$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32302e302f32332d3234203d3e20313338313238.roa File: 3232332e3133302e32302e302f32332d3234203d3e20313338313238.roa (raw, json) Hash identifier: LB+inrTHl++NnxWQECwpAACSUffhvv+u+a57RRWlJlI= Subject key identifier: E5:44:07:69:F0:79:64:B5:8F:53:22:E5:BD:DD:7D:2B:B2:37:55:FF Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 2F411EF4D53969BB0E4A8C239B74892A3CA8E1EE Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32302e302f32332d3234203d3e20313338313238.roa Signing time: Wed 01 May 2024 04:00:35 +0000 ROA not before: Wed 01 May 2024 03:55:35 +0000 ROA not after: Wed 30 Apr 2025 04:00:35 +0000 asID: 138128 IP address blocks: 223.130.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:41:1e:f4:d5:39:69:bb:0e:4a:8c:23:9b:74:89:2a:3c:a8:e1:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: May 1 03:55:35 2024 GMT Not After : Apr 30 04:00:35 2025 GMT Subject: CN=E5440769F07964B58F5322E5BDDD7D2BB23755FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:25:76:3f:43:f5:d8:b1:14:58:74:44:0b:30: cd:45:be:a3:87:12:58:24:80:2b:c4:1b:95:88:a4: 46:f8:b1:ae:4d:85:12:5b:81:02:f7:6b:b8:1d:7b: 58:c6:0f:63:4e:89:83:77:fa:e6:f5:b2:61:21:b6: 9d:2f:83:74:67:70:80:52:03:b8:22:ef:ac:f0:5e: 71:8a:72:a6:46:b6:f9:01:2a:62:50:d8:50:7c:a1: 38:f5:58:da:d6:8e:d4:99:05:6c:35:1e:14:df:32: ba:22:4f:0b:42:c3:d9:63:ec:27:68:56:68:18:70: b4:70:5e:0c:cb:68:80:80:10:a2:74:e2:38:e0:c6: 36:ce:76:5c:3a:0d:b5:09:98:9f:26:d8:ff:5b:9b: a1:8e:22:a9:58:90:ee:ec:64:b9:d0:a4:e4:8c:c9: 68:90:1a:cb:c5:42:7d:61:d0:e5:bc:ac:ef:21:1c: 52:e9:10:f6:44:eb:48:be:64:c7:da:c6:68:8c:60: c0:ed:14:2b:90:73:40:1d:26:69:23:2e:b0:6a:66: 95:6f:38:3f:23:c8:dd:b5:78:f6:4c:26:43:f7:0d: 31:f1:f5:57:f1:4a:17:64:d8:95:5c:91:59:9b:81: e5:b5:91:35:b3:cf:dc:c3:9b:55:d7:5f:90:8c:88: 58:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:44:07:69:F0:79:64:B5:8F:53:22:E5:BD:DD:7D:2B:B2:37:55:FF X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32302e302f32332d3234203d3e20313338313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.130.20.0/23 Signature Algorithm: sha256WithRSAEncryption 69:f3:50:4b:19:49:76:57:a9:b6:da:d2:77:6a:d1:de:4b:3a: 6c:22:ee:55:b3:2b:04:14:7b:dd:f2:bf:cc:79:ca:ba:8c:5e: e1:ad:75:cb:2c:88:9b:13:24:76:fd:65:a2:00:3d:22:e5:b6: 94:25:33:45:22:6b:de:aa:8e:cd:82:ff:11:c2:7b:b7:cb:49: 81:48:18:18:97:64:97:c5:11:6c:00:f3:b5:ab:dd:f9:5f:30: 1d:78:4a:68:27:8b:db:aa:49:de:48:da:f1:1c:8e:59:2d:b4: d2:1c:6e:ca:54:58:bd:df:df:fb:ed:fe:f2:83:3d:77:40:f4: af:3d:df:ff:49:3f:70:48:27:dc:ab:29:9d:34:eb:85:12:11: 51:aa:61:16:e5:47:60:04:24:e6:e4:6f:94:dc:24:08:0c:3d: ea:35:80:f4:bd:b4:c4:67:2f:ed:09:34:2b:18:15:5d:87:b6: cc:91:ef:bb:ff:e6:33:0c:e3:90:2f:b4:ec:71:0d:3a:75:34: 75:83:9b:e4:2c:d9:fe:7b:ff:f2:4f:cb:ce:e0:a3:66:80:69: ba:e1:a6:67:39:c1:ec:55:16:03:69:e0:59:68:a3:2e:52:90: 1c:6d:d0:7e:0d:12:81:bb:07:26:c7:f2:67:67:94:41:fd:3b: 4f:4e:5c:6d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUL0Ee9NU5absOSowjm3SJKjyo4e4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNDA1MDEwMzU1MzVaFw0yNTA0MzAwNDAwMzVaMDMxMTAvBgNV BAMTKEU1NDQwNzY5RjA3OTY0QjU4RjUzMjJFNUJEREQ3RDJCQjIzNzU1RkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyJXY/Q/XYsRRYdEQLMM1FvqOH ElgkgCvEG5WIpEb4sa5NhRJbgQL3a7gde1jGD2NOiYN3+ub1smEhtp0vg3RncIBS A7gi76zwXnGKcqZGtvkBKmJQ2FB8oTj1WNrWjtSZBWw1HhTfMroiTwtCw9lj7Cdo VmgYcLRwXgzLaICAEKJ04jjgxjbOdlw6DbUJmJ8m2P9bm6GOIqlYkO7sZLnQpOSM yWiQGsvFQn1h0OW8rO8hHFLpEPZE60i+ZMfaxmiMYMDtFCuQc0AdJmkjLrBqZpVv OD8jyN21ePZMJkP3DTHx9VfxShdk2JVckVmbgeW1kTWzz9zDm1XXX5CMiFiXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5UQHafB5ZLWPUyLlvd19K7I3Vf8wHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMyMzIzMzJlMzEzMzMwMmUzMjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB34IUMA0GCSqG SIb3DQEBCwUAA4IBAQBp81BLGUl2V6m22tJ3atHeSzpsIu5VsysEFHvd8r/Mecq6 jF7hrXXLLIibEyR2/WWiAD0i5baUJTNFImveqo7Ngv8Rwnu3y0mBSBgYl2SXxRFs APO1q935XzAdeEpoJ4vbqkneSNrxHI5ZLbTSHG7KVFi939/77f7ygz13QPSvPd// ST9wSCfcqymdNOuFEhFRqmEW5UdgBCTm5G+U3CQIDD3qNYD0vbTEZy/tCTQrGBVd h7bMke+7/+YzDOOQL7TscQ06dTR1g5vkLNn+e//yT8vO4KNmgGm64aZnOcHsVRYD aeBZaKMuUpAcbdB+DRKBuwcmx/JnZ5RB/TtPTlxt -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org