$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e32342e302f32312d3234203d3e203138303539.roa File: 3132322e3132382e32342e302f32312d3234203d3e203138303539.roa (raw, json) Hash identifier: Z7ihyHJJuPY8FFZ7/DROXfWdIHRz+ys3IfosXJ7dRRE= Subject key identifier: 25:B6:E8:93:CB:96:12:E4:77:96:BF:2D:D9:3E:44:1C:46:35:90:CA Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 58B57152EA3ADF8E149E5877202099D7A3FD53B2 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e32342e302f32312d3234203d3e203138303539.roa Signing time: Fri 19 Apr 2024 09:01:25 +0000 ROA not before: Fri 19 Apr 2024 08:56:25 +0000 ROA not after: Fri 18 Apr 2025 09:01:25 +0000 asID: 18059 IP address blocks: 122.128.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 04:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:b5:71:52:ea:3a:df:8e:14:9e:58:77:20:20:99:d7:a3:fd:53:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Apr 19 08:56:25 2024 GMT Not After : Apr 18 09:01:25 2025 GMT Subject: CN=25B6E893CB9612E47796BF2DD93E441C463590CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:11:95:65:8e:da:ac:48:10:33:ce:51:77:23: fb:5f:34:4e:2b:b5:9c:3f:e9:2c:4a:b2:bf:0c:84: e1:82:95:85:54:fb:51:43:83:f3:bb:66:5d:a6:53: 0c:cd:77:8c:8f:a1:a2:f4:13:b6:bf:ee:24:c7:0e: 4f:8f:48:1a:83:7f:08:48:33:81:b2:08:69:23:ff: f1:f5:e6:43:25:79:79:f8:1f:65:bc:18:4e:c0:49: 42:79:77:70:38:f7:8b:ca:88:75:e3:ff:38:c7:61: 45:26:4c:e0:13:51:25:8a:34:32:09:11:d4:e1:4e: 60:af:47:8b:c2:eb:2e:df:b0:51:43:de:82:fa:58: 62:fc:c6:8f:ef:6e:40:55:f2:67:f8:a5:1e:e8:70: 03:10:c8:a5:03:79:c7:7d:22:09:76:38:a1:b9:a2: 36:1c:53:99:77:db:9b:9c:23:13:ec:86:87:4c:ab: f1:6a:ad:d9:50:cb:f3:e1:ec:47:fe:07:c4:2d:63: 8f:68:ac:83:65:76:1d:8f:3a:8c:a5:bb:bc:9d:9d: 76:3b:ee:55:ca:00:b5:2c:25:6d:e4:86:97:ae:54: be:58:85:54:9c:6e:b3:3a:85:3b:f7:16:36:04:2b: 79:a8:ab:f0:92:58:5a:7e:f6:2f:3c:3a:45:34:6e: c2:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:B6:E8:93:CB:96:12:E4:77:96:BF:2D:D9:3E:44:1C:46:35:90:CA X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e32342e302f32312d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.24.0/21 Signature Algorithm: sha256WithRSAEncryption 30:5d:a9:bb:66:b7:fd:f8:75:51:07:d0:48:b9:6e:58:12:d3: d7:81:03:6a:09:1f:b6:7a:34:7f:06:60:21:a6:e5:b0:3c:66: fa:42:d1:2f:7f:c1:c4:f4:3b:4c:62:4b:bc:5c:e8:6a:19:61: 39:d4:65:b4:c4:81:9b:e8:f5:ba:ba:19:2d:fc:ea:ed:3a:f0: 9c:11:79:6d:73:df:1b:18:6d:53:06:32:83:4e:5c:c6:a2:78: ce:92:b2:22:da:38:7e:78:95:7a:1d:c5:d9:58:18:47:e0:54: 1e:aa:ad:3a:78:e3:89:6d:7f:9f:1e:1c:3b:e2:0c:5b:65:04: 91:a4:06:d4:33:cf:39:b2:db:54:9d:a5:12:1e:b7:ec:92:3a: 7b:b2:a1:e9:e1:de:fd:57:51:da:7b:83:28:5a:d9:0c:0d:22: 5a:ee:aa:9a:e7:75:c5:b2:9c:73:a9:0f:c2:12:de:25:18:dd: 0b:a7:f6:30:8d:83:c5:69:89:a8:4e:8a:99:fb:38:2e:7c:6c: 6c:0f:77:06:d2:26:c2:c5:e1:4b:ef:77:03:94:82:f4:6e:5a: c1:6a:c8:b7:58:1f:69:5d:6a:59:16:b3:5d:bb:62:cf:23:13: 05:59:92:e6:37:f7:84:bb:07:d8:0c:a7:8e:d0:8f:22:c3:a3: b2:dc:3b:41 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWLVxUuo6344Unlh3ICCZ16P9U7IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNDA0MTkwODU2MjVaFw0yNTA0MTgwOTAxMjVaMDMxMTAvBgNV BAMTKDI1QjZFODkzQ0I5NjEyRTQ3Nzk2QkYyREQ5M0U0NDFDNDYzNTkwQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiEZVljtqsSBAzzlF3I/tfNE4r tZw/6SxKsr8MhOGClYVU+1FDg/O7Zl2mUwzNd4yPoaL0E7a/7iTHDk+PSBqDfwhI M4GyCGkj//H15kMleXn4H2W8GE7ASUJ5d3A494vKiHXj/zjHYUUmTOATUSWKNDIJ EdThTmCvR4vC6y7fsFFD3oL6WGL8xo/vbkBV8mf4pR7ocAMQyKUDecd9Igl2OKG5 ojYcU5l325ucIxPshodMq/FqrdlQy/Ph7Ef+B8QtY49orINldh2POoylu7ydnXY7 7lXKALUsJW3khpeuVL5YhVScbrM6hTv3FjYEK3moq/CSWFp+9i88OkU0bsKDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJbbok8uWEuR3lr8t2T5EHEY1kMowHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMxMzIzMjJlMzEzMjM4MmUzMjM0MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3qAGDANBgkqhkiG 9w0BAQsFAAOCAQEAMF2pu2a3/fh1UQfQSLluWBLT14EDagkftno0fwZgIablsDxm +kLRL3/BxPQ7TGJLvFzoahlhOdRltMSBm+j1uroZLfzq7TrwnBF5bXPfGxhtUwYy g05cxqJ4zpKyIto4fniVeh3F2VgYR+BUHqqtOnjjiW1/nx4cO+IMW2UEkaQG1DPP ObLbVJ2lEh637JI6e7Kh6eHe/VdR2nuDKFrZDA0iWu6qmud1xbKcc6kPwhLeJRjd C6f2MI2DxWmJqE6Kmfs4LnxsbA93BtImwsXhS+93A5SC9G5awWrIt1gfaV1qWRaz XbtizyMTBVmS5jf3hLsH2AynjtCPIsOjstw7QQ== -----END CERTIFICATE-----Generated at Tue Apr 30 10:13:54 2024 by rpki-client on console-fra.rpki-client.org