$ rpki-client -vvf repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31392e302f32342d3234203d3e203436303435.roa File: 3132322e3132382e31392e302f32342d3234203d3e203436303435.roa (raw, json) Hash identifier: nVkklJpTCB1woXNIy8eL8fiFevvnvUpv5De02NYeOMM= Subject key identifier: 81:54:DF:7D:E6:50:65:73:C7:D4:05:DA:C7:81:73:11:F2:58:07:7F Certificate issuer: /CN=00EE953FD699788668C724460F4D8D420238194F Certificate serial: 14A4652ECA8E463690D60A0EEA2FC803F64AE61A Authority key identifier: 00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31392e302f32342d3234203d3e203436303435.roa Signing time: Tue 18 Jun 2024 06:01:17 +0000 ROA not before: Tue 18 Jun 2024 05:56:17 +0000 ROA not after: Tue 17 Jun 2025 06:01:17 +0000 asID: 46045 IP address blocks: 122.128.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 18:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:a4:65:2e:ca:8e:46:36:90:d6:0a:0e:ea:2f:c8:03:f6:4a:e6:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00EE953FD699788668C724460F4D8D420238194F Validity Not Before: Jun 18 05:56:17 2024 GMT Not After : Jun 17 06:01:17 2025 GMT Subject: CN=8154DF7DE6506573C7D405DAC7817311F258077F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:49:81:3d:c1:3f:90:21:16:7a:d7:c4:34:50: 0d:ed:35:5e:3e:77:30:46:37:b8:45:87:59:a0:32: e9:ec:7f:51:cb:57:46:67:48:94:59:66:35:93:ef: f6:42:ce:fc:45:a1:f0:c0:ba:c4:09:c9:6d:9a:aa: f3:50:a3:c5:78:81:ed:59:87:bc:0a:05:d6:8d:f0: 1a:0c:e4:93:c4:58:89:53:51:6e:cb:03:93:ef:d0: 4f:2d:58:14:71:68:79:dc:38:ef:de:0e:b1:f4:31: 86:19:cd:85:98:28:25:d5:0c:bc:8f:f1:18:dd:17: 71:78:d2:66:4a:33:46:0e:a9:fc:42:dd:9e:46:a3: a3:5a:7d:ac:75:76:65:21:18:5d:22:3b:39:ee:c6: 1e:38:a6:5e:1d:29:60:ef:17:c6:56:92:5e:4a:95: 89:2f:93:b8:41:df:5f:cf:c5:81:79:8a:bc:73:ed: c5:fe:b0:b2:a3:8d:df:fd:c3:b7:1d:ff:86:5d:0f: f4:b2:f6:ba:e4:5e:2c:6b:f2:0a:e1:3d:e0:ae:a5: 80:59:22:15:7e:61:10:56:cb:d3:f3:eb:fe:44:b0: f0:8e:b1:c7:31:7d:3b:7d:72:34:8b:c0:05:b7:d6: 3d:78:8d:6a:54:70:f6:2a:74:9c:ec:81:21:8f:06: 5a:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:54:DF:7D:E6:50:65:73:C7:D4:05:DA:C7:81:73:11:F2:58:07:7F X509v3 Authority Key Identifier: keyid:00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e31392e302f32342d3234203d3e203436303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.19.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:b3:f3:0c:59:ed:52:29:05:5b:c7:18:9a:37:1f:de:ea:6f: 95:a8:f7:a7:7b:e4:21:ff:44:69:e1:0a:6f:3b:70:fd:07:5a: 22:30:69:b3:ae:87:92:99:4f:e1:69:94:61:90:18:c8:1c:2c: e4:4c:ac:0e:a6:d4:c2:c3:d2:2b:2f:8e:32:54:6a:31:3d:21: c3:31:85:03:e3:35:69:18:df:dc:cb:78:42:44:76:e2:56:de: 56:cf:9d:90:43:2b:ae:50:22:82:c5:78:a6:db:6e:ed:8a:7b: 78:5c:6b:ed:82:bf:97:21:c0:ce:9a:15:78:bd:17:f8:4c:59: 1a:65:09:cc:d8:81:9d:e6:f9:b5:93:8d:62:3c:b1:08:0b:e5: fc:3d:c1:35:a8:6e:ad:55:5c:a4:7c:d6:60:34:f7:7b:ff:fe: 49:2e:4a:bf:07:39:12:2d:6a:40:a7:64:e3:02:0d:19:a6:99: 3c:c2:e9:66:db:92:80:10:90:00:49:6f:25:99:e4:1b:f0:22: e4:9a:0b:1d:8b:30:b5:47:bd:ad:9a:a4:bd:7f:b4:74:6c:2c: 33:09:81:49:35:78:14:dd:c7:d6:16:27:ea:29:3e:57:27:2b: d7:e2:33:e2:30:24:f7:ca:63:7e:43:57:51:a9:42:1c:75:52: 43:f9:27:3b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFKRlLsqORjaQ1goO6i/IA/ZK5howDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIw MjM4MTk0RjAeFw0yNDA2MTgwNTU2MTdaFw0yNTA2MTcwNjAxMTdaMDMxMTAvBgNV BAMTKDgxNTRERjdERTY1MDY1NzNDN0Q0MDVEQUM3ODE3MzExRjI1ODA3N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRSYE9wT+QIRZ618Q0UA3tNV4+ dzBGN7hFh1mgMunsf1HLV0ZnSJRZZjWT7/ZCzvxFofDAusQJyW2aqvNQo8V4ge1Z h7wKBdaN8BoM5JPEWIlTUW7LA5Pv0E8tWBRxaHncOO/eDrH0MYYZzYWYKCXVDLyP 8RjdF3F40mZKM0YOqfxC3Z5Go6Nafax1dmUhGF0iOznuxh44pl4dKWDvF8ZWkl5K lYkvk7hB31/PxYF5irxz7cX+sLKjjd/9w7cd/4ZdD/Sy9rrkXixr8grhPeCupYBZ IhV+YRBWy9Pz6/5EsPCOsccxfTt9cjSLwAW31j14jWpUcPYqdJzsgSGPBlpdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgVTffeZQZXPH1AXax4FzEfJYB38wHwYDVR0j BBgwFoAUAO6VP9aZeIZoxyRGD02NQgI4GU8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODUzZjIyOC0zN2YyLTQ3ZDktYjlmZS00NzZiYWRlMTMzOTMvMC8wMEVFOTUzRkQ2 OTk3ODg2NjhDNzI0NDYwRjREOEQ0MjAyMzgxOTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIwMjM4 MTk0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4NTNmMjI4LTM3ZjItNDdkOS1i OWZlLTQ3NmJhZGUxMzM5My8wLzMxMzIzMjJlMzEzMjM4MmUzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHqAEzANBgkqhkiG 9w0BAQsFAAOCAQEAj7PzDFntUikFW8cYmjcf3upvlaj3p3vkIf9EaeEKbztw/Qda IjBps66HkplP4WmUYZAYyBws5EysDqbUwsPSKy+OMlRqMT0hwzGFA+M1aRjf3Mt4 QkR24lbeVs+dkEMrrlAigsV4pttu7Yp7eFxr7YK/lyHAzpoVeL0X+ExZGmUJzNiB neb5tZONYjyxCAvl/D3BNahurVVcpHzWYDT3e//+SS5Kvwc5Ei1qQKdk4wINGaaZ PMLpZtuSgBCQAElvJZnkG/Ai5JoLHYswtUe9rZqkvX+0dGwsMwmBSTV4FN3H1hYn 6ik+Vycr1+Iz4jAk98pjfkNXUalCHHVSQ/knOw== -----END CERTIFICATE-----Generated at Wed Feb 19 22:32:43 2025 by rpki-client