$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3132342e3130392e32322e302f32342d3234203d3e20313339393439.roa File: 3132342e3130392e32322e302f32342d3234203d3e20313339393439.roa (raw, json) Hash identifier: nFcoITtIiJ8OFT6DwBHGCFY6SRcCiphSoQyOwQxbdew= Subject key identifier: 2A:39:4D:54:DE:15:74:D1:10:5A:89:D2:BB:F2:85:2E:BC:0B:91:D4 Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Certificate serial: 582E19A3DBE7386F261F1C363847056519727FAA Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3132342e3130392e32322e302f32342d3234203d3e20313339393439.roa Signing time: Wed 21 Aug 2024 12:54:53 +0000 ROA not before: Wed 21 Aug 2024 12:49:53 +0000 ROA not after: Wed 20 Aug 2025 12:54:53 +0000 asID: 139949 IP address blocks: 124.109.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:35:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:2e:19:a3:db:e7:38:6f:26:1f:1c:36:38:47:05:65:19:72:7f:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Validity Not Before: Aug 21 12:49:53 2024 GMT Not After : Aug 20 12:54:53 2025 GMT Subject: CN=2A394D54DE1574D1105A89D2BBF2852EBC0B91D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:55:eb:20:4b:47:b0:c4:f6:3d:1f:50:f5:af: 71:14:a9:71:e7:cf:16:c0:8a:b7:9e:ad:63:d6:00: 33:6d:5e:b6:f1:f9:38:20:29:93:88:3a:47:83:d1: 69:95:5b:58:af:d3:12:41:da:e8:6e:76:02:04:ee: 67:b5:86:ce:f2:3a:46:6a:4e:29:33:8e:e8:ee:82: bb:4c:38:28:fc:d4:1c:cd:fd:ba:29:98:00:15:7c: df:9f:be:ec:81:31:0f:eb:2c:24:b1:92:69:04:f0: a0:96:88:3d:31:0e:a7:11:42:74:38:d0:73:ee:ea: f8:74:d7:42:80:71:97:57:a6:81:52:5d:eb:89:82: 28:43:b8:29:43:f8:b9:b6:6f:a5:e5:25:4f:cf:b6: 38:c4:a9:9a:3c:63:ab:52:82:93:9c:3b:6d:b8:ca: ac:5b:5c:46:85:04:02:9d:ed:a3:95:71:da:4f:41: ac:0b:e1:da:ba:99:bc:2f:09:2c:38:d6:10:56:0a: 11:a5:28:45:79:9d:c9:e9:c4:f7:00:bd:77:1f:b9: c2:96:2c:0c:c0:43:f9:bc:89:9b:87:c7:49:11:1a: 0d:3a:68:9a:20:2e:20:f6:b5:d3:b7:2f:15:76:c9: 0b:38:0a:e8:7f:21:c5:1c:6b:05:be:2c:c2:37:5e: 5d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:39:4D:54:DE:15:74:D1:10:5A:89:D2:BB:F2:85:2E:BC:0B:91:D4 X509v3 Authority Key Identifier: keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3132342e3130392e32322e302f32342d3234203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.109.22.0/24 Signature Algorithm: sha256WithRSAEncryption 79:64:22:95:33:42:12:b7:69:06:4c:85:31:bc:be:7c:a8:07: ce:0d:04:7c:d8:3f:23:49:2b:56:84:bd:5a:a0:5a:b9:d9:4a: 87:00:25:23:b9:6f:cc:ef:95:7c:72:9c:d2:fb:72:b9:e2:05: 6c:b2:86:8d:b9:0a:90:a5:15:f2:b0:1a:a1:31:c6:d1:66:51: 3c:12:48:38:57:3e:ca:67:70:6b:b6:dd:a1:ad:c7:12:e2:57: e8:84:57:c4:70:f4:0b:92:4e:02:93:e2:7e:35:cb:5f:50:a2: c4:47:ff:7c:57:b8:74:11:e4:fe:a4:12:7d:99:a7:f0:a5:11: 4a:27:ac:f1:5b:0f:a2:d6:41:23:0b:72:18:b4:fa:64:e9:a9: 5b:21:85:8f:ae:de:cd:ff:89:d3:4b:86:60:84:44:e3:b1:12: db:7f:2f:16:bf:c8:e1:65:fe:68:fc:10:83:d4:f8:9c:1b:7c: 78:dc:d5:9b:92:7f:a3:77:cb:30:4c:1c:c0:47:61:c6:3a:7a: 5a:6c:6c:f7:62:0f:bd:0e:d8:55:2d:a0:ff:19:44:84:94:85: cf:4f:da:c1:32:a4:3a:38:e4:53:76:d3:da:fd:d7:d8:8d:10: b2:19:06:56:05:7e:80:2e:c0:83:3a:9b:1e:f1:a5:d6:7e:ba: 12:77:11:00 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWC4Zo9vnOG8mHxw2OEcFZRlyf6owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBD RjlBNjQ3MzAeFw0yNDA4MjExMjQ5NTNaFw0yNTA4MjAxMjU0NTNaMDMxMTAvBgNV BAMTKDJBMzk0RDU0REUxNTc0RDExMDVBODlEMkJCRjI4NTJFQkMwQjkxRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTVesgS0ewxPY9H1D1r3EUqXHn zxbAireerWPWADNtXrbx+TggKZOIOkeD0WmVW1iv0xJB2uhudgIE7me1hs7yOkZq TikzjujugrtMOCj81BzN/bopmAAVfN+fvuyBMQ/rLCSxkmkE8KCWiD0xDqcRQnQ4 0HPu6vh010KAcZdXpoFSXeuJgihDuClD+Lm2b6XlJU/PtjjEqZo8Y6tSgpOcO224 yqxbXEaFBAKd7aOVcdpPQawL4dq6mbwvCSw41hBWChGlKEV5ncnpxPcAvXcfucKW LAzAQ/m8iZuHx0kRGg06aJogLiD2tdO3LxV2yQs4Cuh/IcUcawW+LMI3Xl3jAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKjlNVN4VdNEQWonSu/KFLrwLkdQwHwYDVR0j BBgwFoAUIo51K7+4wWs7RvPTiOztUM+aZHMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTdlZmQyYS0wMmFiLTQyMDItOTcwZi1mNjk5ZGZmOTdkZTUvMC8yMjhFNzUyQkJG QjhDMTZCM0I0NkYzRDM4OEVDRUQ1MENGOUE2NDczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBDRjlB NjQ3My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxN2VmZDJhLTAyYWItNDIwMi05 NzBmLWY2OTlkZmY5N2RlNS8wLzMxMzIzNDJlMzEzMDM5MmUzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAfG0WMA0GCSqG SIb3DQEBCwUAA4IBAQB5ZCKVM0ISt2kGTIUxvL58qAfODQR82D8jSStWhL1aoFq5 2UqHACUjuW/M75V8cpzS+3K54gVssoaNuQqQpRXysBqhMcbRZlE8Ekg4Vz7KZ3Br tt2hrccS4lfohFfEcPQLkk4Ck+J+NctfUKLER/98V7h0EeT+pBJ9mafwpRFKJ6zx Ww+i1kEjC3IYtPpk6albIYWPrt7N/4nTS4ZghETjsRLbfy8Wv8jhZf5o/BCD1Pic G3x43NWbkn+jd8swTBzAR2HGOnpabGz3Yg+9DthVLaD/GUSElIXPT9rBMqQ6OORT dtPa/dfYjRCyGQZWBX6ALsCDOpse8aXWfroSdxEA -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:18 2024 by rpki-client on console-fra.rpki-client.org