$ rpki-client -vvf repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32322e302f32342d3234203d3e203436303435.roa File: 3132322e3132382e32322e302f32342d3234203d3e203436303435.roa (raw, json) Hash identifier: QFd2JrU7tTRbL93RdFQ5mIITMejwRFU/WkPQT5C6r9k= Subject key identifier: 7D:41:F4:35:4A:94:1C:E0:9D:59:3E:5C:09:C9:0C:FA:B2:56:66:C0 Certificate issuer: /CN=00EE953FD699788668C724460F4D8D420238194F Certificate serial: 24244AF8B0E5D231B9F2116C879948CD99478181 Authority key identifier: 00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32322e302f32342d3234203d3e203436303435.roa Signing time: Tue 18 Jun 2024 06:01:17 +0000 ROA not before: Tue 18 Jun 2024 05:56:17 +0000 ROA not after: Tue 17 Jun 2025 06:01:17 +0000 asID: 46045 IP address blocks: 122.128.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Feb 2025 12:54:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:24:4a:f8:b0:e5:d2:31:b9:f2:11:6c:87:99:48:cd:99:47:81:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00EE953FD699788668C724460F4D8D420238194F Validity Not Before: Jun 18 05:56:17 2024 GMT Not After : Jun 17 06:01:17 2025 GMT Subject: CN=7D41F4354A941CE09D593E5C09C90CFAB25666C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:da:08:be:05:c0:96:07:86:ba:15:30:78:64: 1c:ec:97:4f:49:3d:de:9c:cd:a6:2b:17:0f:07:6b: d4:4a:64:14:1d:9e:ab:94:c6:6a:32:f9:66:b7:e8: 46:39:d2:db:73:18:85:71:a8:c7:79:0f:39:5f:56: 81:b1:b9:06:82:16:07:c8:6e:74:9a:57:c6:48:b1: 02:6e:48:30:af:c4:0b:b6:29:ec:62:41:8e:7b:6d: 29:71:9d:c0:6c:42:b5:4c:be:5f:01:8a:3e:e7:81: 6f:84:f6:cb:f4:89:5e:e8:09:6c:8a:15:6c:f8:78: 46:bd:b0:7d:a8:eb:0e:19:ee:26:cc:65:b3:00:85: e9:cc:10:56:55:0a:b6:31:ee:15:8d:21:15:d0:7d: 93:a5:36:81:8a:0a:ce:9c:f0:62:8b:c8:59:67:54: 9b:28:ae:fb:f5:f2:96:3d:09:b3:12:a8:b0:d6:da: 68:a7:e5:e9:31:96:3d:3b:c3:fa:44:36:d1:5c:3a: 0b:dc:f4:c4:67:34:bd:36:01:df:39:ac:7f:c4:de: 39:79:25:8f:46:04:e8:e4:39:28:a1:b2:84:bb:29: e1:ec:e3:0b:0c:b4:c0:1e:65:51:af:be:00:21:50: eb:5c:b4:85:83:73:1a:70:90:ba:f5:e5:f2:1e:46: 38:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:41:F4:35:4A:94:1C:E0:9D:59:3E:5C:09:C9:0C:FA:B2:56:66:C0 X509v3 Authority Key Identifier: keyid:00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32322e302f32342d3234203d3e203436303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.22.0/24 Signature Algorithm: sha256WithRSAEncryption b5:75:72:af:29:bf:5c:17:3c:69:5f:29:25:69:b6:30:7e:87: 34:a8:83:76:65:b9:7a:b3:11:59:c3:79:28:6b:d0:df:03:5c: ec:f1:07:12:c1:a5:60:2a:52:1c:6a:63:81:2e:23:3c:03:85: 41:15:69:9b:7f:57:e1:4c:54:d5:27:e3:00:58:60:23:c0:df: 11:57:9b:4e:95:33:d1:84:80:aa:e3:0e:1a:94:8d:39:96:ba: b1:95:9d:82:93:a5:75:58:80:65:08:57:f3:51:ed:ef:78:1d: ca:bd:50:8b:4a:b5:0d:25:55:f9:29:99:f4:2b:95:01:93:9d: 34:b1:97:b4:e4:fa:cc:a2:2b:bc:cc:9a:c4:00:b9:8e:ba:ad: b0:18:0b:40:74:0e:fd:dc:49:33:6c:55:37:e2:66:cf:1a:63: 3b:e7:5b:5b:45:44:15:fd:49:99:39:06:f5:70:69:9c:e1:1e: 6f:7b:2f:ac:8e:64:f7:88:59:66:cd:2b:56:65:9b:b1:92:d0: d0:03:d6:d0:d6:96:4b:27:0f:9c:25:e3:3f:f5:ab:fb:83:c9: 71:5d:61:5e:4c:48:88:6c:73:28:73:88:d3:b7:63:9f:fd:ab: 0f:63:79:7b:e1:1a:9b:c3:e7:af:12:51:e9:bd:56:b9:fe:d1: c1:d9:a2:87 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJCRK+LDl0jG58hFsh5lIzZlHgYEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIw MjM4MTk0RjAeFw0yNDA2MTgwNTU2MTdaFw0yNTA2MTcwNjAxMTdaMDMxMTAvBgNV BAMTKDdENDFGNDM1NEE5NDFDRTA5RDU5M0U1QzA5QzkwQ0ZBQjI1NjY2QzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP2gi+BcCWB4a6FTB4ZBzsl09J Pd6czaYrFw8Ha9RKZBQdnquUxmoy+Wa36EY50ttzGIVxqMd5DzlfVoGxuQaCFgfI bnSaV8ZIsQJuSDCvxAu2KexiQY57bSlxncBsQrVMvl8Bij7ngW+E9sv0iV7oCWyK FWz4eEa9sH2o6w4Z7ibMZbMAhenMEFZVCrYx7hWNIRXQfZOlNoGKCs6c8GKLyFln VJsorvv18pY9CbMSqLDW2min5ekxlj07w/pENtFcOgvc9MRnNL02Ad85rH/E3jl5 JY9GBOjkOSihsoS7KeHs4wsMtMAeZVGvvgAhUOtctIWDcxpwkLr15fIeRjgVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUfUH0NUqUHOCdWT5cCckM+rJWZsAwHwYDVR0j BBgwFoAUAO6VP9aZeIZoxyRGD02NQgI4GU8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODUzZjIyOC0zN2YyLTQ3ZDktYjlmZS00NzZiYWRlMTMzOTMvMC8wMEVFOTUzRkQ2 OTk3ODg2NjhDNzI0NDYwRjREOEQ0MjAyMzgxOTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIwMjM4 MTk0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4NTNmMjI4LTM3ZjItNDdkOS1i OWZlLTQ3NmJhZGUxMzM5My8wLzMxMzIzMjJlMzEzMjM4MmUzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHqAFjANBgkqhkiG 9w0BAQsFAAOCAQEAtXVyrym/XBc8aV8pJWm2MH6HNKiDdmW5erMRWcN5KGvQ3wNc 7PEHEsGlYCpSHGpjgS4jPAOFQRVpm39X4UxU1SfjAFhgI8DfEVebTpUz0YSAquMO GpSNOZa6sZWdgpOldViAZQhX81Ht73gdyr1Qi0q1DSVV+SmZ9CuVAZOdNLGXtOT6 zKIrvMyaxAC5jrqtsBgLQHQO/dxJM2xVN+JmzxpjO+dbW0VEFf1JmTkG9XBpnOEe b3svrI5k94hZZs0rVmWbsZLQ0APW0NaWSycPnCXjP/Wr+4PJcV1hXkxIiGxzKHOI 07djn/2rD2N5e+Eam8PnrxJR6b1Wuf7Rwdmihw== -----END CERTIFICATE-----Generated at Wed Feb 19 22:44:57 2025 by rpki-client