$ rpki-client -vvf repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130372e302f32342d3234203d3e20313439373138.roa File: 3232332e32352e3130372e302f32342d3234203d3e20313439373138.roa (raw, json) Hash identifier: KdISJidQDc4jZsrLQ64o2Ghh+PQHeauIXcY0IwAp9SE= Subject key identifier: A4:48:C5:DB:DC:C7:59:44:80:E9:76:6E:23:FC:F1:C2:C1:AE:E8:87 Certificate issuer: /CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Certificate serial: 53BFDEB20B1BBC7323F4E70110620787163CD8CB Authority key identifier: 4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130372e302f32342d3234203d3e20313439373138.roa Signing time: Fri 29 Mar 2024 22:54:24 +0000 ROA not before: Fri 29 Mar 2024 22:49:24 +0000 ROA not after: Fri 28 Mar 2025 22:54:24 +0000 asID: 149718 IP address blocks: 223.25.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:bf:de:b2:0b:1b:bc:73:23:f4:e7:01:10:62:07:87:16:3c:d8:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Validity Not Before: Mar 29 22:49:24 2024 GMT Not After : Mar 28 22:54:24 2025 GMT Subject: CN=A448C5DBDCC7594480E9766E23FCF1C2C1AEE887 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1b:ed:24:ca:f9:39:1a:06:9a:5b:af:53:75: 0e:81:96:25:9a:77:1c:d9:88:ee:01:a0:b3:9f:88: 2d:42:47:14:cb:3e:91:4e:8f:65:59:6e:34:ea:b0: d1:95:ee:06:58:ef:65:a7:c6:76:9c:8c:ce:52:8d: 8d:cc:64:a7:d1:2c:d6:6c:7b:0a:91:bc:a4:83:94: 26:02:63:4b:de:4c:36:a0:e5:71:8a:26:91:45:8b: da:b1:88:a3:ac:b3:34:57:ec:0a:04:4c:34:46:65: ff:4f:03:aa:44:5c:67:67:5e:53:f2:ef:01:c9:31: 12:02:08:a1:9e:38:21:71:0a:27:a2:2f:0b:50:c0: ec:b7:69:af:18:08:36:d5:dd:08:e0:94:57:48:8c: 1d:8b:c6:b8:c4:4e:23:c2:e7:0d:41:24:4e:0e:34: 88:8d:5f:c2:89:9f:37:10:44:c2:67:73:e1:f6:59: d8:88:9a:8b:ec:53:01:82:f2:50:fc:cb:89:0f:ee: 3f:60:0c:62:9d:c5:be:e6:7f:b1:56:09:b6:5a:39: 93:1a:ca:2b:33:4d:71:1a:44:b5:6b:b6:07:f4:9f: da:96:f9:28:46:40:b1:8f:51:86:d1:7a:c7:f2:30: 7b:a8:bc:0e:dd:b9:e0:78:13:9a:4a:9e:1a:62:11: 58:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:48:C5:DB:DC:C7:59:44:80:E9:76:6E:23:FC:F1:C2:C1:AE:E8:87 X509v3 Authority Key Identifier: keyid:4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130372e302f32342d3234203d3e20313439373138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.25.107.0/24 Signature Algorithm: sha256WithRSAEncryption 56:cf:a1:3d:5d:47:89:dd:74:ab:11:10:06:ff:bb:cf:69:97: 34:1b:a2:b0:62:6f:88:a2:97:38:22:58:7a:a7:4d:4f:bd:b0: b5:f4:69:ea:ea:b1:0a:08:c9:06:84:68:35:47:b1:41:f5:71: fe:88:c7:ae:5b:c7:5f:eb:cd:23:93:8b:88:93:e6:f2:37:6b: 9e:4c:d5:d5:13:b6:a4:25:95:65:18:03:94:57:5e:e4:17:83: ab:4d:82:85:b0:a4:6e:98:78:92:63:e4:10:38:b3:29:97:fa: 77:45:f3:16:47:7e:5b:41:c3:a0:27:8c:d9:ee:16:40:36:bf: 94:68:bb:c9:0d:16:f7:d2:31:6f:d1:97:e2:37:34:1a:ae:33: 81:42:bd:f4:52:a4:a5:e9:c4:96:6d:82:3f:50:3c:ba:fa:4a: 27:e0:c3:72:65:3a:b3:dc:6f:df:84:a6:ab:f8:d4:cd:2c:6f: f8:ff:8d:cd:06:06:cb:b6:0b:58:ed:4c:f1:fa:92:cd:c8:e5: 0a:87:10:bb:30:69:66:1a:75:ab:94:ab:26:d7:e4:c3:81:f4: b7:4d:c6:53:e3:26:a0:65:f9:ef:8d:c3:7c:46:a1:78:fe:78: 7c:57:ca:c5:30:b7:f7:9f:6d:1f:4f:a8:06:0b:91:a3:e0:05: da:4a:36:39 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUU7/esgsbvHMj9OcBEGIHhxY82MswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3 RkMzODc4NzAeFw0yNDAzMjkyMjQ5MjRaFw0yNTAzMjgyMjU0MjRaMDMxMTAvBgNV BAMTKEE0NDhDNURCRENDNzU5NDQ4MEU5NzY2RTIzRkNGMUMyQzFBRUU4ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0G+0kyvk5GgaaW69TdQ6BliWa dxzZiO4BoLOfiC1CRxTLPpFOj2VZbjTqsNGV7gZY72WnxnacjM5SjY3MZKfRLNZs ewqRvKSDlCYCY0veTDag5XGKJpFFi9qxiKOsszRX7AoETDRGZf9PA6pEXGdnXlPy 7wHJMRICCKGeOCFxCieiLwtQwOy3aa8YCDbV3QjglFdIjB2LxrjETiPC5w1BJE4O NIiNX8KJnzcQRMJnc+H2WdiImovsUwGC8lD8y4kP7j9gDGKdxb7mf7FWCbZaOZMa yiszTXEaRLVrtgf0n9qW+ShGQLGPUYbResfyMHuovA7dueB4E5pKnhpiEViBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpEjF29zHWUSA6XZuI/zxwsGu6IcwHwYDVR0j BBgwFoAUS/HcwLzFsaS2vlJqdf8zOX/Dh4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDI1NDQxOS01M2JlLTRhZDQtYmY3Zi0yOWY4OTEyNTIzZDAvMC80QkYxRENDMEJD QzVCMUE0QjZCRTUyNkE3NUZGMzMzOTdGQzM4Nzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3RkMz ODc4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMjU0NDE5LTUzYmUtNGFkNC1i ZjdmLTI5Zjg5MTI1MjNkMC8wLzMyMzIzMzJlMzIzNTJlMzEzMDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA3xlrMA0GCSqG SIb3DQEBCwUAA4IBAQBWz6E9XUeJ3XSrERAG/7vPaZc0G6KwYm+Iopc4Ilh6p01P vbC19Gnq6rEKCMkGhGg1R7FB9XH+iMeuW8df680jk4uIk+byN2ueTNXVE7akJZVl GAOUV17kF4OrTYKFsKRumHiSY+QQOLMpl/p3RfMWR35bQcOgJ4zZ7hZANr+UaLvJ DRb30jFv0ZfiNzQarjOBQr30UqSl6cSWbYI/UDy6+kon4MNyZTqz3G/fhKar+NTN LG/4/43NBgbLtgtY7Uzx+pLNyOUKhxC7MGlmGnWrlKsm1+TDgfS3TcZT4yagZfnv jcN8RqF4/nh8V8rFMLf3n20fT6gGC5Gj4AXaSjY5 -----END CERTIFICATE-----Generated at Sun Nov 24 05:18:50 2024 by rpki-client on console-ams.rpki-client.org