$ rpki-client -vvf repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130342e302f32342d3234203d3e20313530323238.roa File: 3232332e32352e3130342e302f32342d3234203d3e20313530323238.roa (raw, json) Hash identifier: cZBWmyJVcEruYTz5jZxkeBKZPSWY8Hb8VWSWCgiAjvI= Subject key identifier: FC:AF:2D:05:33:06:62:03:4E:94:31:F3:BC:49:49:E4:2F:63:96:EF Certificate issuer: /CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Certificate serial: 0CB82A4098C1198B59B5F976CBBFBBB5AA936ADE Authority key identifier: 4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130342e302f32342d3234203d3e20313530323238.roa Signing time: Thu 18 Jan 2024 09:20:02 +0000 ROA not before: Thu 18 Jan 2024 09:15:02 +0000 ROA not after: Thu 16 Jan 2025 09:20:02 +0000 asID: 150228 IP address blocks: 223.25.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:b8:2a:40:98:c1:19:8b:59:b5:f9:76:cb:bf:bb:b5:aa:93:6a:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Validity Not Before: Jan 18 09:15:02 2024 GMT Not After : Jan 16 09:20:02 2025 GMT Subject: CN=FCAF2D05330662034E9431F3BC4949E42F6396EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:83:8e:52:81:93:45:e2:11:e0:2e:60:d7:ab: ed:ba:d1:87:35:68:99:f7:77:5b:c7:ef:fc:25:cc: 2c:6c:db:9f:f8:7e:9f:3d:15:c4:3f:13:c1:b2:e0: 1e:fc:29:e9:68:da:4c:d1:e4:85:6b:65:75:10:51: 77:da:41:37:e7:71:fb:8a:18:f4:bd:c2:f4:8d:03: 91:46:f5:06:1c:e0:47:3a:bb:03:b0:cd:ed:93:d3: 30:84:ae:42:ec:28:61:64:8f:fc:0c:da:2a:ce:64: 8d:7f:74:46:5f:42:51:57:1c:88:20:fa:d7:c3:cd: d1:1c:9a:8a:52:e5:12:3a:d7:9d:83:91:b7:e6:a6: bf:51:50:d8:a9:4f:0b:d5:fa:86:37:a0:20:fd:67: dd:31:cc:f7:ab:3a:12:40:e5:c5:b5:e3:e3:b1:2d: be:c2:c2:86:f8:e4:f9:d5:ef:9c:30:8e:5f:a8:2d: 3c:bb:28:0e:de:b6:b7:18:8c:10:7b:a2:02:1d:10: b5:27:48:7d:78:e7:17:ff:fe:bb:ce:e6:34:b1:cf: 82:11:e8:dc:82:06:dd:7a:38:95:59:95:d5:f6:e6: 5b:f9:3d:75:d9:2a:a0:44:39:2b:43:5e:5c:73:03: 72:c6:3e:8e:ed:af:9f:c0:c6:18:41:72:2a:a5:aa: 6a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:AF:2D:05:33:06:62:03:4E:94:31:F3:BC:49:49:E4:2F:63:96:EF X509v3 Authority Key Identifier: keyid:4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130342e302f32342d3234203d3e20313530323238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.25.104.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:e0:fe:37:d4:74:78:ba:be:72:94:68:23:ae:09:91:3b:75: d2:bd:bd:88:7e:c2:66:fa:15:c5:3c:95:82:3a:cf:a8:25:52: 82:39:b2:3a:df:f1:c9:fe:90:4f:90:33:ac:61:42:f1:08:53: e2:7d:3d:5c:78:2f:97:45:7f:e3:b5:7c:d0:a2:de:70:11:e5: 7d:5a:0f:82:e1:6c:a1:88:af:5e:0d:6a:18:b4:91:7f:4e:21: b2:43:a3:03:06:fb:85:06:c0:0a:df:41:59:f9:19:41:e5:9e: fa:05:3a:7a:0a:5c:fc:77:ff:68:cd:36:2d:e2:ac:c8:86:3a: 03:6f:8b:e0:47:7b:56:f8:b7:91:2a:60:36:31:e4:9d:a0:9a: f8:c7:5b:04:cb:31:a5:e7:82:f8:79:10:9b:92:1c:16:ce:0d: 1b:ce:b7:f1:fd:6f:76:b0:8b:7f:85:ed:bf:05:93:98:a5:16: 62:4b:34:8d:d5:31:2c:ff:5b:62:d6:da:8b:c8:ae:73:cf:5d: 26:a2:f9:e0:f8:2f:4e:0c:87:21:05:82:e3:21:d4:8d:11:16: 91:4d:0f:e4:da:9f:6d:24:bd:b0:96:26:92:11:65:1e:4f:64: fb:03:53:66:d2:9d:10:9d:0a:96:32:f3:f4:26:ee:b9:99:0e: 59:86:e2:2c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDLgqQJjBGYtZtfl2y7+7taqTat4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3 RkMzODc4NzAeFw0yNDAxMTgwOTE1MDJaFw0yNTAxMTYwOTIwMDJaMDMxMTAvBgNV BAMTKEZDQUYyRDA1MzMwNjYyMDM0RTk0MzFGM0JDNDk0OUU0MkY2Mzk2RUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvg45SgZNF4hHgLmDXq+260Yc1 aJn3d1vH7/wlzCxs25/4fp89FcQ/E8Gy4B78Kelo2kzR5IVrZXUQUXfaQTfncfuK GPS9wvSNA5FG9QYc4Ec6uwOwze2T0zCErkLsKGFkj/wM2irOZI1/dEZfQlFXHIgg +tfDzdEcmopS5RI6152Dkbfmpr9RUNipTwvV+oY3oCD9Z90xzPerOhJA5cW14+Ox Lb7Cwob45PnV75wwjl+oLTy7KA7etrcYjBB7ogIdELUnSH145xf//rvO5jSxz4IR 6NyCBt16OJVZldX25lv5PXXZKqBEOStDXlxzA3LGPo7tr5/AxhhBciqlqmrxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/K8tBTMGYgNOlDHzvElJ5C9jlu8wHwYDVR0j BBgwFoAUS/HcwLzFsaS2vlJqdf8zOX/Dh4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDI1NDQxOS01M2JlLTRhZDQtYmY3Zi0yOWY4OTEyNTIzZDAvMC80QkYxRENDMEJD QzVCMUE0QjZCRTUyNkE3NUZGMzMzOTdGQzM4Nzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3RkMz ODc4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMjU0NDE5LTUzYmUtNGFkNC1i ZjdmLTI5Zjg5MTI1MjNkMC8wLzMyMzIzMzJlMzIzNTJlMzEzMDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA3xloMA0GCSqG SIb3DQEBCwUAA4IBAQB+4P431HR4ur5ylGgjrgmRO3XSvb2IfsJm+hXFPJWCOs+o JVKCObI63/HJ/pBPkDOsYULxCFPifT1ceC+XRX/jtXzQot5wEeV9Wg+C4WyhiK9e DWoYtJF/TiGyQ6MDBvuFBsAK30FZ+RlB5Z76BTp6Clz8d/9ozTYt4qzIhjoDb4vg R3tW+LeRKmA2MeSdoJr4x1sEyzGl54L4eRCbkhwWzg0bzrfx/W92sIt/he2/BZOY pRZiSzSN1TEs/1ti1tqLyK5zz10movng+C9ODIchBYLjIdSNERaRTQ/k2p9tJL2w liaSEWUeT2T7A1Nm0p0QnQqWMvP0Ju65mQ5ZhuIs -----END CERTIFICATE-----Generated at Sun Nov 24 05:18:50 2024 by rpki-client on console-ams.rpki-client.org