$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34302e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e34302e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: o8hPm0ldU1zjLddfT2zDTA2p1DB9mZBbwwQNuXU4wTY= Subject key identifier: 17:A1:DC:0E:AD:34:C3:F5:3E:05:4D:28:89:DF:EB:C4:92:0A:C1:7F Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 2CBF3E8CDEB8A8C23341FFBD5DD49509696F19D9 Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34302e302f32342d3234203d3e203435333235.roa Signing time: Tue 05 Dec 2023 08:06:36 +0000 ROA not before: Tue 05 Dec 2023 08:01:36 +0000 ROA not after: Tue 03 Dec 2024 08:06:36 +0000 asID: 45325 IP address blocks: 122.248.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:bf:3e:8c:de:b8:a8:c2:33:41:ff:bd:5d:d4:95:09:69:6f:19:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Dec 5 08:01:36 2023 GMT Not After : Dec 3 08:06:36 2024 GMT Subject: CN=17A1DC0EAD34C3F53E054D2889DFEBC4920AC17F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:42:90:8d:54:02:9b:65:28:e5:43:80:0b:57: fa:10:43:df:df:fe:7e:59:a8:6a:a6:c6:6e:da:60: 2e:5a:fa:2d:2c:75:73:82:c9:8a:af:cb:ed:87:b4: 61:cc:28:b5:ff:38:ac:ff:14:f0:57:cb:cc:bf:95: b1:2f:41:a3:e1:2c:75:25:19:61:87:7f:14:4e:e3: c9:e2:fd:16:7b:a8:51:7c:14:46:ea:a2:1e:08:ea: 03:28:bd:b2:c2:10:cc:ac:d5:11:77:3a:8f:e0:1d: 47:39:2d:7e:8a:04:eb:fe:09:4c:70:5e:29:4b:7c: 34:2a:a3:7f:cc:13:d0:1b:d6:da:44:f3:60:b6:9b: 40:c3:57:9f:58:bb:4d:8c:f9:14:ce:c8:a0:a5:32: 82:df:f4:fb:bf:19:11:ff:62:c6:05:6b:fd:ff:46: be:09:40:43:56:f9:3c:26:4c:b1:3e:4c:d0:b9:b8: 48:c4:1b:56:1b:89:f3:76:7d:26:a4:0e:dd:7d:58: e5:10:a2:32:10:a8:da:c8:fc:87:fc:60:d0:02:b0: 89:a3:60:e0:84:ad:d7:39:a8:75:84:2f:41:2b:ca: 73:ba:1e:28:11:67:37:73:fb:f0:da:44:f0:7d:fc: 5c:c9:d7:28:ce:59:1b:36:6c:05:2c:e2:8d:41:64: 4d:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:A1:DC:0E:AD:34:C3:F5:3E:05:4D:28:89:DF:EB:C4:92:0A:C1:7F X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34302e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.40.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:0c:9d:b9:22:60:6d:9f:b2:24:ab:cf:7f:5d:29:02:b2:3b: 64:84:43:7e:8d:da:d8:0e:9f:1a:80:c7:69:a8:ec:e0:87:78: 89:6b:5e:2d:43:7a:c1:3e:53:a0:fd:be:c0:28:e8:ca:4d:ab: 48:3f:a0:a9:66:16:53:c0:e2:ba:ef:3c:56:27:bb:ae:60:1c: 0d:7a:9b:90:e7:00:1f:b0:38:3f:ac:ad:e5:f5:56:c9:14:32: 78:45:ee:7c:9c:90:72:96:f8:bf:00:7e:cf:8b:2f:3d:a0:87: 9d:93:73:88:c9:cb:fd:95:be:3e:ba:9d:12:eb:c4:b6:d4:35: 73:b1:35:e3:26:93:b9:0d:4c:38:1e:ca:ab:35:c2:86:7d:d9: 2f:4d:cd:3f:f0:04:e8:c8:66:d2:bc:01:a3:4d:c1:1f:d9:26: c0:62:75:15:45:a3:d3:11:43:3a:d4:5d:99:79:b1:df:75:96: 5c:92:e0:b6:84:4f:88:60:f4:7e:e2:98:b5:2e:64:66:31:75: 42:26:65:1c:82:b3:9d:f1:df:94:57:a8:47:cf:e7:ec:c8:c0: 00:ea:da:e1:4a:5a:56:d0:3c:cd:27:34:c4:ff:8e:0d:b8:76: 63:33:3b:2a:96:e6:f7:08:05:dd:42:c1:df:f3:a4:1a:3e:dd: 3c:ef:21:25 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULL8+jN64qMIzQf+9XdSVCWlvGdkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yMzEyMDUwODAxMzZaFw0yNDEyMDMwODA2MzZaMDMxMTAvBgNV BAMTKDE3QTFEQzBFQUQzNEMzRjUzRTA1NEQyODg5REZFQkM0OTIwQUMxN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGQpCNVAKbZSjlQ4ALV/oQQ9/f /n5ZqGqmxm7aYC5a+i0sdXOCyYqvy+2HtGHMKLX/OKz/FPBXy8y/lbEvQaPhLHUl GWGHfxRO48ni/RZ7qFF8FEbqoh4I6gMovbLCEMys1RF3Oo/gHUc5LX6KBOv+CUxw XilLfDQqo3/ME9Ab1tpE82C2m0DDV59Yu02M+RTOyKClMoLf9Pu/GRH/YsYFa/3/ Rr4JQENW+TwmTLE+TNC5uEjEG1YbifN2fSakDt19WOUQojIQqNrI/If8YNACsImj YOCErdc5qHWEL0ErynO6HigRZzdz+/DaRPB9/FzJ1yjOWRs2bAUs4o1BZE0rAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUF6HcDq00w/U+BU0oid/rxJIKwX8wHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4KDANBgkqhkiG 9w0BAQsFAAOCAQEATwyduSJgbZ+yJKvPf10pArI7ZIRDfo3a2A6fGoDHaajs4Id4 iWteLUN6wT5ToP2+wCjoyk2rSD+gqWYWU8Diuu88Vie7rmAcDXqbkOcAH7A4P6yt 5fVWyRQyeEXufJyQcpb4vwB+z4svPaCHnZNziMnL/ZW+PrqdEuvEttQ1c7E14yaT uQ1MOB7KqzXChn3ZL03NP/AE6Mhm0rwBo03BH9kmwGJ1FUWj0xFDOtRdmXmx33WW XJLgtoRPiGD0fuKYtS5kZjF1QiZlHIKznfHflFeoR8/n7MjAAOra4UpaVtA8zSc0 xP+ODbh2YzM7Kpbm9wgF3ULB3/OkGj7dPO8hJQ== -----END CERTIFICATE-----Generated at Sun May 5 22:03:30 2024 by rpki-client on console-fra.rpki-client.org