$ rpki-client -vvf repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3232302e3135372e39362e302f32302d3234203d3e2039373835.roa File: 3232302e3135372e39362e302f32302d3234203d3e2039373835.roa (raw, json) Hash identifier: v/nBtfCY9D5aSZNWsWdccc/TtDC4JCIjqRl1Ud4KShs= Subject key identifier: 1F:9A:85:AA:79:82:65:56:C6:00:CD:05:DE:83:2C:26:E9:7B:22:07 Certificate issuer: /CN=BF3B675AEBEE64D00B323056545D1F630F1C489E Certificate serial: 1F935D05C257774060231F7863E41B395BC53765 Authority key identifier: BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3232302e3135372e39362e302f32302d3234203d3e2039373835.roa Signing time: Mon 01 Jul 2024 01:05:53 +0000 ROA not before: Mon 01 Jul 2024 01:00:53 +0000 ROA not after: Mon 30 Jun 2025 01:05:53 +0000 asID: 9785 IP address blocks: 220.157.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.crl rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:93:5d:05:c2:57:77:40:60:23:1f:78:63:e4:1b:39:5b:c5:37:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF3B675AEBEE64D00B323056545D1F630F1C489E Validity Not Before: Jul 1 01:00:53 2024 GMT Not After : Jun 30 01:05:53 2025 GMT Subject: CN=1F9A85AA79826556C600CD05DE832C26E97B2207 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8d:bf:ba:3e:fc:44:d6:af:f5:46:7b:e5:eb: 5a:09:92:c3:b9:9a:1a:e2:3c:9f:6d:e0:37:9b:14: be:c6:67:8b:88:ff:54:7e:2a:92:e3:24:44:2b:76: 74:7c:6b:13:6e:0b:b5:33:68:b8:e3:14:77:55:81: 06:67:b6:6f:17:4d:be:11:49:30:5a:0f:e2:f2:df: b8:ca:d3:2c:3f:0f:f3:df:f8:a9:9f:88:f3:14:b3: e4:17:76:0a:52:2f:8e:9a:f8:9a:36:37:01:c9:28: ca:7c:b3:38:7f:8f:f7:8b:80:00:4e:9d:f9:92:04: e7:6d:8b:8a:d0:c7:3d:54:b4:92:c7:52:36:1e:bb: 55:cf:ac:a0:6d:d7:7c:89:af:71:ce:0a:ad:91:a8: b6:fd:50:a2:b3:26:39:06:c2:16:f5:76:cf:59:c8: 80:7f:33:e3:79:ca:f0:59:05:7d:35:a9:26:7e:03: ce:69:7f:da:b6:8c:40:08:e6:7d:70:49:b9:fa:f0: 9b:8d:8e:b1:8d:55:3d:1d:40:a8:11:47:c3:62:f9: 18:73:60:45:ae:4a:bb:a8:b6:46:f0:37:38:d4:b6: b3:de:48:0d:cb:57:1a:db:f1:a9:72:a3:1f:02:0f: 3f:a4:fb:7e:56:b5:3c:98:5e:1c:5f:96:77:8c:5e: 18:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:9A:85:AA:79:82:65:56:C6:00:CD:05:DE:83:2C:26:E9:7B:22:07 X509v3 Authority Key Identifier: keyid:BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3232302e3135372e39362e302f32302d3234203d3e2039373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.157.96.0/20 Signature Algorithm: sha256WithRSAEncryption 07:22:1b:6c:cc:d7:3d:8b:af:17:37:bf:3c:7b:97:89:e2:a2: c1:92:cc:6c:57:77:c9:b2:a3:ea:a6:8c:4c:58:d2:8e:4d:94: ea:e4:f9:d5:36:60:48:87:64:98:7c:11:de:72:ff:8e:b1:77: 12:90:e9:ac:fb:70:17:5a:42:63:9f:fd:3a:86:d5:90:ac:01: a8:9a:38:69:cb:55:c8:29:ed:ba:b2:15:2c:96:a0:01:1b:af: 45:65:a0:e1:1c:06:76:b4:84:d0:13:ba:53:05:c4:93:ee:14: e7:a6:58:d3:78:e2:40:61:af:f2:c2:9d:2c:dd:8e:d7:87:46: 4b:37:3b:c6:0a:e8:b3:a0:6e:bd:88:f4:f0:01:7d:e5:53:eb: b3:b4:15:16:0f:d5:ef:ed:0b:5c:69:b5:13:ed:fe:37:49:ea: cd:8d:54:73:24:e5:1f:d8:ee:00:32:84:d6:c3:41:51:22:69: 41:2e:6a:b1:0c:08:9e:fd:cc:7d:42:ec:a7:8a:e2:90:b5:e9: 9b:4e:a2:a0:ef:63:6f:f4:ee:50:50:32:08:e9:96:56:b8:95: cf:1b:5f:04:cb:e4:f3:9c:2c:3e:d7:11:64:81:59:64:3c:d0: 52:d8:57:17:83:37:aa:47:b9:ec:1a:9d:68:15:4b:f5:da:88: 08:66:fd:c2 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUH5NdBcJXd0BgIx94Y+QbOVvFN2UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMw RjFDNDg5RTAeFw0yNDA3MDEwMTAwNTNaFw0yNTA2MzAwMTA1NTNaMDMxMTAvBgNV BAMTKDFGOUE4NUFBNzk4MjY1NTZDNjAwQ0QwNURFODMyQzI2RTk3QjIyMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDjb+6PvxE1q/1Rnvl61oJksO5 mhriPJ9t4DebFL7GZ4uI/1R+KpLjJEQrdnR8axNuC7UzaLjjFHdVgQZntm8XTb4R STBaD+Ly37jK0yw/D/Pf+KmfiPMUs+QXdgpSL46a+Jo2NwHJKMp8szh/j/eLgABO nfmSBOdti4rQxz1UtJLHUjYeu1XPrKBt13yJr3HOCq2RqLb9UKKzJjkGwhb1ds9Z yIB/M+N5yvBZBX01qSZ+A85pf9q2jEAI5n1wSbn68JuNjrGNVT0dQKgRR8Ni+Rhz YEWuSruotkbwNzjUtrPeSA3LVxrb8alyox8CDz+k+35WtTyYXhxflneMXhiNAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUH5qFqnmCZVbGAM0F3oMsJul7IgcwHwYDVR0j BBgwFoAUvztnWuvuZNALMjBWVF0fYw8cSJ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OTBjOTAwOS1hZDUzLTRmYTYtYTE4My0zNGIzNDU3YmVhMDMvMC9CRjNCNjc1QUVC RUU2NEQwMEIzMjMwNTY1NDVEMUY2MzBGMUM0ODlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMwRjFD NDg5RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5MGM5MDA5LWFkNTMtNGZhNi1h MTgzLTM0YjM0NTdiZWEwMy8wLzMyMzIzMDJlMzEzNTM3MmUzOTM2MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzkzNzM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATcnWAwDQYJKoZIhvcN AQELBQADggEBAAciG2zM1z2Lrxc3vzx7l4niosGSzGxXd8myo+qmjExY0o5NlOrk +dU2YEiHZJh8Ed5y/46xdxKQ6az7cBdaQmOf/TqG1ZCsAaiaOGnLVcgp7bqyFSyW oAEbr0VloOEcBna0hNATulMFxJPuFOemWNN44kBhr/LCnSzdjteHRks3O8YK6LOg br2I9PABfeVT67O0FRYP1e/tC1xptRPt/jdJ6s2NVHMk5R/Y7gAyhNbDQVEiaUEu arEMCJ79zH1C7KeK4pC16ZtOoqDvY2/07lBQMgjplla4lc8bXwTL5POcLD7XEWSB WWQ80FLYVxeDN6pHuewanWgVS/XaiAhm/cI= -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:17 2024 by rpki-client on console-fra.rpki-client.org