$ rpki-client -vvf repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3132322e3134342e342e302f32322d3234203d3e203338333230.roa File: 3132322e3134342e342e302f32322d3234203d3e203338333230.roa (raw, json) Hash identifier: yOFSHNJ7/tBSXur8DRCWTGrdUQ9S5IWN+tn279DD4tU= Subject key identifier: 33:07:D3:0A:68:E2:05:B8:00:98:F0:6B:70:38:F9:B3:84:03:A6:2C Certificate issuer: /CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Certificate serial: 6B6645F5F152F79C5F6E2E0D5A3000C58638F321 Authority key identifier: C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3132322e3134342e342e302f32322d3234203d3e203338333230.roa Signing time: Sun 03 Nov 2024 07:00:00 +0000 ROA not before: Sun 03 Nov 2024 06:55:00 +0000 ROA not after: Sun 02 Nov 2025 07:00:00 +0000 asID: 38320 IP address blocks: 122.144.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:66:45:f5:f1:52:f7:9c:5f:6e:2e:0d:5a:30:00:c5:86:38:f3:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Validity Not Before: Nov 3 06:55:00 2024 GMT Not After : Nov 2 07:00:00 2025 GMT Subject: CN=3307D30A68E205B80098F06B7038F9B38403A62C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:db:8a:bf:00:cf:1d:43:e3:6b:09:00:2f:1d: 36:59:8b:e8:ff:30:37:50:55:74:a1:1e:a7:70:30: 0c:45:29:96:c8:f1:8c:34:46:61:62:53:56:46:e3: 9d:57:aa:a4:7a:72:e6:36:7f:ca:36:39:c7:75:bd: 11:84:d9:f3:94:f3:07:a6:3c:a8:ff:a5:57:78:1f: 93:54:3f:2c:31:62:ab:a3:e1:ca:c7:3c:2b:bb:b3: b1:61:76:ca:81:0b:67:65:3b:33:d3:86:d8:fc:ad: 76:cd:cf:f1:24:02:2f:ad:c8:84:28:26:44:35:03: 92:94:aa:3e:c6:a6:17:80:51:d5:c4:83:06:9d:01: 8f:00:34:be:8a:5d:d1:a2:7d:2e:6a:dd:a2:86:4d: 9b:f9:f4:a9:33:5a:1b:1b:fb:5e:3e:e3:95:63:78: 43:48:b2:25:17:42:fa:53:1b:9c:7e:43:19:26:7c: 84:66:64:f0:49:bb:a4:88:44:74:4f:39:71:21:8a: ad:05:70:73:f1:91:ee:15:ce:c6:35:5d:80:20:45: 25:62:24:0e:97:1b:1e:5f:97:4a:19:4f:ef:84:9d: 02:cc:a0:09:53:d9:41:a1:9f:e1:bf:09:26:e1:9b: ac:53:76:81:b8:57:bf:0c:2a:11:07:5f:62:86:27: e6:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:07:D3:0A:68:E2:05:B8:00:98:F0:6B:70:38:F9:B3:84:03:A6:2C X509v3 Authority Key Identifier: keyid:C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3132322e3134342e342e302f32322d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.144.4.0/22 Signature Algorithm: sha256WithRSAEncryption c1:08:ed:cc:07:fe:16:e3:92:de:3d:a3:62:c6:4a:ec:08:fd: 0c:24:77:fd:06:99:7e:c4:45:87:ae:6e:34:2d:f6:85:8e:1f: fc:c8:2b:bb:b1:21:d0:f5:dd:f8:3d:52:85:23:b6:e3:f5:b5: 71:a4:a7:95:4c:c5:86:50:5e:ff:06:a9:da:29:4b:1e:f0:d7: 5b:b8:18:b7:3a:2c:32:7d:7b:0c:f3:05:25:2d:84:77:73:17: 87:1e:d2:0f:32:cc:cd:ea:2b:c8:9e:77:55:d1:34:a8:a4:c7: 68:b5:1f:3c:0c:11:8c:a7:93:11:53:e0:c5:df:9c:b7:5c:09: cd:a8:63:7c:41:5c:de:3f:8e:15:bd:ce:c6:74:18:51:f1:74: 66:a2:e0:71:83:29:32:98:c9:66:80:e9:0b:25:10:d4:0b:9e: 99:0b:d3:b6:2d:6f:dd:7e:ca:69:2c:34:7d:51:23:90:0f:db: 8c:16:4b:d8:59:f2:b5:ea:27:f3:26:c3:99:3c:ce:e8:51:55: 13:5e:1c:55:f9:e9:a7:c3:cb:3e:45:3b:20:04:ba:b0:cf:ef: 3f:d0:b9:cf:db:b0:a2:0e:95:94:c5:ba:eb:b7:18:d1:98:f5: 44:3d:9d:f3:ce:35:6f:d4:c9:ca:2f:ad:ca:68:18:59:db:5b: ae:2c:c7:f2 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUa2ZF9fFS95xfbi4NWjAAxYY48yEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMz MUY4MDJFMTAeFw0yNDExMDMwNjU1MDBaFw0yNTExMDIwNzAwMDBaMDMxMTAvBgNV BAMTKDMzMDdEMzBBNjhFMjA1QjgwMDk4RjA2QjcwMzhGOUIzODQwM0E2MkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv24q/AM8dQ+NrCQAvHTZZi+j/ MDdQVXShHqdwMAxFKZbI8Yw0RmFiU1ZG451XqqR6cuY2f8o2Ocd1vRGE2fOU8wem PKj/pVd4H5NUPywxYquj4crHPCu7s7FhdsqBC2dlOzPThtj8rXbNz/EkAi+tyIQo JkQ1A5KUqj7GpheAUdXEgwadAY8ANL6KXdGifS5q3aKGTZv59KkzWhsb+14+45Vj eENIsiUXQvpTG5x+QxkmfIRmZPBJu6SIRHRPOXEhiq0FcHPxke4VzsY1XYAgRSVi JA6XGx5fl0oZT++EnQLMoAlT2UGhn+G/CSbhm6xTdoG4V78MKhEHX2KGJ+a/AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUMwfTCmjiBbgAmPBrcDj5s4QDpiwwHwYDVR0j BBgwFoAUyN1dhPr6v36vYrOw9ORaIzH4AuEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTQ1Yjg2ZS0wODk1LTQ3NTktYTc3Yy1hMDZjZTE0ZTI0M2MvMC9DOERENUQ4NEZB RkFCRjdFQUY2MkIzQjBGNEU0NUEyMzMxRjgwMkUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMzMUY4 MDJFMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E5NDViODZlLTA4OTUtNDc1OS1h NzdjLWEwNmNlMTRlMjQzYy8wLzMxMzIzMjJlMzEzNDM0MmUzNDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMzMzgzMzMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ6kAQwDQYJKoZIhvcN AQELBQADggEBAMEI7cwH/hbjkt49o2LGSuwI/Qwkd/0GmX7ERYeubjQt9oWOH/zI K7uxIdD13fg9UoUjtuP1tXGkp5VMxYZQXv8GqdopSx7w11u4GLc6LDJ9ewzzBSUt hHdzF4ce0g8yzM3qK8ied1XRNKikx2i1HzwMEYynkxFT4MXfnLdcCc2oY3xBXN4/ jhW9zsZ0GFHxdGai4HGDKTKYyWaA6QslENQLnpkL07Ytb91+ymksNH1RI5AP24wW S9hZ8rXqJ/Mmw5k8zuhRVRNeHFX56afDyz5FOyAEurDP7z/Quc/bsKIOlZTFuuu3 GNGY9UQ9nfPONW/UycovrcpoGFnbW64sx/I= -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:58 2024 by rpki-client on console-ams.rpki-client.org