$ rpki-client -vvf repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/1/3231322e3131372e34382e302f32302d3234203d3e203538333736.roa File: 3231322e3131372e34382e302f32302d3234203d3e203538333736.roa (raw, json) Hash identifier: OxSHpp1uxh6oAC57y11Hly/jv+lsY+/wEw5IZXFCoXs= Subject key identifier: 6E:D3:84:4C:67:EC:6B:55:59:95:5C:4A:73:71:45:AF:52:A7:AC:94 Certificate issuer: /CN=55E79C1D60B12E58D121B265CA67C0BD60D4CF92 Certificate serial: 654232357359449670F1BAD7D9A93D5D534DD815 Authority key identifier: 55:E7:9C:1D:60:B1:2E:58:D1:21:B2:65:CA:67:C0:BD:60:D4:CF:92 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/55E79C1D60B12E58D121B265CA67C0BD60D4CF92.cer Subject info access: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/1/3231322e3131372e34382e302f32302d3234203d3e203538333736.roa Signing time: Mon 01 Jul 2024 01:04:29 +0000 ROA not before: Mon 01 Jul 2024 00:59:29 +0000 ROA not after: Mon 30 Jun 2025 01:04:29 +0000 asID: 58376 IP address blocks: 212.117.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/1/55E79C1D60B12E58D121B265CA67C0BD60D4CF92.crl rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/1/55E79C1D60B12E58D121B265CA67C0BD60D4CF92.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/55E79C1D60B12E58D121B265CA67C0BD60D4CF92.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/12345F115AC4B62A51F5274C54C81E86463BD0BA.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/12345F115AC4B62A51F5274C54C81E86463BD0BA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/EjRfEVrEtipR9SdMVMgehkY70Lo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:25:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:42:32:35:73:59:44:96:70:f1:ba:d7:d9:a9:3d:5d:53:4d:d8:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=55E79C1D60B12E58D121B265CA67C0BD60D4CF92 Validity Not Before: Jul 1 00:59:29 2024 GMT Not After : Jun 30 01:04:29 2025 GMT Subject: CN=6ED3844C67EC6B5559955C4A737145AF52A7AC94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:75:49:ec:79:fc:5b:6a:9e:39:8c:03:48:3f: 64:f9:8d:29:87:e6:23:69:70:f7:28:22:44:9c:e3: 1a:b5:33:04:b1:a0:93:a7:1f:5f:ca:14:fb:34:c4: 15:9d:a1:0d:eb:34:42:9a:04:00:38:4d:76:3b:e5: 31:56:19:04:54:8f:f6:0e:f5:40:e1:4b:8e:75:f7: 17:0c:f7:11:5c:a6:2c:bb:80:bf:61:e8:17:94:dd: f3:20:85:d9:cb:ac:9f:09:b2:d3:08:7e:e6:19:75: d3:28:3b:78:7c:50:f7:69:da:fd:02:c1:3a:3d:99: b6:87:e8:9d:85:46:59:67:5f:a1:6c:95:ac:46:d9: 36:12:6c:0e:2f:3d:72:92:dd:9a:46:84:ed:58:11: 7d:22:b9:f5:92:8e:25:52:1f:be:2a:b4:a2:94:c4: 0e:c3:d0:b2:f3:08:ce:7e:97:11:6c:95:af:f2:e0: 3a:b2:25:a0:31:ae:d7:86:e8:83:42:4a:4d:0b:d6: 46:1b:1c:c0:71:d2:53:86:be:d0:6c:82:f2:b9:7d: fb:6d:3e:ca:2f:99:3d:56:ab:8e:57:db:49:39:94: f6:98:53:07:c8:19:98:05:1e:84:8f:e5:88:b6:fe: e6:b4:88:c6:a4:52:ab:1a:7e:48:23:de:66:18:73: 7f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:D3:84:4C:67:EC:6B:55:59:95:5C:4A:73:71:45:AF:52:A7:AC:94 X509v3 Authority Key Identifier: keyid:55:E7:9C:1D:60:B1:2E:58:D1:21:B2:65:CA:67:C0:BD:60:D4:CF:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/1/55E79C1D60B12E58D121B265CA67C0BD60D4CF92.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/55E79C1D60B12E58D121B265CA67C0BD60D4CF92.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/1/3231322e3131372e34382e302f32302d3234203d3e203538333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.117.48.0/20 Signature Algorithm: sha256WithRSAEncryption 49:61:ff:c7:9d:30:f5:ba:c4:0d:39:7d:29:f6:ab:91:e2:89: a3:9c:f3:40:25:69:d2:6a:07:bd:c5:94:d5:aa:e0:ab:6f:06: 82:af:65:a5:7b:aa:3d:80:42:cd:75:71:b4:5a:ba:fd:65:a2: e4:1f:64:1a:77:0e:c8:5e:f4:87:69:b1:9c:67:27:14:bb:52: b8:54:59:c4:12:86:b8:ff:8b:2c:0d:19:d8:9c:03:0f:64:37: 18:00:7d:e0:cd:8b:96:7f:bc:34:06:ae:ad:bf:5a:e8:0a:e1: b9:a4:9e:a9:72:8e:1f:59:1c:72:97:cd:49:fe:c5:bc:0d:10: 48:f3:b3:7e:9a:16:70:87:99:63:88:49:8f:2c:ab:f4:d8:a5: 40:48:70:15:49:38:f1:b1:f4:f7:f2:ee:a8:3a:24:16:a8:67: 67:c8:d4:6e:45:fb:ab:2d:7e:b6:b6:9c:9f:8d:36:41:e3:fd: a5:59:66:74:eb:38:01:b6:43:36:3d:ec:ce:a9:6a:d6:2e:37: 03:89:18:d2:04:7b:27:16:fe:3e:65:9a:4f:a8:e4:19:07:db: c8:a5:99:4d:c3:b9:a3:ab:c3:71:a2:9e:ae:92:6b:67:ed:04: 30:d7:72:55:51:78:eb:80:5e:dd:d5:0b:72:64:32:87:f1:67: 10:d4:a7:ab -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZUIyNXNZRJZw8brX2ak9XVNN2BUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTVFNzlDMUQ2MEIxMkU1OEQxMjFCMjY1Q0E2N0MwQkQ2 MEQ0Q0Y5MjAeFw0yNDA3MDEwMDU5MjlaFw0yNTA2MzAwMTA0MjlaMDMxMTAvBgNV BAMTKDZFRDM4NDRDNjdFQzZCNTU1OTk1NUM0QTczNzE0NUFGNTJBN0FDOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8dUnsefxbap45jANIP2T5jSmH 5iNpcPcoIkSc4xq1MwSxoJOnH1/KFPs0xBWdoQ3rNEKaBAA4TXY75TFWGQRUj/YO 9UDhS4519xcM9xFcpiy7gL9h6BeU3fMghdnLrJ8JstMIfuYZddMoO3h8UPdp2v0C wTo9mbaH6J2FRllnX6FslaxG2TYSbA4vPXKS3ZpGhO1YEX0iufWSjiVSH74qtKKU xA7D0LLzCM5+lxFsla/y4DqyJaAxrteG6INCSk0L1kYbHMBx0lOGvtBsgvK5fftt PsovmT1Wq45X20k5lPaYUwfIGZgFHoSP5Yi2/ua0iMakUqsafkgj3mYYc3/hAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbtOETGfsa1VZlVxKc3FFr1KnrJQwHwYDVR0j BBgwFoAUVeecHWCxLljRIbJlymfAvWDUz5IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OTFkM2MzMC05NWRjLTRiNzItYWUxYi1hZDFlOThiMGUxNzkvMS81NUU3OUMxRDYw QjEyRTU4RDEyMUIyNjVDQTY3QzBCRDYwRDRDRjkyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzAvNTVFNzlDMUQ2MEIxMkU1OEQxMjFCMjY1Q0E2N0MwQkQ2MEQ0 Q0Y5Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5MWQzYzMwLTk1ZGMtNGI3Mi1h ZTFiLWFkMWU5OGIwZTE3OS8xLzMyMzEzMjJlMzEzMTM3MmUzNDM4MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzUzODMzMzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNR1MDANBgkqhkiG 9w0BAQsFAAOCAQEASWH/x50w9brEDTl9KfarkeKJo5zzQCVp0moHvcWU1argq28G gq9lpXuqPYBCzXVxtFq6/WWi5B9kGncOyF70h2mxnGcnFLtSuFRZxBKGuP+LLA0Z 2JwDD2Q3GAB94M2Lln+8NAaurb9a6ArhuaSeqXKOH1kccpfNSf7FvA0QSPOzfpoW cIeZY4hJjyyr9NilQEhwFUk48bH09/LuqDokFqhnZ8jUbkX7qy1+tracn402QeP9 pVlmdOs4AbZDNj3szqlq1i43A4kY0gR7Jxb+PmWaT6jkGQfbyKWZTcO5o6vDcaKe rpJrZ+0EMNdyVVF464Be3dULcmQyh/FnENSnqw== -----END CERTIFICATE-----Generated at Sat Nov 23 03:54:06 2024 by rpki-client on console-ams.rpki-client.org