$ rpki-client -vvf repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31362e302f32312d3231203d3e203436303435.roa File: 3132322e3132382e31362e302f32312d3231203d3e203436303435.roa (raw, json) Hash identifier: w1MVU4ekD5soTAWIJylNS3K6gk7CgDes5++mV/VpMvk= Subject key identifier: BB:1B:28:6E:3F:BE:8C:79:1E:9C:8F:6B:24:AC:57:54:63:EE:47:39 Certificate issuer: /CN=00EE953FD699788668C724460F4D8D420238194F Certificate serial: 3F9D3E86E83AD08DB275D4944183BC1FD95EB18C Authority key identifier: 00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31362e302f32312d3231203d3e203436303435.roa Signing time: Tue 18 Jun 2024 06:01:17 +0000 ROA not before: Tue 18 Jun 2024 05:56:17 +0000 ROA not after: Tue 17 Jun 2025 06:01:17 +0000 asID: 46045 IP address blocks: 122.128.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 18:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:9d:3e:86:e8:3a:d0:8d:b2:75:d4:94:41:83:bc:1f:d9:5e:b1:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00EE953FD699788668C724460F4D8D420238194F Validity Not Before: Jun 18 05:56:17 2024 GMT Not After : Jun 17 06:01:17 2025 GMT Subject: CN=BB1B286E3FBE8C791E9C8F6B24AC575463EE4739 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:03:6e:51:6b:d2:ee:5a:eb:2a:80:d0:65:2c: 71:82:16:f7:19:08:8a:65:86:4f:31:37:c0:aa:98: d2:d2:24:8f:45:c9:2a:b1:b6:c0:47:94:64:a5:8c: 99:18:c2:1a:1d:fd:19:ba:50:4c:8d:17:32:dd:39: 8a:f4:e7:c4:a6:80:56:a5:f5:91:03:d1:e4:e6:47: eb:4d:f1:b4:6e:81:8b:3c:ba:ab:0f:ac:e5:b0:2d: e5:4a:29:40:be:d3:0b:f6:85:4e:94:01:9f:93:84: 82:2a:0f:79:7a:b0:c9:84:b5:50:f8:02:70:2b:1e: 0b:b5:27:27:09:22:07:af:e0:c6:db:4f:48:7a:a1: 99:0a:72:00:c6:c2:9e:3d:c9:b6:8f:13:75:46:c9: f8:05:e4:24:f6:52:dd:e5:cd:3d:13:30:87:30:54: d1:5d:d8:5f:e4:59:ef:18:c1:c4:24:de:c8:ba:f6: db:68:12:03:05:e0:d1:74:af:2c:4d:4b:f2:e1:62: 01:d0:bd:3f:ae:37:91:41:98:7e:1f:d4:d0:f5:dd: 7a:0b:18:bd:f2:a6:61:79:04:dd:a9:83:ef:83:6a: fe:50:35:59:0a:59:3e:9d:c0:d2:af:6c:44:90:b4: 38:28:5a:51:fc:34:cd:d5:f8:61:5f:de:04:dd:4c: b7:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:1B:28:6E:3F:BE:8C:79:1E:9C:8F:6B:24:AC:57:54:63:EE:47:39 X509v3 Authority Key Identifier: keyid:00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31362e302f32312d3231203d3e203436303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.16.0/21 Signature Algorithm: sha256WithRSAEncryption 60:96:5f:81:7c:d6:e6:9d:bd:ea:0a:9a:1d:a5:08:1c:38:6e: aa:06:bd:45:bb:66:a3:f9:f4:53:43:f5:b5:a1:3f:6d:4b:da: c5:43:7c:25:ac:ea:7d:e2:7f:d9:de:02:e1:6b:48:2b:97:f2: 0c:76:3c:ab:3a:1c:e0:3c:8c:65:99:d3:7a:6a:7c:e5:0f:d4: 09:be:25:71:65:bb:c0:79:cd:f6:81:60:ea:0c:d2:2b:30:4b: 3d:8e:2b:14:6a:2c:3a:92:e3:5f:90:04:19:8e:ac:63:55:e1: 9a:4e:58:fc:1f:86:0a:e6:0c:af:84:60:bb:6d:3f:29:c0:74: 79:aa:8d:3b:11:2e:ea:d0:73:70:be:d7:f6:d9:c4:7d:e5:20: 00:4e:87:64:3f:73:2a:a7:df:5a:ef:10:6a:c5:ea:b6:ce:52: 7d:4a:c9:35:bb:cc:b7:21:7a:28:a6:a7:91:5f:af:09:71:5c: 05:2e:1a:44:c9:3e:a1:2e:1d:1a:80:16:91:77:45:71:8f:56: 33:47:2b:53:5f:25:70:08:57:9c:e5:5f:f8:5c:e1:4a:10:d4: 41:c5:b4:34:61:cd:9c:c7:b5:e4:f6:7d:a9:14:8a:9b:48:e0: 24:41:c0:c1:88:e0:9d:be:03:df:8a:35:6f:1f:a5:32:9b:af: 4e:13:15:56 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUP50+hug60I2yddSUQYO8H9lesYwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIw MjM4MTk0RjAeFw0yNDA2MTgwNTU2MTdaFw0yNTA2MTcwNjAxMTdaMDMxMTAvBgNV BAMTKEJCMUIyODZFM0ZCRThDNzkxRTlDOEY2QjI0QUM1NzU0NjNFRTQ3MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSA25Ra9LuWusqgNBlLHGCFvcZ CIplhk8xN8CqmNLSJI9FySqxtsBHlGSljJkYwhod/Rm6UEyNFzLdOYr058SmgFal 9ZED0eTmR+tN8bRugYs8uqsPrOWwLeVKKUC+0wv2hU6UAZ+ThIIqD3l6sMmEtVD4 AnArHgu1JycJIgev4MbbT0h6oZkKcgDGwp49ybaPE3VGyfgF5CT2Ut3lzT0TMIcw VNFd2F/kWe8YwcQk3si69ttoEgMF4NF0ryxNS/LhYgHQvT+uN5FBmH4f1ND13XoL GL3ypmF5BN2pg++Dav5QNVkKWT6dwNKvbESQtDgoWlH8NM3V+GFf3gTdTLfpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUuxsobj++jHkenI9rJKxXVGPuRzkwHwYDVR0j BBgwFoAUAO6VP9aZeIZoxyRGD02NQgI4GU8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODUzZjIyOC0zN2YyLTQ3ZDktYjlmZS00NzZiYWRlMTMzOTMvMC8wMEVFOTUzRkQ2 OTk3ODg2NjhDNzI0NDYwRjREOEQ0MjAyMzgxOTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIwMjM4 MTk0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4NTNmMjI4LTM3ZjItNDdkOS1i OWZlLTQ3NmJhZGUxMzM5My8wLzMxMzIzMjJlMzEzMjM4MmUzMTM2MmUzMDJmMzIz MTJkMzIzMTIwM2QzZTIwMzQzNjMwMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3qAEDANBgkqhkiG 9w0BAQsFAAOCAQEAYJZfgXzW5p296gqaHaUIHDhuqga9Rbtmo/n0U0P1taE/bUva xUN8JazqfeJ/2d4C4WtIK5fyDHY8qzoc4DyMZZnTemp85Q/UCb4lcWW7wHnN9oFg 6gzSKzBLPY4rFGosOpLjX5AEGY6sY1Xhmk5Y/B+GCuYMr4Rgu20/KcB0eaqNOxEu 6tBzcL7X9tnEfeUgAE6HZD9zKqffWu8QasXqts5SfUrJNbvMtyF6KKankV+vCXFc BS4aRMk+oS4dGoAWkXdFcY9WM0crU18lcAhXnOVf+FzhShDUQcW0NGHNnMe15PZ9 qRSKm0jgJEHAwYjgnb4D34o1bx+lMpuvThMVVg== -----END CERTIFICATE-----Generated at Wed Feb 19 22:32:13 2025 by rpki-client