$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e32362e302f32342d3234203d3e203138303539.roa File: 3132322e3132382e32362e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: n6WFRT2LfyvXimQgCGNw9F4ibsvUYCCtv6VUkBevzug= Subject key identifier: 32:73:29:B8:FA:DF:EE:A8:1F:80:47:AC:70:F4:4F:7D:6C:D5:BF:77 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 7E23A50D705CCA87C0C0490192EECAB821E1E287 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e32362e302f32342d3234203d3e203138303539.roa Signing time: Wed 23 Oct 2024 11:00:01 +0000 ROA not before: Wed 23 Oct 2024 10:55:01 +0000 ROA not after: Wed 22 Oct 2025 11:00:01 +0000 asID: 18059 IP address blocks: 122.128.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:23:a5:0d:70:5c:ca:87:c0:c0:49:01:92:ee:ca:b8:21:e1:e2:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Oct 23 10:55:01 2024 GMT Not After : Oct 22 11:00:01 2025 GMT Subject: CN=327329B8FADFEEA81F8047AC70F44F7D6CD5BF77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:fb:d3:62:87:87:5d:48:07:55:4b:ed:c5:3a: e5:42:3d:66:4b:01:d0:3d:db:a2:da:2e:ad:d4:e9: 6b:39:f0:92:53:0a:58:a4:0b:7a:c0:9c:3b:4d:f4: 97:a5:cd:cf:f0:3e:ff:15:ad:d6:e9:65:ed:73:6e: 9a:0a:4a:88:01:bb:72:34:91:ff:35:b2:4a:df:c5: 1d:a0:a5:71:71:b6:ca:2e:b0:02:24:f6:d5:72:5f: 2f:25:3f:24:92:0c:50:fd:df:f7:5a:3a:9b:58:85: b2:79:6a:49:9c:37:81:4e:a4:33:dd:25:de:89:62: 90:4e:44:e4:3f:e4:ba:bd:02:cb:e4:bc:a5:d0:8f: c4:98:1a:2e:fe:98:8d:aa:e1:42:4e:ec:5b:9f:19: 70:ec:40:a8:ba:0e:d9:00:32:b3:bd:01:ca:10:b2: 48:9e:9a:03:bd:8b:64:9a:19:ea:00:73:9c:ad:66: ae:bd:fe:aa:2a:ca:55:fb:ad:00:dd:6b:02:d6:8e: ec:d1:0a:24:18:d3:bb:0f:04:9f:4b:ae:f2:bc:25: f6:26:b4:f3:c7:de:e5:6d:a0:b0:a1:b7:e6:12:d1: 82:a8:0c:1a:31:f7:6f:67:96:9d:e8:ef:05:15:85: 03:79:fe:76:ae:5f:12:cf:53:de:66:0a:56:bd:be: 0e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:73:29:B8:FA:DF:EE:A8:1F:80:47:AC:70:F4:4F:7D:6C:D5:BF:77 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e32362e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.128.26.0/24 Signature Algorithm: sha256WithRSAEncryption 17:30:8e:c6:10:5f:fe:a5:c9:19:22:1d:cf:cc:40:c4:11:86: 87:ac:0d:9f:f2:b9:12:38:3b:67:29:45:92:4d:fd:dc:27:24: d6:22:8d:e3:27:dc:b4:a1:2a:b6:ec:84:1c:1f:23:b4:68:6a: 7d:f8:16:16:42:46:c2:e7:2b:a4:94:01:47:59:66:5e:19:91: 3d:2f:80:cd:08:dc:dd:ff:51:a7:8a:a6:67:d3:2c:03:52:a6: 2f:f5:01:a4:d6:f3:0e:5b:56:66:f1:51:bd:fb:20:23:fb:52: 84:23:79:4a:81:3a:b2:a4:ab:8d:2e:cf:7b:48:fa:20:ad:af: 22:1c:96:32:b0:21:0f:5e:4b:19:0d:59:44:00:03:fc:27:40: 2d:f1:fa:33:1e:5b:81:cd:65:50:ce:6b:36:55:c0:5b:d7:3b: 03:b1:1f:7f:48:68:67:59:03:41:39:30:66:4b:1f:8f:dc:ba: 71:60:a7:60:26:68:a8:49:e8:1c:e6:ce:71:e1:78:a9:0e:8f: b7:14:d0:50:09:b1:89:9f:07:6d:8e:a7:79:6a:d7:8f:31:0d: e1:7d:2f:3b:27:46:ce:ea:8e:f8:04:b7:77:c0:92:6e:6c:37: a2:6f:0b:9c:7d:70:66:aa:d3:f3:7f:97:5d:f1:42:44:48:af: 3a:95:84:dc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfiOlDXBcyofAwEkBku7KuCHh4ocwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNDEwMjMxMDU1MDFaFw0yNTEwMjIxMTAwMDFaMDMxMTAvBgNV BAMTKDMyNzMyOUI4RkFERkVFQTgxRjgwNDdBQzcwRjQ0RjdENkNENUJGNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ+9Nih4ddSAdVS+3FOuVCPWZL AdA926LaLq3U6Ws58JJTClikC3rAnDtN9Jelzc/wPv8VrdbpZe1zbpoKSogBu3I0 kf81skrfxR2gpXFxtsousAIk9tVyXy8lPySSDFD93/daOptYhbJ5akmcN4FOpDPd Jd6JYpBOROQ/5Lq9AsvkvKXQj8SYGi7+mI2q4UJO7FufGXDsQKi6DtkAMrO9AcoQ skiemgO9i2SaGeoAc5ytZq69/qoqylX7rQDdawLWjuzRCiQY07sPBJ9LrvK8JfYm tPPH3uVtoLCht+YS0YKoDBox929nlp3o7wUVhQN5/nauXxLPU95mCla9vg6hAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMnMpuPrf7qgfgEescPRPfWzVv3cwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMxMzIzMjJlMzEzMjM4MmUzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHqAGjANBgkqhkiG 9w0BAQsFAAOCAQEAFzCOxhBf/qXJGSIdz8xAxBGGh6wNn/K5Ejg7ZylFkk393Cck 1iKN4yfctKEqtuyEHB8jtGhqffgWFkJGwucrpJQBR1lmXhmRPS+AzQjc3f9Rp4qm Z9MsA1KmL/UBpNbzDltWZvFRvfsgI/tShCN5SoE6sqSrjS7Pe0j6IK2vIhyWMrAh D15LGQ1ZRAAD/CdALfH6Mx5bgc1lUM5rNlXAW9c7A7Eff0hoZ1kDQTkwZksfj9y6 cWCnYCZoqEnoHObOceF4qQ6PtxTQUAmxiZ8HbY6neWrXjzEN4X0vOydGzuqO+AS3 d8CSbmw3om8LnH1wZqrT83+XXfFCREivOpWE3A== -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:52 2024 by rpki-client on console-fra.rpki-client.org