$ rpki-client -vvf repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3132332e3130382e36352e302f32342d3234203d3e20313333373939.roa File: 3132332e3130382e36352e302f32342d3234203d3e20313333373939.roa (raw, json) Hash identifier: 5fow4ijKoI1KVvcf6YC/HJbpKTVGon96DwXzzm6+a+4= Subject key identifier: 8D:F8:0A:E6:B5:84:3D:F1:8E:A5:99:E4:D6:88:DC:39:CF:1F:BB:1D Certificate issuer: /CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Certificate serial: 02060D1F7BCE607CA8F0FB6DC99CC3FC049FAE93 Authority key identifier: 10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3132332e3130382e36352e302f32342d3234203d3e20313333373939.roa Signing time: Sat 04 May 2024 16:14:22 +0000 ROA not before: Sat 04 May 2024 16:09:22 +0000 ROA not after: Sat 03 May 2025 16:14:22 +0000 asID: 133799 IP address blocks: 123.108.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:25:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:06:0d:1f:7b:ce:60:7c:a8:f0:fb:6d:c9:9c:c3:fc:04:9f:ae:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Validity Not Before: May 4 16:09:22 2024 GMT Not After : May 3 16:14:22 2025 GMT Subject: CN=8DF80AE6B5843DF18EA599E4D688DC39CF1FBB1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:7d:c9:d7:01:68:3f:47:79:df:e9:da:c2:77: 38:70:d0:4a:fe:3e:8b:eb:53:7a:3a:1d:5a:7f:de: 5a:e0:54:19:d7:3b:72:ad:25:fc:f6:6d:33:b4:9e: 37:88:5c:7c:cb:68:e0:47:d6:ae:a5:7f:f4:0f:60: 99:4f:75:7d:71:de:c0:63:a9:a5:66:c3:a4:5e:e5: 1c:30:f9:9d:aa:51:18:92:64:c8:7d:3e:e4:29:5b: 00:58:98:00:71:12:69:8b:27:ac:a0:f1:39:b3:38: dd:96:a8:3d:c5:a9:55:c1:f4:d0:ee:fc:84:3c:28: d4:1a:1a:f6:72:00:18:3f:d7:97:41:ba:1d:b9:ff: 51:a9:0c:16:6f:55:4b:af:59:5c:54:66:b1:cc:59: 2a:8b:c2:ae:44:e7:fe:79:20:ce:5f:7b:48:9a:2b: 83:ff:68:af:fc:b0:64:78:80:c6:cc:24:10:00:b3: 5b:c6:b9:b1:3c:33:5e:18:0c:02:7e:87:43:a0:c2: 24:02:47:7d:8a:56:47:29:a8:b5:b2:f2:00:a7:eb: 62:9c:c5:49:f2:8d:07:34:83:6d:f9:31:a1:34:4a: 51:62:0a:8b:1c:27:f7:f2:3b:c4:ab:7d:3f:f3:23: 18:1b:92:85:ec:51:12:5d:4f:a1:ab:f5:b0:e9:ae: 2c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:F8:0A:E6:B5:84:3D:F1:8E:A5:99:E4:D6:88:DC:39:CF:1F:BB:1D X509v3 Authority Key Identifier: keyid:10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3132332e3130382e36352e302f32342d3234203d3e20313333373939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.108.65.0/24 Signature Algorithm: sha256WithRSAEncryption 73:54:f9:1e:67:ed:07:ad:44:6a:a7:cd:8c:7f:79:03:24:66: 82:36:2d:c4:52:43:b4:28:70:20:d5:a4:81:0a:66:9e:27:22: 91:67:29:52:63:2a:d1:c0:50:0e:a4:bf:cf:6b:5f:1f:98:6d: 98:d2:b9:18:96:ae:fa:74:33:62:fa:e9:6e:c9:c9:b0:8c:11: dd:55:4f:f0:8a:09:a9:3a:e3:86:a3:ca:3f:3f:72:a8:3e:1b: ed:d0:78:0e:63:7e:52:75:32:bf:34:cf:3c:1d:23:f1:36:6c: 21:47:f1:89:75:67:53:fd:6b:31:f4:dc:2e:3b:b1:d2:bd:c9: 69:68:f7:b5:b0:da:54:b9:1f:51:32:88:91:9d:dd:67:83:74: 04:43:83:38:68:33:29:66:e0:ca:e4:ab:f9:2a:3a:65:7f:e1: 6d:b2:ac:25:1d:4c:b7:b4:5c:13:3b:14:52:d6:fe:c3:5e:2d: db:7e:09:d6:d3:04:d9:a2:c1:5c:4b:c5:0d:ec:a8:d1:79:b1: f9:d5:9a:db:91:e8:0a:27:6c:a1:14:56:05:91:68:1a:28:2b: 6f:24:ca:78:64:36:24:c0:5b:79:6d:48:ca:db:d3:0f:29:d3: 58:94:bf:0e:ee:90:8e:9a:e6:29:90:09:6f:c1:b9:85:7b:82: cb:a3:2b:e5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAgYNH3vOYHyo8PttyZzD/ASfrpMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZD MTIwMjg1MzAeFw0yNDA1MDQxNjA5MjJaFw0yNTA1MDMxNjE0MjJaMDMxMTAvBgNV BAMTKDhERjgwQUU2QjU4NDNERjE4RUE1OTlFNEQ2ODhEQzM5Q0YxRkJCMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqfcnXAWg/R3nf6drCdzhw0Er+ PovrU3o6HVp/3lrgVBnXO3KtJfz2bTO0njeIXHzLaOBH1q6lf/QPYJlPdX1x3sBj qaVmw6Re5Rww+Z2qURiSZMh9PuQpWwBYmABxEmmLJ6yg8TmzON2WqD3FqVXB9NDu /IQ8KNQaGvZyABg/15dBuh25/1GpDBZvVUuvWVxUZrHMWSqLwq5E5/55IM5fe0ia K4P/aK/8sGR4gMbMJBAAs1vGubE8M14YDAJ+h0OgwiQCR32KVkcpqLWy8gCn62Kc xUnyjQc0g235MaE0SlFiCoscJ/fyO8SrfT/zIxgbkoXsURJdT6Gr9bDpriwRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjfgK5rWEPfGOpZnk1ojcOc8fux0wHwYDVR0j BBgwFoAUEIJhsrWh88yCjvKlMu2U38EgKFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjYzZjc3MS1hOTVmLTRiNTMtODdiYy04YmZmNTA0ZGExZjQvMC8xMDgyNjFCMkI1 QTFGM0NDODI4RUYyQTUzMkVEOTRERkMxMjAyODUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZDMTIw Mjg1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NiNjNmNzcxLWE5NWYtNGI1My04 N2JjLThiZmY1MDRkYTFmNC8wLzMxMzIzMzJlMzEzMDM4MmUzNjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzczOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAe2xBMA0GCSqG SIb3DQEBCwUAA4IBAQBzVPkeZ+0HrURqp82Mf3kDJGaCNi3EUkO0KHAg1aSBCmae JyKRZylSYyrRwFAOpL/Pa18fmG2Y0rkYlq76dDNi+uluycmwjBHdVU/wigmpOuOG o8o/P3KoPhvt0HgOY35SdTK/NM88HSPxNmwhR/GJdWdT/Wsx9NwuO7HSvclpaPe1 sNpUuR9RMoiRnd1ng3QEQ4M4aDMpZuDK5Kv5Kjplf+FtsqwlHUy3tFwTOxRS1v7D Xi3bfgnW0wTZosFcS8UN7KjRebH51ZrbkegKJ2yhFFYFkWgaKCtvJMp4ZDYkwFt5 bUjK29MPKdNYlL8O7pCOmuYpkAlvwbmFe4LLoyvl -----END CERTIFICATE-----Generated at Fri Nov 22 17:50:11 2024 by rpki-client on console-fra.rpki-client.org