$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33382e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e33382e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: JpXNvW0w1CyhlIKpfU8YOgsPqVF0GvUSkb96xhlo2Oc= Subject key identifier: 33:14:D1:3F:8C:60:00:D0:31:39:FA:0B:EF:79:DD:98:38:71:07:49 Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 05A3564F39C35D317B0BEE1E861F175F035D3E86 Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33382e302f32342d3234203d3e203435333235.roa Signing time: Tue 05 Dec 2023 08:06:15 +0000 ROA not before: Tue 05 Dec 2023 08:01:15 +0000 ROA not after: Tue 03 Dec 2024 08:06:15 +0000 asID: 45325 IP address blocks: 122.248.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:a3:56:4f:39:c3:5d:31:7b:0b:ee:1e:86:1f:17:5f:03:5d:3e:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Dec 5 08:01:15 2023 GMT Not After : Dec 3 08:06:15 2024 GMT Subject: CN=3314D13F8C6000D03139FA0BEF79DD9838710749 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:6b:e5:28:5a:f6:5d:f5:1e:2e:42:52:cc:43: f9:55:da:0e:70:7d:dd:a1:78:39:57:ea:61:01:a1: cc:8b:bc:e7:d7:b4:7d:f1:34:a1:cf:75:79:02:09: b8:03:7a:7b:73:28:8a:54:9e:ce:72:a6:60:e5:28: fa:03:7f:2e:f0:4d:44:05:2f:6d:c4:b2:01:77:4e: 6c:c0:cb:95:23:68:fa:19:d9:0b:0a:00:7e:6c:ac: 7c:14:0b:81:97:ef:82:c2:fd:c8:d2:6a:dc:bf:a0: eb:e1:19:ae:fb:df:7a:9b:42:98:82:f0:0b:92:22: c4:06:62:35:52:3c:22:64:c1:a0:18:be:2b:7c:44: 31:ae:0c:04:a3:fa:20:01:a7:27:b0:fc:b6:10:a4: 9c:14:c0:88:57:8b:7e:7b:e0:45:95:ad:88:c0:1d: f3:1e:58:01:1c:87:1c:c8:58:d3:58:bb:bf:0e:9c: 90:89:8c:ce:ac:b3:00:54:31:4f:f9:1e:02:47:53: 93:22:3b:96:15:3d:f8:df:07:e1:c6:3c:72:00:0a: f7:38:40:7b:35:37:22:a2:54:16:8d:d0:b7:1b:ba: d3:ec:27:82:37:36:98:5b:4d:76:fa:a1:4c:93:04: 17:1b:c8:d6:2b:0f:ad:4c:84:d2:5f:9c:f9:20:37: 9f:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:14:D1:3F:8C:60:00:D0:31:39:FA:0B:EF:79:DD:98:38:71:07:49 X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33382e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.38.0/24 Signature Algorithm: sha256WithRSAEncryption 03:57:89:00:9f:30:0d:c4:e8:80:e8:3f:da:11:7e:47:e7:9c: aa:4d:49:4c:8b:88:0b:bf:8b:ba:ab:e0:33:10:da:c7:60:ea: 9c:d1:8c:6c:08:6a:cc:54:90:9e:4b:99:a2:c8:07:d2:5e:1e: 89:90:43:d0:5d:49:33:ee:8c:8b:bd:35:53:7c:52:36:57:d4: f5:a3:86:83:4e:70:d4:a2:16:93:13:9d:61:f1:6d:d0:26:4e: 01:95:3d:10:cc:05:51:2d:79:b4:49:eb:9c:2c:cd:fd:37:e0: 82:ba:e4:2d:f3:89:dd:a0:6b:33:11:8a:ce:8a:a2:4b:bd:25: 2d:41:6a:1b:94:c3:4d:c7:5f:9c:03:5e:c2:f6:02:70:e8:a7: 18:df:9a:65:f3:61:26:89:77:06:b1:14:75:c5:7d:c9:71:aa: 2d:f9:fd:3a:c4:01:f8:a4:b3:5d:de:0f:73:0e:fa:cf:02:d8: 7f:ba:9b:5b:ab:0f:2b:f8:a8:f1:f8:ee:b0:6c:20:c9:d6:68: 98:04:cb:71:0c:28:11:bb:f4:4d:37:58:3e:fa:a7:fc:13:f5: c6:b6:43:80:25:a7:b0:84:76:e7:8c:0d:6f:b2:30:ad:c1:e2: 7f:ae:b0:b9:42:f8:8a:b0:3a:34:7e:e7:7c:31:c7:5b:13:8b: 5d:74:e3:1e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBaNWTznDXTF7C+4ehh8XXwNdPoYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yMzEyMDUwODAxMTVaFw0yNDEyMDMwODA2MTVaMDMxMTAvBgNV BAMTKDMzMTREMTNGOEM2MDAwRDAzMTM5RkEwQkVGNzlERDk4Mzg3MTA3NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCca+UoWvZd9R4uQlLMQ/lV2g5w fd2heDlX6mEBocyLvOfXtH3xNKHPdXkCCbgDentzKIpUns5ypmDlKPoDfy7wTUQF L23EsgF3TmzAy5UjaPoZ2QsKAH5srHwUC4GX74LC/cjSaty/oOvhGa7733qbQpiC 8AuSIsQGYjVSPCJkwaAYvit8RDGuDASj+iABpyew/LYQpJwUwIhXi3574EWVrYjA HfMeWAEchxzIWNNYu78OnJCJjM6sswBUMU/5HgJHU5MiO5YVPfjfB+HGPHIACvc4 QHs1NyKiVBaN0LcbutPsJ4I3NphbTXb6oUyTBBcbyNYrD61MhNJfnPkgN59tAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMxTRP4xgANAxOfoL73ndmDhxB0kwHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzMzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4JjANBgkqhkiG 9w0BAQsFAAOCAQEAA1eJAJ8wDcTogOg/2hF+R+ecqk1JTIuIC7+LuqvgMxDax2Dq nNGMbAhqzFSQnkuZosgH0l4eiZBD0F1JM+6Mi701U3xSNlfU9aOGg05w1KIWkxOd YfFt0CZOAZU9EMwFUS15tEnrnCzN/TfggrrkLfOJ3aBrMxGKzoqiS70lLUFqG5TD TcdfnANewvYCcOinGN+aZfNhJol3BrEUdcV9yXGqLfn9OsQB+KSzXd4Pcw76zwLY f7qbW6sPK/io8fjusGwgydZomATLcQwoEbv0TTdYPvqn/BP1xrZDgCWnsIR254wN b7IwrcHif66wuUL4irA6NH7nfDHHWxOLXXTjHg== -----END CERTIFICATE-----Generated at Sun May 5 22:36:38 2024 by rpki-client on console-ams.rpki-client.org