$ rpki-client -vvf repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e37312e302f32342d3234203d3e203436303633.roa File: 32372e3131322e37312e302f32342d3234203d3e203436303633.roa (raw, json) Hash identifier: C63MwCW5Hnh5gDrF+QG6jKk4DCAwBLx47lnD9PywM04= Subject key identifier: 4B:DA:07:53:66:32:67:69:93:E7:C0:BE:52:9C:12:07:C9:9D:F8:B7 Certificate issuer: /CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Certificate serial: 76B5C92DC84DA92115191B4BDE48578F36472B2C Authority key identifier: D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e37312e302f32342d3234203d3e203436303633.roa Signing time: Fri 03 Nov 2023 11:00:01 +0000 ROA not before: Fri 03 Nov 2023 10:55:01 +0000 ROA not after: Fri 01 Nov 2024 11:00:01 +0000 asID: 46063 IP address blocks: 27.112.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 03:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:b5:c9:2d:c8:4d:a9:21:15:19:1b:4b:de:48:57:8f:36:47:2b:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Validity Not Before: Nov 3 10:55:01 2023 GMT Not After : Nov 1 11:00:01 2024 GMT Subject: CN=4BDA07536632676993E7C0BE529C1207C99DF8B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:bd:d6:73:6b:c7:94:a1:d9:a6:3e:2f:ed:51: 66:23:4f:9d:28:24:3a:33:dd:00:a3:b6:df:2c:81: f8:a5:fa:6f:48:8e:16:7e:1c:35:12:56:f7:ae:30: 94:c9:03:4a:87:ee:70:23:b0:15:fe:2c:7d:bb:43: 51:d8:17:45:5b:ff:48:d3:22:dc:a0:24:e9:56:32: ff:ed:06:0c:7d:ff:79:c4:61:7f:03:b7:ca:62:2e: 84:26:bb:a8:b1:3c:e3:28:1c:30:15:1a:25:73:dc: c1:35:04:16:17:38:24:49:38:51:cc:05:fd:41:34: 26:1e:32:44:6d:38:d3:9d:70:1d:a9:61:03:e2:62: 22:03:4f:e6:7e:25:70:57:59:a0:56:5b:0f:c7:92: 36:ce:3c:3c:3c:90:15:9e:a1:b0:3c:f3:83:4f:d6: 1d:03:e5:e4:bb:78:cb:d4:b8:bb:d7:66:e6:73:60: 02:16:99:88:4d:d9:98:d0:c9:60:a5:d3:0c:06:e7: 0d:ef:14:78:2a:1e:aa:e5:28:c1:45:5b:cf:60:dc: e4:42:c6:12:db:10:74:e3:5d:74:2a:e8:89:df:bb: dc:88:f9:c0:71:0a:52:51:91:79:f2:1b:4f:8f:78: 11:06:65:06:0e:66:9b:8a:2b:a6:8b:7c:f6:73:a7: ab:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:DA:07:53:66:32:67:69:93:E7:C0:BE:52:9C:12:07:C9:9D:F8:B7 X509v3 Authority Key Identifier: keyid:D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e37312e302f32342d3234203d3e203436303633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.112.71.0/24 Signature Algorithm: sha256WithRSAEncryption 37:ab:13:1d:ec:26:e1:33:b9:35:d4:37:03:ac:f7:de:15:3a: bd:dd:ea:d4:3f:5a:16:39:d6:fa:2d:7f:7b:36:7a:aa:63:5f: 8e:d3:3e:7d:76:1c:42:a4:75:25:1f:06:ea:09:46:c9:e4:30: 51:f2:56:50:fc:20:9e:e5:be:e3:79:40:87:9c:98:6c:33:91: b3:96:36:88:6d:7c:ac:5f:bd:2c:3a:df:04:65:f3:5d:57:2e: cf:98:5c:cf:dd:2f:04:fd:03:e6:3c:17:f7:10:55:27:2e:40: 13:5a:06:9d:ff:46:5d:98:c4:5d:27:10:1c:af:e4:68:1d:aa: aa:e1:87:21:f3:9a:6d:3c:f2:e3:a1:43:c0:71:d1:14:3c:da: 3a:09:aa:74:75:48:7e:84:28:2b:c6:db:ef:64:55:2b:30:24: bc:54:dc:c6:50:ad:7f:4b:1f:28:2f:c8:b7:96:26:a0:ee:c4: ec:db:07:4d:2b:16:85:54:ac:fa:ef:f7:d9:6f:4a:1b:bb:f5: c1:80:b0:2d:7d:86:69:f2:9d:2e:66:5c:51:55:27:0c:0a:07: 27:cb:91:09:46:af:af:a9:f5:f8:2f:67:d6:09:4c:0a:17:bb: ec:d4:bf:74:4e:11:dd:3f:aa:0a:91:ef:f8:e7:8f:fb:2a:3a: 70:cc:18:e3 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUdrXJLchNqSEVGRtL3khXjzZHKywwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5 NTkyNTMxMjAeFw0yMzExMDMxMDU1MDFaFw0yNDExMDExMTAwMDFaMDMxMTAvBgNV BAMTKDRCREEwNzUzNjYzMjY3Njk5M0U3QzBCRTUyOUMxMjA3Qzk5REY4QjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlvdZza8eUodmmPi/tUWYjT50o JDoz3QCjtt8sgfil+m9IjhZ+HDUSVveuMJTJA0qH7nAjsBX+LH27Q1HYF0Vb/0jT ItygJOlWMv/tBgx9/3nEYX8Dt8piLoQmu6ixPOMoHDAVGiVz3ME1BBYXOCRJOFHM Bf1BNCYeMkRtONOdcB2pYQPiYiIDT+Z+JXBXWaBWWw/HkjbOPDw8kBWeobA884NP 1h0D5eS7eMvUuLvXZuZzYAIWmYhN2ZjQyWCl0wwG5w3vFHgqHqrlKMFFW89g3ORC xhLbEHTjXXQq6Infu9yI+cBxClJRkXnyG0+PeBEGZQYOZpuKK6aLfPZzp6s3AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUS9oHU2YyZ2mT58C+UpwSB8md+LcwHwYDVR0j BBgwFoAU0qaryh74lyUQnL6l1C5oPJWSUxIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWQxZTE2YS0wYTRkLTQ0YjEtOTg0NS05YzBjZDdhNmYzOGYvMC9EMkE2QUJDQTFF Rjg5NzI1MTA5Q0JFQTVENDJFNjgzQzk1OTI1MzEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5NTky NTMxMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhZDFlMTZhLTBhNGQtNDRiMS05 ODQ1LTljMGNkN2E2ZjM4Zi8wLzMyMzcyZTMxMzEzMjJlMzczMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbcEcwDQYJKoZIhvcN AQELBQADggEBADerEx3sJuEzuTXUNwOs994VOr3d6tQ/WhY51votf3s2eqpjX47T Pn12HEKkdSUfBuoJRsnkMFHyVlD8IJ7lvuN5QIecmGwzkbOWNohtfKxfvSw63wRl 811XLs+YXM/dLwT9A+Y8F/cQVScuQBNaBp3/Rl2YxF0nEByv5GgdqqrhhyHzmm08 8uOhQ8Bx0RQ82joJqnR1SH6EKCvG2+9kVSswJLxU3MZQrX9LHygvyLeWJqDuxOzb B00rFoVUrPrv99lvShu79cGAsC19hmnynS5mXFFVJwwKByfLkQlGr6+p9fgvZ9YJ TAoXu+zUv3ROEd0/qgqR7/jnj/sqOnDMGOM= -----END CERTIFICATE-----Generated at Sun Jun 2 03:38:33 2024 by rpki-client on console-ams.rpki-client.org