$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32312e302f32342d3234203d3e20313338313238.roa File: 3232332e3133302e32312e302f32342d3234203d3e20313338313238.roa (raw, json) Hash identifier: M8Jg7RXp9q2IokSrSE72Qz1D7tYQ3VERLgs0YJ8PYrM= Subject key identifier: 69:BC:B9:22:FC:0C:D0:76:34:C1:DA:E5:F3:75:8F:23:46:7A:C1:D7 Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 4DDF84CAF63FDA2600191F761BA4CAFBBA0FF718 Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32312e302f32342d3234203d3e20313338313238.roa Signing time: Mon 01 Jul 2024 01:05:18 +0000 ROA not before: Mon 01 Jul 2024 01:00:18 +0000 ROA not after: Mon 30 Jun 2025 01:05:18 +0000 asID: 138128 IP address blocks: 223.130.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:df:84:ca:f6:3f:da:26:00:19:1f:76:1b:a4:ca:fb:ba:0f:f7:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Jul 1 01:00:18 2024 GMT Not After : Jun 30 01:05:18 2025 GMT Subject: CN=69BCB922FC0CD07634C1DAE5F3758F23467AC1D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:67:f1:aa:e7:cf:13:15:7b:01:94:4f:db:51: fa:2d:e6:c0:68:1e:a9:a7:4a:cc:f7:f0:d9:3f:f9: b8:c2:fb:d5:db:ce:29:f1:ff:eb:cd:b4:99:8b:9c: 57:5d:70:ea:83:03:d0:46:2f:ef:ee:8d:6a:b1:f4: b3:e5:1a:08:98:03:30:ec:44:3e:75:c6:da:ad:7e: a0:cb:2c:77:41:72:10:b6:da:79:a7:fe:65:48:2a: 63:d3:5a:77:f9:50:26:25:12:fa:70:ca:bf:9a:85: 9f:41:e7:ac:ea:56:7b:d8:dc:05:e4:62:55:49:a0: 48:9d:f8:fd:11:4f:50:41:f4:01:46:5c:47:61:a6: 74:3e:c8:b9:7a:7b:89:d4:6f:a9:99:ae:5f:46:9d: 0e:81:4c:2b:8b:08:63:78:f7:cd:c1:55:62:64:77: 60:06:40:dc:80:65:19:3e:32:1f:4e:0b:b8:de:4f: 49:7c:8f:23:b0:d1:38:bc:5a:13:0d:c0:80:5f:8b: d6:68:f4:b7:0f:c0:90:2f:21:10:cc:4a:be:84:7e: 87:b1:0b:d5:f2:44:20:27:b2:4d:c8:62:41:5c:57: b3:05:ad:ab:bc:1a:72:ea:e5:fb:f3:9b:1d:a5:76: 06:7a:44:93:04:2b:31:ff:e5:b6:40:7c:d5:16:1a: 8a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:BC:B9:22:FC:0C:D0:76:34:C1:DA:E5:F3:75:8F:23:46:7A:C1:D7 X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32312e302f32342d3234203d3e20313338313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.130.21.0/24 Signature Algorithm: sha256WithRSAEncryption 91:c2:38:60:d7:5b:fa:8a:e6:73:4a:80:e6:df:6d:d8:f2:5d: 21:3f:5a:12:f4:ad:07:07:83:a5:8b:d7:d6:ca:36:d0:c3:55: 63:38:65:ab:70:74:98:d5:04:9a:58:26:33:ce:f4:b5:d1:01: 8b:e2:94:bb:8f:5a:13:bb:90:e8:2a:1d:26:c7:99:4a:6d:1b: fa:8d:ba:45:62:60:eb:32:24:0d:6f:ae:d7:9e:38:81:1f:b0: 8f:5e:ba:d6:27:c2:12:87:e7:ec:39:4e:3d:a9:cf:39:c0:4c: df:a3:66:75:6f:1d:24:0b:19:cc:58:4e:2f:90:08:8e:f3:b8: ba:7a:dc:7e:a8:cf:cd:fa:39:e0:3e:98:ae:78:0b:13:dd:9e: f7:08:d0:23:28:69:ef:f2:cb:60:8a:09:84:86:21:0b:15:7f: 3d:a1:22:67:4c:3b:e5:93:4b:a2:29:c0:23:50:29:01:2f:5a: 00:c3:b2:97:f1:21:a0:9d:e7:6d:01:c0:53:74:54:f6:90:58: 38:b2:fc:c2:4d:09:a9:41:45:75:29:ea:57:b3:42:b9:f9:ef: 33:2b:ae:84:c2:b3:d2:f6:c5:40:36:0c:5b:96:cf:03:b3:2a: f2:08:9f:35:0d:36:c2:d9:6b:12:44:06:8e:ca:a7:6c:ab:36: 37:72:fa:74 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTd+EyvY/2iYAGR92G6TK+7oP9xgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNDA3MDEwMTAwMThaFw0yNTA2MzAwMTA1MThaMDMxMTAvBgNV BAMTKDY5QkNCOTIyRkMwQ0QwNzYzNEMxREFFNUYzNzU4RjIzNDY3QUMxRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyZ/Gq588TFXsBlE/bUfot5sBo HqmnSsz38Nk/+bjC+9Xbzinx/+vNtJmLnFddcOqDA9BGL+/ujWqx9LPlGgiYAzDs RD51xtqtfqDLLHdBchC22nmn/mVIKmPTWnf5UCYlEvpwyr+ahZ9B56zqVnvY3AXk YlVJoEid+P0RT1BB9AFGXEdhpnQ+yLl6e4nUb6mZrl9GnQ6BTCuLCGN4983BVWJk d2AGQNyAZRk+Mh9OC7jeT0l8jyOw0Ti8WhMNwIBfi9Zo9LcPwJAvIRDMSr6Efoex C9XyRCAnsk3IYkFcV7MFrau8GnLq5fvzmx2ldgZ6RJMEKzH/5bZAfNUWGopXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaby5IvwM0HY0wdrl83WPI0Z6wdcwHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMyMzIzMzJlMzEzMzMwMmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA34IVMA0GCSqG SIb3DQEBCwUAA4IBAQCRwjhg11v6iuZzSoDm323Y8l0hP1oS9K0HB4Oli9fWyjbQ w1VjOGWrcHSY1QSaWCYzzvS10QGL4pS7j1oTu5DoKh0mx5lKbRv6jbpFYmDrMiQN b67XnjiBH7CPXrrWJ8ISh+fsOU49qc85wEzfo2Z1bx0kCxnMWE4vkAiO87i6etx+ qM/N+jngPpiueAsT3Z73CNAjKGnv8stgigmEhiELFX89oSJnTDvlk0uiKcAjUCkB L1oAw7KX8SGgnedtAcBTdFT2kFg4svzCTQmpQUV1KepXs0K5+e8zK66EwrPS9sVA Ngxbls8DsyryCJ81DTbC2WsSRAaOyqdsqzY3cvp0 -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org