$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3234382e302f32312d3234203d3e203435333035.roa File: 3132342e34302e3234382e302f32312d3234203d3e203435333035.roa (raw, json) Hash identifier: 9PzdStxfSCkEVmmg8zM7CxhcOBS2/xYaf5HX1uw2aW4= Subject key identifier: 29:67:6D:ED:69:C3:D0:33:DC:F9:E4:87:99:87:DE:25:2A:DB:28:13 Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 50805F36BA427AA484F9899945FCB897E7B105D3 Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3234382e302f32312d3234203d3e203435333035.roa Signing time: Mon 31 Jul 2023 00:06:20 +0000 ROA not before: Mon 31 Jul 2023 00:01:20 +0000 ROA not after: Mon 29 Jul 2024 00:06:20 +0000 asID: 45305 IP address blocks: 124.40.248.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 05:14:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:80:5f:36:ba:42:7a:a4:84:f9:89:99:45:fc:b8:97:e7:b1:05:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Jul 31 00:01:20 2023 GMT Not After : Jul 29 00:06:20 2024 GMT Subject: CN=29676DED69C3D033DCF9E4879987DE252ADB2813 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8c:c7:e2:73:1b:60:b1:79:f9:bb:f8:43:98: 2e:57:b1:f4:0b:9f:75:95:fc:bb:c8:f2:8c:7e:fb: 1b:79:cb:c9:88:ad:18:46:5e:2c:6c:a4:d5:cb:c6: bd:75:f7:84:ce:55:77:69:72:ed:13:55:36:6a:cc: da:81:bf:0c:d4:77:39:01:3d:13:ad:09:2c:0b:a6: 39:3b:2c:bc:7a:e0:a7:57:3c:5c:f6:d4:5a:52:39: 8f:82:e6:eb:49:f4:ab:61:06:cd:b0:fb:4e:b1:07: 78:9d:ff:f2:3f:86:d1:e2:9c:5d:8f:01:7a:1c:b8: 10:15:25:10:e6:31:90:88:bd:72:5d:f9:88:9a:eb: cc:28:e0:c4:1d:ab:0a:c8:cb:73:58:de:2e:f6:99: 0e:3a:da:89:88:db:2f:67:70:0d:07:c6:bc:82:a0: 03:ac:e7:1f:77:3c:10:a7:e4:84:b1:94:8e:23:9e: 79:44:20:79:c0:61:c1:5f:73:dc:e6:3a:5e:b8:06: 96:a1:ce:ab:52:28:cf:e1:33:34:d9:a4:e9:81:b6: e8:fc:92:ea:38:05:14:94:30:46:09:b6:e7:80:e2: 71:60:2a:8b:b5:cd:65:1e:08:d5:3b:c5:27:ce:0b: f5:66:69:c1:54:35:72:87:89:ff:f5:ff:2d:bb:47: bf:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:67:6D:ED:69:C3:D0:33:DC:F9:E4:87:99:87:DE:25:2A:DB:28:13 X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3234382e302f32312d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.40.248.0/21 Signature Algorithm: sha256WithRSAEncryption 29:50:d0:6a:26:91:b0:9a:d1:55:bf:70:b5:c1:38:39:f9:68: 70:56:08:03:0f:7d:d0:5c:f1:da:1e:98:15:90:01:d5:2a:4b: 6b:33:2e:80:eb:13:ab:3e:c7:85:be:c8:87:f7:77:ba:7c:79: dc:8c:63:b5:af:ae:d7:bf:cd:6c:f7:79:5e:ee:c8:f3:28:7a: 8e:cd:3b:a0:32:dc:3a:51:93:f7:5d:09:9c:5f:04:15:d0:71: 23:64:ed:32:f7:95:85:1f:34:77:9f:01:e2:43:9f:f7:03:61: 59:20:a5:bb:e8:f7:f2:06:58:68:9c:c3:e8:10:67:6a:cb:ce: 8f:d3:79:f8:13:4f:89:98:a4:11:a9:a2:8d:67:3b:05:3d:b7: b2:36:37:22:21:27:b9:aa:0f:25:12:23:fa:29:ee:41:7f:1e: 6f:ff:2e:f4:30:d9:88:dc:15:92:18:fa:9a:17:01:dc:89:ab: bb:a8:a2:e0:99:d5:35:88:50:10:58:d6:9d:d6:9d:7a:ad:0b: 5d:0b:37:24:7e:a4:b5:b4:2c:65:f2:19:d4:0f:2b:b5:01:4f: eb:8c:a3:d3:ec:80:a7:52:d3:13:8b:26:bc:41:fb:4a:fd:13: b8:f8:a8:51:03:4a:ea:62:83:31:ff:75:87:d0:9d:3b:a3:8d: 6e:a3:66:61 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUIBfNrpCeqSE+YmZRfy4l+exBdMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yMzA3MzEwMDAxMjBaFw0yNDA3MjkwMDA2MjBaMDMxMTAvBgNV BAMTKDI5Njc2REVENjlDM0QwMzNEQ0Y5RTQ4Nzk5ODdERTI1MkFEQjI4MTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEjMficxtgsXn5u/hDmC5XsfQL n3WV/LvI8ox++xt5y8mIrRhGXixspNXLxr1194TOVXdpcu0TVTZqzNqBvwzUdzkB PROtCSwLpjk7LLx64KdXPFz21FpSOY+C5utJ9KthBs2w+06xB3id//I/htHinF2P AXocuBAVJRDmMZCIvXJd+Yia68wo4MQdqwrIy3NY3i72mQ462omI2y9ncA0HxryC oAOs5x93PBCn5ISxlI4jnnlEIHnAYcFfc9zmOl64BpahzqtSKM/hMzTZpOmBtuj8 kuo4BRSUMEYJtueA4nFgKou1zWUeCNU7xSfOC/VmacFUNXKHif/1/y27R7+vAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUKWdt7WnD0DPc+eSHmYfeJSrbKBMwHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOTVjMTljLTMyNjItNDhjNy1h ZjAyLTM3YTgzNWQwYTc3OS8wLzMxMzIzNDJlMzQzMDJlMzIzNDM4MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3wo+DANBgkqhkiG 9w0BAQsFAAOCAQEAKVDQaiaRsJrRVb9wtcE4OflocFYIAw990Fzx2h6YFZAB1SpL azMugOsTqz7Hhb7Ih/d3unx53Ixjta+u17/NbPd5Xu7I8yh6js07oDLcOlGT910J nF8EFdBxI2TtMveVhR80d58B4kOf9wNhWSClu+j38gZYaJzD6BBnasvOj9N5+BNP iZikEamijWc7BT23sjY3IiEnuaoPJRIj+inuQX8eb/8u9DDZiNwVkhj6mhcB3Imr u6ii4JnVNYhQEFjWndadeq0LXQs3JH6ktbQsZfIZ1A8rtQFP64yj0+yAp1LTE4sm vEH7Sv0TuPioUQNK6mKDMf91h9CdO6ONbqNmYQ== -----END CERTIFICATE-----Generated at Thu Apr 18 03:33:43 2024 by rpki-client on console-ams.rpki-client.org