$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33362e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e33362e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: /CFeaPPkfGJuV6gagm4Rfm+HOOM941Erum9aSekDS+8= Subject key identifier: 33:3B:8B:12:D7:B1:B8:07:60:C3:25:29:52:CC:6A:B5:39:FF:E2:FE Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 4F27D564F026E46B4100FFBFFBCA69B9CEB41F8C Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33362e302f32342d3234203d3e203435333235.roa Signing time: Tue 05 Dec 2023 08:05:56 +0000 ROA not before: Tue 05 Dec 2023 08:00:56 +0000 ROA not after: Tue 03 Dec 2024 08:05:56 +0000 asID: 45325 IP address blocks: 122.248.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:27:d5:64:f0:26:e4:6b:41:00:ff:bf:fb:ca:69:b9:ce:b4:1f:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Dec 5 08:00:56 2023 GMT Not After : Dec 3 08:05:56 2024 GMT Subject: CN=333B8B12D7B1B80760C3252952CC6AB539FFE2FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:e9:59:c6:8b:49:68:77:06:a1:2a:cf:3f:11: ca:bb:1f:6d:64:fd:31:0e:cd:3d:96:6e:2c:8f:d2: 6a:e5:21:80:f0:b3:b0:ee:e2:51:a3:69:c4:1b:fd: 8b:58:44:29:6a:4f:e3:60:92:e8:bc:c1:33:d6:55: b6:be:ab:3d:e5:f1:0f:04:42:5d:3c:b1:36:df:32: 5e:18:e4:b1:98:e9:22:61:61:c2:88:b8:67:03:b6: 70:c1:e2:41:1f:67:e5:1e:cd:dd:f7:23:08:e2:79: af:e2:b3:7d:67:8c:e5:e1:bc:0d:b8:eb:33:79:d9: 7e:fa:17:76:d8:fc:bd:ee:a3:d0:ac:5d:5b:e7:d0: 7f:59:a6:7e:ba:e6:8e:3d:19:2c:e8:fb:d8:10:c1: f6:89:5b:2a:c9:c0:94:4b:e3:1b:a5:d2:81:bc:89: 2b:54:64:ea:31:f1:ad:a1:df:94:b9:dd:a8:8e:aa: d5:0c:2e:c3:15:5a:cf:8d:50:b9:64:01:27:a1:f4: 26:35:b6:a7:70:fe:09:df:60:92:36:c4:8d:62:0b: ae:d2:7d:44:d9:59:90:ab:5b:8f:e6:2c:87:2e:fc: 15:fd:dd:fa:34:e3:1d:f9:2e:84:e8:d6:b1:43:1e: da:44:91:44:7b:4c:68:82:1a:ac:3a:7e:6b:35:44: d0:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:3B:8B:12:D7:B1:B8:07:60:C3:25:29:52:CC:6A:B5:39:FF:E2:FE X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33362e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.36.0/24 Signature Algorithm: sha256WithRSAEncryption 81:14:95:87:42:cb:24:dd:4f:b0:53:eb:3c:99:19:88:25:c3: 00:7a:47:9d:84:d3:2b:7f:2a:e2:4a:72:85:94:dc:83:a0:3e: e1:11:6d:a1:1b:36:99:26:7b:35:b6:e3:11:bc:ed:f1:da:d7: 64:23:2d:41:1f:43:ab:0f:dd:c0:ca:87:ff:64:e5:8d:b5:ef: 77:03:ae:ca:6e:c0:75:b2:b6:62:f8:8f:21:e5:41:64:54:b9: 36:06:ca:be:42:78:4c:ab:c0:39:bf:b2:40:94:a6:79:77:a4: 7f:12:ec:db:2e:e1:95:3f:ad:52:b0:bb:f0:cf:64:a3:5b:44: ea:7f:b4:c5:e6:eb:eb:be:46:da:e8:1d:da:31:2a:f5:70:3f: 89:2f:af:cf:61:07:82:e4:65:7a:c1:2f:b1:b6:4b:6a:e7:32: f3:b5:00:fa:0d:43:a7:33:f5:6c:30:75:6e:21:ee:e6:3c:a9: cb:58:aa:ce:4a:0e:79:45:ef:c7:42:9c:10:c1:1c:01:0d:25: 66:83:1b:4e:27:27:b0:8a:05:db:56:d4:65:0d:8f:fd:b5:18: f4:05:c5:cd:90:02:96:cb:5f:bb:10:58:b5:35:30:19:ba:20: 83:35:08:2b:f9:85:19:aa:22:4d:a5:c9:7d:f3:fc:58:82:60: 55:c2:f8:b3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTyfVZPAm5GtBAP+/+8ppuc60H4wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yMzEyMDUwODAwNTZaFw0yNDEyMDMwODA1NTZaMDMxMTAvBgNV BAMTKDMzM0I4QjEyRDdCMUI4MDc2MEMzMjUyOTUyQ0M2QUI1MzlGRkUyRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDz6VnGi0lodwahKs8/Ecq7H21k /TEOzT2WbiyP0mrlIYDws7Du4lGjacQb/YtYRClqT+Ngkui8wTPWVba+qz3l8Q8E Ql08sTbfMl4Y5LGY6SJhYcKIuGcDtnDB4kEfZ+Uezd33Iwjiea/is31njOXhvA24 6zN52X76F3bY/L3uo9CsXVvn0H9Zpn665o49GSzo+9gQwfaJWyrJwJRL4xul0oG8 iStUZOox8a2h35S53aiOqtUMLsMVWs+NULlkASeh9CY1tqdw/gnfYJI2xI1iC67S fUTZWZCrW4/mLIcu/BX93fo04x35LoTo1rFDHtpEkUR7TGiCGqw6fms1RNCJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMzuLEtexuAdgwyUpUsxqtTn/4v4wHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4JDANBgkqhkiG 9w0BAQsFAAOCAQEAgRSVh0LLJN1PsFPrPJkZiCXDAHpHnYTTK38q4kpyhZTcg6A+ 4RFtoRs2mSZ7NbbjEbzt8drXZCMtQR9Dqw/dwMqH/2TljbXvdwOuym7AdbK2YviP IeVBZFS5NgbKvkJ4TKvAOb+yQJSmeXekfxLs2y7hlT+tUrC78M9ko1tE6n+0xebr 675G2ugd2jEq9XA/iS+vz2EHguRlesEvsbZLaucy87UA+g1DpzP1bDB1biHu5jyp y1iqzkoOeUXvx0KcEMEcAQ0lZoMbTicnsIoF21bUZQ2P/bUY9AXFzZAClstfuxBY tTUwGboggzUIK/mFGaoiTaXJffP8WIJgVcL4sw== -----END CERTIFICATE-----Generated at Sun May 5 22:36:38 2024 by rpki-client on console-ams.rpki-client.org