$ rpki-client -vvf repo-rpki.idnic.net/repo/ccbcc00d-ce79-4216-a62b-e3d50cc79442/0/3132302e38392e38382e302f32342d3234203d3e203435323839.roa File: 3132302e38392e38382e302f32342d3234203d3e203435323839.roa (raw, json) Hash identifier: lxYm7zpuhAeVDJxEFD6AtMpDUXkRb1vy8CQZWzvcoa0= Subject key identifier: AE:CF:7D:7A:DC:A7:45:EC:C1:C6:55:E2:09:9F:E1:E4:4B:30:86:2B Certificate issuer: /CN=9973E5D6F7F65DCF015E9DAFCEF394F512E4FD61 Certificate serial: 6327FEA757920DC325AF87DE16F0A508962485EB Authority key identifier: 99:73:E5:D6:F7:F6:5D:CF:01:5E:9D:AF:CE:F3:94:F5:12:E4:FD:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9973E5D6F7F65DCF015E9DAFCEF394F512E4FD61.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccbcc00d-ce79-4216-a62b-e3d50cc79442/0/3132302e38392e38382e302f32342d3234203d3e203435323839.roa Signing time: Sat 16 Mar 2024 08:00:01 +0000 ROA not before: Sat 16 Mar 2024 07:55:01 +0000 ROA not after: Sat 15 Mar 2025 08:00:01 +0000 asID: 45289 IP address blocks: 120.89.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccbcc00d-ce79-4216-a62b-e3d50cc79442/0/9973E5D6F7F65DCF015E9DAFCEF394F512E4FD61.crl rsync://repo-rpki.idnic.net/repo/ccbcc00d-ce79-4216-a62b-e3d50cc79442/0/9973E5D6F7F65DCF015E9DAFCEF394F512E4FD61.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9973E5D6F7F65DCF015E9DAFCEF394F512E4FD61.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 20:18:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:27:fe:a7:57:92:0d:c3:25:af:87:de:16:f0:a5:08:96:24:85:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9973E5D6F7F65DCF015E9DAFCEF394F512E4FD61 Validity Not Before: Mar 16 07:55:01 2024 GMT Not After : Mar 15 08:00:01 2025 GMT Subject: CN=AECF7D7ADCA745ECC1C655E2099FE1E44B30862B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0f:b8:9b:4a:1a:44:12:6c:22:6a:07:94:e8: e3:e1:45:12:0c:f3:6e:18:01:0e:b5:36:5c:c2:4e: b8:b9:3a:19:38:26:ce:f9:da:35:d9:d9:78:62:4e: 51:e7:0d:67:71:4c:e2:a4:d0:9c:d9:ff:6c:dc:e8: 45:d0:98:b0:0f:e2:cc:18:5f:99:87:07:b0:1a:b0: 8c:a5:86:dc:97:df:b0:60:ab:f9:f6:8d:4e:9c:79: 31:c0:ad:3d:37:bf:02:aa:a2:59:75:28:44:9b:b6: 88:55:21:c7:a1:00:df:6f:33:02:bc:a9:54:e8:cd: 5d:12:44:a1:25:64:01:50:1e:c5:ab:b4:d4:23:56: 27:42:42:60:f4:82:2b:ca:1c:3f:a8:db:62:62:5d: 62:59:6d:09:a4:f2:a4:0c:c1:6d:67:61:31:fc:c5: a9:57:fe:bd:00:38:e6:e8:fc:92:05:81:af:eb:aa: bd:37:53:32:3d:5c:3e:b9:ba:fc:b6:72:dd:fc:1a: 10:a3:2e:3b:ab:40:37:bb:ec:1b:bb:68:43:ba:9e: 74:db:3a:e1:17:b0:aa:4b:ec:bd:ee:70:1c:c1:28: 60:b2:b6:2c:b3:88:aa:73:e8:5b:50:d6:7f:cb:ec: 0d:ee:cd:b0:3f:b8:f2:78:70:a6:85:41:2c:1c:c6: f5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:CF:7D:7A:DC:A7:45:EC:C1:C6:55:E2:09:9F:E1:E4:4B:30:86:2B X509v3 Authority Key Identifier: keyid:99:73:E5:D6:F7:F6:5D:CF:01:5E:9D:AF:CE:F3:94:F5:12:E4:FD:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccbcc00d-ce79-4216-a62b-e3d50cc79442/0/9973E5D6F7F65DCF015E9DAFCEF394F512E4FD61.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9973E5D6F7F65DCF015E9DAFCEF394F512E4FD61.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccbcc00d-ce79-4216-a62b-e3d50cc79442/0/3132302e38392e38382e302f32342d3234203d3e203435323839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.89.88.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:9c:2a:37:12:d7:41:3b:09:ae:3b:cd:c0:1a:9b:64:19:13: 8c:f3:7f:e6:69:de:19:f1:5f:17:cf:db:14:7c:4e:68:4f:cb: 75:8f:5c:e1:3d:18:4f:42:46:9d:50:c6:c2:f0:e5:23:2e:47: 84:62:5c:2f:cb:ae:ea:bc:3c:37:4c:14:d0:07:fc:c0:25:00: f3:1f:d7:04:f5:38:61:4f:40:76:01:2f:ab:42:98:ce:4e:4a: 77:ec:02:9f:d0:8d:f5:c9:70:79:a9:c2:c7:22:ad:66:dc:69: ca:71:db:68:59:54:6d:6c:44:2d:f8:81:65:49:aa:a8:03:ec: a8:44:b2:09:af:8c:c4:99:ed:b7:fe:6d:5a:60:0c:c4:aa:f3: 29:01:df:29:42:61:f4:b6:37:bb:7b:4a:e2:cb:b0:ab:8f:21: 53:5d:2d:ce:79:08:44:46:31:82:6a:93:8a:63:4b:c2:16:80: 89:19:36:56:35:d7:29:9a:10:e2:5c:6e:64:58:99:75:8a:6d: 7e:cb:f2:17:83:54:8f:72:f8:aa:2e:2f:4c:db:c6:8e:3d:ea: 9f:07:62:e8:16:ee:2a:10:8a:c0:96:9b:af:0c:d5:29:c4:4a: af:99:0a:da:a2:82:02:5e:f0:90:a2:af:e3:ec:da:b2:ad:67: d8:ed:10:56 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUYyf+p1eSDcMlr4feFvClCJYkheswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTk3M0U1RDZGN0Y2NURDRjAxNUU5REFGQ0VGMzk0RjUx MkU0RkQ2MTAeFw0yNDAzMTYwNzU1MDFaFw0yNTAzMTUwODAwMDFaMDMxMTAvBgNV BAMTKEFFQ0Y3RDdBRENBNzQ1RUNDMUM2NTVFMjA5OUZFMUU0NEIzMDg2MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBD7ibShpEEmwiageU6OPhRRIM 824YAQ61NlzCTri5Ohk4Js752jXZ2XhiTlHnDWdxTOKk0JzZ/2zc6EXQmLAP4swY X5mHB7AasIylhtyX37Bgq/n2jU6ceTHArT03vwKqoll1KESbtohVIcehAN9vMwK8 qVTozV0SRKElZAFQHsWrtNQjVidCQmD0givKHD+o22JiXWJZbQmk8qQMwW1nYTH8 xalX/r0AOObo/JIFga/rqr03UzI9XD65uvy2ct38GhCjLjurQDe77Bu7aEO6nnTb OuEXsKpL7L3ucBzBKGCytiyziKpz6FtQ1n/L7A3uzbA/uPJ4cKaFQSwcxvU/AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUrs99etynRezBxlXiCZ/h5EswhiswHwYDVR0j BBgwFoAUmXPl1vf2Xc8BXp2vzvOU9RLk/WEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2JjYzAwZC1jZTc5LTQyMTYtYTYyYi1lM2Q1MGNjNzk0NDIvMC85OTczRTVENkY3 RjY1RENGMDE1RTlEQUZDRUYzOTRGNTEyRTRGRDYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTk3M0U1RDZGN0Y2NURDRjAxNUU5REFGQ0VGMzk0RjUxMkU0 RkQ2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjYmNjMDBkLWNlNzktNDIxNi1h NjJiLWUzZDUwY2M3OTQ0Mi8wLzMxMzIzMDJlMzgzOTJlMzgzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzMjM4Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB4WVgwDQYJKoZIhvcN AQELBQADggEBAI6cKjcS10E7Ca47zcAam2QZE4zzf+Zp3hnxXxfP2xR8TmhPy3WP XOE9GE9CRp1QxsLw5SMuR4RiXC/Lruq8PDdMFNAH/MAlAPMf1wT1OGFPQHYBL6tC mM5OSnfsAp/QjfXJcHmpwscirWbcacpx22hZVG1sRC34gWVJqqgD7KhEsgmvjMSZ 7bf+bVpgDMSq8ykB3ylCYfS2N7t7SuLLsKuPIVNdLc55CERGMYJqk4pjS8IWgIkZ NlY11ymaEOJcbmRYmXWKbX7L8heDVI9y+KouL0zbxo496p8HYugW7ioQisCWm68M 1SnESq+ZCtqiggJe8JCir+Ps2rKtZ9jtEFY= -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:29 2024 by rpki-client on console-fra.rpki-client.org