$ rpki-client -vvf repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31362e302f32342d3234203d3e203531323032.roa File: 3132322e3132382e31362e302f32342d3234203d3e203531323032.roa (raw, json) Hash identifier: CMYmOK+8R1Hs3kHGhRx8R2555ufRrCqQtRcxPZZMVnA= Subject key identifier: D2:7D:BF:DE:1B:B1:EB:D4:EC:3E:C0:64:3A:DC:6C:8E:5E:82:8C:62 Certificate issuer: /CN=00EE953FD699788668C724460F4D8D420238194F Certificate serial: 4D1FA2C5D8A781503A7B1D8264853EE6A6F603C7 Authority key identifier: 00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31362e302f32342d3234203d3e203531323032.roa Signing time: Tue 16 Jul 2024 01:17:37 +0000 ROA not before: Tue 16 Jul 2024 01:12:37 +0000 ROA not after: Tue 15 Jul 2025 01:17:37 +0000 asID: 51202 IP address blocks: 122.128.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Sep 2024 07:48:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:1f:a2:c5:d8:a7:81:50:3a:7b:1d:82:64:85:3e:e6:a6:f6:03:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00EE953FD699788668C724460F4D8D420238194F Validity Not Before: Jul 16 01:12:37 2024 GMT Not After : Jul 15 01:17:37 2025 GMT Subject: CN=D27DBFDE1BB1EBD4EC3EC0643ADC6C8E5E828C62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:05:3a:df:7c:c9:90:d6:36:e1:f4:59:45:b1: 13:b3:3b:ec:f1:34:08:38:53:2b:5c:f6:58:92:78: 79:74:b8:0b:af:b6:f1:dd:0d:24:4f:d8:c9:e0:95: 5d:8b:92:08:1f:d1:58:7e:81:14:76:81:27:91:ed: 77:bf:5f:88:78:79:15:5a:c2:98:04:a2:7a:6c:a4: a9:91:49:16:cc:74:fa:78:3a:74:40:7d:97:cd:af: 9a:f8:5e:08:be:9c:bd:b5:07:dd:fe:b7:b7:9c:f9: 2c:74:c2:a2:3b:72:eb:98:82:47:c8:93:ca:70:d1: 55:a7:02:b1:9a:d0:a9:ff:76:67:c8:e8:6f:bd:0c: 70:c2:81:b4:6a:15:0d:18:96:cf:e7:c3:79:96:00: 40:51:0d:f6:73:47:a8:95:09:2b:e2:9a:b8:fe:b4: fb:80:aa:86:55:95:e3:f8:4c:63:b6:4d:12:f4:0d: 22:f5:11:4f:cf:45:33:c5:ec:e2:25:a2:87:a7:94: 53:51:08:fb:d7:16:1d:b0:fa:76:c8:ec:49:74:f9: 67:6b:18:9c:10:f0:8d:fc:ca:ac:29:9d:c9:ea:54: 2e:41:3c:d5:af:91:60:8f:97:f3:fd:56:5d:4f:81: 42:38:15:6a:06:2b:5e:54:a3:1a:5b:6f:07:a9:38: 5f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:7D:BF:DE:1B:B1:EB:D4:EC:3E:C0:64:3A:DC:6C:8E:5E:82:8C:62 X509v3 Authority Key Identifier: keyid:00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31362e302f32342d3234203d3e203531323032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.16.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:92:55:37:ea:9f:cf:ae:85:ec:54:4a:b8:4d:fb:86:01:a4: 1a:7e:27:48:b7:09:4d:de:6d:15:7b:2a:db:62:b1:be:9a:04: bb:3e:5d:fc:f8:61:6a:69:ae:9b:fd:02:db:b4:32:f4:79:70: 03:8c:a0:62:a7:13:7b:93:93:21:3e:e9:6a:36:32:a2:21:dc: dc:26:25:05:19:fc:84:f7:e1:48:94:ec:03:bb:fc:42:da:3e: 55:7f:da:6d:12:44:80:ff:8e:11:c8:ee:6f:89:24:38:5e:4c: a6:6f:a2:13:04:c0:52:b6:f8:87:40:b9:d7:db:7f:ec:13:dd: 26:c0:eb:6e:2b:0d:7b:0f:d6:4d:c7:5e:52:0e:77:a3:fe:38: 0a:3a:59:05:51:55:59:78:35:ab:85:54:f1:36:f1:7e:68:eb: b7:c4:20:c9:7a:6b:98:e9:0e:43:15:37:2e:07:9d:49:9e:3d: d0:b8:6c:17:9e:c9:49:ee:34:6b:08:9c:44:eb:91:85:53:4b: c0:c4:98:19:ef:f9:87:61:6f:c2:ca:28:bc:32:ec:4f:85:bb: ff:91:c9:a5:f2:68:56:76:69:01:59:9a:6c:a1:9d:ed:8a:10: cd:d7:f5:3c:42:e8:b9:e6:68:8a:33:e1:41:e4:af:58:5a:2a: ab:67:16:ae -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTR+ixdingVA6ex2CZIU+5qb2A8cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIw MjM4MTk0RjAeFw0yNDA3MTYwMTEyMzdaFw0yNTA3MTUwMTE3MzdaMDMxMTAvBgNV BAMTKEQyN0RCRkRFMUJCMUVCRDRFQzNFQzA2NDNBREM2QzhFNUU4MjhDNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbBTrffMmQ1jbh9FlFsROzO+zx NAg4Uytc9liSeHl0uAuvtvHdDSRP2MnglV2Lkggf0Vh+gRR2gSeR7Xe/X4h4eRVa wpgEonpspKmRSRbMdPp4OnRAfZfNr5r4Xgi+nL21B93+t7ec+Sx0wqI7cuuYgkfI k8pw0VWnArGa0Kn/dmfI6G+9DHDCgbRqFQ0Yls/nw3mWAEBRDfZzR6iVCSvimrj+ tPuAqoZVleP4TGO2TRL0DSL1EU/PRTPF7OIlooenlFNRCPvXFh2w+nbI7El0+Wdr GJwQ8I38yqwpncnqVC5BPNWvkWCPl/P9Vl1PgUI4FWoGK15UoxpbbwepOF9TAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0n2/3hux69TsPsBkOtxsjl6CjGIwHwYDVR0j BBgwFoAUAO6VP9aZeIZoxyRGD02NQgI4GU8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODUzZjIyOC0zN2YyLTQ3ZDktYjlmZS00NzZiYWRlMTMzOTMvMC8wMEVFOTUzRkQ2 OTk3ODg2NjhDNzI0NDYwRjREOEQ0MjAyMzgxOTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIwMjM4 MTk0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4NTNmMjI4LTM3ZjItNDdkOS1i OWZlLTQ3NmJhZGUxMzM5My8wLzMxMzIzMjJlMzEzMjM4MmUzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzMTMyMzAzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHqAEDANBgkqhkiG 9w0BAQsFAAOCAQEAXZJVN+qfz66F7FRKuE37hgGkGn4nSLcJTd5tFXsq22KxvpoE uz5d/Phhammum/0C27Qy9HlwA4ygYqcTe5OTIT7pajYyoiHc3CYlBRn8hPfhSJTs A7v8Qto+VX/abRJEgP+OEcjub4kkOF5Mpm+iEwTAUrb4h0C519t/7BPdJsDrbisN ew/WTcdeUg53o/44CjpZBVFVWXg1q4VU8Tbxfmjrt8QgyXprmOkOQxU3LgedSZ49 0LhsF57JSe40awicROuRhVNLwMSYGe/5h2FvwsoovDLsT4W7/5HJpfJoVnZpAVma bKGd7YoQzdf1PELoueZoijPhQeSvWFoqq2cWrg== -----END CERTIFICATE-----Generated at Thu Sep 26 09:57:48 2024 by rpki-client on console-ams.rpki-client.org