$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139322e302f32342d3234203d3e20313333383431.roa File: 3132332e3233312e3139322e302f32342d3234203d3e20313333383431.roa (raw, json) Hash identifier: 0ZjaCSDkZE3toJj3VnmydduiyMvKfnmcf5gcKOlye10= Subject key identifier: EF:84:BE:74:BA:A6:76:D7:32:1A:88:3C:47:D9:2D:BF:26:5F:95:D7 Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Certificate serial: 13074353DE615A1B0488C79B4E3B7440FD64201E Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139322e302f32342d3234203d3e20313333383431.roa Signing time: Mon 01 Jul 2024 01:03:20 +0000 ROA not before: Mon 01 Jul 2024 00:58:20 +0000 ROA not after: Mon 30 Jun 2025 01:03:20 +0000 asID: 133841 IP address blocks: 123.231.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:07:43:53:de:61:5a:1b:04:88:c7:9b:4e:3b:74:40:fd:64:20:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Validity Not Before: Jul 1 00:58:20 2024 GMT Not After : Jun 30 01:03:20 2025 GMT Subject: CN=EF84BE74BAA676D7321A883C47D92DBF265F95D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1e:1f:af:1c:23:63:b3:21:e2:0b:75:ac:ce: 32:3c:aa:bf:e3:5c:e4:a6:42:d3:48:df:7e:c5:81: b5:7f:30:6e:65:e5:b0:f7:dc:fa:d8:9a:96:bb:90: 62:13:2e:2f:60:16:83:60:25:e0:c7:fe:55:4f:f7: ee:53:93:4b:30:cb:05:40:7a:95:ba:9d:96:74:32: 1b:32:dc:38:74:6d:61:9f:77:20:b6:e9:d2:3d:3b: b1:2e:79:09:b2:fd:4e:57:54:f9:ec:41:d2:21:be: e5:49:52:6d:de:20:fe:46:75:e5:5a:f1:25:2f:d3: 26:09:67:0c:7d:0f:42:f0:0d:f5:d2:93:3b:b9:fa: 9d:af:cd:da:da:21:16:39:df:20:24:2d:58:72:59: 2f:85:55:76:90:e3:d5:4b:22:06:bd:53:99:8f:95: be:3b:3e:89:a2:6c:fc:d3:c4:66:a0:da:d3:aa:07: 18:a6:f1:b5:e7:3b:4a:63:4a:6a:6b:38:d8:1c:46: e9:27:e8:c8:c3:fc:cc:4e:c8:d0:69:54:a0:f9:2f: 88:dd:04:02:64:3d:e7:5a:dc:f8:27:ec:7c:49:aa: 02:d4:95:ed:dd:c5:65:89:a3:c9:fc:0f:76:c3:6f: 13:72:bf:b9:75:54:27:a1:cb:fd:a8:d2:32:e9:3a: da:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:84:BE:74:BA:A6:76:D7:32:1A:88:3C:47:D9:2D:BF:26:5F:95:D7 X509v3 Authority Key Identifier: keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139322e302f32342d3234203d3e20313333383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.231.192.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:87:70:94:94:d2:c3:58:28:1a:ad:2f:4e:18:88:29:3f:3a: cf:0c:be:9d:d6:a0:f4:36:1d:87:81:26:e0:fe:3d:45:ea:bc: ab:e1:00:28:ec:98:ff:41:7b:7b:45:d0:a7:b7:6b:8f:44:f5: 67:cc:c9:ae:5d:08:ef:c1:11:ed:44:07:fd:9f:c7:0d:66:ea: 72:5a:dd:5d:5a:8c:bc:30:c3:9c:de:b1:e9:f4:b0:9a:ad:45: 92:e2:eb:c6:ad:c8:29:e1:5a:8d:51:50:cd:78:b2:b7:72:1b: af:ab:ec:2d:90:09:0e:54:b8:e3:b9:d8:f3:79:e7:d8:65:d6: be:06:7b:63:fa:6b:6a:5e:30:e1:a2:ef:1a:60:c8:3b:65:f9: d0:d3:29:70:34:26:68:d2:4e:7f:c2:d5:e2:19:b2:89:26:b5: 2a:c0:9d:74:0b:1c:5d:2c:24:4d:ac:2c:d8:ff:36:8e:c2:a4: fe:7b:29:9a:ed:b5:21:87:83:d7:91:7d:3d:1c:ff:07:d8:b4: 87:1d:36:fc:53:ee:06:5b:1f:18:62:b1:b1:af:52:b6:e3:0a: c7:81:ff:fb:62:de:cc:45:86:a6:33:ae:07:6a:58:a0:ba:d0: fc:27:91:bb:45:40:6f:22:6e:88:2a:f7:3f:23:69:cc:21:1e: b9:92:bb:de -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEwdDU95hWhsEiMebTjt0QP1kIB4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD RjY2NzUyQjAeFw0yNDA3MDEwMDU4MjBaFw0yNTA2MzAwMTAzMjBaMDMxMTAvBgNV BAMTKEVGODRCRTc0QkFBNjc2RDczMjFBODgzQzQ3RDkyREJGMjY1Rjk1RDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9Hh+vHCNjsyHiC3WszjI8qr/j XOSmQtNI337FgbV/MG5l5bD33PrYmpa7kGITLi9gFoNgJeDH/lVP9+5Tk0swywVA epW6nZZ0Mhsy3Dh0bWGfdyC26dI9O7EueQmy/U5XVPnsQdIhvuVJUm3eIP5GdeVa 8SUv0yYJZwx9D0LwDfXSkzu5+p2vzdraIRY53yAkLVhyWS+FVXaQ49VLIga9U5mP lb47PomibPzTxGag2tOqBxim8bXnO0pjSmprONgcRukn6MjD/MxOyNBpVKD5L4jd BAJkPeda3Pgn7HxJqgLUle3dxWWJo8n8D3bDbxNyv7l1VCehy/2o0jLpOtpVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU74S+dLqmdtcyGog8R9ktvyZfldcwHwYDVR0j BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2 QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2 NzUyQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMxMzIzMzJlMzIzMzMxMmUzMTM5MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB758AwDQYJ KoZIhvcNAQELBQADggEBABqHcJSU0sNYKBqtL04YiCk/Os8Mvp3WoPQ2HYeBJuD+ PUXqvKvhACjsmP9Be3tF0Ke3a49E9WfMya5dCO/BEe1EB/2fxw1m6nJa3V1ajLww w5zesen0sJqtRZLi68atyCnhWo1RUM14srdyG6+r7C2QCQ5UuOO52PN559hl1r4G e2P6a2peMOGi7xpgyDtl+dDTKXA0JmjSTn/C1eIZsokmtSrAnXQLHF0sJE2sLNj/ No7CpP57KZrttSGHg9eRfT0c/wfYtIcdNvxT7gZbHxhisbGvUrbjCseB//ti3sxF hqYzrgdqWKC60PwnkbtFQG8ibogq9z8jacwhHrmSu94= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:11 2024 by rpki-client on console-fra.rpki-client.org