$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa File: 3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa (raw, json) Hash identifier: w+RYC3vYcE6YamNLwccznz3T3mrZWYac1wgLPKfCn/Q= Subject key identifier: 28:C2:C1:B2:7E:B5:DE:28:C3:6F:6E:D9:8A:9D:09:8C:7E:3D:79:82 Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 48316518963D7AB8EC9000940BADFC794BD15D8B Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa Signing time: Mon 04 Dec 2023 07:00:49 +0000 ROA not before: Mon 04 Dec 2023 06:55:49 +0000 ROA not after: Mon 02 Dec 2024 07:00:49 +0000 asID: 142327 IP address blocks: 124.40.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:31:65:18:96:3d:7a:b8:ec:90:00:94:0b:ad:fc:79:4b:d1:5d:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Dec 4 06:55:49 2023 GMT Not After : Dec 2 07:00:49 2024 GMT Subject: CN=28C2C1B27EB5DE28C36F6ED98A9D098C7E3D7982 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:23:77:12:a5:3a:47:9b:5a:5b:4b:42:dd:8d: 79:4c:14:e0:c5:cf:45:08:f4:5b:d4:ec:be:4e:10: 59:19:53:4b:10:25:bb:6c:4d:82:dc:68:42:86:d5: e7:75:44:b6:f8:f3:ed:9a:47:70:fc:49:14:f1:25: 33:61:9c:93:56:1b:81:d2:46:96:30:d6:d1:03:ed: e7:94:1e:5b:3a:87:f3:43:41:e0:a3:c3:4b:55:88: ba:35:6e:ee:e3:d3:76:d1:a3:04:e6:86:8a:95:ec: fd:0a:a0:89:88:e4:26:d7:f3:e5:21:1e:db:da:3f: f5:d5:72:e7:3d:f1:3a:3d:eb:7a:3c:af:98:f2:8b: ed:dc:ea:73:d8:5b:fe:cb:48:4e:06:87:c2:a9:e2: a7:9a:99:b7:e5:30:6b:dd:84:7d:13:82:f4:8c:57: 94:d4:f7:cf:22:25:b6:7a:79:b7:78:9d:32:18:37: b4:74:94:c4:31:f9:c8:d7:71:dd:33:60:61:8a:ee: 00:26:ce:6f:3d:ce:0f:38:16:e6:e6:d2:e9:b0:7e: 20:1e:28:ff:91:83:94:a9:5d:e0:05:64:88:97:26: 91:bc:c6:fb:56:7f:d1:ca:e5:a2:97:b5:02:59:d4: 39:e6:79:ca:91:e0:1f:01:b6:ea:74:04:34:56:81: 9d:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:C2:C1:B2:7E:B5:DE:28:C3:6F:6E:D9:8A:9D:09:8C:7E:3D:79:82 X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.40.248.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:a7:10:28:9d:ce:99:d8:d8:eb:5a:61:0a:39:84:a2:32:9d: c5:56:a1:57:99:f8:fc:61:9f:84:b5:81:ee:50:db:d1:d1:d3: 24:89:6b:a4:e8:ef:6f:9a:79:e3:f7:5f:3b:6f:23:a6:60:e1: 37:d8:a2:97:15:6e:01:f1:c6:be:33:64:20:65:47:c3:21:87: e3:c9:7f:52:0d:7b:f5:5b:33:3b:a1:86:5e:b8:b8:8b:c5:0d: aa:d6:e8:71:a7:f4:83:2d:df:9c:da:bc:9c:76:ca:a8:a5:a9: 8c:d7:05:49:e8:d2:31:96:c2:fb:9b:ae:06:04:37:9f:b5:f5: 0c:70:d8:b9:cf:7e:32:82:31:14:54:f8:a0:51:a1:18:e4:36: 94:ef:6b:72:5e:eb:30:e0:1d:c3:dc:1b:78:a5:38:10:d8:ce: 17:b1:26:06:78:10:e6:04:ce:a5:03:ca:b8:1b:18:24:3b:50: 38:98:eb:f8:e6:03:7f:7b:39:e0:9a:62:0e:8f:1c:89:3a:b7: 3b:60:27:24:8c:50:b3:36:22:67:90:71:70:3c:57:73:b5:64: 4f:2f:90:76:3f:54:57:49:3a:2b:3d:38:69:58:af:b2:ab:90: 95:40:f1:df:78:ac:ab:4f:c2:d7:93:08:76:c7:f1:79:57:ad: 2e:c8:38:9b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSDFlGJY9erjskACUC638eUvRXYswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yMzEyMDQwNjU1NDlaFw0yNDEyMDIwNzAwNDlaMDMxMTAvBgNV BAMTKDI4QzJDMUIyN0VCNURFMjhDMzZGNkVEOThBOUQwOThDN0UzRDc5ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMI3cSpTpHm1pbS0LdjXlMFODF z0UI9FvU7L5OEFkZU0sQJbtsTYLcaEKG1ed1RLb48+2aR3D8SRTxJTNhnJNWG4HS RpYw1tED7eeUHls6h/NDQeCjw0tViLo1bu7j03bRowTmhoqV7P0KoImI5CbX8+Uh HtvaP/XVcuc98To963o8r5jyi+3c6nPYW/7LSE4Gh8Kp4qeambflMGvdhH0TgvSM V5TU988iJbZ6ebd4nTIYN7R0lMQx+cjXcd0zYGGK7gAmzm89zg84Fubm0umwfiAe KP+Rg5SpXeAFZIiXJpG8xvtWf9HK5aKXtQJZ1DnmecqR4B8Btup0BDRWgZ3pAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKMLBsn613ijDb27Zip0JjH49eYIwHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOTVjMTljLTMyNjItNDhjNy1h ZjAyLTM3YTgzNWQwYTc3OS8wLzMxMzIzNDJlMzQzMDJlMzIzNDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAfCj4MA0GCSqG SIb3DQEBCwUAA4IBAQBMpxAonc6Z2NjrWmEKOYSiMp3FVqFXmfj8YZ+EtYHuUNvR 0dMkiWuk6O9vmnnj9187byOmYOE32KKXFW4B8ca+M2QgZUfDIYfjyX9SDXv1WzM7 oYZeuLiLxQ2q1uhxp/SDLd+c2rycdsqopamM1wVJ6NIxlsL7m64GBDeftfUMcNi5 z34ygjEUVPigUaEY5DaU72tyXusw4B3D3Bt4pTgQ2M4XsSYGeBDmBM6lA8q4Gxgk O1A4mOv45gN/ezngmmIOjxyJOrc7YCckjFCzNiJnkHFwPFdztWRPL5B2P1RXSTor PThpWK+yq5CVQPHfeKyrT8LXkwh2x/F5V60uyDib -----END CERTIFICATE-----Generated at Fri May 3 21:31:15 2024 by rpki-client on console-ams.rpki-client.org