$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33352e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e33352e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: wma6DzoauP1LWLcvQ4+QStVW4CZ2HSCgaF70oog3akw= Subject key identifier: 27:94:4D:DA:97:5E:5C:DF:F7:6E:6D:4F:68:E8:0B:B1:E9:F6:17:02 Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 7E812FFC23F7AF4D83B8DB4385499F4490101856 Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33352e302f32342d3234203d3e203435333235.roa Signing time: Tue 05 Dec 2023 08:05:46 +0000 ROA not before: Tue 05 Dec 2023 08:00:46 +0000 ROA not after: Tue 03 Dec 2024 08:05:46 +0000 asID: 45325 IP address blocks: 122.248.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:81:2f:fc:23:f7:af:4d:83:b8:db:43:85:49:9f:44:90:10:18:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Dec 5 08:00:46 2023 GMT Not After : Dec 3 08:05:46 2024 GMT Subject: CN=27944DDA975E5CDFF76E6D4F68E80BB1E9F61702 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:44:e4:e2:e1:7c:61:f2:28:85:52:70:4e:44: 3e:b1:26:3c:15:8b:5c:11:58:b3:06:7d:8e:b8:a6: ab:a1:0c:c8:77:26:6d:7c:9b:72:44:1a:cc:53:48: bd:9e:30:0e:5d:57:50:55:cd:28:34:de:ee:43:c1: bb:46:0e:45:4f:64:01:21:2c:f8:58:e6:a7:1f:fd: 7b:04:b0:1b:91:58:de:fe:89:7f:fa:0f:c0:1e:1c: e1:93:ad:18:69:37:93:cb:33:ff:7f:a2:69:27:e6: 26:f7:2a:fe:69:91:3b:a2:b2:81:39:81:ac:13:b2: d3:95:8b:3e:02:d0:33:92:0e:31:20:6b:9f:d0:bf: 0a:8c:85:7f:dc:2b:0b:d7:1e:d5:82:4f:0f:5f:49: f7:be:65:57:4e:18:08:b4:97:ea:5e:b7:5c:94:30: 37:f5:a0:98:6a:bb:85:cf:97:ae:de:ff:fb:49:82: a8:7e:a3:e0:62:a7:a2:d2:8f:b8:e2:68:b0:4a:cc: f8:29:74:5e:ff:68:91:85:6d:42:38:4e:94:47:b2: 79:8f:8e:92:29:89:aa:ce:bb:07:73:cc:f0:29:0a: b0:81:32:2e:c0:6c:58:75:12:4f:61:8c:bb:50:07: 03:85:fc:31:1c:67:1b:cc:6b:30:97:5f:35:4e:6c: 74:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:94:4D:DA:97:5E:5C:DF:F7:6E:6D:4F:68:E8:0B:B1:E9:F6:17:02 X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33352e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.35.0/24 Signature Algorithm: sha256WithRSAEncryption a8:5c:12:dc:a3:2e:7a:80:c6:6c:48:83:f8:8c:63:d4:31:43: ff:ca:c8:8a:61:5d:8b:fb:96:58:c2:b9:61:94:a2:7a:ba:1b: ae:b4:ca:00:60:e7:ac:19:5c:9b:58:3b:29:28:3e:2c:1b:46: 52:c3:c9:de:29:4c:e4:d3:08:32:a7:bb:f7:71:04:aa:dc:f3: 2d:85:be:e4:41:c9:69:77:35:0f:f0:1d:e5:48:14:62:35:dc: cf:0b:6e:c4:93:8b:e9:e7:60:1a:5d:4d:3b:e7:b1:3b:d6:0b: e7:4c:1d:17:da:fe:38:9f:26:60:1e:00:23:6e:38:1d:bf:39: b2:36:72:5d:56:7a:ec:de:1d:9a:83:aa:57:c1:5a:e7:a1:24: f5:48:d8:24:f7:a1:d3:e5:65:eb:5c:ea:17:1a:a8:9f:c9:87: 77:da:f4:e0:29:b3:29:47:ed:e4:da:49:92:b9:72:ae:85:97: 73:e1:32:27:c8:30:3e:0a:34:46:f5:87:90:0f:d4:d2:e4:ae: 47:ff:4b:e0:41:1d:3f:b3:c8:af:0b:67:22:26:0a:85:13:fd: c2:4a:3d:3d:64:d5:c9:98:1a:bf:01:1d:29:c1:cf:7e:16:9b: aa:36:74:49:b5:dc:12:14:87:5a:7c:21:f6:e1:5f:15:2a:7e: 0e:f3:d6:bf -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfoEv/CP3r02DuNtDhUmfRJAQGFYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yMzEyMDUwODAwNDZaFw0yNDEyMDMwODA1NDZaMDMxMTAvBgNV BAMTKDI3OTQ0RERBOTc1RTVDREZGNzZFNkQ0RjY4RTgwQkIxRTlGNjE3MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRROTi4Xxh8iiFUnBORD6xJjwV i1wRWLMGfY64pquhDMh3Jm18m3JEGsxTSL2eMA5dV1BVzSg03u5DwbtGDkVPZAEh LPhY5qcf/XsEsBuRWN7+iX/6D8AeHOGTrRhpN5PLM/9/omkn5ib3Kv5pkTuisoE5 gawTstOViz4C0DOSDjEga5/QvwqMhX/cKwvXHtWCTw9fSfe+ZVdOGAi0l+pet1yU MDf1oJhqu4XPl67e//tJgqh+o+Bip6LSj7jiaLBKzPgpdF7/aJGFbUI4TpRHsnmP jpIpiarOuwdzzPApCrCBMi7AbFh1Ek9hjLtQBwOF/DEcZxvMazCXXzVObHS5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJ5RN2pdeXN/3bm1PaOgLsen2FwIwHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4IzANBgkqhkiG 9w0BAQsFAAOCAQEAqFwS3KMueoDGbEiD+Ixj1DFD/8rIimFdi/uWWMK5YZSierob rrTKAGDnrBlcm1g7KSg+LBtGUsPJ3ilM5NMIMqe793EEqtzzLYW+5EHJaXc1D/Ad 5UgUYjXczwtuxJOL6edgGl1NO+exO9YL50wdF9r+OJ8mYB4AI244Hb85sjZyXVZ6 7N4dmoOqV8Fa56Ek9UjYJPeh0+Vl61zqFxqon8mHd9r04CmzKUft5NpJkrlyroWX c+EyJ8gwPgo0RvWHkA/U0uSuR/9L4EEdP7PIrwtnIiYKhRP9wko9PWTVyZgavwEd KcHPfhabqjZ0SbXcEhSHWnwh9uFfFSp+DvPWvw== -----END CERTIFICATE-----Generated at Sun May 5 22:36:38 2024 by rpki-client on console-ams.rpki-client.org