$ rpki-client -vvf repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e39362e302f32312d3234203d3e2039333431.roa File: 3232332e32352e39362e302f32312d3234203d3e2039333431.roa (raw, json) Hash identifier: WxWgRGgAM+ftAg8EQMmcnBlvtc8N+Cba7x40/kmtm2I= Subject key identifier: 9C:4F:BD:33:F7:2F:84:67:AA:B0:0E:3D:6D:F6:64:44:75:77:31:01 Certificate issuer: /CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Certificate serial: 2378539CCD8635F20E4393993EC1C7374044CCDF Authority key identifier: 4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e39362e302f32312d3234203d3e2039333431.roa Signing time: Tue 11 Jun 2024 12:00:01 +0000 ROA not before: Tue 11 Jun 2024 11:55:01 +0000 ROA not after: Tue 10 Jun 2025 12:00:01 +0000 asID: 9341 IP address blocks: 223.25.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:78:53:9c:cd:86:35:f2:0e:43:93:99:3e:c1:c7:37:40:44:cc:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Validity Not Before: Jun 11 11:55:01 2024 GMT Not After : Jun 10 12:00:01 2025 GMT Subject: CN=9C4FBD33F72F8467AAB00E3D6DF6644475773101 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:36:01:91:d4:bf:2c:3a:65:1a:1c:f8:96:76: 55:e6:92:1a:f3:93:ff:fa:61:eb:de:98:37:7f:4e: f7:da:e6:50:5f:b4:fb:18:a5:09:11:1a:3d:01:ac: 53:b0:6c:75:6f:15:9b:55:57:97:d1:bd:2b:42:84: a4:68:95:60:8f:3d:25:9c:36:e0:3e:22:5a:73:a0: 68:a7:8d:a6:5c:20:c7:50:bc:a2:b2:6f:1c:d8:d5: 13:c1:d3:40:cf:14:88:3c:e3:4d:f5:fd:b4:e8:d2: f9:af:c3:11:fb:8f:fe:33:20:07:7f:8a:ea:94:7c: 7e:3e:13:dc:07:94:49:0f:6a:2e:ef:35:3f:ca:e7: b8:5a:14:c2:9e:c6:39:e5:5c:05:4a:75:20:d5:2f: 5f:20:5a:a0:4a:e1:12:c3:b7:01:19:f4:30:29:c9: b3:e5:88:9d:2a:c9:cc:e2:de:97:cf:98:69:9d:35: 24:d7:98:92:01:06:7b:50:af:40:61:f9:2b:09:3d: 85:40:62:13:b6:5c:bf:97:6b:4c:a3:77:bb:c5:68: 71:50:e6:7b:f1:0f:2d:4e:de:e4:e1:f2:f5:9c:53: 14:ae:3d:9b:90:13:02:50:21:27:2d:1d:5c:70:d9: e9:0a:21:13:45:eb:e4:5d:35:23:70:2d:68:64:44: 13:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:4F:BD:33:F7:2F:84:67:AA:B0:0E:3D:6D:F6:64:44:75:77:31:01 X509v3 Authority Key Identifier: keyid:4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e39362e302f32312d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.25.96.0/21 Signature Algorithm: sha256WithRSAEncryption 12:e9:fa:dc:a9:3d:02:64:66:cb:5a:e1:b5:2c:92:58:40:b7: f8:f2:d2:c5:62:e8:36:fe:f8:4f:51:37:3f:40:c5:ca:94:8d: 9a:35:8e:5b:6f:c9:61:f8:c1:66:ab:3a:26:d3:73:99:1d:84: e4:d2:83:30:da:37:60:7a:0b:e9:42:17:98:0f:df:9a:14:c6: 58:71:31:60:9a:bf:ed:96:83:83:27:be:91:52:ca:8b:42:3e: 37:63:c9:92:3f:0f:a9:8c:bf:60:17:42:bf:9e:12:b6:7e:5f: cf:94:33:52:69:ac:3b:df:e8:ca:2a:6f:e2:61:97:28:54:bb: 85:4e:73:3d:14:c0:57:f8:0d:34:1d:8f:f6:d7:8b:64:87:33: 4b:c5:d3:2a:77:54:b6:75:e3:b8:39:da:d2:ff:90:dd:a0:0e: 31:8d:41:79:72:7b:1d:e8:f7:ce:59:66:a6:dc:36:dc:f3:8d: 91:3a:96:bd:fd:59:9a:22:a3:b6:40:1b:b4:e0:cf:3c:9a:40: 8d:66:e6:a6:46:ab:e3:f7:1f:67:ed:94:e4:35:24:24:27:3f: fd:bf:8b:bd:f5:e8:8b:03:01:ce:24:03:69:9d:9d:dd:08:d9: 85:c8:1e:c4:22:bd:97:eb:c6:de:71:0c:6e:6d:33:90:74:66: 94:21:09:16 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUI3hTnM2GNfIOQ5OZPsHHN0BEzN8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3 RkMzODc4NzAeFw0yNDA2MTExMTU1MDFaFw0yNTA2MTAxMjAwMDFaMDMxMTAvBgNV BAMTKDlDNEZCRDMzRjcyRjg0NjdBQUIwMEUzRDZERjY2NDQ0NzU3NzMxMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8NgGR1L8sOmUaHPiWdlXmkhrz k//6YevemDd/Tvfa5lBftPsYpQkRGj0BrFOwbHVvFZtVV5fRvStChKRolWCPPSWc NuA+IlpzoGinjaZcIMdQvKKybxzY1RPB00DPFIg84031/bTo0vmvwxH7j/4zIAd/ iuqUfH4+E9wHlEkPai7vNT/K57haFMKexjnlXAVKdSDVL18gWqBK4RLDtwEZ9DAp ybPliJ0qyczi3pfPmGmdNSTXmJIBBntQr0Bh+SsJPYVAYhO2XL+Xa0yjd7vFaHFQ 5nvxDy1O3uTh8vWcUxSuPZuQEwJQISctHVxw2ekKIRNF6+RdNSNwLWhkRBObAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUnE+9M/cvhGeqsA49bfZkRHV3MQEwHwYDVR0j BBgwFoAUS/HcwLzFsaS2vlJqdf8zOX/Dh4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDI1NDQxOS01M2JlLTRhZDQtYmY3Zi0yOWY4OTEyNTIzZDAvMC80QkYxRENDMEJD QzVCMUE0QjZCRTUyNkE3NUZGMzMzOTdGQzM4Nzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3RkMz ODc4Ny5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGQyNTQ0MTktNTNiZS00YWQ0LWJm N2YtMjlmODkxMjUyM2QwLzAvMzIzMjMzMmUzMjM1MmUzOTM2MmUzMDJmMzIzMTJk MzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPfGWAwDQYJKoZIhvcNAQEL BQADggEBABLp+typPQJkZsta4bUsklhAt/jy0sVi6Db++E9RNz9AxcqUjZo1jltv yWH4wWarOibTc5kdhOTSgzDaN2B6C+lCF5gP35oUxlhxMWCav+2Wg4MnvpFSyotC PjdjyZI/D6mMv2AXQr+eErZ+X8+UM1JprDvf6Moqb+JhlyhUu4VOcz0UwFf4DTQd j/bXi2SHM0vF0yp3VLZ147g52tL/kN2gDjGNQXlyex3o985ZZqbcNtzzjZE6lr39 WZoio7ZAG7TgzzyaQI1m5qZGq+P3H2ftlOQ1JCQnP/2/i7316IsDAc4kA2mdnd0I 2YXIHsQivZfrxt5xDG5tM5B0ZpQhCRY= -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org