$ rpki-client -vvf repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/3132322e3230302e3134342e302f32312d3234203d3e203338313438.roa File: 3132322e3230302e3134342e302f32312d3234203d3e203338313438.roa (raw, json) Hash identifier: Q0JPOTRHz7S3KCYgxrzfh7sPXe85gqUb+g55+vjlzmE= Subject key identifier: A3:1A:24:21:A4:3F:B1:CD:30:3E:83:F0:B4:85:20:7C:99:A5:8B:73 Certificate issuer: /CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1 Certificate serial: 2F8740A04631201C350EA005DFF202B3E3CA6176 Authority key identifier: B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/3132322e3230302e3134342e302f32312d3234203d3e203338313438.roa Signing time: Wed 16 Oct 2024 14:00:01 +0000 ROA not before: Wed 16 Oct 2024 13:55:01 +0000 ROA not after: Wed 15 Oct 2025 14:00:01 +0000 asID: 38148 IP address blocks: 122.200.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:87:40:a0:46:31:20:1c:35:0e:a0:05:df:f2:02:b3:e3:ca:61:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1 Validity Not Before: Oct 16 13:55:01 2024 GMT Not After : Oct 15 14:00:01 2025 GMT Subject: CN=A31A2421A43FB1CD303E83F0B485207C99A58B73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b6:53:d7:93:3b:e4:eb:08:cd:fc:45:02:cc: 02:96:11:c6:98:5d:50:74:51:22:fb:5f:32:9c:20: 9d:03:39:47:89:d2:da:5b:88:8f:2e:ed:87:0b:15: 0c:68:a8:7c:e5:b2:98:4b:84:43:0b:2a:d9:93:58: 58:46:39:25:9f:2c:0b:2c:f6:7c:6b:1e:f9:da:36: 28:b6:bb:72:0f:b2:1f:ea:a9:a7:5e:11:1c:13:92: 0b:be:01:cc:0c:23:35:2d:bd:86:3f:f0:9d:19:8c: d0:09:3c:6c:4a:7e:1d:03:9a:91:27:28:af:c5:cf: 14:59:e3:ca:a7:83:b6:87:c1:30:58:b8:5a:b5:c2: 18:3d:c0:91:7c:e8:df:6f:b2:82:44:95:6b:da:5b: 92:43:75:c0:07:c8:ae:83:11:15:b1:57:62:0c:80: b3:93:a9:20:b3:be:df:20:78:8a:29:a5:79:8b:d4: c9:25:54:ea:e5:30:28:b7:0d:d3:a8:eb:9c:48:2a: 86:a4:c1:c0:04:fe:98:c1:03:d3:66:03:de:bb:bb: 36:ce:5a:5b:6c:3b:72:44:56:fd:4c:3c:73:bb:a5: 1a:2f:7c:8b:19:42:77:9d:ba:60:71:b6:43:1c:88: cc:bb:2a:c5:66:01:f3:32:21:9a:a7:88:7a:95:d7: c0:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:1A:24:21:A4:3F:B1:CD:30:3E:83:F0:B4:85:20:7C:99:A5:8B:73 X509v3 Authority Key Identifier: keyid:B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/3132322e3230302e3134342e302f32312d3234203d3e203338313438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.200.144.0/21 Signature Algorithm: sha256WithRSAEncryption 74:a5:92:12:c2:4d:c4:0f:47:7f:18:c8:3e:0b:98:d6:64:f2: 49:7b:31:c4:9c:58:6c:d7:2d:a2:f6:99:fa:3c:3b:8d:a2:b6: 84:02:8b:3c:2a:ce:15:4d:af:df:cb:db:20:5b:7d:9f:ef:d4: 36:01:79:cf:1f:9c:ed:fe:8e:6a:d1:1d:70:67:8f:05:a0:c3: bc:89:20:37:e2:ff:8b:8e:fa:35:5c:e2:75:6f:bd:ae:97:93: d9:7e:02:ac:55:a4:3e:0b:55:d0:77:09:22:ec:f4:48:7a:a0: 03:58:ee:bc:bb:10:0e:7c:71:d2:d0:19:95:0e:73:da:b0:a7: bb:fb:ab:30:4d:7b:f7:bf:ef:57:66:b1:80:d9:57:d8:e0:72: be:40:1e:7b:2b:2a:8f:6b:9e:70:e2:ff:82:d2:5d:a7:82:71: fd:69:72:86:01:f2:39:8e:e1:8a:04:cf:d5:09:92:d4:c1:f1: af:be:39:fe:ae:0d:a4:f5:62:f7:ed:f6:4b:4e:8c:68:e5:f4: a4:c4:2e:ec:47:eb:2d:66:45:38:d1:99:61:78:90:d8:df:88: 3e:19:a0:3d:ee:81:1f:ee:fd:eb:44:4b:6c:a7:e0:95:73:61: 0a:e5:80:b7:8b:e1:37:0e:38:75:8f:e6:79:a8:36:cf:bb:11: 56:3d:8e:26 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUL4dAoEYxIBw1DqAF3/ICs+PKYXYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjkyMURBQUJCODQ5NDlEREMyNTAwRDRGMEE2RDkzRkEw RUIzODRFMTAeFw0yNDEwMTYxMzU1MDFaFw0yNTEwMTUxNDAwMDFaMDMxMTAvBgNV BAMTKEEzMUEyNDIxQTQzRkIxQ0QzMDNFODNGMEI0ODUyMDdDOTlBNThCNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/tlPXkzvk6wjN/EUCzAKWEcaY XVB0USL7XzKcIJ0DOUeJ0tpbiI8u7YcLFQxoqHzlsphLhEMLKtmTWFhGOSWfLAss 9nxrHvnaNii2u3IPsh/qqadeERwTkgu+AcwMIzUtvYY/8J0ZjNAJPGxKfh0DmpEn KK/FzxRZ48qng7aHwTBYuFq1whg9wJF86N9vsoJElWvaW5JDdcAHyK6DERWxV2IM gLOTqSCzvt8geIoppXmL1MklVOrlMCi3DdOo65xIKoakwcAE/pjBA9NmA967uzbO WltsO3JEVv1MPHO7pRovfIsZQnedumBxtkMciMy7KsVmAfMyIZqniHqV18DjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUoxokIaQ/sc0wPoPwtIUgfJmli3MwHwYDVR0j BBgwFoAUuSHaq7hJSd3CUA1PCm2T+g6zhOEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NTkyYzI3NC0xMWRiLTQxMjctYmFiYi1hZWFlOTkyODRiMDAvMC9COTIxREFBQkI4 NDk0OUREQzI1MDBENEYwQTZEOTNGQTBFQjM4NEUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjkyMURBQUJCODQ5NDlEREMyNTAwRDRGMEE2RDkzRkEwRUIz ODRFMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE1OTJjMjc0LTExZGItNDEyNy1i YWJiLWFlYWU5OTI4NGIwMC8wLzMxMzIzMjJlMzIzMDMwMmUzMTM0MzQyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMzM4MzEzNDM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDesiQMA0GCSqG SIb3DQEBCwUAA4IBAQB0pZISwk3ED0d/GMg+C5jWZPJJezHEnFhs1y2i9pn6PDuN oraEAos8Ks4VTa/fy9sgW32f79Q2AXnPH5zt/o5q0R1wZ48FoMO8iSA34v+Ljvo1 XOJ1b72ul5PZfgKsVaQ+C1XQdwki7PRIeqADWO68uxAOfHHS0BmVDnPasKe7+6sw TXv3v+9XZrGA2VfY4HK+QB57KyqPa55w4v+C0l2ngnH9aXKGAfI5juGKBM/VCZLU wfGvvjn+rg2k9WL37fZLToxo5fSkxC7sR+stZkU40ZlheJDY34g+GaA97oEf7v3r REtsp+CVc2EK5YC3i+E3Djh1j+Z5qDbPuxFWPY4m -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:14 2024 by rpki-client on console-ams.rpki-client.org