$ rpki-client -vvf repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130392e302f32342d3234203d3e20313439373138.roa File: 3232332e32352e3130392e302f32342d3234203d3e20313439373138.roa (raw, json) Hash identifier: lQOtdNJdvntWhCn4oNxG5S3GH9Dk0Cvh7IK+W2/tjTY= Subject key identifier: 7B:D2:22:D7:BE:DA:23:6C:07:50:27:6C:95:B2:A1:A5:56:46:64:CD Certificate issuer: /CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Certificate serial: 0B01DB0DCCF524A565DE92E52011F6CBDB86461E Authority key identifier: 4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130392e302f32342d3234203d3e20313439373138.roa Signing time: Sun 09 Jun 2024 12:00:01 +0000 ROA not before: Sun 09 Jun 2024 11:55:01 +0000 ROA not after: Sun 08 Jun 2025 12:00:01 +0000 asID: 149718 IP address blocks: 223.25.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:01:db:0d:cc:f5:24:a5:65:de:92:e5:20:11:f6:cb:db:86:46:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Validity Not Before: Jun 9 11:55:01 2024 GMT Not After : Jun 8 12:00:01 2025 GMT Subject: CN=7BD222D7BEDA236C0750276C95B2A1A5564664CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:45:d3:8b:6f:2e:c2:e2:3a:f2:ed:da:20:8c: d5:80:f1:7d:57:09:a3:b7:f2:fa:6a:25:aa:58:64: 09:ac:62:37:b3:70:71:64:83:8f:35:61:5d:ab:4e: 0f:dc:65:e7:55:a1:10:de:f6:4f:39:2e:06:83:f0: bf:33:8b:32:11:4f:f1:68:24:ea:55:51:a5:ab:69: 25:3f:c2:4d:72:5d:f1:f0:c1:83:8f:3f:cf:60:27: 11:73:13:e2:71:d1:c6:4c:89:45:a0:6b:f6:96:e2: e8:b5:37:56:81:f1:92:58:e0:d9:3b:c6:b1:0b:dc: de:ec:ff:4a:f5:92:06:5b:53:d6:3a:7a:6e:64:96: c0:fc:fd:e9:af:10:e5:1b:b2:96:4d:51:fa:15:8c: a8:92:1a:dd:b5:e5:4d:5c:22:81:ec:d0:6c:2a:c4: 76:2f:bd:ca:e8:7f:71:63:61:0d:4f:07:3d:77:d9: 43:50:c4:8b:95:05:2b:98:7c:0f:91:56:ea:b1:a9: 00:a3:fd:c6:83:4f:2b:38:fd:1a:66:c2:09:42:0f: 5f:6a:a7:21:99:d0:ca:14:c4:cd:60:e8:c0:de:8f: c0:24:43:90:d4:4a:63:8b:bb:77:68:f6:f0:89:20: 46:12:ab:1c:f9:16:51:42:8d:cd:94:b9:8e:3c:19: 43:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:D2:22:D7:BE:DA:23:6C:07:50:27:6C:95:B2:A1:A5:56:46:64:CD X509v3 Authority Key Identifier: keyid:4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130392e302f32342d3234203d3e20313439373138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.25.109.0/24 Signature Algorithm: sha256WithRSAEncryption 62:ec:e2:e0:99:45:b5:45:fe:b6:17:c5:33:a4:8a:2a:bf:54: f3:69:c1:0d:26:3f:6e:74:29:44:03:02:ee:59:65:5f:be:4f: a6:dc:7f:59:2e:c1:14:e1:62:38:8c:79:c7:9e:a0:23:ab:b7: be:a7:56:91:b0:59:e4:73:95:2e:59:b6:7c:94:ef:50:55:04: 9d:c6:49:8f:62:2b:7a:1c:f6:60:f1:68:e0:5a:30:71:e4:8a: 2c:cd:8a:bc:3a:d7:98:0b:89:ff:e8:69:06:37:ee:66:57:8b: fb:30:b4:99:02:2a:7f:43:31:8d:fe:aa:9f:89:b2:b5:02:62: 05:ae:54:20:91:c7:5c:d5:e3:8f:da:fb:47:bb:f7:ce:cc:0e: 9f:d3:40:be:2b:06:d0:8a:cd:6b:f4:1b:98:dc:58:69:ca:37: 1a:4b:d7:04:02:40:89:31:4f:4a:cd:8f:66:fc:98:45:79:69: 14:69:b4:30:64:21:bc:97:ae:ba:6c:66:3a:0f:b2:f4:6e:ca: 28:fb:4b:7d:ba:07:e5:23:ca:3d:99:80:6b:ff:f5:d5:e5:3f: 89:56:2c:70:64:7e:a6:59:5d:56:c7:af:b7:97:d7:a1:02:6e: 0a:05:a8:70:9f:0b:d7:34:49:ed:0f:7e:de:e4:fb:e2:c8:39: 48:4b:cd:b7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCwHbDcz1JKVl3pLlIBH2y9uGRh4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3 RkMzODc4NzAeFw0yNDA2MDkxMTU1MDFaFw0yNTA2MDgxMjAwMDFaMDMxMTAvBgNV BAMTKDdCRDIyMkQ3QkVEQTIzNkMwNzUwMjc2Qzk1QjJBMUE1NTY0NjY0Q0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTRdOLby7C4jry7dogjNWA8X1X CaO38vpqJapYZAmsYjezcHFkg481YV2rTg/cZedVoRDe9k85LgaD8L8zizIRT/Fo JOpVUaWraSU/wk1yXfHwwYOPP89gJxFzE+Jx0cZMiUWga/aW4ui1N1aB8ZJY4Nk7 xrEL3N7s/0r1kgZbU9Y6em5klsD8/emvEOUbspZNUfoVjKiSGt215U1cIoHs0Gwq xHYvvcrof3FjYQ1PBz132UNQxIuVBSuYfA+RVuqxqQCj/caDTys4/RpmwglCD19q pyGZ0MoUxM1g6MDej8AkQ5DUSmOLu3do9vCJIEYSqxz5FlFCjc2UuY48GUNpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUe9Ii177aI2wHUCdslbKhpVZGZM0wHwYDVR0j BBgwFoAUS/HcwLzFsaS2vlJqdf8zOX/Dh4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDI1NDQxOS01M2JlLTRhZDQtYmY3Zi0yOWY4OTEyNTIzZDAvMC80QkYxRENDMEJD QzVCMUE0QjZCRTUyNkE3NUZGMzMzOTdGQzM4Nzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3RkMz ODc4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMjU0NDE5LTUzYmUtNGFkNC1i ZjdmLTI5Zjg5MTI1MjNkMC8wLzMyMzIzMzJlMzIzNTJlMzEzMDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA3xltMA0GCSqG SIb3DQEBCwUAA4IBAQBi7OLgmUW1Rf62F8UzpIoqv1TzacENJj9udClEAwLuWWVf vk+m3H9ZLsEU4WI4jHnHnqAjq7e+p1aRsFnkc5UuWbZ8lO9QVQSdxkmPYit6HPZg 8WjgWjBx5IoszYq8OteYC4n/6GkGN+5mV4v7MLSZAip/QzGN/qqfibK1AmIFrlQg kcdc1eOP2vtHu/fOzA6f00C+KwbQis1r9BuY3FhpyjcaS9cEAkCJMU9KzY9m/JhF eWkUabQwZCG8l666bGY6D7L0bsoo+0t9ugflI8o9mYBr//XV5T+JVixwZH6mWV1W x6+3l9ehAm4KBahwnwvXNEntD37e5PviyDlIS823 -----END CERTIFICATE-----Generated at Sun Nov 24 06:43:22 2024 by rpki-client on console-fra.rpki-client.org