$ rpki-client -vvf repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31362e302f32342d3234203d3e20323632393239.roa File: 3132322e3132382e31362e302f32342d3234203d3e20323632393239.roa (raw, json) Hash identifier: DRoCmPuWf7Goy6b8ay+89nX5k4OXZiMQBXfvplbhc24= Subject key identifier: 07:9C:26:92:5D:31:C9:67:2A:E9:CA:C2:24:FC:2B:90:BE:2C:9B:A5 Certificate issuer: /CN=00EE953FD699788668C724460F4D8D420238194F Certificate serial: 25AC2F6FBAAC90DA6C1060DEC4A1B174E7EB5DF6 Authority key identifier: 00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31362e302f32342d3234203d3e20323632393239.roa Signing time: Tue 16 Jul 2024 01:17:25 +0000 ROA not before: Tue 16 Jul 2024 01:12:25 +0000 ROA not after: Tue 15 Jul 2025 01:17:25 +0000 asID: 262929 IP address blocks: 122.128.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Feb 2025 09:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:ac:2f:6f:ba:ac:90:da:6c:10:60:de:c4:a1:b1:74:e7:eb:5d:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00EE953FD699788668C724460F4D8D420238194F Validity Not Before: Jul 16 01:12:25 2024 GMT Not After : Jul 15 01:17:25 2025 GMT Subject: CN=079C26925D31C9672AE9CAC224FC2B90BE2C9BA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f8:d0:4a:68:ca:d1:f1:23:b3:81:39:79:96: 7e:99:1b:d5:13:f9:5f:59:67:5a:ee:5d:f8:c3:b6: 60:40:84:7a:17:03:53:93:3a:fe:76:d8:a0:1d:d7: b5:41:98:9e:f1:69:b7:3c:6b:0e:71:27:56:84:9f: c5:f5:3b:c7:4d:ee:19:14:97:e0:df:59:8b:a9:3c: ba:2a:2b:f5:bf:82:0a:6c:6a:eb:50:79:bb:40:61: 8a:8e:a9:a9:46:16:51:9e:a7:46:d5:0e:b2:96:88: f9:f8:16:4d:b5:45:ac:73:a9:58:81:fd:6b:d7:90: 75:d1:2e:5e:90:b9:e5:ff:9f:c1:56:c0:2e:3a:97: 39:b3:fd:72:ac:1b:90:2e:f3:e4:33:d8:58:d8:06: ba:1d:28:24:08:f8:2d:1c:02:f9:97:e5:8c:f6:80: 1c:ff:0a:37:ef:c9:95:7f:3e:ab:dd:5b:7c:90:03: 16:8d:83:46:93:13:e8:25:ce:4d:45:49:b2:06:0c: 8a:2c:c7:ac:04:6d:fd:9b:0f:e8:97:cb:b0:a1:23: 5a:07:1e:15:5f:72:68:e6:d2:ed:1a:b8:d9:39:23: d6:f4:bd:f2:a4:e0:76:ce:e6:16:e0:93:d9:a0:64: 81:e7:a4:96:f9:e8:9d:ff:01:a6:cc:a2:da:c5:2a: 06:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:9C:26:92:5D:31:C9:67:2A:E9:CA:C2:24:FC:2B:90:BE:2C:9B:A5 X509v3 Authority Key Identifier: keyid:00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31362e302f32342d3234203d3e20323632393239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.16.0/24 Signature Algorithm: sha256WithRSAEncryption ae:31:62:2e:2e:48:1b:0a:03:48:80:38:e6:c6:7a:a3:f0:39: e9:88:0f:4f:ab:0f:42:f7:ab:b0:36:31:41:82:de:9d:e8:36: 2b:a9:38:ba:4e:cd:42:73:98:0b:32:e3:79:31:fa:46:b4:54: ea:6c:76:9a:49:23:5c:d6:58:88:48:e2:8e:ec:a5:ca:ce:34: 0d:4b:bb:6c:04:63:be:19:6e:87:40:27:a9:24:e5:fc:80:6c: f3:00:7c:32:5b:c7:b8:ec:f1:bd:00:30:3d:fc:b0:73:7d:51: f9:8b:57:6a:3b:ac:84:86:cb:27:c6:c5:e4:31:95:1e:3d:ab: 86:9e:09:6b:64:cf:7d:e3:fe:f2:3f:85:6c:38:a8:75:7f:49: 95:a2:0d:43:fc:49:8c:7d:ba:ed:ab:0a:32:85:bf:3a:85:99: 7f:6a:1d:7d:b6:49:03:ff:03:77:57:68:65:6a:4a:40:7b:97: 22:95:4a:2a:dc:6d:6f:ed:aa:de:ed:9d:0e:db:72:cb:6e:4d: a2:aa:3b:df:b0:53:7f:fa:a6:0d:ee:cc:a2:72:10:11:0c:b1: 8a:6c:22:be:35:f4:1c:19:39:46:44:c7:98:49:fb:c5:e3:ac: 44:08:bb:65:ea:7d:db:c5:c3:19:0d:c7:54:08:01:1f:3e:20: fd:1c:50:70 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJawvb7qskNpsEGDexKGxdOfrXfYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIw MjM4MTk0RjAeFw0yNDA3MTYwMTEyMjVaFw0yNTA3MTUwMTE3MjVaMDMxMTAvBgNV BAMTKDA3OUMyNjkyNUQzMUM5NjcyQUU5Q0FDMjI0RkMyQjkwQkUyQzlCQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5+NBKaMrR8SOzgTl5ln6ZG9UT +V9ZZ1ruXfjDtmBAhHoXA1OTOv522KAd17VBmJ7xabc8aw5xJ1aEn8X1O8dN7hkU l+DfWYupPLoqK/W/ggpsautQebtAYYqOqalGFlGep0bVDrKWiPn4Fk21RaxzqViB /WvXkHXRLl6QueX/n8FWwC46lzmz/XKsG5Au8+Qz2FjYBrodKCQI+C0cAvmX5Yz2 gBz/CjfvyZV/PqvdW3yQAxaNg0aTE+glzk1FSbIGDIosx6wEbf2bD+iXy7ChI1oH HhVfcmjm0u0auNk5I9b0vfKk4HbO5hbgk9mgZIHnpJb56J3/AabMotrFKgajAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUB5wmkl0xyWcq6crCJPwrkL4sm6UwHwYDVR0j BBgwFoAUAO6VP9aZeIZoxyRGD02NQgI4GU8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODUzZjIyOC0zN2YyLTQ3ZDktYjlmZS00NzZiYWRlMTMzOTMvMC8wMEVFOTUzRkQ2 OTk3ODg2NjhDNzI0NDYwRjREOEQ0MjAyMzgxOTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIwMjM4 MTk0Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4NTNmMjI4LTM3ZjItNDdkOS1i OWZlLTQ3NmJhZGUxMzM5My8wLzMxMzIzMjJlMzEzMjM4MmUzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNjMyMzkzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeoAQMA0GCSqG SIb3DQEBCwUAA4IBAQCuMWIuLkgbCgNIgDjmxnqj8DnpiA9Pqw9C96uwNjFBgt6d 6DYrqTi6Ts1Cc5gLMuN5MfpGtFTqbHaaSSNc1liISOKO7KXKzjQNS7tsBGO+GW6H QCepJOX8gGzzAHwyW8e47PG9ADA9/LBzfVH5i1dqO6yEhssnxsXkMZUePauGnglr ZM994/7yP4VsOKh1f0mVog1D/EmMfbrtqwoyhb86hZl/ah19tkkD/wN3V2hlakpA e5cilUoq3G1v7are7Z0O23LLbk2iqjvfsFN/+qYN7syichARDLGKbCK+NfQcGTlG RMeYSfvF46xECLtl6n3bxcMZDcdUCAEfPiD9HFBw -----END CERTIFICATE-----Generated at Sun Feb 16 15:14:28 2025 by rpki-client