$ rpki-client -vvf repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130352e302f32342d3234203d3e2034383231.roa File: 3232332e32352e3130352e302f32342d3234203d3e2034383231.roa (raw, json) Hash identifier: EiOpEEWve4ItYjwbIDlrPYKQ63msR1gGrgu6w5qOw4A= Subject key identifier: 68:E7:38:FC:F0:0C:9A:F6:F3:69:AA:B4:08:A6:E1:63:D2:B0:B9:86 Certificate issuer: /CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Certificate serial: 6883E83EEE2D98752EFBA611E50750169FEAF3A7 Authority key identifier: 4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130352e302f32342d3234203d3e2034383231.roa Signing time: Mon 01 Jul 2024 01:05:04 +0000 ROA not before: Mon 01 Jul 2024 01:00:04 +0000 ROA not after: Mon 30 Jun 2025 01:05:04 +0000 asID: 4821 IP address blocks: 223.25.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:83:e8:3e:ee:2d:98:75:2e:fb:a6:11:e5:07:50:16:9f:ea:f3:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Validity Not Before: Jul 1 01:00:04 2024 GMT Not After : Jun 30 01:05:04 2025 GMT Subject: CN=68E738FCF00C9AF6F369AAB408A6E163D2B0B986 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:99:6d:9e:eb:3f:f8:3a:98:03:3b:30:ce:05: f9:ed:fd:16:cf:9b:3e:8d:2c:6b:9a:77:cc:b5:31: f5:2b:59:56:42:31:f8:5c:6b:85:7b:29:93:e4:35: 3b:e0:5a:8b:73:bd:89:e6:58:f9:da:c5:26:ba:78: 13:4a:53:af:38:df:d2:8e:40:37:5f:4f:77:91:70: 49:8a:5b:1a:bd:01:95:bc:a5:fc:b4:5a:4e:22:27: 57:ef:52:e0:b6:2b:05:5a:a7:2f:6f:0c:29:9e:55: 8a:c0:f5:38:8d:d8:9b:ad:1a:e2:0f:e8:b0:98:95: 05:03:f6:4e:c1:f8:9d:1a:f5:54:c6:3d:5f:5c:31: 30:5f:dc:e7:35:8b:5c:c6:c1:a7:12:db:65:2f:c6: 70:78:4f:85:a0:18:8e:2a:40:06:84:e2:94:53:00: 0a:98:39:41:c6:8d:a1:ec:53:ca:67:20:d8:0e:45: 6e:12:2a:70:ac:37:71:bf:d1:f1:3d:68:91:7f:10: b6:60:00:e8:cb:f2:f1:a7:4e:dc:4c:5e:06:a1:44: de:65:1f:54:26:2e:ae:27:dc:bd:68:bc:ad:03:45: 9f:27:0f:fc:dd:92:36:72:86:63:7b:28:8d:0f:bd: 5f:fd:aa:2f:4b:64:17:4a:60:36:4e:5e:56:25:31: cd:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:E7:38:FC:F0:0C:9A:F6:F3:69:AA:B4:08:A6:E1:63:D2:B0:B9:86 X509v3 Authority Key Identifier: keyid:4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130352e302f32342d3234203d3e2034383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.25.105.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:47:42:ee:31:c5:de:6e:3a:2e:b2:2f:be:c6:cc:9e:af:c9: a4:ad:d1:b1:01:af:2b:66:b9:ea:68:4e:ca:75:97:9e:70:0f: ff:73:3d:34:d2:de:96:97:70:84:1c:1a:a2:9d:ef:55:ff:c2: 20:4a:d2:fe:e2:c8:da:12:2f:02:a5:b0:dc:85:61:62:a8:b4: 10:84:09:e3:f3:2f:10:24:3c:93:a8:cf:ed:5d:4a:95:de:78: fd:bf:2b:67:c9:86:e2:6d:4f:b6:1f:21:06:fc:1c:b9:e3:16: 82:eb:93:91:93:0a:26:2e:03:6e:27:4c:0c:66:17:8d:22:ae: 45:87:79:c7:f8:3e:5c:b1:0a:7c:93:d0:aa:94:b2:50:76:1a: 7f:c3:c2:e7:b4:b4:20:22:bd:d1:14:5b:3d:eb:d8:54:f5:76: cf:58:9a:3b:1b:17:2d:ff:44:0e:8d:d4:02:b3:2d:bb:73:2a: c6:a0:52:85:d4:ef:df:b2:07:cc:94:f3:87:a8:7b:f7:75:7a: e2:1a:e0:70:28:cb:54:60:c1:bb:b4:2d:6a:12:40:e0:37:3f: e6:cd:76:29:f7:c0:5a:9d:57:de:3a:bf:d8:7b:83:41:5b:f2: fa:db:6f:ab:95:77:67:a9:5f:d2:2b:17:03:ed:9e:ed:99:88: 9b:ae:5e:ab -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUaIPoPu4tmHUu+6YR5QdQFp/q86cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3 RkMzODc4NzAeFw0yNDA3MDEwMTAwMDRaFw0yNTA2MzAwMTA1MDRaMDMxMTAvBgNV BAMTKDY4RTczOEZDRjAwQzlBRjZGMzY5QUFCNDA4QTZFMTYzRDJCMEI5ODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVmW2e6z/4OpgDOzDOBfnt/RbP mz6NLGuad8y1MfUrWVZCMfhca4V7KZPkNTvgWotzvYnmWPnaxSa6eBNKU68439KO QDdfT3eRcEmKWxq9AZW8pfy0Wk4iJ1fvUuC2KwVapy9vDCmeVYrA9TiN2JutGuIP 6LCYlQUD9k7B+J0a9VTGPV9cMTBf3Oc1i1zGwacS22UvxnB4T4WgGI4qQAaE4pRT AAqYOUHGjaHsU8pnINgORW4SKnCsN3G/0fE9aJF/ELZgAOjL8vGnTtxMXgahRN5l H1QmLq4n3L1ovK0DRZ8nD/zdkjZyhmN7KI0PvV/9qi9LZBdKYDZOXlYlMc0vAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUaOc4/PAMmvbzaaq0CKbhY9KwuYYwHwYDVR0j BBgwFoAUS/HcwLzFsaS2vlJqdf8zOX/Dh4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDI1NDQxOS01M2JlLTRhZDQtYmY3Zi0yOWY4OTEyNTIzZDAvMC80QkYxRENDMEJD QzVCMUE0QjZCRTUyNkE3NUZGMzMzOTdGQzM4Nzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3RkMz ODc4Ny5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMjU0NDE5LTUzYmUtNGFkNC1i ZjdmLTI5Zjg5MTI1MjNkMC8wLzMyMzIzMzJlMzIzNTJlMzEzMDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzODMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADfGWkwDQYJKoZIhvcN AQELBQADggEBAB9HQu4xxd5uOi6yL77GzJ6vyaSt0bEBrytmuepoTsp1l55wD/9z PTTS3paXcIQcGqKd71X/wiBK0v7iyNoSLwKlsNyFYWKotBCECePzLxAkPJOoz+1d SpXeeP2/K2fJhuJtT7YfIQb8HLnjFoLrk5GTCiYuA24nTAxmF40irkWHecf4Plyx CnyT0KqUslB2Gn/Dwue0tCAivdEUWz3r2FT1ds9YmjsbFy3/RA6N1AKzLbtzKsag UoXU79+yB8yU84eoe/d1euIa4HAoy1Rgwbu0LWoSQOA3P+bNdin3wFqdV946v9h7 g0Fb8vrbb6uVd2epX9IrFwPtnu2ZiJuuXqs= -----END CERTIFICATE-----Generated at Sun Nov 24 05:18:50 2024 by rpki-client on console-ams.rpki-client.org