$ rpki-client -vvf repo-rpki.idnic.net/repo/caecb002-24a4-4955-a333-002fdb74553f/0/3132332e3235332e3235322e302f32322d3234203d3e20313339333937.roa File: 3132332e3235332e3235322e302f32322d3234203d3e20313339333937.roa (raw, json) Hash identifier: XEhQYS4X7zjzLZqlSDh+Gdi/QWiIRxG8BJAhwTn/VM4= Subject key identifier: 00:12:F3:C6:BA:6C:68:A1:03:C9:90:FC:36:2F:D6:D9:6B:59:FF:10 Certificate issuer: /CN=2E83B1793FA2E18A4137A66A092163F5DABD45F0 Certificate serial: 31DA4DA2B2226C56547CCDBC8EE8FE2A1F5FD24B Authority key identifier: 2E:83:B1:79:3F:A2:E1:8A:41:37:A6:6A:09:21:63:F5:DA:BD:45:F0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E83B1793FA2E18A4137A66A092163F5DABD45F0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/caecb002-24a4-4955-a333-002fdb74553f/0/3132332e3235332e3235322e302f32322d3234203d3e20313339333937.roa Signing time: Tue 02 Apr 2024 04:00:00 +0000 ROA not before: Tue 02 Apr 2024 03:55:00 +0000 ROA not after: Tue 01 Apr 2025 04:00:00 +0000 asID: 139397 IP address blocks: 123.253.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/caecb002-24a4-4955-a333-002fdb74553f/0/2E83B1793FA2E18A4137A66A092163F5DABD45F0.crl rsync://repo-rpki.idnic.net/repo/caecb002-24a4-4955-a333-002fdb74553f/0/2E83B1793FA2E18A4137A66A092163F5DABD45F0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E83B1793FA2E18A4137A66A092163F5DABD45F0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:11:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:da:4d:a2:b2:22:6c:56:54:7c:cd:bc:8e:e8:fe:2a:1f:5f:d2:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E83B1793FA2E18A4137A66A092163F5DABD45F0 Validity Not Before: Apr 2 03:55:00 2024 GMT Not After : Apr 1 04:00:00 2025 GMT Subject: CN=0012F3C6BA6C68A103C990FC362FD6D96B59FF10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ac:cf:16:f8:72:94:8e:a9:61:8a:7b:49:70: 51:d7:2c:bc:34:73:7f:2c:2e:a1:fd:06:c7:ca:bf: 38:b9:3c:e4:57:ec:58:2d:4a:13:e0:56:ab:92:cf: cd:9a:c4:ec:80:fd:82:ac:85:ea:7e:63:80:65:c3: 69:43:36:d1:7c:bf:9f:6b:e3:94:6d:33:8d:90:1e: 28:43:79:d7:60:9f:75:19:ec:f4:93:fe:6a:16:7d: b0:5f:a4:86:cc:89:22:42:e6:94:15:4d:4f:cf:8d: b3:bc:ad:91:ac:68:a4:c2:0e:ab:a9:a2:59:d6:a8: 4c:e9:b8:3c:d5:bf:67:24:c2:4e:2c:29:8f:2f:ab: 87:d9:12:64:c0:6f:f6:4e:14:d5:dd:f4:1e:df:30: 51:56:ac:e4:03:17:b8:95:7d:16:9c:45:88:f5:32: 5f:35:88:4c:76:41:0f:2f:5b:cd:c7:04:1c:fe:84: 9a:7d:70:c8:2a:88:94:4d:2c:e9:03:64:c3:34:20: a9:a7:1f:20:61:b7:36:c2:ba:82:bd:d6:2b:66:b3: 1c:08:78:88:32:ed:5f:f7:23:16:53:d1:ee:0f:79: 11:0a:42:f4:d8:38:f5:77:d1:d0:cb:64:d7:f0:96: cf:5b:06:e5:15:f7:ed:a1:21:fd:d3:5a:ec:0c:2f: e0:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:12:F3:C6:BA:6C:68:A1:03:C9:90:FC:36:2F:D6:D9:6B:59:FF:10 X509v3 Authority Key Identifier: keyid:2E:83:B1:79:3F:A2:E1:8A:41:37:A6:6A:09:21:63:F5:DA:BD:45:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/caecb002-24a4-4955-a333-002fdb74553f/0/2E83B1793FA2E18A4137A66A092163F5DABD45F0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E83B1793FA2E18A4137A66A092163F5DABD45F0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/caecb002-24a4-4955-a333-002fdb74553f/0/3132332e3235332e3235322e302f32322d3234203d3e20313339333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.253.252.0/22 Signature Algorithm: sha256WithRSAEncryption 1f:93:82:bd:fc:9f:76:65:49:ed:9d:fc:8d:ed:be:0f:c2:b4: 5e:25:2e:ce:61:96:8b:59:e3:4e:17:00:68:b9:1f:dc:bb:4f: 30:b0:5b:fd:e3:3a:4a:88:ed:9d:da:ba:1d:3b:13:13:e2:1f: 53:46:f9:aa:6e:21:c4:84:3f:da:e2:99:3e:cc:f2:69:1f:d8: f9:dc:2b:81:e5:14:56:47:1b:ed:ee:3d:e0:9f:01:31:5b:b4: e1:ab:f6:d8:60:d7:b4:b3:2d:21:b2:47:c2:41:12:2e:73:06: 1b:ad:53:d0:9b:e9:88:81:b0:c0:ac:03:bf:e4:da:f2:db:02: 10:bd:e0:6d:ed:99:71:fd:3a:55:59:c6:55:5f:4a:5e:dd:b7: 2b:84:bd:84:a9:85:bd:dd:24:6f:e2:7c:ab:d5:42:d7:f6:0a: 42:75:2f:50:ec:eb:20:68:97:57:3d:c7:cc:ce:a1:e4:81:b9: d4:3a:2a:cf:a6:13:cc:1f:da:f9:ab:73:40:12:a6:4e:58:e4: 4e:a3:6b:e8:26:dd:2c:12:20:7a:21:f7:16:29:7e:de:8c:7e: 3d:a4:54:8d:7c:63:e9:0f:8a:f5:ae:bc:74:6c:eb:0f:e9:cd: 80:d3:0c:c1:1d:e9:46:19:5c:44:67:82:bb:c8:55:8a:ad:56: 9f:96:66:ba -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMdpNorIibFZUfM28juj+Kh9f0kswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkU4M0IxNzkzRkEyRTE4QTQxMzdBNjZBMDkyMTYzRjVE QUJENDVGMDAeFw0yNDA0MDIwMzU1MDBaFw0yNTA0MDEwNDAwMDBaMDMxMTAvBgNV BAMTKDAwMTJGM0M2QkE2QzY4QTEwM0M5OTBGQzM2MkZENkQ5NkI1OUZGMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDrM8W+HKUjqlhintJcFHXLLw0 c38sLqH9BsfKvzi5PORX7FgtShPgVquSz82axOyA/YKshep+Y4Blw2lDNtF8v59r 45RtM42QHihDeddgn3UZ7PST/moWfbBfpIbMiSJC5pQVTU/PjbO8rZGsaKTCDqup olnWqEzpuDzVv2ckwk4sKY8vq4fZEmTAb/ZOFNXd9B7fMFFWrOQDF7iVfRacRYj1 Ml81iEx2QQ8vW83HBBz+hJp9cMgqiJRNLOkDZMM0IKmnHyBhtzbCuoK91itmsxwI eIgy7V/3IxZT0e4PeREKQvTYOPV30dDLZNfwls9bBuUV9+2hIf3TWuwML+CRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUABLzxrpsaKEDyZD8Ni/W2WtZ/xAwHwYDVR0j BBgwFoAULoOxeT+i4YpBN6ZqCSFj9dq9RfAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YWVjYjAwMi0yNGE0LTQ5NTUtYTMzMy0wMDJmZGI3NDU1M2YvMC8yRTgzQjE3OTNG QTJFMThBNDEzN0E2NkEwOTIxNjNGNURBQkQ0NUYwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkU4M0IxNzkzRkEyRTE4QTQxMzdBNjZBMDkyMTYzRjVEQUJE NDVGMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhZWNiMDAyLTI0YTQtNDk1NS1h MzMzLTAwMmZkYjc0NTUzZi8wLzMxMzIzMzJlMzIzNTMzMmUzMjM1MzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM5Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7/fwwDQYJ KoZIhvcNAQELBQADggEBAB+Tgr38n3ZlSe2d/I3tvg/CtF4lLs5hlotZ404XAGi5 H9y7TzCwW/3jOkqI7Z3auh07ExPiH1NG+apuIcSEP9rimT7M8mkf2PncK4HlFFZH G+3uPeCfATFbtOGr9thg17SzLSGyR8JBEi5zBhutU9Cb6YiBsMCsA7/k2vLbAhC9 4G3tmXH9OlVZxlVfSl7dtyuEvYSphb3dJG/ifKvVQtf2CkJ1L1Ds6yBol1c9x8zO oeSBudQ6Ks+mE8wf2vmrc0ASpk5Y5E6ja+gm3SwSIHoh9xYpft6Mfj2kVI18Y+kP ivWuvHRs6w/pzYDTDMEd6UYZXERngrvIVYqtVp+WZro= -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:56 2024 by rpki-client on console-ams.rpki-client.org