$ rpki-client -vvf repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130382e302f32342d3234203d3e2034383231.roa File: 3232332e32352e3130382e302f32342d3234203d3e2034383231.roa (raw, json) Hash identifier: 9ox32o2qvbcsND5fYvTWnO2uJ4CVwur4EBGsHFdJw7Q= Subject key identifier: 51:56:F8:E3:EF:E1:13:D8:D2:82:E6:18:E8:5D:16:64:A0:74:EC:57 Certificate issuer: /CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Certificate serial: 03FCA33BC6C827962122EE03825224951D91A317 Authority key identifier: 4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130382e302f32342d3234203d3e2034383231.roa Signing time: Mon 01 Jul 2024 01:05:04 +0000 ROA not before: Mon 01 Jul 2024 01:00:04 +0000 ROA not after: Mon 30 Jun 2025 01:05:04 +0000 asID: 4821 IP address blocks: 223.25.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:fc:a3:3b:c6:c8:27:96:21:22:ee:03:82:52:24:95:1d:91:a3:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Validity Not Before: Jul 1 01:00:04 2024 GMT Not After : Jun 30 01:05:04 2025 GMT Subject: CN=5156F8E3EFE113D8D282E618E85D1664A074EC57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:29:77:9a:5a:42:ab:fc:c6:24:5b:07:3c:ca: ed:0d:d9:75:d4:ad:f0:d3:90:d5:ea:db:b7:4c:1b: 59:49:98:46:b5:3e:9d:00:f9:b4:ca:67:6e:e5:d3: 98:12:93:a3:46:73:b9:dc:81:e8:7e:a3:77:59:5f: 34:8a:0d:ca:25:4c:e2:c8:a4:d5:5a:8d:f2:c1:32: f2:eb:77:b8:53:00:27:e7:98:dd:eb:0b:d9:ef:2c: 06:ce:a6:16:ca:0a:79:d2:f4:18:1c:be:a1:8c:f7: 7a:24:cb:25:63:88:e5:38:c3:a1:a4:31:da:0b:c5: 94:76:47:e7:24:62:85:8c:8e:74:dd:48:9b:b1:19: 9f:a7:f2:ed:ba:6b:71:8b:ad:17:37:f3:b6:cf:01: fe:ca:92:6d:a7:7b:9b:44:b9:7e:0b:d8:91:9a:4b: 1d:20:34:bd:73:c1:95:ba:61:3b:41:f0:23:a5:80: 98:9e:f0:30:45:66:81:b3:b4:b4:b8:f0:c8:84:60: 2b:a5:25:3a:f0:15:46:d8:77:c6:b0:2b:7c:d5:d4: 87:f3:a4:e4:bf:08:53:76:e6:50:89:be:a9:c8:ac: 85:73:64:48:97:ae:cf:a2:e0:02:37:68:77:b8:4c: 1f:8e:eb:5f:d1:b0:be:fb:2e:32:b0:55:e7:c6:5c: a4:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:56:F8:E3:EF:E1:13:D8:D2:82:E6:18:E8:5D:16:64:A0:74:EC:57 X509v3 Authority Key Identifier: keyid:4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130382e302f32342d3234203d3e2034383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.25.108.0/24 Signature Algorithm: sha256WithRSAEncryption 80:89:1a:a0:6a:3d:1f:8f:93:03:b3:d6:ef:23:64:fe:24:fb: 59:8a:11:f5:ab:78:5b:50:f9:e7:fe:2a:ef:61:a0:e3:0a:7a: fd:c2:0f:78:a9:66:d0:76:73:74:31:f7:51:26:ac:8e:e4:fe: 59:18:f6:29:4a:6b:4b:20:71:5a:f9:68:74:8c:f4:82:59:0d: d5:9a:fd:19:c3:dd:fd:12:6d:58:0e:8d:4c:4f:63:ac:5e:61: 56:2e:0f:cb:90:c4:c7:11:7a:33:da:ea:59:f0:90:99:9a:e1: ee:fa:fb:2b:19:eb:bf:a8:ae:6a:93:c3:a0:eb:f8:0a:fa:d9: 47:2a:a3:6d:7e:fe:e6:78:ae:3f:40:ac:ed:33:c4:73:ec:04: 40:8d:f1:1b:1a:32:4e:76:fc:d6:6f:5c:b1:d0:9d:40:c1:17: 8b:8b:16:4a:6b:d0:ad:39:3a:5e:1c:f5:d7:a8:4d:11:eb:62: 96:8e:37:06:87:29:07:01:aa:eb:70:ae:30:81:44:cb:90:22: cf:c6:d8:b9:3b:b5:fa:12:6a:43:35:51:81:e4:a8:09:44:9e: 83:a5:65:1d:4c:36:08:31:b7:e3:ed:a4:12:57:68:51:74:87: 1e:1d:e0:c7:7b:f5:8e:c9:96:56:07:ee:c9:90:ea:48:af:b5: 12:25:cc:3c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUA/yjO8bIJ5YhIu4DglIklR2RoxcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3 RkMzODc4NzAeFw0yNDA3MDEwMTAwMDRaFw0yNTA2MzAwMTA1MDRaMDMxMTAvBgNV BAMTKDUxNTZGOEUzRUZFMTEzRDhEMjgyRTYxOEU4NUQxNjY0QTA3NEVDNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoKXeaWkKr/MYkWwc8yu0N2XXU rfDTkNXq27dMG1lJmEa1Pp0A+bTKZ27l05gSk6NGc7ncgeh+o3dZXzSKDcolTOLI pNVajfLBMvLrd7hTACfnmN3rC9nvLAbOphbKCnnS9BgcvqGM93okyyVjiOU4w6Gk MdoLxZR2R+ckYoWMjnTdSJuxGZ+n8u26a3GLrRc387bPAf7Kkm2ne5tEuX4L2JGa Sx0gNL1zwZW6YTtB8COlgJie8DBFZoGztLS48MiEYCulJTrwFUbYd8awK3zV1Ifz pOS/CFN25lCJvqnIrIVzZEiXrs+i4AI3aHe4TB+O61/RsL77LjKwVefGXKQrAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUUVb44+/hE9jSguYY6F0WZKB07FcwHwYDVR0j BBgwFoAUS/HcwLzFsaS2vlJqdf8zOX/Dh4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDI1NDQxOS01M2JlLTRhZDQtYmY3Zi0yOWY4OTEyNTIzZDAvMC80QkYxRENDMEJD QzVCMUE0QjZCRTUyNkE3NUZGMzMzOTdGQzM4Nzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3RkMz ODc4Ny5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMjU0NDE5LTUzYmUtNGFkNC1i ZjdmLTI5Zjg5MTI1MjNkMC8wLzMyMzIzMzJlMzIzNTJlMzEzMDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzODMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADfGWwwDQYJKoZIhvcN AQELBQADggEBAICJGqBqPR+PkwOz1u8jZP4k+1mKEfWreFtQ+ef+Ku9hoOMKev3C D3ipZtB2c3Qx91EmrI7k/lkY9ilKa0sgcVr5aHSM9IJZDdWa/RnD3f0SbVgOjUxP Y6xeYVYuD8uQxMcRejPa6lnwkJma4e76+ysZ67+ormqTw6Dr+Ar62Ucqo21+/uZ4 rj9ArO0zxHPsBECN8RsaMk52/NZvXLHQnUDBF4uLFkpr0K05Ol4c9deoTRHrYpaO NwaHKQcBqutwrjCBRMuQIs/G2Lk7tfoSakM1UYHkqAlEnoOlZR1MNggxt+PtpBJX aFF0hx4d4Md79Y7JllYH7smQ6kivtRIlzDw= -----END CERTIFICATE-----Generated at Sun Nov 24 05:18:50 2024 by rpki-client on console-ams.rpki-client.org