$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa File: 3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa (raw, json) Hash identifier: OT+Mk5WwssGJkg82hSQpE4gvwieaMEJQhhjdSn/cLTY= Subject key identifier: 44:D5:B0:C0:77:DD:AE:AA:3C:88:5B:74:5B:2B:E3:BE:66:4C:85:25 Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 10A40A98658D6C99B9476D975741A8838FFD7DE4 Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa Signing time: Mon 04 Nov 2024 08:00:01 +0000 ROA not before: Mon 04 Nov 2024 07:55:01 +0000 ROA not after: Mon 03 Nov 2025 08:00:01 +0000 asID: 142327 IP address blocks: 124.40.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 21:37:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:a4:0a:98:65:8d:6c:99:b9:47:6d:97:57:41:a8:83:8f:fd:7d:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Nov 4 07:55:01 2024 GMT Not After : Nov 3 08:00:01 2025 GMT Subject: CN=44D5B0C077DDAEAA3C885B745B2BE3BE664C8525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a6:a7:25:92:75:82:b5:68:53:72:7e:a9:af: 1e:6c:4e:e3:1a:70:8f:f2:11:46:fc:14:22:3a:3a: ff:1e:90:82:13:3e:9b:7e:5b:03:74:dc:7c:32:0f: f0:78:c4:8a:7d:a7:34:0c:ff:c0:1f:d9:ee:34:0b: c9:c5:c7:99:6c:77:17:8b:05:03:c6:c6:4f:1b:9f: 08:0a:f6:2b:d2:19:b7:c2:0d:50:99:23:6a:1a:b1: 71:96:59:b8:85:52:46:7d:c1:8c:f0:5a:82:3a:13: f1:b1:48:f2:8f:db:60:80:4d:c8:47:48:d3:66:c8: 87:a7:7a:64:6d:f6:25:fc:71:9e:80:59:b0:8d:83: b0:6d:37:96:e5:99:a6:aa:6e:a3:67:29:22:7f:01: 3a:d4:a4:fb:4f:3b:bc:af:be:d3:86:8a:38:cb:09: 61:23:17:ea:bf:4d:39:db:73:92:97:d3:e0:5e:d5: 7a:d1:af:03:a8:6e:32:da:3d:49:f0:eb:10:6a:7e: 28:61:f0:27:24:32:d7:5e:82:90:c3:52:e7:5d:f1: 9f:68:dc:ae:45:2f:d1:5d:5d:89:2b:f7:4a:87:6b: 80:ca:ab:d4:50:a3:86:9a:a5:56:41:a5:63:33:e8: a9:40:cc:6f:b2:90:45:12:d5:0e:2e:2d:65:27:63: b9:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:D5:B0:C0:77:DD:AE:AA:3C:88:5B:74:5B:2B:E3:BE:66:4C:85:25 X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.40.248.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:cd:42:39:3c:dd:fa:3a:0e:2a:c4:35:82:9d:31:82:6d:05: 41:67:60:fb:0e:15:28:da:32:35:b3:40:f4:9b:dc:e3:2b:9e: 9e:04:b8:e5:de:11:1d:16:dd:4a:5a:e6:9a:70:e1:ce:3c:ad: 7b:f8:bf:2f:ed:65:0a:a8:3b:c4:46:ce:8f:3d:9d:c3:d5:6e: a6:2e:69:61:69:c7:5e:36:3b:c5:ae:78:a6:3e:05:79:1c:57: a4:53:8f:99:15:85:c5:83:3a:ca:e2:c7:8d:9e:31:c2:4e:92: f8:3f:91:dd:c4:fc:0d:f9:e4:53:0e:db:b0:7c:3e:57:83:54: b5:bb:34:14:e2:ea:81:a6:f6:af:48:43:d9:97:5e:84:36:b0: 84:9f:86:bd:53:71:fc:85:06:fa:1f:b6:8c:24:01:6e:bc:46: 51:17:e1:dd:e5:4a:b4:fa:3a:79:7e:65:ad:ff:18:d3:d8:ce: 6d:22:bf:4a:be:fd:f3:0f:bb:08:b1:80:27:38:32:f3:c2:67: 5b:47:06:6d:27:db:ea:6e:b1:ae:5b:bc:68:49:ed:3c:0e:fe: 5a:1b:bc:21:bb:9a:e5:9c:30:d8:e2:cf:6b:51:91:32:d5:56: 31:0d:42:85:23:31:27:b4:1e:35:15:7e:f2:5f:e1:ae:07:f5: 74:cf:98:e8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEKQKmGWNbJm5R22XV0Gog4/9feQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNDExMDQwNzU1MDFaFw0yNTExMDMwODAwMDFaMDMxMTAvBgNV BAMTKDQ0RDVCMEMwNzdEREFFQUEzQzg4NUI3NDVCMkJFM0JFNjY0Qzg1MjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDApqclknWCtWhTcn6prx5sTuMa cI/yEUb8FCI6Ov8ekIITPpt+WwN03HwyD/B4xIp9pzQM/8Af2e40C8nFx5lsdxeL BQPGxk8bnwgK9ivSGbfCDVCZI2oasXGWWbiFUkZ9wYzwWoI6E/GxSPKP22CATchH SNNmyIenemRt9iX8cZ6AWbCNg7BtN5blmaaqbqNnKSJ/ATrUpPtPO7yvvtOGijjL CWEjF+q/TTnbc5KX0+Be1XrRrwOobjLaPUnw6xBqfihh8CckMtdegpDDUudd8Z9o 3K5FL9FdXYkr90qHa4DKq9RQo4aapVZBpWMz6KlAzG+ykEUS1Q4uLWUnY7nNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURNWwwHfdrqo8iFt0WyvjvmZMhSUwHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOTVjMTljLTMyNjItNDhjNy1h ZjAyLTM3YTgzNWQwYTc3OS8wLzMxMzIzNDJlMzQzMDJlMzIzNDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAfCj4MA0GCSqG SIb3DQEBCwUAA4IBAQCMzUI5PN36Og4qxDWCnTGCbQVBZ2D7DhUo2jI1s0D0m9zj K56eBLjl3hEdFt1KWuaacOHOPK17+L8v7WUKqDvERs6PPZ3D1W6mLmlhacdeNjvF rnimPgV5HFekU4+ZFYXFgzrK4seNnjHCTpL4P5HdxPwN+eRTDtuwfD5Xg1S1uzQU 4uqBpvavSEPZl16ENrCEn4a9U3H8hQb6H7aMJAFuvEZRF+Hd5Uq0+jp5fmWt/xjT 2M5tIr9Kvv3zD7sIsYAnODLzwmdbRwZtJ9vqbrGuW7xoSe08Dv5aG7whu5rlnDDY 4s9rUZEy1VYxDUKFIzEntB41FX7yX+GuB/V0z5jo -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:41 2024 by rpki-client on console-ams.rpki-client.org