$ rpki-client -vvf repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31382e302f32342d3234203d3e203436303435.roa File: 3132322e3132382e31382e302f32342d3234203d3e203436303435.roa (raw, json) Hash identifier: hfQlGpJvc95Pfy85yc6nCGSM67UcOu1jOPFHsJGwW4Q= Subject key identifier: 28:D3:53:9A:2D:FE:EF:36:8F:3A:F9:33:41:5B:45:6F:17:42:97:DF Certificate issuer: /CN=00EE953FD699788668C724460F4D8D420238194F Certificate serial: 759543B6100DF6670F434F4A1BB917B68EFB7F5F Authority key identifier: 00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31382e302f32342d3234203d3e203436303435.roa Signing time: Tue 18 Jun 2024 04:01:29 +0000 ROA not before: Tue 18 Jun 2024 03:56:29 +0000 ROA not after: Tue 17 Jun 2025 04:01:29 +0000 asID: 46045 IP address blocks: 122.128.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Feb 2025 12:54:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:95:43:b6:10:0d:f6:67:0f:43:4f:4a:1b:b9:17:b6:8e:fb:7f:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00EE953FD699788668C724460F4D8D420238194F Validity Not Before: Jun 18 03:56:29 2024 GMT Not After : Jun 17 04:01:29 2025 GMT Subject: CN=28D3539A2DFEEF368F3AF933415B456F174297DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e6:44:cc:7b:07:c4:fe:38:de:54:09:6a:e3: 14:22:1f:ba:86:d3:3c:58:a1:30:35:2a:d7:73:38: 03:ba:82:f4:62:b8:af:1a:81:2c:16:7c:0d:18:5c: 15:d1:75:ba:a7:0b:1a:90:02:1d:35:c9:97:d8:51: a8:21:b3:64:bd:54:f5:cf:4c:9d:9c:41:86:c6:55: 5a:e0:e1:ba:83:64:ff:b2:7c:d8:6b:0b:34:69:1f: dd:1c:2c:e4:9f:36:07:7d:f6:64:ae:01:8f:fd:cc: 8a:bd:4f:a1:37:ed:72:b5:eb:01:67:96:9d:dd:6a: 46:df:91:86:7e:3f:30:d9:96:b9:3e:c5:93:b3:2c: 17:1f:aa:c3:29:13:06:5a:09:cb:23:22:c9:02:18: 8c:45:cf:38:48:e3:1f:1d:08:cb:69:06:84:42:12: 84:a7:78:13:f5:26:03:da:13:52:b9:ac:1d:7b:ce: 71:e5:1e:ad:67:21:ad:63:d6:0d:f0:9b:07:8e:a9: 93:d0:a6:44:e7:ad:a8:94:84:48:1c:bb:84:41:e7: 08:d4:bb:a4:f9:5c:71:40:9f:38:ff:e8:6f:32:c8: 9e:8d:a8:b9:b4:bf:ef:a5:83:60:99:70:ec:53:89: 13:0b:c5:7e:cc:de:eb:fd:da:00:e4:dd:b9:cf:3c: 05:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:D3:53:9A:2D:FE:EF:36:8F:3A:F9:33:41:5B:45:6F:17:42:97:DF X509v3 Authority Key Identifier: keyid:00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31382e302f32342d3234203d3e203436303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.18.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:cd:6b:b2:66:67:3d:f1:3f:58:f3:9e:b7:a4:8e:89:e1:0c: 92:fe:b3:16:89:d4:fd:1e:3d:01:8f:8f:1f:bb:1e:ce:f6:4a: 42:f7:6b:d1:d0:91:5e:f8:51:d8:ae:ac:7c:69:8e:4b:48:4f: 26:c3:79:65:be:a7:bd:f1:8c:ca:c4:35:ad:4f:4b:8b:9e:7b: a6:8e:47:0d:8d:ab:83:ce:2b:81:21:ac:53:38:52:66:b5:c9: aa:7b:e8:48:f1:41:a8:28:02:ac:21:a3:ef:f9:f8:0d:cb:3f: 50:ff:f9:0c:d5:1a:55:ef:60:a3:10:62:ef:d0:80:a1:c2:e7: c0:9c:ea:b0:c3:5f:70:38:4c:df:bf:9b:c9:fc:f7:99:33:50: 7f:15:68:c4:23:4f:8f:ec:34:f7:08:27:5f:72:bb:1a:58:e9: 8c:4f:f1:84:89:b6:34:22:fc:a4:cc:c0:a7:d9:fb:a2:b7:13: 99:27:3f:9a:8f:a7:f2:fd:ab:31:f6:62:f5:59:5a:d6:6a:e7: 88:0c:c6:3a:49:87:27:2e:8d:dd:5d:6a:bc:dd:67:de:1d:ce: 4f:49:c7:67:d3:be:8b:3d:92:3f:f6:b1:f8:40:29:16:6d:ba: 15:40:c7:2b:ba:50:7c:63:a7:f2:6a:7f:17:4a:0d:80:48:59: fe:25:32:6b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdZVDthAN9mcPQ09KG7kXto77f18wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIw MjM4MTk0RjAeFw0yNDA2MTgwMzU2MjlaFw0yNTA2MTcwNDAxMjlaMDMxMTAvBgNV BAMTKDI4RDM1MzlBMkRGRUVGMzY4RjNBRjkzMzQxNUI0NTZGMTc0Mjk3REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj5kTMewfE/jjeVAlq4xQiH7qG 0zxYoTA1KtdzOAO6gvRiuK8agSwWfA0YXBXRdbqnCxqQAh01yZfYUaghs2S9VPXP TJ2cQYbGVVrg4bqDZP+yfNhrCzRpH90cLOSfNgd99mSuAY/9zIq9T6E37XK16wFn lp3dakbfkYZ+PzDZlrk+xZOzLBcfqsMpEwZaCcsjIskCGIxFzzhI4x8dCMtpBoRC EoSneBP1JgPaE1K5rB17znHlHq1nIa1j1g3wmweOqZPQpkTnraiUhEgcu4RB5wjU u6T5XHFAnzj/6G8yyJ6NqLm0v++lg2CZcOxTiRMLxX7M3uv92gDk3bnPPAVjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUKNNTmi3+7zaPOvkzQVtFbxdCl98wHwYDVR0j BBgwFoAUAO6VP9aZeIZoxyRGD02NQgI4GU8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODUzZjIyOC0zN2YyLTQ3ZDktYjlmZS00NzZiYWRlMTMzOTMvMC8wMEVFOTUzRkQ2 OTk3ODg2NjhDNzI0NDYwRjREOEQ0MjAyMzgxOTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIwMjM4 MTk0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4NTNmMjI4LTM3ZjItNDdkOS1i OWZlLTQ3NmJhZGUxMzM5My8wLzMxMzIzMjJlMzEzMjM4MmUzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHqAEjANBgkqhkiG 9w0BAQsFAAOCAQEAL81rsmZnPfE/WPOet6SOieEMkv6zFonU/R49AY+PH7sezvZK Qvdr0dCRXvhR2K6sfGmOS0hPJsN5Zb6nvfGMysQ1rU9Li557po5HDY2rg84rgSGs UzhSZrXJqnvoSPFBqCgCrCGj7/n4Dcs/UP/5DNUaVe9goxBi79CAocLnwJzqsMNf cDhM37+byfz3mTNQfxVoxCNPj+w09wgnX3K7GljpjE/xhIm2NCL8pMzAp9n7orcT mSc/mo+n8v2rMfZi9Vla1mrniAzGOkmHJy6N3V1qvN1n3h3OT0nHZ9O+iz2SP/ax +EApFm26FUDHK7pQfGOn8mp/F0oNgEhZ/iUyaw== -----END CERTIFICATE-----Generated at Wed Feb 19 22:42:10 2025 by rpki-client