$ rpki-client -vvf repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/3132332e3235332e3233322e302f32322d3234203d3e203137363730.roa File: 3132332e3235332e3233322e302f32322d3234203d3e203137363730.roa (raw, json) Hash identifier: 3kwk4UMF9iNYpMSf21W/eUwvYsmaPApbmHcViGehMaU= Subject key identifier: EB:36:4A:D5:77:E3:2C:0B:36:2E:19:CE:6D:33:E5:72:FD:2A:9E:BB Certificate issuer: /CN=89402655017312B8CFCB367BA82966AA21E11F90 Certificate serial: 13109E2E4B90FCB6B982CA1622285DAE273E66CC Authority key identifier: 89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/3132332e3235332e3233322e302f32322d3234203d3e203137363730.roa Signing time: Sun 04 Aug 2024 18:00:00 +0000 ROA not before: Sun 04 Aug 2024 17:55:00 +0000 ROA not after: Sun 03 Aug 2025 18:00:00 +0000 asID: 17670 IP address blocks: 123.253.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.crl rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:10:9e:2e:4b:90:fc:b6:b9:82:ca:16:22:28:5d:ae:27:3e:66:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89402655017312B8CFCB367BA82966AA21E11F90 Validity Not Before: Aug 4 17:55:00 2024 GMT Not After : Aug 3 18:00:00 2025 GMT Subject: CN=EB364AD577E32C0B362E19CE6D33E572FD2A9EBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ab:74:8a:9d:c2:45:10:04:41:52:af:ed:f8: 7d:7e:11:8a:8a:81:47:1e:b4:8b:b4:91:f8:5b:1c: 47:1d:73:99:75:17:29:9f:d7:29:31:82:77:eb:15: 0f:20:cb:63:d0:0a:b8:87:10:fe:bd:7b:53:59:b0: 6e:bd:cc:55:b7:e2:fa:d8:3d:01:60:50:6c:7a:8b: 2f:9b:ab:31:ad:80:0e:b9:24:2c:42:dd:28:d3:45: e3:e6:41:b1:c1:0d:a1:bd:39:00:8b:3e:d7:57:6f: b2:90:d7:cf:cd:c4:3d:45:f8:0f:d9:56:e9:06:37: 64:37:70:82:a7:0e:27:b9:73:fa:11:d3:bc:c5:41: 80:32:20:43:dc:43:04:00:4e:29:96:7d:5f:10:a4: 83:dd:38:ab:63:d8:31:02:64:4f:c9:2d:c4:d7:12: 0b:30:ee:35:96:92:75:37:bd:36:dd:58:64:01:e8: d9:2f:9c:f4:ac:4a:91:25:14:9f:c2:4d:52:7e:fa: dd:0b:98:05:7a:3e:6f:d4:94:83:04:23:0f:ff:7e: 14:b2:a5:f4:71:2e:82:14:d9:0d:53:2b:d5:5b:8c: 0f:de:82:c6:9b:4e:18:2f:33:d8:68:9f:1f:c7:4e: 99:96:e9:22:17:f0:e1:ab:a5:53:4f:e8:b7:23:1b: 4a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:36:4A:D5:77:E3:2C:0B:36:2E:19:CE:6D:33:E5:72:FD:2A:9E:BB X509v3 Authority Key Identifier: keyid:89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/3132332e3235332e3233322e302f32322d3234203d3e203137363730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.253.232.0/22 Signature Algorithm: sha256WithRSAEncryption 84:3f:ee:06:4a:ce:9e:a4:48:e4:d3:3c:cb:d2:e4:2a:ce:ac: 86:68:a8:21:7f:76:44:6c:e5:a6:5d:d1:27:a2:76:c3:b3:32: ea:03:92:76:8e:81:30:d5:49:31:97:63:31:4a:cf:62:7e:12: ed:8f:59:8e:79:b9:1c:21:ac:05:53:f6:09:f0:9e:23:72:54: 97:3b:7c:cd:77:ec:2d:48:d2:4b:0d:27:9b:6e:6b:62:2d:9b: 3b:0a:ed:98:e0:bd:53:40:b6:fb:58:62:6f:1b:53:2a:63:40: c3:49:68:fe:27:50:e0:89:fd:05:3e:a5:24:31:ab:e7:2f:93: d1:c5:e3:3e:f2:c3:97:2a:df:6f:67:85:c4:84:2b:60:0e:2c: 3b:60:a7:9c:32:cf:7b:b4:9e:8f:e7:b8:26:50:e4:2e:77:71: ac:9d:77:80:b6:af:94:c1:c9:ba:9c:6f:78:e4:20:88:e9:6f: 4b:bb:93:e9:bf:e0:6f:e2:84:44:16:2a:af:a2:2f:91:4d:33: 6f:bf:fa:df:43:c5:c0:da:99:a3:7e:c5:e0:ca:db:86:5e:c0: 62:9e:b7:b7:04:75:15:06:ce:b8:eb:33:cd:be:ca:e0:3f:53: 11:89:bd:a7:53:fd:e0:ca:30:b1:f9:9d:b6:5e:9e:37:5d:79: 91:88:79:a8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUExCeLkuQ/La5gsoWIihdric+ZswwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk0MDI2NTUwMTczMTJCOENGQ0IzNjdCQTgyOTY2QUEy MUUxMUY5MDAeFw0yNDA4MDQxNzU1MDBaFw0yNTA4MDMxODAwMDBaMDMxMTAvBgNV BAMTKEVCMzY0QUQ1NzdFMzJDMEIzNjJFMTlDRTZEMzNFNTcyRkQyQTlFQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6q3SKncJFEARBUq/t+H1+EYqK gUcetIu0kfhbHEcdc5l1Fymf1ykxgnfrFQ8gy2PQCriHEP69e1NZsG69zFW34vrY PQFgUGx6iy+bqzGtgA65JCxC3SjTRePmQbHBDaG9OQCLPtdXb7KQ18/NxD1F+A/Z VukGN2Q3cIKnDie5c/oR07zFQYAyIEPcQwQATimWfV8QpIPdOKtj2DECZE/JLcTX Egsw7jWWknU3vTbdWGQB6NkvnPSsSpElFJ/CTVJ++t0LmAV6Pm/UlIMEIw//fhSy pfRxLoIU2Q1TK9VbjA/egsabThgvM9honx/HTpmW6SIX8OGrpVNP6LcjG0qvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6zZK1XfjLAs2LhnObTPlcv0qnrswHwYDVR0j BBgwFoAUiUAmVQFzErjPyzZ7qClmqiHhH5AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZmIxYzgwYy00ZDZjLTQ0MDgtODk0Ny1mYmE2ZTdjNGJlN2MvMC84OTQwMjY1NTAx NzMxMkI4Q0ZDQjM2N0JBODI5NjZBQTIxRTExRjkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODk0MDI2NTUwMTczMTJCOENGQ0IzNjdCQTgyOTY2QUEyMUUx MUY5MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmYjFjODBjLTRkNmMtNDQwOC04 OTQ3LWZiYTZlN2M0YmU3Yy8wLzMxMzIzMzJlMzIzNTMzMmUzMjMzMzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTM3MzYzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCe/3oMA0GCSqG SIb3DQEBCwUAA4IBAQCEP+4GSs6epEjk0zzL0uQqzqyGaKghf3ZEbOWmXdEnonbD szLqA5J2joEw1Ukxl2MxSs9ifhLtj1mOebkcIawFU/YJ8J4jclSXO3zNd+wtSNJL DSebbmtiLZs7Cu2Y4L1TQLb7WGJvG1MqY0DDSWj+J1Dgif0FPqUkMavnL5PRxeM+ 8sOXKt9vZ4XEhCtgDiw7YKecMs97tJ6P57gmUOQud3GsnXeAtq+Uwcm6nG945CCI 6W9Lu5Ppv+Bv4oREFiqvoi+RTTNvv/rfQ8XA2pmjfsXgytuGXsBinre3BHUVBs64 6zPNvsrgP1MRib2nU/3gyjCx+Z22Xp43XXmRiHmo -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:41 2024 by rpki-client on console-fra.rpki-client.org