$ rpki-client -vvf repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32332e302f32342d3234203d3e203436303435.roa File: 3132322e3132382e32332e302f32342d3234203d3e203436303435.roa (raw, json) Hash identifier: OV+nB/EqLAsy/NezByF487GqVhpLPJ91ZyE8OUkFt2w= Subject key identifier: 1B:E5:5D:68:62:3B:D9:17:F9:E8:7B:A4:D1:23:50:79:70:BF:A6:89 Certificate issuer: /CN=00EE953FD699788668C724460F4D8D420238194F Certificate serial: 378500A06AE982293B72E4BDFDA0AE36E3BE92AD Authority key identifier: 00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32332e302f32342d3234203d3e203436303435.roa Signing time: Tue 18 Jun 2024 06:01:17 +0000 ROA not before: Tue 18 Jun 2024 05:56:17 +0000 ROA not after: Tue 17 Jun 2025 06:01:17 +0000 asID: 46045 IP address blocks: 122.128.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 18:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:85:00:a0:6a:e9:82:29:3b:72:e4:bd:fd:a0:ae:36:e3:be:92:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00EE953FD699788668C724460F4D8D420238194F Validity Not Before: Jun 18 05:56:17 2024 GMT Not After : Jun 17 06:01:17 2025 GMT Subject: CN=1BE55D68623BD917F9E87BA4D123507970BFA689 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b8:53:29:ed:09:4e:48:c5:be:df:da:fe:4c: 15:cb:17:7c:72:6a:90:53:c2:d0:e3:70:7f:ad:52: 35:e3:be:6b:b3:98:94:a9:f2:36:ad:5c:a2:24:8c: 48:6e:a9:f1:c2:dc:4f:1f:b7:cc:d8:64:5c:69:11: ef:cd:fd:49:73:56:2a:98:24:04:f4:00:14:7b:c6: 5f:19:5e:50:9f:6f:f9:51:29:92:d3:24:06:f8:cb: 3c:3f:1f:2a:81:71:2a:74:64:0d:3d:db:ae:0a:60: a9:e7:bf:f8:cf:d6:ab:3b:e7:55:92:4a:98:38:92: b8:a9:c5:ac:78:08:96:76:60:59:93:cc:69:51:af: a8:8b:ef:24:d3:c4:38:48:f9:43:bf:2c:64:24:b9: 74:04:e6:60:cb:28:77:30:58:e7:a5:45:75:52:69: 81:64:04:cc:aa:b9:8e:2e:55:67:86:ca:8c:fb:b9: 91:66:62:5b:3a:09:6a:65:89:6e:3b:3f:a7:c2:b3: a3:a9:3d:37:82:45:27:b7:ca:c4:87:8d:90:70:9b: 8d:f0:d9:b2:2e:76:ad:7d:91:de:b4:13:4e:f8:89: 78:59:82:53:b8:f1:91:04:27:c0:41:0a:6c:90:49: 45:8a:fc:1d:cb:b6:b9:f3:57:49:8a:3f:1f:c9:3a: 05:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:E5:5D:68:62:3B:D9:17:F9:E8:7B:A4:D1:23:50:79:70:BF:A6:89 X509v3 Authority Key Identifier: keyid:00:EE:95:3F:D6:99:78:86:68:C7:24:46:0F:4D:8D:42:02:38:19:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/00EE953FD699788668C724460F4D8D420238194F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00EE953FD699788668C724460F4D8D420238194F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/3132322e3132382e32332e302f32342d3234203d3e203436303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.23.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:ec:f0:5f:8b:08:74:dd:99:20:85:74:67:69:e0:f1:ce:22: 20:6a:ce:65:6d:c7:fa:9d:cc:1f:38:90:d2:ba:b1:41:89:42: 43:48:19:82:7b:b8:c7:b8:6e:73:ec:22:ce:db:7b:7d:96:2d: a5:e1:7a:7d:dd:0a:85:88:f5:6a:90:88:e5:1d:9e:56:7f:7a: 8f:57:e5:93:68:ed:af:c2:a9:03:d2:3b:b0:22:f6:cd:99:58: 2e:72:df:01:30:b2:2e:a5:08:a7:df:e0:06:b4:29:fe:f6:eb: 9f:60:24:93:80:77:32:29:85:bb:a6:e6:2b:c2:3f:17:8f:73: ff:b6:72:5f:e3:3d:d8:54:16:c9:b8:bc:ee:2a:69:e2:e5:73: f5:3d:dc:a7:4c:a1:3a:b6:4c:cb:5d:ab:6d:2b:c6:af:4b:4e: 26:57:75:61:02:7e:4e:ba:02:3c:47:24:36:22:04:9d:6e:0d: dd:17:c2:de:4f:5b:57:3d:1d:01:93:48:a8:9c:6e:b4:b0:fd: 91:58:67:a6:5f:51:98:e9:5a:4e:d8:f9:57:96:ac:18:b6:e3: a0:0f:6d:24:ad:a2:23:b9:04:86:13:e6:bf:c1:65:08:d3:f3: 34:c3:1c:45:2a:e4:a6:9e:40:f1:20:ff:42:43:20:4d:5c:90: 19:d0:af:a9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUN4UAoGrpgik7cuS9/aCuNuO+kq0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIw MjM4MTk0RjAeFw0yNDA2MTgwNTU2MTdaFw0yNTA2MTcwNjAxMTdaMDMxMTAvBgNV BAMTKDFCRTU1RDY4NjIzQkQ5MTdGOUU4N0JBNEQxMjM1MDc5NzBCRkE2ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBuFMp7QlOSMW+39r+TBXLF3xy apBTwtDjcH+tUjXjvmuzmJSp8jatXKIkjEhuqfHC3E8ft8zYZFxpEe/N/UlzViqY JAT0ABR7xl8ZXlCfb/lRKZLTJAb4yzw/HyqBcSp0ZA09264KYKnnv/jP1qs751WS Spg4kripxax4CJZ2YFmTzGlRr6iL7yTTxDhI+UO/LGQkuXQE5mDLKHcwWOelRXVS aYFkBMyquY4uVWeGyoz7uZFmYls6CWpliW47P6fCs6OpPTeCRSe3ysSHjZBwm43w 2bIudq19kd60E074iXhZglO48ZEEJ8BBCmyQSUWK/B3LtrnzV0mKPx/JOgXBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUG+VdaGI72Rf56Huk0SNQeXC/pokwHwYDVR0j BBgwFoAUAO6VP9aZeIZoxyRGD02NQgI4GU8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODUzZjIyOC0zN2YyLTQ3ZDktYjlmZS00NzZiYWRlMTMzOTMvMC8wMEVFOTUzRkQ2 OTk3ODg2NjhDNzI0NDYwRjREOEQ0MjAyMzgxOTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBFRTk1M0ZENjk5Nzg4NjY4QzcyNDQ2MEY0RDhENDIwMjM4 MTk0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4NTNmMjI4LTM3ZjItNDdkOS1i OWZlLTQ3NmJhZGUxMzM5My8wLzMxMzIzMjJlMzEzMjM4MmUzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHqAFzANBgkqhkiG 9w0BAQsFAAOCAQEAPuzwX4sIdN2ZIIV0Z2ng8c4iIGrOZW3H+p3MHziQ0rqxQYlC Q0gZgnu4x7huc+wiztt7fZYtpeF6fd0KhYj1apCI5R2eVn96j1flk2jtr8KpA9I7 sCL2zZlYLnLfATCyLqUIp9/gBrQp/vbrn2Akk4B3MimFu6bmK8I/F49z/7ZyX+M9 2FQWybi87ipp4uVz9T3cp0yhOrZMy12rbSvGr0tOJld1YQJ+TroCPEckNiIEnW4N 3RfC3k9bVz0dAZNIqJxutLD9kVhnpl9RmOlaTtj5V5asGLbjoA9tJK2iI7kEhhPm v8FlCNPzNMMcRSrkpp5A8SD/QkMgTVyQGdCvqQ== -----END CERTIFICATE-----Generated at Wed Feb 19 22:40:34 2025 by rpki-client