$ rpki-client -vvf repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3132332e3130382e36342e302f32322d3232203d3e20313333373939.roa File: 3132332e3130382e36342e302f32322d3232203d3e20313333373939.roa (raw, json) Hash identifier: 83nhHmHwP+GjlXSyh7L16KZaxHdpQ1noRI9N6mSZt+E= Subject key identifier: 15:91:BD:2E:C2:86:A7:2F:CF:55:32:A1:27:D8:4F:1E:30:EA:7C:BA Certificate issuer: /CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Certificate serial: 27179DB9ED92018A3EA9B6CAAF6629A2CAA2C640 Authority key identifier: 10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3132332e3130382e36342e302f32322d3232203d3e20313333373939.roa Signing time: Sat 04 May 2024 16:09:16 +0000 ROA not before: Sat 04 May 2024 16:04:16 +0000 ROA not after: Sat 03 May 2025 16:09:16 +0000 asID: 133799 IP address blocks: 123.108.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:25:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:17:9d:b9:ed:92:01:8a:3e:a9:b6:ca:af:66:29:a2:ca:a2:c6:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Validity Not Before: May 4 16:04:16 2024 GMT Not After : May 3 16:09:16 2025 GMT Subject: CN=1591BD2EC286A72FCF5532A127D84F1E30EA7CBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0c:43:c4:21:b7:06:e2:96:72:16:bd:2e:0b: 64:a2:0c:80:c3:ee:cf:18:66:6a:9b:c1:70:05:45: fd:38:c6:52:f7:1b:24:db:a9:25:c8:77:2b:9b:90: 99:07:c6:6a:12:92:4d:7f:78:e8:df:e4:55:9c:c5: 1c:7b:a1:20:00:57:39:83:9f:2e:cb:4a:5e:f9:de: f1:85:d1:88:27:50:49:dc:13:1b:8b:a9:8d:84:29: fc:35:a3:7d:b2:f5:c7:ff:4b:3b:85:b3:f1:ea:aa: ce:38:62:06:ec:77:57:be:06:a6:65:98:cb:7b:04: d1:40:ce:6b:33:8c:b0:22:74:f8:4c:0e:d3:d3:55: 3a:db:d8:b5:06:32:8e:dd:d1:b1:00:d7:01:b4:ea: d2:19:7d:8f:0b:4d:17:ac:b6:a8:64:a0:ef:7d:f7: ad:e4:e2:9e:d7:01:4c:68:b7:11:88:45:67:6f:1e: fd:f0:92:81:ba:30:d9:59:e2:e6:9e:b5:5e:93:c7: 15:ed:87:63:23:25:b5:b1:58:f7:77:e6:4e:bc:2e: b5:07:02:d7:53:a4:4d:ec:58:7c:af:d8:28:1d:e1: 03:23:c2:b9:25:06:7d:72:5a:21:29:31:06:83:47: 51:3b:b8:e4:f4:14:2a:91:5c:59:64:11:d4:e1:9e: 33:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:91:BD:2E:C2:86:A7:2F:CF:55:32:A1:27:D8:4F:1E:30:EA:7C:BA X509v3 Authority Key Identifier: keyid:10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3132332e3130382e36342e302f32322d3232203d3e20313333373939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.108.64.0/22 Signature Algorithm: sha256WithRSAEncryption c3:cb:bb:a4:ff:25:c5:20:63:54:3a:8b:53:68:23:9b:a9:38: 4e:a7:8f:45:a9:b6:d5:8f:4d:c4:2f:02:cd:97:9f:48:ec:f1: b7:63:b7:27:c8:bf:bb:a5:98:c1:f0:78:a3:3b:e5:3e:d9:06: be:29:49:be:0c:72:11:f4:6f:32:e9:19:16:d9:44:8f:e3:77: 92:16:2f:11:74:1d:9d:05:50:21:bf:d1:69:37:b5:90:2d:d0: 0f:1d:3a:0f:79:86:ae:3d:79:e1:79:f3:96:c5:8c:69:5e:af: a2:73:2b:4f:68:d4:84:dd:ea:72:24:cd:07:ca:aa:03:6a:af: 79:83:0f:f3:40:49:2e:33:93:71:23:ab:6b:d3:15:d6:37:f4: 52:a4:95:83:ed:48:c9:01:f3:ff:9c:65:63:20:0a:38:79:22: 53:7a:98:78:c5:df:2e:8e:63:11:6c:bb:b6:76:91:16:5d:e2: 37:fd:5b:a9:6e:a5:3d:89:b5:97:a2:41:eb:5d:0f:6e:b3:3b: 51:fb:ae:a6:11:fb:50:b7:4b:60:1e:9c:c0:bf:28:45:d9:d0: 8f:03:7f:0d:7f:fb:82:86:e6:87:dd:04:f4:fb:1b:86:f5:ce: 65:17:4e:82:38:8d:7d:20:98:17:f8:94:bd:0a:1c:16:7b:a8: 63:00:91:5b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJxedue2SAYo+qbbKr2YposqixkAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZD MTIwMjg1MzAeFw0yNDA1MDQxNjA0MTZaFw0yNTA1MDMxNjA5MTZaMDMxMTAvBgNV BAMTKDE1OTFCRDJFQzI4NkE3MkZDRjU1MzJBMTI3RDg0RjFFMzBFQTdDQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCDEPEIbcG4pZyFr0uC2SiDIDD 7s8YZmqbwXAFRf04xlL3GyTbqSXIdyubkJkHxmoSkk1/eOjf5FWcxRx7oSAAVzmD ny7LSl753vGF0YgnUEncExuLqY2EKfw1o32y9cf/SzuFs/Hqqs44Ygbsd1e+BqZl mMt7BNFAzmszjLAidPhMDtPTVTrb2LUGMo7d0bEA1wG06tIZfY8LTRestqhkoO99 963k4p7XAUxotxGIRWdvHv3wkoG6MNlZ4uaetV6TxxXth2MjJbWxWPd35k68LrUH AtdTpE3sWHyv2Cgd4QMjwrklBn1yWiEpMQaDR1E7uOT0FCqRXFlkEdThnjOtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFZG9LsKGpy/PVTKhJ9hPHjDqfLowHwYDVR0j BBgwFoAUEIJhsrWh88yCjvKlMu2U38EgKFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjYzZjc3MS1hOTVmLTRiNTMtODdiYy04YmZmNTA0ZGExZjQvMC8xMDgyNjFCMkI1 QTFGM0NDODI4RUYyQTUzMkVEOTRERkMxMjAyODUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZDMTIw Mjg1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NiNjNmNzcxLWE5NWYtNGI1My04 N2JjLThiZmY1MDRkYTFmNC8wLzMxMzIzMzJlMzEzMDM4MmUzNjM0MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzEzMzMzMzczOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCe2xAMA0GCSqG SIb3DQEBCwUAA4IBAQDDy7uk/yXFIGNUOotTaCObqThOp49FqbbVj03ELwLNl59I 7PG3Y7cnyL+7pZjB8HijO+U+2Qa+KUm+DHIR9G8y6RkW2USP43eSFi8RdB2dBVAh v9FpN7WQLdAPHToPeYauPXnhefOWxYxpXq+icytPaNSE3epyJM0HyqoDaq95gw/z QEkuM5NxI6tr0xXWN/RSpJWD7UjJAfP/nGVjIAo4eSJTeph4xd8ujmMRbLu2dpEW XeI3/VupbqU9ibWXokHrXQ9usztR+66mEftQt0tgHpzAvyhF2dCPA38Nf/uChuaH 3QT0+xuG9c5lF06COI19IJgX+JS9ChwWe6hjAJFb -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:37 2024 by rpki-client on console-ams.rpki-client.org