$ rpki-client -vvf repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32312e302f32342d3234203d3e203436303435.roa File: 3132322e3132382e32312e302f32342d3234203d3e203436303435.roa (raw, json) Hash identifier: dNSAWmxgTUWP9p8pdmyRlrOPm0IRFd6F+03Yl+DHvWA= Subject key identifier: 7A:3D:EB:E4:1B:C3:92:AB:51:73:2A:D3:58:68:84:7E:AE:52:6A:5D Certificate issuer: /CN=00EE953FD699788668C724460F4D8D420238194F Certificate serial: 1605AFC48847387A541DC463ED4225CAA3AE0027 Authority key identifier: 00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32312e302f32342d3234203d3e203436303435.roa Signing time: Tue 18 Jun 2024 06:01:17 +0000 ROA not before: Tue 18 Jun 2024 05:56:17 +0000 ROA not after: Tue 17 Jun 2025 06:01:17 +0000 asID: 46045 IP address blocks: 122.128.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Feb 2025 12:54:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:05:af:c4:88:47:38:7a:54:1d:c4:63:ed:42:25:ca:a3:ae:00:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00EE953FD699788668C724460F4D8D420238194F Validity Not Before: Jun 18 05:56:17 2024 GMT Not After : Jun 17 06:01:17 2025 GMT Subject: CN=7A3DEBE41BC392AB51732AD35868847EAE526A5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:1d:60:08:b4:ac:f1:b1:cc:77:d2:97:60:2e: dd:3b:25:b2:d0:99:ee:db:d7:9a:6c:73:15:cb:f0: 5d:c1:ef:91:29:3a:d3:87:30:dc:c1:73:14:2d:5d: a7:d1:90:3f:50:d7:49:f2:47:a0:57:bb:56:a9:da: a9:d2:9e:00:f2:dc:b7:3f:09:e3:07:8e:e4:b7:53: ab:d1:58:d6:3b:fe:76:34:f7:c3:45:97:a0:67:7f: 30:7c:64:e6:92:e8:f9:5c:87:99:7b:f0:09:e0:77: 02:23:57:63:79:88:70:2d:bc:36:97:24:4b:7f:8d: 3d:df:24:f6:7b:3f:19:ba:8c:51:25:e8:1b:f6:21: dc:44:6a:5a:05:81:61:d8:20:1b:28:ac:50:72:87: ae:fe:f2:89:59:2e:da:b7:fc:ba:3b:0e:6b:c5:fd: 2a:7f:29:cb:69:bb:c5:65:41:33:bb:45:14:27:93: 24:7d:fb:f4:e0:78:2c:63:71:d9:f3:df:ed:a3:be: eb:ef:10:87:47:e0:a0:07:1c:b6:09:5d:84:72:b5: 17:b7:51:e4:31:cd:a9:e0:90:12:24:86:30:b5:e4: a4:50:ea:87:56:e9:c1:08:29:da:4f:63:97:4e:58: ac:d0:2b:5f:cc:b0:79:10:0c:eb:ac:2c:10:20:89: c6:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:3D:EB:E4:1B:C3:92:AB:51:73:2A:D3:58:68:84:7E:AE:52:6A:5D X509v3 Authority Key Identifier: keyid:00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32312e302f32342d3234203d3e203436303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.21.0/24 Signature Algorithm: sha256WithRSAEncryption 92:ad:60:70:51:69:fd:1b:1c:33:c1:88:25:85:92:98:c4:56: 4e:20:80:3a:d3:c4:f1:45:57:0f:60:79:e0:74:cf:04:37:35: bb:8c:b8:87:1a:68:cb:ab:63:be:15:7f:2f:92:b8:31:85:87: e1:ca:e8:10:cb:98:8c:f1:2f:a8:04:5d:08:76:ea:12:6b:3a: e7:ed:b5:87:13:7c:61:fb:ec:f6:89:f1:0d:f4:b0:a9:0f:11: 49:26:4f:ef:d5:57:fb:15:cb:b2:3b:7a:13:1a:c8:63:8c:5c: fd:88:04:e0:21:09:5b:a4:97:fe:13:4e:3e:fc:2d:90:0c:4d: ad:17:29:d4:19:7b:80:db:74:3a:f4:e9:53:4f:15:fe:bb:0e: 4f:70:38:59:01:19:34:7e:ca:48:33:b5:16:0c:0e:53:dc:97: 01:20:18:78:3e:84:99:dd:7c:ca:22:4f:c2:8a:88:26:e4:63: 61:0f:48:96:f3:08:3b:55:cf:cc:23:8f:2c:28:11:70:ad:8c: 27:e0:69:f1:3a:0e:c2:2c:de:80:87:34:7a:87:3a:87:8b:7e: cd:72:ec:e1:fe:d3:7f:f0:fb:7b:ce:7e:37:36:75:92:7b:3d: ce:42:36:40:7f:27:ca:84:9e:10:c6:62:d2:da:8b:91:a9:c2: 04:0e:09:9c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFgWvxIhHOHpUHcRj7UIlyqOuACcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIw MjM4MTk0RjAeFw0yNDA2MTgwNTU2MTdaFw0yNTA2MTcwNjAxMTdaMDMxMTAvBgNV BAMTKDdBM0RFQkU0MUJDMzkyQUI1MTczMkFEMzU4Njg4NDdFQUU1MjZBNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWHWAItKzxscx30pdgLt07JbLQ me7b15pscxXL8F3B75EpOtOHMNzBcxQtXafRkD9Q10nyR6BXu1ap2qnSngDy3Lc/ CeMHjuS3U6vRWNY7/nY098NFl6BnfzB8ZOaS6Plch5l78AngdwIjV2N5iHAtvDaX JEt/jT3fJPZ7Pxm6jFEl6Bv2IdxEaloFgWHYIBsorFByh67+8olZLtq3/Lo7DmvF /Sp/Kctpu8VlQTO7RRQnkyR9+/TgeCxjcdnz3+2jvuvvEIdH4KAHHLYJXYRytRe3 UeQxzangkBIkhjC15KRQ6odW6cEIKdpPY5dOWKzQK1/MsHkQDOusLBAgicabAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUej3r5BvDkqtRcyrTWGiEfq5Sal0wHwYDVR0j BBgwFoAUAO6VP9aZeIZoxyRGD02NQgI4GU8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODUzZjIyOC0zN2YyLTQ3ZDktYjlmZS00NzZiYWRlMTMzOTMvMC8wMEVFOTUzRkQ2 OTk3ODg2NjhDNzI0NDYwRjREOEQ0MjAyMzgxOTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIwMjM4 MTk0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4NTNmMjI4LTM3ZjItNDdkOS1i OWZlLTQ3NmJhZGUxMzM5My8wLzMxMzIzMjJlMzEzMjM4MmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHqAFTANBgkqhkiG 9w0BAQsFAAOCAQEAkq1gcFFp/RscM8GIJYWSmMRWTiCAOtPE8UVXD2B54HTPBDc1 u4y4hxpoy6tjvhV/L5K4MYWH4croEMuYjPEvqARdCHbqEms65+21hxN8Yfvs9onx DfSwqQ8RSSZP79VX+xXLsjt6ExrIY4xc/YgE4CEJW6SX/hNOPvwtkAxNrRcp1Bl7 gNt0OvTpU08V/rsOT3A4WQEZNH7KSDO1FgwOU9yXASAYeD6Emd18yiJPwoqIJuRj YQ9IlvMIO1XPzCOPLCgRcK2MJ+Bp8ToOwizegIc0eoc6h4t+zXLs4f7Tf/D7e85+ NzZ1kns9zkI2QH8nyoSeEMZi0tqLkanCBA4JnA== -----END CERTIFICATE-----Generated at Wed Feb 19 22:43:08 2025 by rpki-client