$ rpki-client -vvf repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130342e302f32342d3234203d3e20313530323238.roa File: 3232332e32352e3130342e302f32342d3234203d3e20313530323238.roa (raw, json) Hash identifier: 5Yjn1xzYUyXHAIu8ieYmhhXRGkoBPybJZRq7aWT18y0= Subject key identifier: 0E:84:71:C9:63:2A:57:67:83:38:D6:C8:E2:48:AE:28:2A:C2:77:36 Certificate issuer: /CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Certificate serial: 2BA34448FB6A748954E6276C36F763E74D139B82 Authority key identifier: 4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130342e302f32342d3234203d3e20313530323238.roa Signing time: Thu 19 Dec 2024 10:00:02 +0000 ROA not before: Thu 19 Dec 2024 09:55:02 +0000 ROA not after: Thu 18 Dec 2025 10:00:02 +0000 asID: 150228 IP address blocks: 223.25.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 13:41:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:a3:44:48:fb:6a:74:89:54:e6:27:6c:36:f7:63:e7:4d:13:9b:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Validity Not Before: Dec 19 09:55:02 2024 GMT Not After : Dec 18 10:00:02 2025 GMT Subject: CN=0E8471C9632A57678338D6C8E248AE282AC27736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9e:3f:ef:c4:cc:43:b0:85:60:e3:c5:dc:cf: da:f9:7c:f1:1e:0c:7f:62:49:47:16:40:00:b6:b3: 2a:17:8a:3e:d9:3d:62:2b:58:18:2e:40:7d:85:fc: 4c:bb:88:f3:da:7c:52:69:73:7e:4b:44:f7:aa:83: aa:65:5d:6e:1d:35:b0:d3:38:a0:4b:a3:33:d4:06: 97:21:df:2a:d6:61:cf:51:65:f0:4c:34:18:eb:cf: a3:94:22:06:68:6a:51:a9:89:2d:c9:72:fd:20:34: 74:6d:02:28:49:09:23:33:69:23:3f:7f:89:09:3b: 35:6f:19:8c:f5:e2:51:1f:fe:a6:55:65:71:1c:70: 93:4b:b2:0f:36:d3:0c:52:0d:e2:1c:a8:59:e1:66: 09:38:79:2e:c5:9f:5e:71:38:9c:52:df:30:3f:ac: 68:37:d9:07:3c:a5:fb:d4:e8:b8:08:e2:27:16:b4: b4:c8:f8:0f:7a:cb:4e:ba:31:20:fd:fe:ce:dd:f8: f3:87:94:e4:aa:af:60:cd:c2:de:ed:1a:a1:d3:52: a5:36:1a:d4:cc:e1:f6:97:50:75:47:25:a6:c9:b2: 16:0a:ed:4f:3e:df:1f:c8:7c:78:99:ce:d7:71:0f: 9f:0a:eb:cf:17:3a:05:a5:7f:07:be:a0:70:0c:40: d0:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:84:71:C9:63:2A:57:67:83:38:D6:C8:E2:48:AE:28:2A:C2:77:36 X509v3 Authority Key Identifier: keyid:4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130342e302f32342d3234203d3e20313530323238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.25.104.0/24 Signature Algorithm: sha256WithRSAEncryption 45:2d:7c:63:2b:9e:90:08:12:84:95:35:9e:97:41:01:7b:5c: 29:55:79:d9:d8:8b:48:1c:a8:c4:a1:ac:4c:c1:90:76:61:94: ca:13:65:29:b6:8d:d8:70:26:c2:35:69:0b:e1:81:6a:78:61: 7a:ac:5b:65:08:21:67:08:5a:b5:a1:7c:a8:f9:73:5e:ff:4c: 7d:fa:b4:5c:ab:4d:d6:d1:ab:6b:21:31:53:82:f1:b0:02:5f: 2f:15:31:ad:b6:b6:3e:50:1a:42:71:69:ba:9b:eb:77:64:2e: 35:92:66:79:b3:b9:78:11:ab:a1:19:96:5b:ef:7a:33:6d:f6: ef:ed:18:74:26:62:a5:24:fc:b6:57:26:1d:9b:b5:98:d0:47: 15:08:6c:f7:eb:2c:1c:79:ea:8e:8c:93:68:d7:e3:6a:17:96: c2:00:e3:7e:f9:36:0d:4c:70:6d:0b:6e:ad:ec:96:00:f9:81: 57:fa:29:ff:a0:b3:6e:e8:fe:00:f5:4b:03:93:30:dd:c3:ba: 0f:55:93:2f:98:03:3e:ae:80:44:a8:06:43:7a:5b:c1:af:58: 77:48:c6:f4:ab:ca:29:87:28:f5:dd:27:05:f7:59:2d:99:18: 41:ef:32:a8:72:25:c9:0b:e5:b9:3d:fe:f2:b2:31:bc:7b:1b: 36:93:77:23 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUK6NESPtqdIlU5idsNvdj500Tm4IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3 RkMzODc4NzAeFw0yNDEyMTkwOTU1MDJaFw0yNTEyMTgxMDAwMDJaMDMxMTAvBgNV BAMTKDBFODQ3MUM5NjMyQTU3Njc4MzM4RDZDOEUyNDhBRTI4MkFDMjc3MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+nj/vxMxDsIVg48Xcz9r5fPEe DH9iSUcWQAC2syoXij7ZPWIrWBguQH2F/Ey7iPPafFJpc35LRPeqg6plXW4dNbDT OKBLozPUBpch3yrWYc9RZfBMNBjrz6OUIgZoalGpiS3Jcv0gNHRtAihJCSMzaSM/ f4kJOzVvGYz14lEf/qZVZXEccJNLsg820wxSDeIcqFnhZgk4eS7Fn15xOJxS3zA/ rGg32Qc8pfvU6LgI4icWtLTI+A96y066MSD9/s7d+POHlOSqr2DNwt7tGqHTUqU2 GtTM4faXUHVHJabJshYK7U8+3x/IfHiZztdxD58K688XOgWlfwe+oHAMQNBPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDoRxyWMqV2eDONbI4kiuKCrCdzYwHwYDVR0j BBgwFoAUS/HcwLzFsaS2vlJqdf8zOX/Dh4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDI1NDQxOS01M2JlLTRhZDQtYmY3Zi0yOWY4OTEyNTIzZDAvMC80QkYxRENDMEJD QzVCMUE0QjZCRTUyNkE3NUZGMzMzOTdGQzM4Nzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3RkMz ODc4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMjU0NDE5LTUzYmUtNGFkNC1i ZjdmLTI5Zjg5MTI1MjNkMC8wLzMyMzIzMzJlMzIzNTJlMzEzMDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA3xloMA0GCSqG SIb3DQEBCwUAA4IBAQBFLXxjK56QCBKElTWel0EBe1wpVXnZ2ItIHKjEoaxMwZB2 YZTKE2Upto3YcCbCNWkL4YFqeGF6rFtlCCFnCFq1oXyo+XNe/0x9+rRcq03W0atr ITFTgvGwAl8vFTGttrY+UBpCcWm6m+t3ZC41kmZ5s7l4EauhGZZb73ozbfbv7Rh0 JmKlJPy2VyYdm7WY0EcVCGz36ywceeqOjJNo1+NqF5bCAON++TYNTHBtC26t7JYA +YFX+in/oLNu6P4A9UsDkzDdw7oPVZMvmAM+roBEqAZDelvBr1h3SMb0q8ophyj1 3ScF91ktmRhB7zKociXJC+W5Pf7ysjG8exs2k3cj -----END CERTIFICATE-----Generated at Sun Apr 6 19:21:53 2025 by rpki-client