$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3230392e302f32342d3234203d3e20313333383431.roa File: 3132332e3233312e3230392e302f32342d3234203d3e20313333383431.roa (raw, json) Hash identifier: isz2YGXKdH3CoS6seuLskOM5snl6AbuWPIK57wv9RRw= Subject key identifier: EE:80:E4:50:7A:CD:2A:44:D8:BF:11:8B:9F:66:34:A1:DB:34:C6:17 Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Certificate serial: 2E23672C0AAA47860666E34A7ACCE96C1CB5FCD9 Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3230392e302f32342d3234203d3e20313333383431.roa Signing time: Mon 01 Jul 2024 01:03:19 +0000 ROA not before: Mon 01 Jul 2024 00:58:19 +0000 ROA not after: Mon 30 Jun 2025 01:03:19 +0000 asID: 133841 IP address blocks: 123.231.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:23:67:2c:0a:aa:47:86:06:66:e3:4a:7a:cc:e9:6c:1c:b5:fc:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Validity Not Before: Jul 1 00:58:19 2024 GMT Not After : Jun 30 01:03:19 2025 GMT Subject: CN=EE80E4507ACD2A44D8BF118B9F6634A1DB34C617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:4d:d5:f4:33:df:c1:c1:80:55:fb:22:13:bb: 46:f7:8d:15:93:4d:02:62:22:b4:49:f3:3b:dc:5b: 1e:53:24:7e:5b:0e:df:fe:f6:71:60:c2:15:bc:05: ce:4b:10:9c:15:2b:10:9d:f3:23:cf:6e:72:6f:4a: 49:fb:0c:3e:c5:58:36:77:c9:32:46:ea:4d:c1:f2: a0:7b:c7:2f:1a:f5:73:87:3e:f1:b4:e9:48:53:35: 79:4f:39:16:f5:77:e3:5e:05:a6:8f:bf:b5:5c:51: d7:85:60:ce:89:5b:e1:43:0f:fc:5a:6e:f4:13:60: 87:2a:1d:9e:df:6d:ee:73:67:35:48:3a:94:d6:5d: 71:ae:30:45:4a:42:2d:8f:6d:9c:fc:94:8f:02:2b: 02:3a:1c:9f:9b:05:3a:a6:c5:cb:1f:5c:a7:02:c0: 22:fe:8e:72:14:d8:1f:a4:05:e1:58:1f:b6:65:f4: 1a:16:4f:30:60:d9:e1:84:ea:cf:58:9d:32:b3:c7: b3:10:2f:5e:73:5f:3c:9f:e7:dc:af:5d:57:f2:27: 16:b5:f3:d4:de:2d:1c:15:b2:10:2c:49:6b:41:39: 7b:30:aa:cd:67:04:a9:de:f1:c5:c4:06:e1:78:67: 33:c9:25:81:5d:b5:b5:1f:3c:a4:66:6e:fd:07:51: 33:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:80:E4:50:7A:CD:2A:44:D8:BF:11:8B:9F:66:34:A1:DB:34:C6:17 X509v3 Authority Key Identifier: keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3230392e302f32342d3234203d3e20313333383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.231.209.0/24 Signature Algorithm: sha256WithRSAEncryption a5:8b:93:ca:7e:bf:0b:a0:a5:a2:fd:48:24:12:4d:f0:4a:c8: 2b:e3:b4:1d:89:20:5e:a3:95:24:69:c1:ae:6a:c1:dc:93:3d: c9:55:fa:83:e9:bd:e5:93:48:4c:80:80:e3:fb:38:e3:f6:db: 9e:79:f2:c6:6e:e1:79:73:11:95:ac:02:ad:14:75:44:2f:71: e4:d2:38:1c:12:17:4c:32:26:a6:d4:5a:ce:4c:6c:54:16:3c: 03:ea:76:c9:0b:32:e6:7f:7a:b2:98:f7:5e:d7:9a:4f:17:51: 89:ce:a0:64:ae:0e:f9:f9:78:ca:cf:af:ab:96:9f:93:b7:86: 80:2d:48:ac:a6:68:a5:42:3e:20:65:2a:e6:7e:48:f4:1c:0a: 47:1d:9a:c7:3d:1e:2f:93:2a:a0:4d:b0:28:c9:79:65:4e:f1: 11:92:f1:ba:77:9b:a2:28:2b:6d:58:1a:e9:3d:e4:ff:97:c1: 50:22:02:a0:3d:de:46:4c:49:3d:13:e1:39:55:7b:f8:91:2e: 3e:c9:b0:31:5c:18:53:3e:49:20:d5:3f:1a:f7:8e:0f:d6:5d: 46:de:57:c9:01:42:e2:aa:09:ad:98:b0:0b:e2:8d:af:e2:a5: 75:56:da:4b:7f:8f:c8:2c:fa:cb:fb:b0:84:4d:1c:74:26:60: 99:d9:00:80 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULiNnLAqqR4YGZuNKeszpbBy1/NkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD RjY2NzUyQjAeFw0yNDA3MDEwMDU4MTlaFw0yNTA2MzAwMTAzMTlaMDMxMTAvBgNV BAMTKEVFODBFNDUwN0FDRDJBNDREOEJGMTE4QjlGNjYzNEExREIzNEM2MTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTTdX0M9/BwYBV+yITu0b3jRWT TQJiIrRJ8zvcWx5TJH5bDt/+9nFgwhW8Bc5LEJwVKxCd8yPPbnJvSkn7DD7FWDZ3 yTJG6k3B8qB7xy8a9XOHPvG06UhTNXlPORb1d+NeBaaPv7VcUdeFYM6JW+FDD/xa bvQTYIcqHZ7fbe5zZzVIOpTWXXGuMEVKQi2PbZz8lI8CKwI6HJ+bBTqmxcsfXKcC wCL+jnIU2B+kBeFYH7Zl9BoWTzBg2eGE6s9YnTKzx7MQL15zXzyf59yvXVfyJxa1 89TeLRwVshAsSWtBOXswqs1nBKne8cXEBuF4ZzPJJYFdtbUfPKRmbv0HUTNzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7oDkUHrNKkTYvxGLn2Y0ods0xhcwHwYDVR0j BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2 QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2 NzUyQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMxMzIzMzJlMzIzMzMxMmUzMjMwMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB759EwDQYJ KoZIhvcNAQELBQADggEBAKWLk8p+vwugpaL9SCQSTfBKyCvjtB2JIF6jlSRpwa5q wdyTPclV+oPpveWTSEyAgOP7OOP225558sZu4XlzEZWsAq0UdUQvceTSOBwSF0wy JqbUWs5MbFQWPAPqdskLMuZ/erKY917Xmk8XUYnOoGSuDvn5eMrPr6uWn5O3hoAt SKymaKVCPiBlKuZ+SPQcCkcdmsc9Hi+TKqBNsCjJeWVO8RGS8bp3m6IoK21YGuk9 5P+XwVAiAqA93kZMST0T4TlVe/iRLj7JsDFcGFM+SSDVPxr3jg/WXUbeV8kBQuKq Ca2YsAvija/ipXVW2kt/j8gs+sv7sIRNHHQmYJnZAIA= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:37 2024 by rpki-client on console-ams.rpki-client.org