$ rpki-client -vvf repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/3132352e36322e39322e302f32322d3234203d3e20313338383032.roa File: 3132352e36322e39322e302f32322d3234203d3e20313338383032.roa (raw, json) Hash identifier: S3JK4araZ+jpsxXzLLDPElWiJVYLVpgzU14AHPJkLek= Subject key identifier: D7:68:6A:C5:AC:2C:8C:44:9B:D6:9F:96:E5:B3:14:17:DA:10:7C:1F Certificate issuer: /CN=03315D0E966A85B878EA9058B8CF03EAF2881889 Certificate serial: 1CF1AC1F14B3A97157E061AECBE2B8AA0E7696AA Authority key identifier: 03:31:5D:0E:96:6A:85:B8:78:EA:90:58:B8:CF:03:EA:F2:88:18:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03315D0E966A85B878EA9058B8CF03EAF2881889.cer Subject info access: rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/3132352e36322e39322e302f32322d3234203d3e20313338383032.roa Signing time: Mon 01 Jul 2024 01:04:37 +0000 ROA not before: Mon 01 Jul 2024 00:59:37 +0000 ROA not after: Mon 30 Jun 2025 01:04:37 +0000 asID: 138802 IP address blocks: 125.62.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/03315D0E966A85B878EA9058B8CF03EAF2881889.crl rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/03315D0E966A85B878EA9058B8CF03EAF2881889.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03315D0E966A85B878EA9058B8CF03EAF2881889.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:f1:ac:1f:14:b3:a9:71:57:e0:61:ae:cb:e2:b8:aa:0e:76:96:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03315D0E966A85B878EA9058B8CF03EAF2881889 Validity Not Before: Jul 1 00:59:37 2024 GMT Not After : Jun 30 01:04:37 2025 GMT Subject: CN=D7686AC5AC2C8C449BD69F96E5B31417DA107C1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:79:7b:a1:1f:ec:83:a9:98:f2:f7:cc:41:dc: ea:79:95:0b:6b:71:76:80:d0:24:99:09:39:f1:c6: 53:76:27:3f:a3:52:51:4b:0e:a6:22:e7:47:c1:32: 76:52:a9:cc:be:30:af:a4:3d:4b:83:36:bb:f0:40: b9:53:86:9d:5c:9f:d3:39:29:62:06:1f:e8:48:b7: 6d:3e:95:3d:fa:e1:0a:17:71:f7:a4:b2:a0:87:d4: d6:ad:06:99:9c:55:55:c6:40:a1:ba:bf:21:a9:52: d1:ea:e0:27:bc:b4:a2:ba:f4:92:ba:39:23:c6:92: b8:aa:8a:31:f5:f6:de:53:0d:2f:ce:08:59:26:48: 4b:3d:de:91:31:79:40:8d:0d:20:0e:8d:6f:96:3e: 1a:8a:c7:92:1d:43:d7:6b:00:e0:56:20:7c:51:8d: ee:b2:07:5b:a9:7b:5e:7e:95:a4:8d:c3:10:1a:63: 14:64:ad:fc:6c:99:36:bb:bb:29:69:b3:0c:79:b8: 84:07:72:c4:a1:d0:bd:e8:c7:d9:6d:7d:ff:e2:6c: bc:33:31:d4:2c:ef:57:e2:40:e9:8c:76:09:7b:16: b5:bc:2c:c6:7c:cc:f3:d5:57:bc:b8:3f:69:78:87: d2:2f:ff:a0:24:a2:a2:b0:21:ab:b2:f2:e5:96:ab: 76:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:68:6A:C5:AC:2C:8C:44:9B:D6:9F:96:E5:B3:14:17:DA:10:7C:1F X509v3 Authority Key Identifier: keyid:03:31:5D:0E:96:6A:85:B8:78:EA:90:58:B8:CF:03:EA:F2:88:18:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/03315D0E966A85B878EA9058B8CF03EAF2881889.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03315D0E966A85B878EA9058B8CF03EAF2881889.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/3132352e36322e39322e302f32322d3234203d3e20313338383032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 125.62.92.0/22 Signature Algorithm: sha256WithRSAEncryption 53:90:db:62:d4:ea:77:78:40:f8:1e:6e:71:e9:b2:33:20:75: d9:ef:0e:b2:fa:a5:bb:bd:4f:be:00:51:5f:de:79:00:f7:ac: 92:67:5e:25:7f:5a:56:ef:53:14:bf:8a:cf:99:d5:42:e2:fc: 02:15:c4:ca:f5:45:89:b7:01:b9:3a:6f:3e:59:89:c2:ec:85: 1a:9c:6d:c2:a4:f5:70:b9:79:f1:d5:26:59:6b:8a:7a:d2:8a: ec:ce:05:e2:a4:3d:16:42:e6:7c:78:fc:55:c7:bc:9c:19:20: d5:77:41:21:03:0d:61:c6:00:83:b4:5b:84:5a:20:f1:f3:f5: 09:4e:61:5d:48:d4:27:21:85:e9:87:34:16:a9:e6:c7:b4:b3: 36:03:5a:ac:15:5d:3f:b8:26:d1:12:16:e8:9e:28:9b:69:20: 18:9d:b9:32:95:39:01:67:59:a4:03:df:e2:b4:7c:33:f8:44: 09:27:ef:62:b5:11:db:33:41:51:9e:3e:3a:89:50:ae:fb:aa: b7:db:e0:46:e2:a0:d1:23:f8:18:c4:0c:e5:e5:28:f8:70:6d: f6:e5:f8:56:cc:ff:0c:5d:98:4c:cf:e6:6a:05:61:ca:b6:6b: ca:bc:8a:df:35:3e:dc:93:22:05:6e:ed:94:5c:5d:93:b5:a8: 01:2a:7c:ff -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHPGsHxSzqXFX4GGuy+K4qg52lqowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMzMTVEMEU5NjZBODVCODc4RUE5MDU4QjhDRjAzRUFG Mjg4MTg4OTAeFw0yNDA3MDEwMDU5MzdaFw0yNTA2MzAwMTA0MzdaMDMxMTAvBgNV BAMTKEQ3Njg2QUM1QUMyQzhDNDQ5QkQ2OUY5NkU1QjMxNDE3REExMDdDMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4eXuhH+yDqZjy98xB3Op5lQtr cXaA0CSZCTnxxlN2Jz+jUlFLDqYi50fBMnZSqcy+MK+kPUuDNrvwQLlThp1cn9M5 KWIGH+hIt20+lT364QoXcfeksqCH1NatBpmcVVXGQKG6vyGpUtHq4Ce8tKK69JK6 OSPGkriqijH19t5TDS/OCFkmSEs93pExeUCNDSAOjW+WPhqKx5IdQ9drAOBWIHxR je6yB1upe15+laSNwxAaYxRkrfxsmTa7uylpswx5uIQHcsSh0L3ox9ltff/ibLwz MdQs71fiQOmMdgl7FrW8LMZ8zPPVV7y4P2l4h9Iv/6AkoqKwIauy8uWWq3ZTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU12hqxawsjESb1p+W5bMUF9oQfB8wHwYDVR0j BBgwFoAUAzFdDpZqhbh46pBYuM8D6vKIGIkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTlhY2I5Ny02ZTg3LTRlMzEtYTU2OS1hMjY2MGRmNGYyYjgvMC8wMzMxNUQwRTk2 NkE4NUI4NzhFQTkwNThCOENGMDNFQUYyODgxODg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMzMTVEMEU5NjZBODVCODc4RUE5MDU4QjhDRjAzRUFGMjg4 MTg4OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1OWFjYjk3LTZlODctNGUzMS1h NTY5LWEyNjYwZGY0ZjJiOC8wLzMxMzIzNTJlMzYzMjJlMzkzMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzODM4MzAzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAn0+XDANBgkqhkiG 9w0BAQsFAAOCAQEAU5DbYtTqd3hA+B5ucemyMyB12e8Osvqlu71PvgBRX955APes kmdeJX9aVu9TFL+Kz5nVQuL8AhXEyvVFibcBuTpvPlmJwuyFGpxtwqT1cLl58dUm WWuKetKK7M4F4qQ9FkLmfHj8Vce8nBkg1XdBIQMNYcYAg7RbhFog8fP1CU5hXUjU JyGF6Yc0Fqnmx7SzNgNarBVdP7gm0RIW6J4om2kgGJ25MpU5AWdZpAPf4rR8M/hE CSfvYrUR2zNBUZ4+OolQrvuqt9vgRuKg0SP4GMQM5eUo+HBt9uX4Vsz/DF2YTM/m agVhyrZryryK3zU+3JMiBW7tlFxdk7WoASp8/w== -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org