$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34312e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e34312e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: WQ720U4S99SeEIPGAMPrXzE0oNhC79BMDbo0SDUiMMw= Subject key identifier: 92:CF:8F:BE:07:AD:6E:C4:7A:F9:33:E5:AA:A8:F2:24:4C:D6:F6:37 Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 04DAC3F1D47ABD0628F97E46A6DB2A09EFF2245E Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34312e302f32342d3234203d3e203435333235.roa Signing time: Tue 05 Nov 2024 09:00:03 +0000 ROA not before: Tue 05 Nov 2024 08:55:03 +0000 ROA not after: Tue 04 Nov 2025 09:00:03 +0000 asID: 45325 IP address blocks: 122.248.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:da:c3:f1:d4:7a:bd:06:28:f9:7e:46:a6:db:2a:09:ef:f2:24:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Nov 5 08:55:03 2024 GMT Not After : Nov 4 09:00:03 2025 GMT Subject: CN=92CF8FBE07AD6EC47AF933E5AAA8F2244CD6F637 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:18:dc:45:9d:7b:88:b6:14:f5:86:dd:0c:b2: 2f:c5:a9:32:60:3f:ca:8b:f8:b3:d3:ba:5d:0a:26: aa:ad:85:57:23:1b:ea:fd:60:ca:9a:50:4f:4a:53: a4:81:5a:9c:69:e4:bb:f5:8f:dc:5c:4b:a5:f0:e8: ad:8f:96:3e:7e:2e:39:56:32:e3:fb:35:62:54:26: ee:87:fd:c9:47:5d:57:f8:b6:0e:26:f0:a0:83:c8: e6:c3:b0:45:56:0e:de:09:03:61:7f:1a:c1:f1:c8: 7e:b7:56:b6:63:8b:8a:37:5e:6f:ab:6b:29:a8:fe: d3:6e:ff:da:bd:03:7e:4d:9b:69:14:d9:65:56:ab: 03:95:94:8b:48:b1:a1:9c:08:36:32:b9:95:6f:b3: a2:2d:b8:cc:cc:fe:19:c0:ef:5e:12:2e:d7:fb:11: 1e:98:a6:ee:9f:67:b0:93:ca:91:5a:79:ac:76:d3: fa:e0:46:26:76:67:2c:ea:20:6d:aa:ae:2d:95:df: 2d:b4:d4:2d:a8:ab:67:57:b4:91:bc:d9:41:68:6b: 11:67:ee:db:a1:ab:68:d5:1b:09:c4:95:8a:c2:14: 2d:a3:1a:dc:92:b3:30:e9:2c:a5:1a:e3:3e:af:4b: 96:44:cb:b0:d5:0a:79:c2:86:6d:57:8b:9b:12:8a: 8b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:CF:8F:BE:07:AD:6E:C4:7A:F9:33:E5:AA:A8:F2:24:4C:D6:F6:37 X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34312e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.41.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:7f:3c:58:3f:6e:f5:fd:5d:dd:09:ec:ea:30:cf:80:da:b8: 9d:d8:9b:a4:c9:61:4b:d8:5c:eb:b3:5d:af:da:e6:74:f3:ac: 2c:2a:1a:c9:b5:59:4b:f0:88:e5:a6:d4:90:9b:9a:cc:6f:ac: 79:3c:e9:76:2a:ac:d6:46:cd:75:86:bc:60:2d:a6:0a:9f:b6: 4a:af:33:c5:8e:38:42:16:6f:36:72:c1:dc:08:ba:4b:8c:26: d3:e2:5d:da:7c:fc:58:52:5f:5b:db:39:b4:8c:63:4b:51:4b: 6c:f5:73:2e:fc:7c:62:3f:43:85:0d:42:8a:4a:f6:54:3f:86: fd:db:75:33:ab:6a:b5:23:9d:b5:f5:95:5a:42:c8:7a:7d:72: 38:ce:86:5c:f3:b9:3a:49:9f:9d:07:c3:72:6e:5d:28:4e:a5: a2:52:ea:44:42:ef:1e:d4:a3:2e:c7:12:ff:3e:17:fd:82:53: 4b:e9:94:b0:76:f3:91:e8:be:dc:cd:b9:9c:15:f3:b8:b2:41: b3:2f:a7:68:80:ba:f2:7e:83:27:ab:89:eb:e2:29:1c:01:50: dc:cf:39:ee:c7:e6:e2:24:7b:76:8c:45:9d:52:cd:a4:e1:93: 39:50:92:be:5e:4e:33:b3:d5:d1:8d:e8:94:b2:70:45:13:b0: d5:50:fd:d1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBNrD8dR6vQYo+X5GptsqCe/yJF4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yNDExMDUwODU1MDNaFw0yNTExMDQwOTAwMDNaMDMxMTAvBgNV BAMTKDkyQ0Y4RkJFMDdBRDZFQzQ3QUY5MzNFNUFBQThGMjI0NENENkY2MzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTGNxFnXuIthT1ht0Msi/FqTJg P8qL+LPTul0KJqqthVcjG+r9YMqaUE9KU6SBWpxp5Lv1j9xcS6Xw6K2Plj5+LjlW MuP7NWJUJu6H/clHXVf4tg4m8KCDyObDsEVWDt4JA2F/GsHxyH63VrZji4o3Xm+r aymo/tNu/9q9A35Nm2kU2WVWqwOVlItIsaGcCDYyuZVvs6ItuMzM/hnA714SLtf7 ER6Ypu6fZ7CTypFaeax20/rgRiZ2ZyzqIG2qri2V3y201C2oq2dXtJG82UFoaxFn 7tuhq2jVGwnElYrCFC2jGtySszDpLKUa4z6vS5ZEy7DVCnnChm1Xi5sSiovnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUks+PvgetbsR6+TPlqqjyJEzW9jcwHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4KTANBgkqhkiG 9w0BAQsFAAOCAQEAO388WD9u9f1d3Qns6jDPgNq4ndibpMlhS9hc67Ndr9rmdPOs LCoaybVZS/CI5abUkJuazG+seTzpdiqs1kbNdYa8YC2mCp+2Sq8zxY44QhZvNnLB 3Ai6S4wm0+Jd2nz8WFJfW9s5tIxjS1FLbPVzLvx8Yj9DhQ1Cikr2VD+G/dt1M6tq tSOdtfWVWkLIen1yOM6GXPO5OkmfnQfDcm5dKE6lolLqRELvHtSjLscS/z4X/YJT S+mUsHbzkei+3M25nBXzuLJBsy+naIC68n6DJ6uJ6+IpHAFQ3M857sfm4iR7doxF nVLNpOGTOVCSvl5OM7PV0Y3olLJwRROw1VD90Q== -----END CERTIFICATE-----Generated at Thu Nov 21 05:34:49 2024 by rpki-client on console-ams.rpki-client.org