$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139342e302f32342d3234203d3e20313333383431.roa File: 3132332e3233312e3139342e302f32342d3234203d3e20313333383431.roa (raw, json) Hash identifier: /9HR3WCZZOL68bk8Vgpz1Pdz4Fi31bQ1uMVrpJAn+jc= Subject key identifier: 7B:B8:C8:B1:66:89:43:31:1F:2D:28:C7:B1:88:D9:77:5C:27:5F:0D Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Certificate serial: 69EA456A3487519712B9AC3A54564271098A54C5 Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139342e302f32342d3234203d3e20313333383431.roa Signing time: Mon 01 Jul 2024 01:03:19 +0000 ROA not before: Mon 01 Jul 2024 00:58:19 +0000 ROA not after: Mon 30 Jun 2025 01:03:19 +0000 asID: 133841 IP address blocks: 123.231.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:ea:45:6a:34:87:51:97:12:b9:ac:3a:54:56:42:71:09:8a:54:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Validity Not Before: Jul 1 00:58:19 2024 GMT Not After : Jun 30 01:03:19 2025 GMT Subject: CN=7BB8C8B1668943311F2D28C7B188D9775C275F0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:e5:c7:f5:d3:97:ff:2c:7a:0a:81:f1:41:2e: 9c:d7:e9:dc:4e:8c:c5:60:c8:83:83:d0:d8:8b:20: 19:44:c5:62:f6:e6:2a:53:cd:b5:4c:67:2f:6a:42: 90:ed:c1:bc:f8:a7:ee:3c:46:3e:1e:d6:ea:40:82: b6:ec:2e:44:ce:94:ce:3a:c1:82:10:56:3b:0d:02: ae:d7:6e:e1:31:29:fd:d8:4a:48:32:ab:7e:4e:7e: 78:01:6f:df:c7:37:53:af:25:41:aa:a8:da:06:0f: 06:e5:02:02:50:ee:23:63:22:d2:db:71:ba:f0:2a: 48:f1:4d:2b:7b:8b:bb:23:02:7e:d1:df:1b:08:b0: 6f:27:36:e7:ff:16:cb:f5:9e:d7:f6:aa:50:b7:a6: cc:9b:ea:df:a4:ae:a0:66:76:55:31:b8:33:d1:7b: 2a:4c:ba:ac:e6:04:eb:98:94:53:65:97:b9:d7:4c: 74:6a:45:56:b4:08:c0:4f:07:e0:bd:19:85:43:c8: 9e:6b:a2:28:6a:0a:be:97:2e:dd:e0:18:c8:40:3e: ad:87:f2:09:8f:d6:83:31:16:81:f3:d5:aa:d6:85: c4:17:b3:15:5e:69:33:f8:1b:69:25:bc:10:c5:80: 29:4a:d7:31:1b:17:84:3c:8e:67:bd:57:0b:eb:cb: 3c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:B8:C8:B1:66:89:43:31:1F:2D:28:C7:B1:88:D9:77:5C:27:5F:0D X509v3 Authority Key Identifier: keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139342e302f32342d3234203d3e20313333383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.231.194.0/24 Signature Algorithm: sha256WithRSAEncryption 01:0e:17:70:fe:b4:45:76:90:b2:04:5e:45:1f:b4:db:e3:ba: 19:3d:3f:ef:ec:40:34:45:49:5d:66:af:cf:dc:19:14:79:7c: b9:03:5d:89:d4:35:dd:8e:f1:53:46:c4:0c:83:e8:21:7f:24: d8:04:9b:2f:de:c1:21:58:8c:88:62:7b:34:7a:4a:eb:0c:39: 92:1f:a8:c8:3b:59:ce:64:ed:62:76:f2:99:7f:38:ee:05:bf: 64:4c:81:62:d4:5f:cf:73:03:6c:ff:03:19:89:9c:c5:3a:0b: 6b:98:73:99:0e:b2:7d:c7:da:48:56:68:1a:ca:58:f1:69:90: f2:4e:7c:1f:09:5c:40:54:40:cf:85:e9:d0:ca:0f:d8:aa:d8: f4:14:f0:49:bc:a1:b0:11:70:70:56:03:66:9c:9b:31:dc:d6: 8d:c1:c5:f5:e1:35:55:99:1d:83:ef:ac:94:92:51:ab:98:1e: 32:67:76:67:4a:65:6b:38:82:c5:c4:0b:5c:38:2a:e4:19:c2: dc:85:64:59:cc:0b:47:29:bc:d6:ed:6f:e8:9b:a7:84:d5:86: 58:93:8b:9e:b7:60:55:a2:9d:2b:b2:ca:b4:fb:5b:87:91:c1: 00:31:1f:de:3e:63:a9:d7:8b:1e:c5:6a:88:23:e0:3c:2d:df: 65:2f:a3:d9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUaepFajSHUZcSuaw6VFZCcQmKVMUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD RjY2NzUyQjAeFw0yNDA3MDEwMDU4MTlaFw0yNTA2MzAwMTAzMTlaMDMxMTAvBgNV BAMTKDdCQjhDOEIxNjY4OTQzMzExRjJEMjhDN0IxODhEOTc3NUMyNzVGMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD25cf105f/LHoKgfFBLpzX6dxO jMVgyIOD0NiLIBlExWL25ipTzbVMZy9qQpDtwbz4p+48Rj4e1upAgrbsLkTOlM46 wYIQVjsNAq7XbuExKf3YSkgyq35OfngBb9/HN1OvJUGqqNoGDwblAgJQ7iNjItLb cbrwKkjxTSt7i7sjAn7R3xsIsG8nNuf/Fsv1ntf2qlC3psyb6t+krqBmdlUxuDPR eypMuqzmBOuYlFNll7nXTHRqRVa0CMBPB+C9GYVDyJ5roihqCr6XLt3gGMhAPq2H 8gmP1oMxFoHz1arWhcQXsxVeaTP4G2klvBDFgClK1zEbF4Q8jme9VwvryzyPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUe7jIsWaJQzEfLSjHsYjZd1wnXw0wHwYDVR0j BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2 QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2 NzUyQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMxMzIzMzJlMzIzMzMxMmUzMTM5MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB758IwDQYJ KoZIhvcNAQELBQADggEBAAEOF3D+tEV2kLIEXkUftNvjuhk9P+/sQDRFSV1mr8/c GRR5fLkDXYnUNd2O8VNGxAyD6CF/JNgEmy/ewSFYjIhiezR6SusMOZIfqMg7Wc5k 7WJ28pl/OO4Fv2RMgWLUX89zA2z/AxmJnMU6C2uYc5kOsn3H2khWaBrKWPFpkPJO fB8JXEBUQM+F6dDKD9iq2PQU8Em8obARcHBWA2acmzHc1o3BxfXhNVWZHYPvrJSS UauYHjJndmdKZWs4gsXEC1w4KuQZwtyFZFnMC0cpvNbtb+ibp4TVhliTi563YFWi nSuyyrT7W4eRwQAxH94+Y6nXix7Faogj4Dwt32Uvo9k= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:37 2024 by rpki-client on console-ams.rpki-client.org