$ rpki-client -vvf repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3132342e3135382e3134342e302f32302d3234203d3e203137393935.roa File: 3132342e3135382e3134342e302f32302d3234203d3e203137393935.roa (raw, json) Hash identifier: Maowy9ZefjHDMfvujJn0ro1tBo40XSiT/nD665jrUOE= Subject key identifier: 7B:3C:F2:33:A6:49:09:5A:A1:C0:C0:5E:F5:03:13:64:C7:50:4D:18 Certificate issuer: /CN=3EDBB7844714C545CED724120ED0E5A34EFB45EE Certificate serial: 1E4F3814D121383D5C78DB743C96FEC61B52CDCE Authority key identifier: 3E:DB:B7:84:47:14:C5:45:CE:D7:24:12:0E:D0:E5:A3:4E:FB:45:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3EDBB7844714C545CED724120ED0E5A34EFB45EE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3132342e3135382e3134342e302f32302d3234203d3e203137393935.roa Signing time: Mon 01 Jul 2024 01:05:30 +0000 ROA not before: Mon 01 Jul 2024 01:00:30 +0000 ROA not after: Mon 30 Jun 2025 01:05:30 +0000 asID: 17995 IP address blocks: 124.158.144.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3EDBB7844714C545CED724120ED0E5A34EFB45EE.crl rsync://repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3EDBB7844714C545CED724120ED0E5A34EFB45EE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3EDBB7844714C545CED724120ED0E5A34EFB45EE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 01:33:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:4f:38:14:d1:21:38:3d:5c:78:db:74:3c:96:fe:c6:1b:52:cd:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3EDBB7844714C545CED724120ED0E5A34EFB45EE Validity Not Before: Jul 1 01:00:30 2024 GMT Not After : Jun 30 01:05:30 2025 GMT Subject: CN=7B3CF233A649095AA1C0C05EF5031364C7504D18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:97:18:71:9a:28:74:0e:61:57:1a:b9:ff:fe: 4b:1b:59:28:39:b6:5f:9a:37:0b:e5:40:5d:3a:1e: 2e:35:1e:c4:bd:cc:d2:43:08:ed:cd:f5:5d:dd:9e: 34:61:e7:18:bd:cd:b9:ad:54:dd:cf:a7:c8:31:36: 7a:1d:2b:22:bb:70:a7:93:03:2c:fb:ce:d1:26:3d: d6:29:6e:ae:88:40:1b:a8:98:97:8c:f2:8d:60:9a: 1e:69:c6:79:2a:bd:5c:b5:89:c8:ff:d7:ea:31:5d: a3:42:1a:2e:2f:fe:fb:cb:00:02:6c:88:c7:52:26: d8:01:9c:78:86:05:85:39:91:61:7d:e7:0d:75:cc: 8b:2d:14:b2:0d:cf:a3:19:8a:21:df:62:4e:19:d8: 8f:71:ee:be:cb:41:12:97:65:b7:a7:8a:2f:db:45: 8d:0a:82:85:02:4f:8c:42:3b:67:ea:64:88:33:ac: 74:ec:23:2a:03:b2:98:02:cb:72:84:98:a8:85:b1: 3d:aa:81:72:97:2b:7d:a1:0d:f0:bb:82:ca:ec:5f: e9:0d:c2:60:e4:66:82:7a:9c:7c:b6:49:a7:58:8d: 9f:29:dd:46:e3:13:a8:b9:97:e5:bd:12:05:2e:a5: e2:be:6d:44:10:6e:4b:49:84:2f:fe:02:32:cf:43: b4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:3C:F2:33:A6:49:09:5A:A1:C0:C0:5E:F5:03:13:64:C7:50:4D:18 X509v3 Authority Key Identifier: keyid:3E:DB:B7:84:47:14:C5:45:CE:D7:24:12:0E:D0:E5:A3:4E:FB:45:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3EDBB7844714C545CED724120ED0E5A34EFB45EE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3EDBB7844714C545CED724120ED0E5A34EFB45EE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3132342e3135382e3134342e302f32302d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.158.144.0/20 Signature Algorithm: sha256WithRSAEncryption 99:a5:81:10:f5:cf:e8:71:d3:15:77:b8:0c:05:25:3d:52:a6: 9f:22:63:50:91:d4:16:61:c7:a4:7b:9d:3f:07:f1:19:14:b4: a6:69:4c:aa:7e:49:ae:5a:43:88:b8:1b:fe:ea:2d:ab:8a:04: 5f:5e:cc:26:b9:18:ba:b7:67:2a:7c:cb:a1:a5:ac:3e:7c:e2: 7b:2a:f1:c2:fa:4c:26:da:fb:e9:56:50:a2:67:8b:af:2c:a8: d7:20:7e:6b:32:1f:d5:4c:9b:71:d3:11:7e:00:78:cc:ed:b5: b6:f4:9d:f8:55:22:da:6f:97:20:3c:30:e6:be:db:93:2e:c5: dd:f5:5d:e8:68:7f:46:e7:cb:81:23:bd:11:4b:93:4e:06:35: 42:5d:ea:df:9d:c4:b6:27:2d:09:2f:56:00:99:c2:a6:ef:9b: 80:fb:3b:2b:ae:f4:1a:c1:6e:99:c6:24:43:98:19:0f:49:36: 5c:b4:aa:01:d2:f7:1c:d3:41:6a:16:47:a0:73:8b:2d:0b:96: b7:a4:54:d1:73:7e:15:2e:14:71:05:bc:9d:56:ba:fd:0f:73: c3:45:68:ec:58:29:c8:ee:88:c1:ec:d1:87:78:96:67:49:af: e8:34:ed:09:7d:16:51:58:5b:35:67:22:85:6a:e8:7b:93:07: 66:96:cf:80 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHk84FNEhOD1ceNt0PJb+xhtSzc4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0VEQkI3ODQ0NzE0QzU0NUNFRDcyNDEyMEVEMEU1QTM0 RUZCNDVFRTAeFw0yNDA3MDEwMTAwMzBaFw0yNTA2MzAwMTA1MzBaMDMxMTAvBgNV BAMTKDdCM0NGMjMzQTY0OTA5NUFBMUMwQzA1RUY1MDMxMzY0Qzc1MDREMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCulxhxmih0DmFXGrn//ksbWSg5 tl+aNwvlQF06Hi41HsS9zNJDCO3N9V3dnjRh5xi9zbmtVN3Pp8gxNnodKyK7cKeT Ayz7ztEmPdYpbq6IQBuomJeM8o1gmh5pxnkqvVy1icj/1+oxXaNCGi4v/vvLAAJs iMdSJtgBnHiGBYU5kWF95w11zIstFLINz6MZiiHfYk4Z2I9x7r7LQRKXZbenii/b RY0KgoUCT4xCO2fqZIgzrHTsIyoDspgCy3KEmKiFsT2qgXKXK32hDfC7gsrsX+kN wmDkZoJ6nHy2SadYjZ8p3UbjE6i5l+W9EgUupeK+bUQQbktJhC/+AjLPQ7RzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUezzyM6ZJCVqhwMBe9QMTZMdQTRgwHwYDVR0j BBgwFoAUPtu3hEcUxUXO1yQSDtDlo077Re4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZWQ5NTVjOC1lNmQzLTQ5YzItYWJkOC1lMGY5MmMwODEyNDcvMC8zRURCQjc4NDQ3 MTRDNTQ1Q0VENzI0MTIwRUQwRTVBMzRFRkI0NUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0VEQkI3ODQ0NzE0QzU0NUNFRDcyNDEyMEVEMEU1QTM0RUZC NDVFRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllZDk1NWM4LWU2ZDMtNDljMi1h YmQ4LWUwZjkyYzA4MTI0Ny8wLzMxMzIzNDJlMzEzNTM4MmUzMTM0MzQyZTMwMmYz MjMwMmQzMjM0MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEfJ6QMA0GCSqG SIb3DQEBCwUAA4IBAQCZpYEQ9c/ocdMVd7gMBSU9UqafImNQkdQWYceke50/B/EZ FLSmaUyqfkmuWkOIuBv+6i2rigRfXswmuRi6t2cqfMuhpaw+fOJ7KvHC+kwm2vvp VlCiZ4uvLKjXIH5rMh/VTJtx0xF+AHjM7bW29J34VSLab5cgPDDmvtuTLsXd9V3o aH9G58uBI70RS5NOBjVCXerfncS2Jy0JL1YAmcKm75uA+zsrrvQawW6ZxiRDmBkP STZctKoB0vcc00FqFkegc4stC5a3pFTRc34VLhRxBbydVrr9D3PDRWjsWCnI7ojB 7NGHeJZnSa/oNO0JfRZRWFs1ZyKFauh7kwdmls+A -----END CERTIFICATE-----Generated at Thu Nov 21 00:19:21 2024 by rpki-client on console-fra.rpki-client.org