$ rpki-client -vvf repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3132322e3130322e34302e302f32312d3234203d3e203338373538.roa File: 3132322e3130322e34302e302f32312d3234203d3e203338373538.roa (raw, json) Hash identifier: RTIwq7shR7bXdamWXaTuuLysxlJ3zoLqtpVO/z6TjXA= Subject key identifier: 0E:32:D3:4C:3E:25:C8:5C:FF:54:98:80:12:06:50:EE:CD:40:64:16 Certificate issuer: /CN=9FEB25155CF1AFF90AE11DA0298F164D554986F4 Certificate serial: 2808D657CC22291C92EBD9C4FCBDBE0290D9004E Authority key identifier: 9F:EB:25:15:5C:F1:AF:F9:0A:E1:1D:A0:29:8F:16:4D:55:49:86:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3132322e3130322e34302e302f32312d3234203d3e203338373538.roa Signing time: Mon 01 Jul 2024 00:02:13 +0000 ROA not before: Sun 30 Jun 2024 23:57:13 +0000 ROA not after: Mon 30 Jun 2025 00:02:13 +0000 asID: 38758 IP address blocks: 122.102.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.crl rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 04:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:08:d6:57:cc:22:29:1c:92:eb:d9:c4:fc:bd:be:02:90:d9:00:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FEB25155CF1AFF90AE11DA0298F164D554986F4 Validity Not Before: Jun 30 23:57:13 2024 GMT Not After : Jun 30 00:02:13 2025 GMT Subject: CN=0E32D34C3E25C85CFF549880120650EECD406416 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:f1:56:52:e5:31:c8:8a:cb:29:b2:51:66:46: a8:d2:c5:b3:dc:68:bd:24:06:34:92:1d:2d:ad:06: d0:82:20:f4:dc:f5:2e:d4:b0:9e:ad:7a:0c:b3:e5: 0d:21:3e:34:61:5f:f7:cc:01:97:86:f9:5d:24:79: 63:a6:8f:fe:58:1f:0a:61:c1:85:3c:a5:04:57:f3: 54:14:96:e1:73:f1:9f:ef:36:3d:00:b4:38:35:4d: 1b:78:f0:53:4d:69:bc:b6:a1:3b:98:f5:92:68:24: 9b:1d:a1:7f:66:c3:32:77:66:18:40:de:80:b0:e2: a7:a9:8b:7e:64:8c:49:ee:52:af:b6:00:46:e9:7a: d3:35:d3:24:3e:74:4d:30:c4:52:36:55:8a:cc:a6: ec:9a:b6:df:52:7e:12:7d:82:4c:f4:25:ea:fe:aa: a6:4d:43:d5:d3:49:b3:2d:be:df:39:22:87:73:ea: e4:cb:d5:75:3b:91:9a:5e:c3:d6:e5:aa:8e:4d:e3: d7:06:31:66:5e:55:78:15:f5:70:a9:bb:92:96:23: 9e:f4:61:d9:69:77:36:9e:9d:e4:88:45:c8:40:3a: 4e:93:66:80:47:af:42:87:46:25:e6:d3:1f:b9:2d: 77:94:49:6b:e5:91:37:ef:47:b6:9a:1e:bd:99:59: 97:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:32:D3:4C:3E:25:C8:5C:FF:54:98:80:12:06:50:EE:CD:40:64:16 X509v3 Authority Key Identifier: keyid:9F:EB:25:15:5C:F1:AF:F9:0A:E1:1D:A0:29:8F:16:4D:55:49:86:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3132322e3130322e34302e302f32312d3234203d3e203338373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.102.40.0/21 Signature Algorithm: sha256WithRSAEncryption 17:a0:60:69:4b:27:b1:ec:12:0e:11:46:e4:1a:c3:69:1f:c2: cd:8c:9d:70:87:c4:94:07:6a:f4:7f:c8:f3:c6:ef:ad:a7:af: 20:e2:17:e6:d9:fb:49:ed:3c:17:3e:99:87:2f:70:2b:e2:e2: b2:71:22:62:7a:39:ba:11:8a:f4:da:2e:19:65:ea:02:bb:be: 17:1b:0a:f6:5d:a3:8a:c1:dc:08:da:df:66:16:7e:06:0b:87: d0:23:d5:67:ec:19:93:22:85:ae:96:f3:2d:a8:e8:aa:cc:3c: d7:53:73:cd:be:2b:47:ae:16:11:e8:57:77:61:63:5f:d6:51: 5c:3f:2e:61:12:7b:b9:ac:53:e8:e2:06:09:a1:7a:c5:3f:d7: b8:e0:66:54:dc:87:52:78:3c:32:00:20:4d:a4:3f:86:51:9b: a0:08:bd:04:73:39:25:f5:83:9d:68:00:75:85:e0:fa:6d:e1: 58:fb:07:4a:29:9e:4d:67:d5:25:09:bb:ed:14:13:90:25:6d: d8:a3:12:09:01:e3:d6:5f:40:89:df:39:cb:c0:c0:03:f9:03: ae:96:a5:b4:f9:bf:f8:01:67:ff:43:0c:13:5b:7e:a4:18:1b: ac:71:0e:83:44:53:bf:8d:80:c2:60:16:de:4d:83:5b:5f:81: 6e:c8:bd:80 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKAjWV8wiKRyS69nE/L2+ApDZAE4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZFQjI1MTU1Q0YxQUZGOTBBRTExREEwMjk4RjE2NEQ1 NTQ5ODZGNDAeFw0yNDA2MzAyMzU3MTNaFw0yNTA2MzAwMDAyMTNaMDMxMTAvBgNV BAMTKDBFMzJEMzRDM0UyNUM4NUNGRjU0OTg4MDEyMDY1MEVFQ0Q0MDY0MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDq8VZS5THIisspslFmRqjSxbPc aL0kBjSSHS2tBtCCIPTc9S7UsJ6tegyz5Q0hPjRhX/fMAZeG+V0keWOmj/5YHwph wYU8pQRX81QUluFz8Z/vNj0AtDg1TRt48FNNaby2oTuY9ZJoJJsdoX9mwzJ3ZhhA 3oCw4qepi35kjEnuUq+2AEbpetM10yQ+dE0wxFI2VYrMpuyatt9SfhJ9gkz0Jer+ qqZNQ9XTSbMtvt85Iodz6uTL1XU7kZpew9blqo5N49cGMWZeVXgV9XCpu5KWI570 YdlpdzaeneSIRchAOk6TZoBHr0KHRiXm0x+5LXeUSWvlkTfvR7aaHr2ZWZeDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDjLTTD4lyFz/VJiAEgZQ7s1AZBYwHwYDVR0j BBgwFoAUn+slFVzxr/kK4R2gKY8WTVVJhvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YjRlMTk1ZS0xMmRlLTRjM2MtOTNlNS01MjJlZTU0MDE4ZDYvMC85RkVCMjUxNTVD RjFBRkY5MEFFMTFEQTAyOThGMTY0RDU1NDk4NkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZFQjI1MTU1Q0YxQUZGOTBBRTExREEwMjk4RjE2NEQ1NTQ5 ODZGNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiNGUxOTVlLTEyZGUtNGMzYy05 M2U1LTUyMmVlNTQwMThkNi8wLzMxMzIzMjJlMzEzMDMyMmUzNDMwMmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzMzODM3MzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3pmKDANBgkqhkiG 9w0BAQsFAAOCAQEAF6BgaUsnsewSDhFG5BrDaR/CzYydcIfElAdq9H/I88bvraev IOIX5tn7Se08Fz6Zhy9wK+LisnEiYno5uhGK9NouGWXqAru+FxsK9l2jisHcCNrf ZhZ+BguH0CPVZ+wZkyKFrpbzLajoqsw811Nzzb4rR64WEehXd2FjX9ZRXD8uYRJ7 uaxT6OIGCaF6xT/XuOBmVNyHUng8MgAgTaQ/hlGboAi9BHM5JfWDnWgAdYXg+m3h WPsHSimeTWfVJQm77RQTkCVt2KMSCQHj1l9Aid85y8DAA/kDrpaltPm/+AFn/0MM E1t+pBgbrHEOg0RTv42AwmAW3k2DW1+Bbsi9gA== -----END CERTIFICATE-----Generated at Sat Nov 23 05:00:43 2024 by rpki-client on console-fra.rpki-client.org