$ rpki-client -vvf repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3232332e3136342e302e302f31362d3234203d3e2039373835.roa File: 3232332e3136342e302e302f31362d3234203d3e2039373835.roa (raw, json) Hash identifier: LrjOipA7XUKqMLrdnSSirCwj9idRRnzkNFyMQLbNrPk= Subject key identifier: 20:E5:A4:28:D1:59:DA:21:BF:37:93:08:F3:9D:43:19:FD:4F:4B:78 Certificate issuer: /CN=BF3B675AEBEE64D00B323056545D1F630F1C489E Certificate serial: 1F047CDD542B1083F340F42DA0FA6235BFEDCA6C Authority key identifier: BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3232332e3136342e302e302f31362d3234203d3e2039373835.roa Signing time: Mon 01 Jul 2024 01:05:54 +0000 ROA not before: Mon 01 Jul 2024 01:00:54 +0000 ROA not after: Mon 30 Jun 2025 01:05:54 +0000 asID: 9785 IP address blocks: 223.164.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.crl rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:46:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:04:7c:dd:54:2b:10:83:f3:40:f4:2d:a0:fa:62:35:bf:ed:ca:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF3B675AEBEE64D00B323056545D1F630F1C489E Validity Not Before: Jul 1 01:00:54 2024 GMT Not After : Jun 30 01:05:54 2025 GMT Subject: CN=20E5A428D159DA21BF379308F39D4319FD4F4B78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:11:01:b1:eb:25:19:fb:bc:cf:68:92:cb:e5: 39:74:ae:3f:23:33:69:dc:78:eb:81:2f:e5:4f:a8: 00:40:dc:6e:92:d3:3b:72:d1:34:fc:b9:8a:49:0b: 38:99:63:a7:f8:76:92:eb:d4:6b:88:11:9a:21:4b: 63:3a:16:19:d1:fa:1a:9b:be:08:23:38:9f:19:ad: 8c:cb:44:13:03:41:78:19:f2:61:ae:39:af:6a:5b: 7a:23:a7:fe:44:7d:e2:0b:2c:cd:05:48:7d:b3:86: 64:6a:ae:81:a4:3e:3e:e7:15:62:e9:71:d2:b4:26: 1c:81:f0:c9:31:7a:12:5e:d7:c8:7d:11:5c:43:7c: 15:17:98:66:cd:63:02:29:4c:c9:83:41:d6:cd:cc: 42:00:20:34:a9:95:95:6e:94:c4:4a:9c:5a:03:bc: b3:a1:4d:a9:df:23:27:ad:f3:52:d8:37:50:b8:e2: dc:d5:30:cd:04:fa:d4:42:51:5e:62:77:49:a3:6d: 63:af:9f:5e:59:2b:53:b2:f9:f9:8b:55:d2:a7:ad: 1f:ed:bb:c7:08:f7:fe:18:3b:22:c8:14:f0:c1:5d: 2e:cb:aa:c6:8f:59:ff:de:6e:36:42:0c:fc:c5:54: 76:b0:2f:d9:40:e1:74:62:3b:e5:ae:36:b3:d9:d7: ab:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:E5:A4:28:D1:59:DA:21:BF:37:93:08:F3:9D:43:19:FD:4F:4B:78 X509v3 Authority Key Identifier: keyid:BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3232332e3136342e302e302f31362d3234203d3e2039373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.164.0.0/16 Signature Algorithm: sha256WithRSAEncryption 74:c1:44:f4:c3:45:a8:c2:34:02:a9:1e:b1:46:41:08:4e:cd: 48:78:2e:54:34:ca:f6:72:f3:28:ac:29:3a:b2:1f:d8:aa:8b: de:99:24:a2:7f:b8:d4:50:2f:0e:fe:84:09:22:11:bd:ca:19: b9:8c:cc:68:91:4a:3c:9f:01:c2:17:8b:d3:30:32:e5:c5:3e: 62:e9:f2:31:34:67:d2:3f:ba:a8:09:8b:07:4e:11:de:65:2e: 7f:09:4b:2a:58:b5:6d:0b:89:6a:37:70:cf:9e:e1:3a:f8:3c: 34:47:7e:93:1a:fd:4a:28:a6:29:6d:6f:13:11:f6:20:2a:85: 35:40:00:f2:c0:a0:2c:b9:f6:5b:d2:99:6b:24:37:42:10:dd: ef:58:38:01:01:e0:76:17:de:bc:01:90:17:a0:48:59:a6:18: a0:2c:96:55:ac:ca:7a:b5:0e:d5:87:e0:0f:7a:a2:a0:8e:96: 63:d8:4c:63:78:5e:36:0e:60:7a:f7:37:ce:71:29:d6:c1:4f: 88:80:1c:c2:9f:ba:2f:fe:0e:53:f4:44:44:87:31:05:39:ec: 4d:e0:74:50:11:1d:6a:f4:40:7c:7e:a6:bd:29:d9:a6:6a:5b: 8a:7b:92:65:1e:33:87:74:f2:a0:56:65:c8:6b:b0:d9:87:74: 0c:87:a9:c3 -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIUHwR83VQrEIPzQPQtoPpiNb/tymwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMw RjFDNDg5RTAeFw0yNDA3MDEwMTAwNTRaFw0yNTA2MzAwMTA1NTRaMDMxMTAvBgNV BAMTKDIwRTVBNDI4RDE1OURBMjFCRjM3OTMwOEYzOUQ0MzE5RkQ0RjRCNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1EQGx6yUZ+7zPaJLL5Tl0rj8j M2nceOuBL+VPqABA3G6S0zty0TT8uYpJCziZY6f4dpLr1GuIEZohS2M6FhnR+hqb vggjOJ8ZrYzLRBMDQXgZ8mGuOa9qW3ojp/5EfeILLM0FSH2zhmRqroGkPj7nFWLp cdK0JhyB8MkxehJe18h9EVxDfBUXmGbNYwIpTMmDQdbNzEIAIDSplZVulMRKnFoD vLOhTanfIyet81LYN1C44tzVMM0E+tRCUV5id0mjbWOvn15ZK1Oy+fmLVdKnrR/t u8cI9/4YOyLIFPDBXS7LqsaPWf/ebjZCDPzFVHawL9lA4XRiO+WuNrPZ16sFAgMB AAGjggIsMIICKDAdBgNVHQ4EFgQUIOWkKNFZ2iG/N5MI851DGf1PS3gwHwYDVR0j BBgwFoAUvztnWuvuZNALMjBWVF0fYw8cSJ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OTBjOTAwOS1hZDUzLTRmYTYtYTE4My0zNGIzNDU3YmVhMDMvMC9CRjNCNjc1QUVC RUU2NEQwMEIzMjMwNTY1NDVEMUY2MzBGMUM0ODlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMwRjFD NDg5RS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjkwYzkwMDktYWQ1My00ZmE2LWEx ODMtMzRiMzQ1N2JlYTAzLzAvMzIzMjMzMmUzMTM2MzQyZTMwMmUzMDJmMzEzNjJk MzIzNDIwM2QzZTIwMzkzNzM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDfpDANBgkqhkiG9w0BAQsF AAOCAQEAdMFE9MNFqMI0AqkesUZBCE7NSHguVDTK9nLzKKwpOrIf2KqL3pkkon+4 1FAvDv6ECSIRvcoZuYzMaJFKPJ8BwheL0zAy5cU+YunyMTRn0j+6qAmLB04R3mUu fwlLKli1bQuJajdwz57hOvg8NEd+kxr9SiimKW1vExH2ICqFNUAA8sCgLLn2W9KZ ayQ3QhDd71g4AQHgdhfevAGQF6BIWaYYoCyWVazKerUO1YfgD3qioI6WY9hMY3he Ng5gevc3znEp1sFPiIAcwp+6L/4OU/RERIcxBTnsTeB0UBEdavRAfH6mvSnZpmpb inuSZR4zh3TyoFZlyGuw2Yd0DIepww== -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:01 2024 by rpki-client on console-ams.rpki-client.org