$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3234382e302f32312d3234203d3e203435333035.roa File: 3132342e34302e3234382e302f32312d3234203d3e203435333035.roa (raw, json) Hash identifier: gmlwk1E3suVjn/8fiND0vsV46kLjlNiZNpLWBhFFIPo= Subject key identifier: 27:12:25:67:38:D8:29:69:F0:6D:4F:A2:E7:F8:48:08:7B:32:09:70 Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 58FEA3AF42F8F86CF42394862171822216772C44 Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3234382e302f32312d3234203d3e203435333035.roa Signing time: Mon 01 Jul 2024 01:04:07 +0000 ROA not before: Mon 01 Jul 2024 00:59:07 +0000 ROA not after: Mon 30 Jun 2025 01:04:07 +0000 asID: 45305 IP address blocks: 124.40.248.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 21:37:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:fe:a3:af:42:f8:f8:6c:f4:23:94:86:21:71:82:22:16:77:2c:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Jul 1 00:59:07 2024 GMT Not After : Jun 30 01:04:07 2025 GMT Subject: CN=2712256738D82969F06D4FA2E7F848087B320970 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8e:1a:bf:01:75:ef:5c:78:6a:82:af:cc:35: 43:b7:51:cc:8b:70:90:40:2b:19:91:21:45:eb:e0: 5e:0d:e6:02:1d:a4:18:c6:d5:9f:da:69:e2:0e:4b: 93:ca:df:f2:c5:d9:84:4e:7f:5d:ed:39:1a:0e:48: 62:58:36:02:e7:65:76:62:b1:46:bd:57:23:de:17: 91:32:37:25:4e:7b:3f:cd:ad:aa:7b:38:f0:40:4a: 35:71:66:d6:77:ef:fd:8d:96:85:66:b8:d9:ab:e1: 94:e6:17:44:7b:d5:a3:78:b3:32:e4:a6:18:88:6b: c6:b8:3d:af:64:e0:f9:0c:0d:35:0a:5a:42:55:0e: 1e:1c:0c:e7:0b:30:87:90:37:ae:82:28:c9:a8:9b: 41:13:12:b1:0e:4f:2d:36:2e:88:17:fd:6e:6e:74: 71:6e:e9:7a:60:f4:c7:61:e7:44:ad:71:fd:46:1a: 31:bc:04:29:47:c4:6a:5c:06:32:34:88:4c:7d:d8: ff:e0:09:bb:92:c6:da:e1:bc:8e:80:20:36:95:5d: 73:ba:5f:76:25:1f:36:2d:65:98:18:72:5f:9c:69: 9f:7a:d4:57:3c:3c:8c:99:98:b4:72:88:79:61:31: 73:b3:47:fd:69:7b:f8:6a:b6:0d:81:0d:44:02:4b: 3a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:12:25:67:38:D8:29:69:F0:6D:4F:A2:E7:F8:48:08:7B:32:09:70 X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3234382e302f32312d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.40.248.0/21 Signature Algorithm: sha256WithRSAEncryption 73:f3:9a:3d:61:d4:f8:cb:0f:ac:f1:70:a7:e3:ee:b0:88:ee: d2:47:25:19:56:d3:90:b7:f2:a2:fa:f7:51:ee:ad:23:a8:c5: 38:65:b1:1a:13:dd:cf:ad:c7:6b:8c:81:1c:67:84:d4:cc:55: a8:9d:2b:65:66:35:23:cb:56:26:e0:bc:5f:95:39:4c:bd:2e: 20:0b:9e:02:ab:bd:6e:16:cd:1b:5d:75:46:4b:1f:3b:0c:b3: c8:0b:4e:0e:0e:1a:ed:0b:46:3a:17:7e:24:39:60:1a:05:4d: 1a:8d:cd:5f:d3:8b:2a:82:36:4f:86:98:9c:e4:a5:12:a9:40: 83:e7:50:9b:04:ca:dc:55:6a:bd:70:31:f8:ac:a4:f0:33:b6: ef:57:00:0a:2f:d6:d6:40:7b:f7:b5:06:68:b8:84:8e:08:8d: 1e:96:a4:70:36:de:e3:ff:ba:76:c0:e6:05:ce:5c:64:e0:04: 23:57:9f:22:72:3c:1a:8a:08:40:6f:7f:41:b8:bb:7f:8d:36: b3:e7:ec:5f:4d:65:e7:c8:59:2a:4b:2e:f1:a1:6e:8a:0f:04: 75:3a:0d:1a:48:e0:16:04:ac:56:97:6a:27:f0:05:04:15:3e: 76:5a:13:0d:7a:f1:d9:99:1a:1e:df:73:9e:9c:f1:3d:5c:05: ba:08:23:bb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWP6jr0L4+Gz0I5SGIXGCIhZ3LEQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNDA3MDEwMDU5MDdaFw0yNTA2MzAwMTA0MDdaMDMxMTAvBgNV BAMTKDI3MTIyNTY3MzhEODI5NjlGMDZENEZBMkU3Rjg0ODA4N0IzMjA5NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5jhq/AXXvXHhqgq/MNUO3UcyL cJBAKxmRIUXr4F4N5gIdpBjG1Z/aaeIOS5PK3/LF2YROf13tORoOSGJYNgLnZXZi sUa9VyPeF5EyNyVOez/Nrap7OPBASjVxZtZ37/2NloVmuNmr4ZTmF0R71aN4szLk phiIa8a4Pa9k4PkMDTUKWkJVDh4cDOcLMIeQN66CKMmom0ETErEOTy02LogX/W5u dHFu6Xpg9Mdh50Stcf1GGjG8BClHxGpcBjI0iEx92P/gCbuSxtrhvI6AIDaVXXO6 X3YlHzYtZZgYcl+caZ961Fc8PIyZmLRyiHlhMXOzR/1pe/hqtg2BDUQCSzp5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJxIlZzjYKWnwbU+i5/hICHsyCXAwHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOTVjMTljLTMyNjItNDhjNy1h ZjAyLTM3YTgzNWQwYTc3OS8wLzMxMzIzNDJlMzQzMDJlMzIzNDM4MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3wo+DANBgkqhkiG 9w0BAQsFAAOCAQEAc/OaPWHU+MsPrPFwp+PusIju0kclGVbTkLfyovr3Ue6tI6jF OGWxGhPdz63Ha4yBHGeE1MxVqJ0rZWY1I8tWJuC8X5U5TL0uIAueAqu9bhbNG111 RksfOwyzyAtODg4a7QtGOhd+JDlgGgVNGo3NX9OLKoI2T4aYnOSlEqlAg+dQmwTK 3FVqvXAx+Kyk8DO271cACi/W1kB797UGaLiEjgiNHpakcDbe4/+6dsDmBc5cZOAE I1efInI8GooIQG9/Qbi7f402s+fsX01l58hZKksu8aFuig8EdToNGkjgFgSsVpdq J/AFBBU+dloTDXrx2ZkaHt9znpzxPVwFuggjuw== -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:41 2024 by rpki-client on console-ams.rpki-client.org