$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33362e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e33362e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: OdWDIwy3kzlmQdcK2SaQYfq9ix9p7PQmfJSCMg+I4yw= Subject key identifier: C2:52:83:41:17:7B:C4:D8:AF:24:FA:4D:AB:3E:C4:5B:38:99:47:8D Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 13F72EE831F006E72849810DFF1B917831320C6A Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33362e302f32342d3234203d3e203435333235.roa Signing time: Tue 05 Nov 2024 09:00:02 +0000 ROA not before: Tue 05 Nov 2024 08:55:02 +0000 ROA not after: Tue 04 Nov 2025 09:00:02 +0000 asID: 45325 IP address blocks: 122.248.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:f7:2e:e8:31:f0:06:e7:28:49:81:0d:ff:1b:91:78:31:32:0c:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Nov 5 08:55:02 2024 GMT Not After : Nov 4 09:00:02 2025 GMT Subject: CN=C2528341177BC4D8AF24FA4DAB3EC45B3899478D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2b:8c:ee:5f:f5:65:00:fe:7f:e6:fa:f3:d8: e2:e6:eb:6b:74:80:07:fd:c4:b9:09:69:61:d8:b9: 18:95:31:a0:b0:ef:b7:b5:db:2e:f1:ba:4d:ef:47: f1:ab:97:31:46:f8:e6:b2:37:f8:b9:df:c8:e6:bc: 02:d8:f2:88:72:77:07:d9:83:24:04:94:89:67:fd: 4b:85:a4:47:d0:36:06:ce:40:a2:fd:d0:ba:c5:6e: 7c:93:3b:96:2d:a9:18:49:bc:f0:86:f2:d9:48:72: 57:f3:ba:b6:4f:65:82:2c:12:81:71:56:5b:82:33: ef:cd:ba:87:f3:c9:fa:e3:da:47:d0:bf:ba:a1:40: c5:31:9d:66:35:da:f3:11:8e:a0:9b:cc:30:da:12: e7:db:e9:17:34:a6:86:71:7e:fc:a0:f2:e6:f8:12: a2:f9:df:c1:69:4a:05:c3:b9:6f:40:7c:e1:f6:ae: 56:db:18:a9:19:9a:7d:b5:7e:a2:93:58:42:ea:a1: fb:e3:7a:b0:dc:84:fd:14:e1:90:53:f2:ee:0f:1e: 41:0b:f9:26:01:ed:6d:f9:5b:d6:2f:03:1d:61:ed: 6f:16:35:f8:43:86:9f:7b:ac:0b:89:3f:f3:91:d6: d9:2b:c6:b9:84:7a:17:8f:18:e4:c0:32:68:a7:e7: ac:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:52:83:41:17:7B:C4:D8:AF:24:FA:4D:AB:3E:C4:5B:38:99:47:8D X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33362e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.36.0/24 Signature Algorithm: sha256WithRSAEncryption 41:af:5e:84:5e:2e:fb:4b:f6:e1:88:cc:41:01:86:77:5c:8c: 03:35:d7:2e:ea:a1:4b:c0:5d:f3:4c:7e:3b:92:1a:07:35:ad: 84:bc:bf:2a:a7:cc:64:49:18:9c:8e:ec:66:d8:d6:c4:16:d0: de:4a:d9:7a:d7:61:59:f7:e2:6e:1b:f8:43:d5:dc:ad:8e:27: 85:3e:7c:34:9f:2d:98:ba:7e:ab:6c:45:a1:c0:f0:fb:94:60: 75:ff:90:62:58:9c:81:51:40:55:0e:9f:53:f7:ea:4e:c1:3e: ff:94:7a:46:c9:0e:41:7b:71:36:78:d8:79:f7:5f:db:e0:5e: fd:9a:96:08:6a:76:bd:52:25:c3:f6:20:90:3d:74:ee:54:83: 67:f3:4b:69:d1:49:8b:1d:03:14:7b:be:58:27:f5:68:e2:99: 74:ce:76:2f:53:7d:69:84:ef:f4:a6:cc:66:bb:b8:9d:9e:91: 9a:58:f0:fd:15:9e:82:e6:52:b9:0a:f4:6f:33:de:4c:fd:03: b1:11:da:19:f4:3d:1c:3b:6f:a1:8e:dd:bf:de:8e:d6:17:95: 25:64:e5:93:03:9e:12:47:6d:53:ad:a3:d6:09:22:e7:1f:43: 8f:d5:d7:b3:cc:a5:22:a6:89:b3:b0:45:34:d6:c4:2e:a1:32: a5:54:22:c9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUE/cu6DHwBucoSYEN/xuReDEyDGowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yNDExMDUwODU1MDJaFw0yNTExMDQwOTAwMDJaMDMxMTAvBgNV BAMTKEMyNTI4MzQxMTc3QkM0RDhBRjI0RkE0REFCM0VDNDVCMzg5OTQ3OEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIK4zuX/VlAP5/5vrz2OLm62t0 gAf9xLkJaWHYuRiVMaCw77e12y7xuk3vR/GrlzFG+OayN/i538jmvALY8ohydwfZ gyQElIln/UuFpEfQNgbOQKL90LrFbnyTO5YtqRhJvPCG8tlIclfzurZPZYIsEoFx VluCM+/Nuofzyfrj2kfQv7qhQMUxnWY12vMRjqCbzDDaEufb6Rc0poZxfvyg8ub4 EqL538FpSgXDuW9AfOH2rlbbGKkZmn21fqKTWELqofvjerDchP0U4ZBT8u4PHkEL +SYB7W35W9YvAx1h7W8WNfhDhp97rAuJP/OR1tkrxrmEehePGOTAMmin56xNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwlKDQRd7xNivJPpNqz7EWziZR40wHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4JDANBgkqhkiG 9w0BAQsFAAOCAQEAQa9ehF4u+0v24YjMQQGGd1yMAzXXLuqhS8Bd80x+O5IaBzWt hLy/KqfMZEkYnI7sZtjWxBbQ3krZetdhWffibhv4Q9XcrY4nhT58NJ8tmLp+q2xF ocDw+5Rgdf+QYlicgVFAVQ6fU/fqTsE+/5R6RskOQXtxNnjYefdf2+Be/ZqWCGp2 vVIlw/YgkD107lSDZ/NLadFJix0DFHu+WCf1aOKZdM52L1N9aYTv9KbMZru4nZ6R mljw/RWeguZSuQr0bzPeTP0DsRHaGfQ9HDtvoY7dv96O1heVJWTlkwOeEkdtU62j 1gki5x9Dj9XXs8ylIqaJs7BFNNbELqEypVQiyQ== -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:53 2024 by rpki-client on console-fra.rpki-client.org