$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa File: 3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa (raw, json) Hash identifier: OI9Dbbh3AxBZ/lUfEAmwLldVzXyZ0yA+CnQ3viXQgc8= Subject key identifier: EE:86:65:B6:CE:1B:71:E2:DB:A8:4A:4D:B0:1C:A8:1A:58:6E:78:C5 Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 74A910588E5C98F9796162E7542B2C9467B0F6E4 Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa Signing time: Mon 04 Nov 2024 08:00:01 +0000 ROA not before: Mon 04 Nov 2024 07:55:01 +0000 ROA not after: Mon 03 Nov 2025 08:00:01 +0000 asID: 142327 IP address blocks: 124.40.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 21:37:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:a9:10:58:8e:5c:98:f9:79:61:62:e7:54:2b:2c:94:67:b0:f6:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Nov 4 07:55:01 2024 GMT Not After : Nov 3 08:00:01 2025 GMT Subject: CN=EE8665B6CE1B71E2DBA84A4DB01CA81A586E78C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d9:d3:7d:80:c2:76:5d:2f:cd:47:ce:79:e4: fc:48:9f:9a:ef:23:e7:73:73:ee:df:75:6b:29:e8: 10:4a:fb:98:34:17:25:f9:ca:b9:6b:66:12:42:3b: b4:b2:bd:0d:1f:50:22:80:2b:c2:25:da:22:92:a5: 44:a9:aa:b4:b0:61:b3:9d:29:13:8e:f3:cc:9b:1e: 33:3b:d4:97:ec:6f:cf:13:f1:24:88:e7:72:d5:88: ae:96:76:b6:35:ab:30:42:43:6f:ff:f5:5f:6c:a5: e8:20:47:89:d3:ba:1f:f0:1e:6f:38:e7:47:0c:bd: 97:e6:0c:4a:b0:9c:95:aa:90:57:09:ff:f9:6b:56: 1b:d0:a9:b6:f0:01:45:59:7f:2e:ce:36:59:a8:84: 1a:b1:21:06:53:2b:0c:b9:20:7e:58:05:3a:bf:c7: 77:94:55:f0:3d:9b:05:12:3c:57:b3:59:0e:6e:e7: 65:28:10:3f:49:c4:c1:aa:6e:f7:ee:8c:06:25:b2: 4e:95:cd:f7:90:e7:92:e9:14:82:98:c9:8e:ee:7f: 19:79:fc:11:10:0d:e9:78:d2:78:6e:73:3d:03:8f: ac:58:31:74:f5:42:92:82:59:1f:3b:42:b8:42:b6: b7:ae:7a:4e:b4:6a:4a:3b:56:d5:ba:06:90:73:3a: 39:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:86:65:B6:CE:1B:71:E2:DB:A8:4A:4D:B0:1C:A8:1A:58:6E:78:C5 X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.40.253.0/24 Signature Algorithm: sha256WithRSAEncryption 73:5f:35:a5:67:07:05:f7:11:90:53:20:fd:da:bb:92:a3:7c: c0:30:99:80:a6:6a:78:fd:75:59:59:c3:49:72:84:b9:3a:51: 6a:df:45:23:10:75:b2:92:46:0a:be:36:62:94:a9:8c:9a:25: 6d:3c:18:b6:e8:2a:a7:98:62:74:53:e3:b7:48:3a:2b:e6:94: ef:09:96:fd:82:ed:f1:9e:9b:3d:6f:aa:60:b6:83:fa:fc:f6: 97:af:08:1d:41:27:9d:18:77:d7:a4:8d:e6:0e:2e:fe:9e:06: f3:c1:e7:2c:c1:80:40:ea:ac:7f:d9:95:f4:d3:4a:7e:9f:ec: e0:52:32:b4:cb:2e:40:de:ba:cc:62:2d:91:58:4c:26:5b:ea: 47:90:f1:98:8b:a1:67:6a:8e:8a:07:70:a3:d3:e3:34:39:a8: b3:be:99:cd:63:50:06:ab:fe:0b:b2:89:41:fe:fb:23:6b:af: a2:a8:e8:c1:d2:4b:51:3b:1c:b9:97:80:ae:8c:a2:c4:e4:3d: 19:df:f2:b0:12:9a:63:e3:b5:cc:3c:56:b6:2c:74:25:c8:e9: 99:c9:e4:52:e2:b2:f0:04:fb:c2:ba:84:27:d6:1c:c5:2e:cb: 4e:93:59:45:d5:61:28:67:da:07:3c:00:18:b3:e5:cd:cf:49: 36:4b:ab:c7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdKkQWI5cmPl5YWLnVCsslGew9uQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNDExMDQwNzU1MDFaFw0yNTExMDMwODAwMDFaMDMxMTAvBgNV BAMTKEVFODY2NUI2Q0UxQjcxRTJEQkE4NEE0REIwMUNBODFBNTg2RTc4QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC22dN9gMJ2XS/NR8555PxIn5rv I+dzc+7fdWsp6BBK+5g0FyX5yrlrZhJCO7SyvQ0fUCKAK8Il2iKSpUSpqrSwYbOd KROO88ybHjM71Jfsb88T8SSI53LViK6WdrY1qzBCQ2//9V9speggR4nTuh/wHm84 50cMvZfmDEqwnJWqkFcJ//lrVhvQqbbwAUVZfy7ONlmohBqxIQZTKwy5IH5YBTq/ x3eUVfA9mwUSPFezWQ5u52UoED9JxMGqbvfujAYlsk6VzfeQ55LpFIKYyY7ufxl5 /BEQDel40nhucz0Dj6xYMXT1QpKCWR87QrhCtreuek60ako7VtW6BpBzOjlLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7oZlts4bceLbqEpNsByoGlhueMUwHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOTVjMTljLTMyNjItNDhjNy1h ZjAyLTM3YTgzNWQwYTc3OS8wLzMxMzIzNDJlMzQzMDJlMzIzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAfCj9MA0GCSqG SIb3DQEBCwUAA4IBAQBzXzWlZwcF9xGQUyD92ruSo3zAMJmApmp4/XVZWcNJcoS5 OlFq30UjEHWykkYKvjZilKmMmiVtPBi26CqnmGJ0U+O3SDor5pTvCZb9gu3xnps9 b6pgtoP6/PaXrwgdQSedGHfXpI3mDi7+ngbzwecswYBA6qx/2ZX000p+n+zgUjK0 yy5A3rrMYi2RWEwmW+pHkPGYi6Fnao6KB3Cj0+M0OaizvpnNY1AGq/4LsolB/vsj a6+iqOjB0ktROxy5l4CujKLE5D0Z3/KwEppj47XMPFa2LHQlyOmZyeRS4rLwBPvC uoQn1hzFLstOk1lF1WEoZ9oHPAAYs+XNz0k2S6vH -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:20 2024 by rpki-client on console-fra.rpki-client.org