$ rpki-client -vvf repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/3132332e3235332e3234342e302f32322d3234203d3e20313339333939.roa File: 3132332e3235332e3234342e302f32322d3234203d3e20313339333939.roa (raw, json) Hash identifier: J0yFIU8yPJPvRf3j8RKfhubQW1HtIykVJHVnsQp+Y88= Subject key identifier: B3:99:04:2A:B4:CC:37:67:4D:A2:8E:B5:8C:61:16:73:60:F1:B3:AF Certificate issuer: /CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Certificate serial: 5CE58ED9AAF9D1FEB32EFABF0DFE9A9530E442F1 Authority key identifier: CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/3132332e3235332e3234342e302f32322d3234203d3e20313339333939.roa Signing time: Thu 02 May 2024 06:00:01 +0000 ROA not before: Thu 02 May 2024 05:55:01 +0000 ROA not after: Thu 01 May 2025 06:00:01 +0000 asID: 139399 IP address blocks: 123.253.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 20:07:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:e5:8e:d9:aa:f9:d1:fe:b3:2e:fa:bf:0d:fe:9a:95:30:e4:42:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Validity Not Before: May 2 05:55:01 2024 GMT Not After : May 1 06:00:01 2025 GMT Subject: CN=B399042AB4CC37674DA28EB58C61167360F1B3AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9f:a6:c5:d0:2d:ef:64:00:6c:67:06:9d:5a: 0a:22:ea:1f:44:53:20:ac:a2:be:0f:a4:07:6d:e8: 53:43:9b:06:eb:ea:9f:a8:aa:51:ba:f3:d6:42:a6: e5:ec:b1:ae:c6:46:f7:10:e3:10:09:05:17:10:96: b4:a2:4b:7c:49:f3:61:bd:76:0c:69:13:18:8a:da: d2:5c:4a:a1:5f:0e:55:0d:69:c4:93:4b:23:7c:d2: 3c:66:05:04:62:d5:19:2f:d4:6a:0a:3a:5a:09:21: 46:41:4e:3f:71:3e:a2:7b:9d:cb:ca:fc:b2:f6:0b: f9:02:98:33:2b:bd:3a:a9:b9:1b:0a:29:dd:19:c3: c4:2a:b9:14:00:f5:5e:9c:82:40:2c:ed:09:16:fe: 86:7f:d1:5c:2b:c4:fd:78:4a:e6:92:71:b3:9a:a2: d3:73:fb:37:19:2a:2f:61:63:ea:88:0a:a2:b7:b5: 16:7e:d6:4e:f5:9c:fb:3a:62:db:93:69:a3:f7:63: b6:c5:0b:f6:f2:c3:39:7f:57:d4:ad:c8:76:7e:fc: 78:8b:b0:f6:96:63:ae:41:96:13:fa:ed:06:ce:53: c8:27:87:d1:87:9d:6e:c4:2c:65:c9:8e:f3:6e:fe: 51:ec:ff:e2:7a:bb:2f:9c:f2:d2:b0:93:4f:65:90: fa:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:99:04:2A:B4:CC:37:67:4D:A2:8E:B5:8C:61:16:73:60:F1:B3:AF X509v3 Authority Key Identifier: keyid:CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/3132332e3235332e3234342e302f32322d3234203d3e20313339333939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.253.244.0/22 Signature Algorithm: sha256WithRSAEncryption 81:c5:9e:4a:9e:a8:50:04:1e:22:68:31:3a:f4:4b:ef:df:1b: 26:4f:d9:c5:92:ec:d9:c7:0d:62:a2:c2:6a:26:15:85:86:da: 03:c4:bf:8b:9b:c0:55:e0:29:90:60:1a:a7:71:a5:a9:0b:7d: 35:b8:4d:08:d3:27:15:12:2f:df:b6:3b:67:0b:4f:74:38:ce: 07:07:d4:6f:18:b8:cc:59:d1:a4:42:aa:4c:7a:c9:96:24:12: 40:c5:24:d9:0f:70:d3:3a:91:a9:85:40:39:62:c4:2b:44:51: d9:b7:9d:6c:eb:d0:70:1e:7d:9e:d3:54:58:05:7e:b1:70:53: bf:cb:df:0a:a4:a1:21:a2:9a:b6:6a:ac:e1:32:44:9d:c5:fe: d1:bb:6b:31:e3:aa:2b:ec:c7:a4:32:72:9a:f3:56:ef:e0:b3: 1d:c8:33:cc:76:6b:28:b9:39:e3:01:64:3f:16:de:78:48:e4: 2f:c7:01:6f:80:a0:fb:fa:0b:c9:31:ea:d0:2b:59:59:ea:b5: 4c:b0:db:e7:b3:ea:40:f7:b1:fe:0b:4a:78:8a:0c:9b:28:a8: 86:2c:a4:4b:a9:c6:68:0a:7b:4d:59:a4:18:59:5d:33:54:e4: ca:44:b4:e8:9e:95:b2:3e:48:03:8d:32:1e:4c:4c:14:d3:29: 3c:80:22:bc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXOWO2ar50f6zLvq/Df6alTDkQvEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRD RkQ3RTI2QzAeFw0yNDA1MDIwNTU1MDFaFw0yNTA1MDEwNjAwMDFaMDMxMTAvBgNV BAMTKEIzOTkwNDJBQjRDQzM3Njc0REEyOEVCNThDNjExNjczNjBGMUIzQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFn6bF0C3vZABsZwadWgoi6h9E UyCsor4PpAdt6FNDmwbr6p+oqlG689ZCpuXssa7GRvcQ4xAJBRcQlrSiS3xJ82G9 dgxpExiK2tJcSqFfDlUNacSTSyN80jxmBQRi1Rkv1GoKOloJIUZBTj9xPqJ7ncvK /LL2C/kCmDMrvTqpuRsKKd0Zw8QquRQA9V6cgkAs7QkW/oZ/0VwrxP14SuaScbOa otNz+zcZKi9hY+qICqK3tRZ+1k71nPs6YtuTaaP3Y7bFC/bywzl/V9StyHZ+/HiL sPaWY65BlhP67QbOU8gnh9GHnW7ELGXJjvNu/lHs/+J6uy+c8tKwk09lkPrJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUs5kEKrTMN2dNoo61jGEWc2Dxs68wHwYDVR0j BBgwFoAUynBPeF6liz9lnm48j3Hi1M/X4mwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDIxOTg1Yi1hMGU2LTRlMDUtYmVmNi1mZTZmNWE2ZTJmNDMvMC9DQTcwNEY3ODVF QTU4QjNGNjU5RTZFM0M4RjcxRTJENENGRDdFMjZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRDRkQ3 RTI2Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0MjE5ODViLWEwZTYtNGUwNS1i ZWY2LWZlNmY1YTZlMmY0My8wLzMxMzIzMzJlMzIzNTMzMmUzMjM0MzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM5Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7/fQwDQYJ KoZIhvcNAQELBQADggEBAIHFnkqeqFAEHiJoMTr0S+/fGyZP2cWS7NnHDWKiwmom FYWG2gPEv4ubwFXgKZBgGqdxpakLfTW4TQjTJxUSL9+2O2cLT3Q4zgcH1G8YuMxZ 0aRCqkx6yZYkEkDFJNkPcNM6kamFQDlixCtEUdm3nWzr0HAefZ7TVFgFfrFwU7/L 3wqkoSGimrZqrOEyRJ3F/tG7azHjqivsx6QycprzVu/gsx3IM8x2ayi5OeMBZD8W 3nhI5C/HAW+AoPv6C8kx6tArWVnqtUyw2+ez6kD3sf4LSniKDJsoqIYspEupxmgK e01ZpBhZXTNU5MpEtOielbI+SAONMh5MTBTTKTyAIrw= -----END CERTIFICATE-----Generated at Thu Nov 28 18:50:06 2024 by rpki-client on console-ams.rpki-client.org