$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3132342e3135382e3136302e302f32302d3234203d3e2039333431.roa File: 3132342e3135382e3136302e302f32302d3234203d3e2039333431.roa (raw, json) Hash identifier: ksrSbg4MfDLDoHdr2tCcBXBbEZ7DzYOl4Xtwxvr/TLM= Subject key identifier: 03:23:3B:F1:D4:75:2E:83:04:44:A3:75:46:D6:EC:2B:79:A2:B0:37 Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 6DDA7BAED66485E0C0B2C84B54160ADB9D7E9F13 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3132342e3135382e3136302e302f32302d3234203d3e2039333431.roa Signing time: Tue 19 Mar 2024 02:13:45 +0000 ROA not before: Tue 19 Mar 2024 02:08:45 +0000 ROA not after: Tue 18 Mar 2025 02:13:45 +0000 asID: 9341 IP address blocks: 124.158.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:da:7b:ae:d6:64:85:e0:c0:b2:c8:4b:54:16:0a:db:9d:7e:9f:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Mar 19 02:08:45 2024 GMT Not After : Mar 18 02:13:45 2025 GMT Subject: CN=03233BF1D4752E830444A37546D6EC2B79A2B037 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c8:f3:49:1a:3d:c0:19:3a:10:47:43:62:58: 14:c3:9d:da:fc:92:22:d7:97:ea:a1:65:21:f8:01: 26:cb:f6:e2:e9:8f:2c:28:50:b1:97:49:3a:3a:0f: 15:07:3e:2c:12:00:ad:06:54:ed:d9:13:cc:34:42: 82:78:b6:18:bb:93:4f:5b:ae:5a:3c:14:e4:93:a4: 03:21:21:45:f3:22:12:5d:2b:c8:f5:cf:7d:eb:e9: 11:08:42:ea:d2:74:3d:01:94:f7:24:76:66:d1:83: 82:77:54:7e:47:c8:b5:10:68:12:0c:84:36:33:21: 43:df:ee:5e:30:e3:65:2e:b3:ab:9b:e3:a7:fd:dd: b1:e1:7c:93:ca:74:34:03:1d:f4:3e:7c:11:33:dc: 6b:00:ac:f5:88:08:45:8e:3b:bf:09:5c:a4:50:75: e0:60:1a:7a:ef:19:01:47:e6:ae:06:a4:16:28:21: 37:b9:85:1d:e7:42:25:fc:ca:92:68:98:45:53:66: a1:07:79:75:1c:8e:b0:df:43:ab:58:4b:63:96:a3: 09:07:ef:47:94:06:fc:03:84:8d:d5:02:88:cb:93: e6:17:12:0e:d5:42:1d:87:f3:5d:74:f3:5e:d7:d4: 27:66:3e:1d:56:96:0f:92:f6:33:f3:b0:26:14:52: 29:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:23:3B:F1:D4:75:2E:83:04:44:A3:75:46:D6:EC:2B:79:A2:B0:37 X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3132342e3135382e3136302e302f32302d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.158.160.0/20 Signature Algorithm: sha256WithRSAEncryption 00:7b:9c:47:50:f9:68:d2:e2:05:86:3e:c0:1b:bd:b9:03:ba: 7c:ad:63:0d:e4:09:4d:66:70:ff:d5:2d:b1:a0:83:e2:72:8c: 08:51:7c:8f:24:6d:59:fd:89:c9:c2:e6:b1:6e:72:47:4e:aa: 6e:96:94:4c:14:b8:2f:e0:df:3b:b2:78:9b:89:5d:4c:20:6a: e6:cf:18:a8:c9:16:b3:43:e1:ee:61:2b:b0:66:04:2f:aa:64: e9:bb:e9:ea:80:62:12:81:f2:21:93:66:ad:90:21:e4:28:f0: cf:b9:2e:5d:d7:b4:51:2f:48:33:de:fc:7d:98:7e:a4:4f:2b: 7b:e5:62:b1:9b:d5:f5:fd:c5:30:1a:66:3b:6d:05:51:aa:1b: 8b:7b:67:79:72:c7:71:d2:36:0c:97:1c:2a:64:4d:a5:78:5c: 46:3a:b1:20:d4:ce:f8:d4:ec:05:f7:70:07:f8:54:ff:83:bf: bc:55:e4:77:5a:59:92:82:13:08:e7:69:64:f7:90:3c:83:29: 5f:af:19:47:36:c8:be:bb:5e:26:dc:0c:a2:47:39:69:e4:f6: 2b:cb:1f:2b:a8:aa:5e:24:29:e0:be:90:c3:9e:aa:5e:ce:87: bb:7e:13:a2:74:7f:cb:50:8a:77:64:2e:ce:91:c1:47:28:db: e1:51:3a:f6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbdp7rtZkheDAsshLVBYK251+nxMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNDAzMTkwMjA4NDVaFw0yNTAzMTgwMjEzNDVaMDMxMTAvBgNV BAMTKDAzMjMzQkYxRDQ3NTJFODMwNDQ0QTM3NTQ2RDZFQzJCNzlBMkIwMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIyPNJGj3AGToQR0NiWBTDndr8 kiLXl+qhZSH4ASbL9uLpjywoULGXSTo6DxUHPiwSAK0GVO3ZE8w0QoJ4thi7k09b rlo8FOSTpAMhIUXzIhJdK8j1z33r6REIQurSdD0BlPckdmbRg4J3VH5HyLUQaBIM hDYzIUPf7l4w42Uus6ub46f93bHhfJPKdDQDHfQ+fBEz3GsArPWICEWOO78JXKRQ deBgGnrvGQFH5q4GpBYoITe5hR3nQiX8ypJomEVTZqEHeXUcjrDfQ6tYS2OWowkH 70eUBvwDhI3VAojLk+YXEg7VQh2H8110817X1CdmPh1Wlg+S9jPzsCYUUikNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAyM78dR1LoMERKN1RtbsK3misDcwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzMxMzIzNDJlMzEzNTM4MmUzMTM2MzAyZTMwMmYz MjMwMmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHyeoDANBgkqhkiG 9w0BAQsFAAOCAQEAAHucR1D5aNLiBYY+wBu9uQO6fK1jDeQJTWZw/9UtsaCD4nKM CFF8jyRtWf2JycLmsW5yR06qbpaUTBS4L+DfO7J4m4ldTCBq5s8YqMkWs0Ph7mEr sGYEL6pk6bvp6oBiEoHyIZNmrZAh5Cjwz7kuXde0US9IM978fZh+pE8re+VisZvV 9f3FMBpmO20FUaobi3tneXLHcdI2DJccKmRNpXhcRjqxINTO+NTsBfdwB/hU/4O/ vFXkd1pZkoITCOdpZPeQPIMpX68ZRzbIvrteJtwMokc5aeT2K8sfK6iqXiQp4L6Q w56qXs6Hu34TonR/y1CKd2QuzpHBRyjb4VE69g== -----END CERTIFICATE-----Generated at Thu Nov 21 00:19:21 2024 by rpki-client on console-fra.rpki-client.org