$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33352e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e33352e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: tpz05ygSqebIjUSPwghHsNHlvwhhI3vwB7cunp1p9bE= Subject key identifier: 22:DF:36:56:A9:9B:18:91:CB:E9:9B:D7:78:7E:B2:E3:EF:84:E4:A7 Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 19291E4AFFB4DC22EC5DE4D134A58FBA47E7CAB7 Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33352e302f32342d3234203d3e203435333235.roa Signing time: Tue 05 Nov 2024 09:00:03 +0000 ROA not before: Tue 05 Nov 2024 08:55:03 +0000 ROA not after: Tue 04 Nov 2025 09:00:03 +0000 asID: 45325 IP address blocks: 122.248.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:29:1e:4a:ff:b4:dc:22:ec:5d:e4:d1:34:a5:8f:ba:47:e7:ca:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Nov 5 08:55:03 2024 GMT Not After : Nov 4 09:00:03 2025 GMT Subject: CN=22DF3656A99B1891CBE99BD7787EB2E3EF84E4A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0a:d5:95:93:6e:ee:8a:eb:1d:23:9f:e9:47: d6:1c:d9:c6:43:c4:49:56:63:80:ee:09:18:13:a4: 52:2f:31:06:46:4b:04:5b:92:ca:b3:55:a6:6e:99: 8f:60:1c:f4:05:16:a9:5b:d6:7c:35:73:b0:5e:8d: 08:b6:3e:ac:23:7b:9a:91:65:6b:ec:19:5c:44:dd: 7a:59:60:cf:86:54:00:af:f0:35:54:0f:38:ca:06: 47:1b:4d:98:33:2c:54:62:8e:4d:10:c3:f0:28:be: 17:33:6b:95:6a:8b:95:4d:cc:b9:b8:92:80:9f:20: bf:b2:25:32:c4:b4:be:80:e1:da:60:25:62:ed:1d: 68:7a:87:64:7c:cf:03:58:13:3f:20:9c:03:e0:ee: fd:2a:11:cf:2f:73:49:8c:0a:81:9c:39:bc:94:f6: 28:e6:cf:e7:31:72:90:e2:98:a4:01:ac:70:be:bc: ee:0a:59:22:75:2c:63:bb:02:e5:46:04:ed:b1:0b: 67:8b:01:c4:37:7a:9b:e8:b2:21:b5:c5:50:72:5a: 10:ee:ec:1c:0c:71:d4:c6:91:64:86:e8:39:ad:2f: e1:20:09:d5:31:07:b3:7d:84:b4:cf:e2:1e:5d:8e: a8:d3:9a:6e:9c:f8:78:cf:d4:9c:c1:42:e4:09:0b: 30:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:DF:36:56:A9:9B:18:91:CB:E9:9B:D7:78:7E:B2:E3:EF:84:E4:A7 X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33352e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.35.0/24 Signature Algorithm: sha256WithRSAEncryption 09:78:27:bc:3b:e0:d3:7c:c8:8c:57:b4:78:44:d2:af:1b:c7: 2a:9f:16:6a:9b:42:68:49:b4:4a:1d:4b:5e:f1:b7:44:6b:66: 9c:ae:96:bc:89:7f:f3:9e:ff:da:fa:b0:b3:83:d8:31:16:74: b3:da:f8:59:88:df:b7:ad:aa:de:0b:4a:d1:42:80:b5:35:84: 87:f1:c0:a1:77:a7:ab:4f:2f:25:90:c8:25:dd:a4:65:a9:8f: 2f:25:39:7f:cb:ab:be:e8:a6:48:54:a9:18:5b:7c:ff:6f:e1: 76:e9:77:3a:8f:aa:39:23:4d:55:3c:58:a0:86:b4:ef:ae:a7: bd:8a:af:80:ab:c1:7d:73:79:50:90:6a:8b:b8:ac:85:5f:af: 3a:b0:f1:b8:4d:81:f2:87:77:69:e3:c1:7d:e3:4e:76:df:31: 90:c8:59:07:1d:43:aa:e5:71:6d:11:a0:e5:b7:04:3e:f8:f8: e9:d2:f8:fa:0e:8d:37:68:f7:1c:14:e8:84:7d:d1:12:25:79: e6:c7:71:24:bd:aa:ed:be:79:6e:66:39:71:b5:09:63:7c:7a: 26:54:d4:25:59:4c:54:24:71:5d:36:31:8a:17:bb:63:29:59: 78:9c:ee:29:41:1d:a3:26:c5:01:7c:a8:4c:f4:ff:b3:7e:6d: 5a:37:d0:fc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGSkeSv+03CLsXeTRNKWPukfnyrcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yNDExMDUwODU1MDNaFw0yNTExMDQwOTAwMDNaMDMxMTAvBgNV BAMTKDIyREYzNjU2QTk5QjE4OTFDQkU5OUJENzc4N0VCMkUzRUY4NEU0QTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLCtWVk27uiusdI5/pR9Yc2cZD xElWY4DuCRgTpFIvMQZGSwRbksqzVaZumY9gHPQFFqlb1nw1c7BejQi2Pqwje5qR ZWvsGVxE3XpZYM+GVACv8DVUDzjKBkcbTZgzLFRijk0Qw/Aovhcza5Vqi5VNzLm4 koCfIL+yJTLEtL6A4dpgJWLtHWh6h2R8zwNYEz8gnAPg7v0qEc8vc0mMCoGcObyU 9ijmz+cxcpDimKQBrHC+vO4KWSJ1LGO7AuVGBO2xC2eLAcQ3epvosiG1xVByWhDu 7BwMcdTGkWSG6DmtL+EgCdUxB7N9hLTP4h5djqjTmm6c+HjP1JzBQuQJCzBjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIt82VqmbGJHL6ZvXeH6y4++E5KcwHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4IzANBgkqhkiG 9w0BAQsFAAOCAQEACXgnvDvg03zIjFe0eETSrxvHKp8WaptCaEm0Sh1LXvG3RGtm nK6WvIl/857/2vqws4PYMRZ0s9r4WYjft62q3gtK0UKAtTWEh/HAoXenq08vJZDI Jd2kZamPLyU5f8urvuimSFSpGFt8/2/hdul3Oo+qOSNNVTxYoIa0766nvYqvgKvB fXN5UJBqi7ishV+vOrDxuE2B8od3aePBfeNOdt8xkMhZBx1DquVxbRGg5bcEPvj4 6dL4+g6NN2j3HBTohH3REiV55sdxJL2q7b55bmY5cbUJY3x6JlTUJVlMVCRxXTYx ihe7YylZeJzuKUEdoybFAXyoTPT/s35tWjfQ/A== -----END CERTIFICATE-----Generated at Thu Nov 21 05:34:49 2024 by rpki-client on console-ams.rpki-client.org