$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139382e302f32342d3234203d3e20313333383431.roa File: 3132332e3233312e3139382e302f32342d3234203d3e20313333383431.roa (raw, json) Hash identifier: lXwY1hsRXKWbS7THPq5uCibrW5QTsr4574ujhDiIUbw= Subject key identifier: 4F:50:F4:69:9A:6F:D3:56:B6:C1:23:3E:7A:92:9B:0F:ED:3B:92:B4 Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Certificate serial: 3639162B57A8D19652EC47C9BD6B187D740DBF68 Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139382e302f32342d3234203d3e20313333383431.roa Signing time: Mon 01 Jul 2024 01:03:22 +0000 ROA not before: Mon 01 Jul 2024 00:58:22 +0000 ROA not after: Mon 30 Jun 2025 01:03:22 +0000 asID: 133841 IP address blocks: 123.231.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:39:16:2b:57:a8:d1:96:52:ec:47:c9:bd:6b:18:7d:74:0d:bf:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Validity Not Before: Jul 1 00:58:22 2024 GMT Not After : Jun 30 01:03:22 2025 GMT Subject: CN=4F50F4699A6FD356B6C1233E7A929B0FED3B92B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:fa:91:4d:24:49:7f:75:b1:bf:59:de:73:bc: db:cc:0c:4d:ab:68:92:27:47:9b:f5:f5:e4:f9:b9: 4d:0d:72:67:e9:33:e3:7e:40:df:19:bd:dd:22:a1: 1d:59:0d:30:b5:4c:cf:77:cc:a9:33:0c:dc:71:b3: 8f:26:42:28:08:89:82:61:d4:08:49:b1:c9:a3:10: 4b:51:80:48:3f:f0:96:a5:54:f7:fd:4c:b5:21:23: f4:35:55:1a:44:a1:fb:a3:5d:6f:96:25:aa:6e:0f: 07:48:68:a3:2f:16:93:0b:5e:d5:06:97:49:8d:21: 6e:68:76:fd:07:5a:71:d7:d7:eb:4a:2d:f2:74:5b: 39:8a:8a:98:d2:6e:3e:dc:be:cb:ea:c0:31:ca:ee: 2c:16:07:9a:5f:aa:a4:91:b1:fd:a4:5c:93:be:c4: 98:6a:86:c5:2e:fb:fb:06:fe:3c:b4:a5:88:f9:59: 06:39:0c:16:ca:6a:45:ad:78:81:bb:e5:01:0a:38: c3:ce:c4:fc:06:8f:28:f6:99:57:94:0c:42:95:86: 56:6c:67:f8:eb:e2:91:cf:44:a7:39:17:3e:4b:d5: 8e:ea:4f:a9:f1:51:9d:a0:cf:6e:f4:30:fe:02:3d: 20:d1:81:ac:71:7f:79:ac:b8:99:46:a1:ec:5e:b3: 95:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:50:F4:69:9A:6F:D3:56:B6:C1:23:3E:7A:92:9B:0F:ED:3B:92:B4 X509v3 Authority Key Identifier: keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139382e302f32342d3234203d3e20313333383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.231.198.0/24 Signature Algorithm: sha256WithRSAEncryption 85:b6:df:cc:05:61:28:28:2e:bb:e4:6b:38:13:d9:3a:76:03: 1c:35:73:95:f3:cb:f4:3a:1e:2c:47:7c:59:26:bc:0e:9a:9c: 73:82:77:a0:99:2c:64:56:d7:92:8e:b9:5e:22:55:65:b7:29: 05:96:74:fc:cd:fc:99:2e:b0:21:1a:8e:6a:87:3b:93:c1:12: 81:5a:4b:0e:c7:55:f0:e0:17:b9:ac:2e:46:85:a3:66:02:d9: 3f:d3:0c:ce:0e:32:4d:8b:c6:eb:db:fc:78:bc:23:7c:d1:6e: 4d:93:26:de:6c:9c:f8:86:19:32:b6:f5:3f:4d:fe:01:aa:b4: 27:12:55:91:7f:7b:bd:dd:e8:97:13:b6:fb:1a:ab:0b:7a:b1: 76:c1:97:3e:29:42:a8:ef:dc:e3:54:5c:f5:15:43:f6:e8:e2: ba:f9:94:86:e5:09:f9:37:f0:7e:49:bb:21:c7:00:0f:40:91: 56:28:e0:b2:ef:c1:1b:b6:88:a3:20:4d:b9:95:31:1d:e1:9e: cd:92:ce:85:2a:06:b1:9e:3d:b2:9e:a3:e7:31:3c:6d:01:b5: 23:b0:fe:d0:9a:aa:86:4f:f3:d9:99:28:9b:e2:07:85:c9:0b: ec:bc:9b:2c:24:61:c8:e5:1b:96:ef:74:7b:c6:7e:57:f7:75: 4b:b1:04:42 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNjkWK1eo0ZZS7EfJvWsYfXQNv2gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD RjY2NzUyQjAeFw0yNDA3MDEwMDU4MjJaFw0yNTA2MzAwMTAzMjJaMDMxMTAvBgNV BAMTKDRGNTBGNDY5OUE2RkQzNTZCNkMxMjMzRTdBOTI5QjBGRUQzQjkyQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC++pFNJEl/dbG/Wd5zvNvMDE2r aJInR5v19eT5uU0NcmfpM+N+QN8Zvd0ioR1ZDTC1TM93zKkzDNxxs48mQigIiYJh 1AhJscmjEEtRgEg/8JalVPf9TLUhI/Q1VRpEofujXW+WJapuDwdIaKMvFpMLXtUG l0mNIW5odv0HWnHX1+tKLfJ0WzmKipjSbj7cvsvqwDHK7iwWB5pfqqSRsf2kXJO+ xJhqhsUu+/sG/jy0pYj5WQY5DBbKakWteIG75QEKOMPOxPwGjyj2mVeUDEKVhlZs Z/jr4pHPRKc5Fz5L1Y7qT6nxUZ2gz270MP4CPSDRgaxxf3msuJlGoexes5XFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUT1D0aZpv01a2wSM+epKbD+07krQwHwYDVR0j BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2 QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2 NzUyQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMxMzIzMzJlMzIzMzMxMmUzMTM5MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB758YwDQYJ KoZIhvcNAQELBQADggEBAIW238wFYSgoLrvkazgT2Tp2Axw1c5Xzy/Q6HixHfFkm vA6anHOCd6CZLGRW15KOuV4iVWW3KQWWdPzN/JkusCEajmqHO5PBEoFaSw7HVfDg F7msLkaFo2YC2T/TDM4OMk2Lxuvb/Hi8I3zRbk2TJt5snPiGGTK29T9N/gGqtCcS VZF/e73d6JcTtvsaqwt6sXbBlz4pQqjv3ONUXPUVQ/bo4rr5lIblCfk38H5JuyHH AA9AkVYo4LLvwRu2iKMgTbmVMR3hns2SzoUqBrGePbKeo+cxPG0BtSOw/tCaqoZP 89mZKJviB4XJC+y8mywkYcjlG5bvdHvGflf3dUuxBEI= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:37 2024 by rpki-client on console-ams.rpki-client.org