$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3132342e3135382e3137362e302f32302d3234203d3e203535363835.roa File: 3132342e3135382e3137362e302f32302d3234203d3e203535363835.roa (raw, json) Hash identifier: nno4tg+/4biwH2Ox20aAp9pf0skFlt3En8NmBzMMCtM= Subject key identifier: C9:30:FA:73:45:A1:2D:79:9C:5E:D8:20:20:18:3A:78:ED:8B:79:B8 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 438BF368BD5D86B4BE1D00A1DC87F35495E03C87 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3132342e3135382e3137362e302f32302d3234203d3e203535363835.roa Signing time: Mon 01 Jul 2024 01:05:48 +0000 ROA not before: Mon 01 Jul 2024 01:00:48 +0000 ROA not after: Mon 30 Jun 2025 01:05:48 +0000 asID: 55685 IP address blocks: 124.158.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:8b:f3:68:bd:5d:86:b4:be:1d:00:a1:dc:87:f3:54:95:e0:3c:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jul 1 01:00:48 2024 GMT Not After : Jun 30 01:05:48 2025 GMT Subject: CN=C930FA7345A12D799C5ED82020183A78ED8B79B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:e2:09:53:78:12:ff:95:2f:bd:a3:ea:2f:47: 44:65:32:b0:8e:65:0d:1a:fd:b5:c1:de:ce:84:12: db:e8:90:3e:3c:46:27:f5:da:89:1d:e5:ce:74:43: 08:c6:94:3b:bf:b9:a6:41:24:3b:71:59:c6:18:cc: 5b:dc:0e:1a:5b:bd:0b:cc:7f:aa:74:c3:b4:05:a8: 67:7c:71:3b:53:af:ce:73:d0:b7:c3:9d:ea:9e:89: fb:58:6f:57:dd:04:aa:a4:93:c4:0e:89:d0:ed:71: d0:0a:80:57:67:02:db:78:e7:5a:ed:92:aa:1f:aa: 07:9c:cf:25:b7:d5:62:02:b1:d0:f8:d1:4f:7f:41: 25:e4:3d:53:13:4d:e9:ec:0c:27:bc:9f:90:0a:db: 4b:fb:26:8d:9c:90:2c:49:27:1e:6b:1a:ae:6d:f2: 84:70:a4:f8:43:6d:4e:b0:fc:6c:d6:4f:97:68:ee: 09:2b:6b:6b:01:a4:fb:2d:9f:22:d8:e1:f2:f0:e5: db:22:0e:5d:5c:66:a3:35:5d:d6:53:de:16:2b:0f: 60:21:cc:f5:55:cd:85:f7:0d:ff:c9:5a:f1:7d:7c: 5f:ba:7b:ea:4c:9a:89:11:2f:da:b5:3e:24:51:d8: 5a:55:8a:b9:f7:c9:23:df:b9:52:19:e9:10:c9:61: 06:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:30:FA:73:45:A1:2D:79:9C:5E:D8:20:20:18:3A:78:ED:8B:79:B8 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3132342e3135382e3137362e302f32302d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.158.176.0/20 Signature Algorithm: sha256WithRSAEncryption 35:82:6d:a0:70:d3:4b:1e:6b:31:6d:5d:22:87:3f:7c:eb:ba: ed:a8:3a:c5:c0:76:e8:a0:5c:32:5f:19:46:38:73:38:d4:b3: e7:77:7a:dd:46:fd:24:ac:1d:cb:85:76:3e:5a:9a:a1:a4:f5: 6f:35:d5:6c:3b:ba:70:06:7c:e6:ef:4c:45:3a:a8:a1:7d:fe: 83:4d:5f:01:8f:9f:63:52:45:1d:89:8f:5a:97:53:df:c3:6c: 52:b6:3c:91:3b:82:46:26:b1:a4:70:73:94:f9:16:a8:86:d5: e2:fa:7b:7b:9b:77:87:41:3b:98:00:df:44:5c:81:c5:65:56: a8:28:c3:13:53:b1:76:6b:42:3b:d9:25:d7:be:a8:f3:48:8b: de:fa:94:69:36:aa:b1:f1:e3:da:d7:36:f6:df:00:db:90:55: 96:e6:fc:99:05:c1:af:91:40:a3:c1:18:be:23:ee:79:01:e4: a6:63:b1:c1:3f:73:fa:9e:0c:14:ab:19:08:dc:ea:92:ff:ba: fd:ff:31:db:8d:92:29:98:4f:62:98:c2:3d:6e:71:f8:5a:0d: a7:57:28:f0:4b:d4:39:bf:2e:05:76:42:50:02:71:23:ee:98: ae:72:2b:d1:41:1a:eb:49:b0:be:ea:24:b5:e0:5c:51:ec:4a: 1a:e6:90:f3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ4vzaL1dhrS+HQCh3IfzVJXgPIcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNDA3MDEwMTAwNDhaFw0yNTA2MzAwMTA1NDhaMDMxMTAvBgNV BAMTKEM5MzBGQTczNDVBMTJENzk5QzVFRDgyMDIwMTgzQTc4RUQ4Qjc5QjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDw4glTeBL/lS+9o+ovR0RlMrCO ZQ0a/bXB3s6EEtvokD48Rif12okd5c50QwjGlDu/uaZBJDtxWcYYzFvcDhpbvQvM f6p0w7QFqGd8cTtTr85z0LfDneqeiftYb1fdBKqkk8QOidDtcdAKgFdnAtt451rt kqofqgeczyW31WICsdD40U9/QSXkPVMTTensDCe8n5AK20v7Jo2ckCxJJx5rGq5t 8oRwpPhDbU6w/GzWT5do7gkra2sBpPstnyLY4fLw5dsiDl1cZqM1XdZT3hYrD2Ah zPVVzYX3Df/JWvF9fF+6e+pMmokRL9q1PiRR2FpVirn3ySPfuVIZ6RDJYQZpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyTD6c0WhLXmcXtggIBg6eO2LebgwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMxMzIzNDJlMzEzNTM4MmUzMTM3MzYyZTMwMmYz MjMwMmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEfJ6wMA0GCSqG SIb3DQEBCwUAA4IBAQA1gm2gcNNLHmsxbV0ihz9867rtqDrFwHbooFwyXxlGOHM4 1LPnd3rdRv0krB3LhXY+WpqhpPVvNdVsO7pwBnzm70xFOqihff6DTV8Bj59jUkUd iY9al1Pfw2xStjyRO4JGJrGkcHOU+RaohtXi+nt7m3eHQTuYAN9EXIHFZVaoKMMT U7F2a0I72SXXvqjzSIve+pRpNqqx8ePa1zb23wDbkFWW5vyZBcGvkUCjwRi+I+55 AeSmY7HBP3P6ngwUqxkI3OqS/7r9/zHbjZIpmE9imMI9bnH4Wg2nVyjwS9Q5vy4F dkJQAnEj7piucivRQRrrSbC+6iS14FxR7Eoa5pDz -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:18 2024 by rpki-client on console-fra.rpki-client.org