP8j6ptNv14q 3DZtGjGkswBCw1vgc7jGEzjPrgSFIOuVqHOi4ZJkTtX79pboTEd8BDkFpvkJbpVV 462xnj1uUIuXO2auvHBma2PKBd6xhLP/7K+o5tVA+6O8MSt4Qng3NkX1Tw0au3o/ AQ6CtOQZFhw0OCBzOT84pieZkhzSgeYTZhKqQCAUwtoHKq3314wvwzhHJS0oIqmB 5gao1/owNAlKUuBDp+oSXkvmGeGT58RXKDLNqbh1A4qA30hA2wrtlNkXR1vjAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU3UeL3JaMXXkrhXDTstHr2efK3ZUwHwYDVR0j BBgwFoAU0qaryh74lyUQnL6l1C5oPJWSUxIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWQxZTE2YS0wYTRkLTQ0YjEtOTg0NS05YzBjZDdhNmYzOGYvMC9EMkE2QUJDQTFF Rjg5NzI1MTA5Q0JFQTVENDJFNjgzQzk1OTI1MzEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5NTky NTMxMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhZDFlMTZhLTBhNGQtNDRiMS05 ODQ1LTljMGNkN2E2ZjM4Zi8wLzMyMzcyZTMxMzEzMjJlMzYzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbcEMwDQYJKoZIhvcN AQELBQADggEBAH7jOaKO7XklqTJ+TxBvsWZls+NWKTQ6a/bkcpG1+G4JbSd7MM6X SZOymS54Eh/eOcyBF+lQPAm/mD1uIdhfiD56T+ghXzbGfvzVfQmE1tVasdIAxNMW 4Olg20FPHG6okDYBqBIvF7QK7LqLtPsQAht7xdvjroAZiUwSobPM+WLDxW27vjks 8V+KStz71eDofckyXgaI0qPKfjtBoY6zbW/QavtyOss1ZKiI6jxnyyeu4WZInSg8 6vRnXWUPoLYZhugX6TOei9V/Y3ZkBF7r7dJV5mGXQtPNli/O28spQowseWw+m4+R RgPH+KsQShdsIIolmA0Cw/Sq17jo6YK2XlY= -----END CERTIFICATE-----Generated at Sun Jun 2 03:35:02 2024 by rpki-client on console-fra.rpki-client.org