$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3230372e302f32342d3234203d3e20313333383431.roa File: 3132332e3233312e3230372e302f32342d3234203d3e20313333383431.roa (raw, json) Hash identifier: 5oSucB/43HYWgOhzA9/ddx6JiwNh/ygW3vZ9zD2OWrI= Subject key identifier: 84:80:23:CD:6D:E9:69:D6:93:F9:C0:B7:DB:B3:52:C3:60:F6:FC:EE Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Certificate serial: 4817D15EB1AABEED0F68330BD6396E0B0575C61C Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3230372e302f32342d3234203d3e20313333383431.roa Signing time: Mon 01 Jul 2024 01:03:18 +0000 ROA not before: Mon 01 Jul 2024 00:58:18 +0000 ROA not after: Mon 30 Jun 2025 01:03:18 +0000 asID: 133841 IP address blocks: 123.231.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:17:d1:5e:b1:aa:be:ed:0f:68:33:0b:d6:39:6e:0b:05:75:c6:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Validity Not Before: Jul 1 00:58:18 2024 GMT Not After : Jun 30 01:03:18 2025 GMT Subject: CN=848023CD6DE969D693F9C0B7DBB352C360F6FCEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:3c:38:7d:6b:59:c5:f5:7b:b9:e2:51:97:45: a3:dd:9a:3a:50:68:91:e2:6c:41:9e:d1:64:7d:c5: 50:52:2e:72:32:5f:da:15:63:ce:4d:2b:bf:19:e2: b7:62:b8:e5:cd:db:07:41:28:ce:fe:dc:1f:a8:29: 05:d2:72:aa:a0:3b:7a:a7:25:89:ac:35:85:14:29: 63:66:ac:9b:fc:52:11:34:61:35:a5:6d:ee:92:0e: 39:5a:4a:c0:b3:71:34:b0:3f:c9:5e:fc:fe:a9:d1: e4:c0:63:39:d5:8d:8b:47:4c:fc:d5:88:d0:2c:7a: a5:ad:de:ae:09:d3:58:47:a2:0b:1d:88:33:0f:93: 39:36:60:ea:6d:10:96:79:44:d7:8b:6e:67:7b:7b: c1:15:a0:63:68:77:57:a0:2e:7d:2b:c7:9f:60:ae: a0:d3:51:e1:aa:62:d2:01:22:b5:1e:00:5d:70:fd: 68:2f:7f:6a:01:4a:43:cd:4b:d0:88:46:65:a1:39: ae:99:f6:48:58:06:e9:44:31:e3:a3:e2:ed:1a:af: 4e:6d:92:86:1c:10:70:18:99:04:19:e4:b7:65:46: cd:5c:78:ec:30:14:c0:61:67:09:c8:88:63:a9:67: fe:64:b9:0c:f9:c0:51:34:c4:50:d2:48:2d:64:e2: 69:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:80:23:CD:6D:E9:69:D6:93:F9:C0:B7:DB:B3:52:C3:60:F6:FC:EE X509v3 Authority Key Identifier: keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3230372e302f32342d3234203d3e20313333383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.231.207.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:86:23:33:9b:d4:a4:64:a8:98:92:55:b7:ba:8e:44:a4:85: e6:c9:c2:00:9d:1f:28:15:ce:5c:e3:35:09:6b:68:ed:93:13: c5:a0:3a:1f:36:f4:84:2c:65:56:76:b1:2f:c9:90:07:07:99: 02:75:8d:e7:ae:e2:95:a4:03:3a:6d:0d:08:5b:7b:66:09:24: 65:6e:26:40:d1:ea:ca:fc:9b:67:67:d3:ed:e8:29:97:31:ca: 47:e1:b3:c7:02:50:66:5b:cc:80:c3:1e:9d:a8:8b:7d:c4:48: 6b:e7:67:24:35:82:79:82:25:66:5c:61:c7:cf:30:e6:74:2c: a3:00:29:55:16:f1:c1:45:63:d5:89:85:26:a6:55:40:16:fc: cc:99:12:96:93:51:4d:6f:11:57:5c:50:44:87:f2:cb:dd:a1: 64:bc:77:ff:1e:d1:4a:d3:c2:90:5d:04:4a:86:0d:58:04:dc: a2:04:15:c1:f5:55:9b:25:9d:cc:ec:0b:b2:c2:a7:15:94:eb: db:38:64:4f:e8:63:dc:ef:57:27:aa:e6:d6:27:cb:81:b1:5b: 16:c5:d3:4f:c7:10:25:38:af:db:1c:91:3d:e7:f7:ce:f0:aa: c7:3e:d3:c1:69:ca:3a:ed:e5:19:a0:6b:29:e4:bc:da:9b:bc: 71:65:df:88 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSBfRXrGqvu0PaDML1jluCwV1xhwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD RjY2NzUyQjAeFw0yNDA3MDEwMDU4MThaFw0yNTA2MzAwMTAzMThaMDMxMTAvBgNV BAMTKDg0ODAyM0NENkRFOTY5RDY5M0Y5QzBCN0RCQjM1MkMzNjBGNkZDRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUPDh9a1nF9Xu54lGXRaPdmjpQ aJHibEGe0WR9xVBSLnIyX9oVY85NK78Z4rdiuOXN2wdBKM7+3B+oKQXScqqgO3qn JYmsNYUUKWNmrJv8UhE0YTWlbe6SDjlaSsCzcTSwP8le/P6p0eTAYznVjYtHTPzV iNAseqWt3q4J01hHogsdiDMPkzk2YOptEJZ5RNeLbmd7e8EVoGNod1egLn0rx59g rqDTUeGqYtIBIrUeAF1w/Wgvf2oBSkPNS9CIRmWhOa6Z9khYBulEMeOj4u0ar05t koYcEHAYmQQZ5LdlRs1ceOwwFMBhZwnIiGOpZ/5kuQz5wFE0xFDSSC1k4mmNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhIAjzW3padaT+cC327NSw2D2/O4wHwYDVR0j BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2 QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2 NzUyQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMxMzIzMzJlMzIzMzMxMmUzMjMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7588wDQYJ KoZIhvcNAQELBQADggEBAJ6GIzOb1KRkqJiSVbe6jkSkhebJwgCdHygVzlzjNQlr aO2TE8WgOh829IQsZVZ2sS/JkAcHmQJ1jeeu4pWkAzptDQhbe2YJJGVuJkDR6sr8 m2dn0+3oKZcxykfhs8cCUGZbzIDDHp2oi33ESGvnZyQ1gnmCJWZcYcfPMOZ0LKMA KVUW8cFFY9WJhSamVUAW/MyZEpaTUU1vEVdcUESH8svdoWS8d/8e0UrTwpBdBEqG DVgE3KIEFcH1VZslnczsC7LCpxWU69s4ZE/oY9zvVyeq5tYny4GxWxbF00/HECU4 r9sckT3n987wqsc+08Fpyjrt5RmgaynkvNqbvHFl34g= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:11 2024 by rpki-client on console-fra.rpki-client.org