$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34322e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e34322e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: qg9tLQMKEeqpQ+2sWRIFylueX7SckTGbigm1yBOf6yk= Subject key identifier: 36:8F:F4:CA:67:E8:95:26:99:A5:91:23:A1:DB:B3:6F:45:14:22:E3 Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 03F72E0F2D36453D93B2E6C0D9E4C7B812DB1E7F Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34322e302f32342d3234203d3e203435333235.roa Signing time: Tue 05 Dec 2023 08:06:55 +0000 ROA not before: Tue 05 Dec 2023 08:01:55 +0000 ROA not after: Tue 03 Dec 2024 08:06:55 +0000 asID: 45325 IP address blocks: 122.248.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:f7:2e:0f:2d:36:45:3d:93:b2:e6:c0:d9:e4:c7:b8:12:db:1e:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Dec 5 08:01:55 2023 GMT Not After : Dec 3 08:06:55 2024 GMT Subject: CN=368FF4CA67E8952699A59123A1DBB36F451422E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7c:b8:58:6f:0b:48:cc:7b:ff:53:f8:29:8b: f5:92:ce:bb:3f:ad:bc:74:0c:cf:28:c2:54:fa:ac: 2a:dd:eb:77:a8:0c:5a:39:21:38:8a:9f:98:4a:10: 0e:bc:81:c5:09:0e:2b:3c:94:4f:2d:c8:b4:1c:e0: 98:1a:ae:70:a1:09:cb:57:33:1f:24:1e:b5:e2:ac: 4d:15:6a:a5:2c:94:94:40:59:8b:3b:d7:73:52:64: 44:ac:aa:cb:d5:7d:fb:19:c3:4f:51:6e:c5:7c:24: c1:68:6d:99:63:5b:61:c7:ed:c8:1e:00:ba:96:80: f8:d7:ad:08:2c:fb:27:c8:94:a8:8c:d5:df:03:f3: ef:d2:63:43:80:da:16:6c:d0:51:34:5c:b8:31:17: 37:9d:3a:79:a0:99:b7:c7:13:73:dd:71:3a:de:c4: 3c:7b:00:3b:5c:dd:0c:56:86:ce:05:1a:d3:6c:b8: 8c:4c:67:e4:22:de:74:72:b8:cb:9c:dc:62:54:ec: c4:94:bc:85:59:10:a7:5c:09:e0:b0:70:3d:ae:7f: f3:04:b0:48:94:5e:0e:b6:cf:37:c7:cb:a3:da:64: 86:5d:12:e5:e3:e9:bf:f6:f2:b3:cc:04:09:36:72: 16:70:4f:e1:97:c9:5f:77:e2:ff:99:5c:37:7a:c4: 00:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:8F:F4:CA:67:E8:95:26:99:A5:91:23:A1:DB:B3:6F:45:14:22:E3 X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34322e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.42.0/24 Signature Algorithm: sha256WithRSAEncryption 33:cb:78:2c:a7:9b:47:06:e7:81:44:3e:8b:c4:c6:61:4d:cd: 59:a3:94:68:6d:fb:32:28:ee:a9:68:cf:8e:a5:b0:40:66:f8: da:2f:b0:27:c1:64:1d:e3:e3:4f:3a:dd:f8:48:d2:67:60:6e: fb:50:3c:a2:46:0a:8f:d1:6e:0a:bf:0c:b1:db:ec:00:84:76: f1:9d:52:b3:5b:20:80:94:f4:a0:30:ed:7b:1c:a1:1c:3d:f6: 8a:e5:66:dc:65:3a:57:ea:5e:90:51:14:b6:7c:05:3a:55:8e: 53:ca:16:9c:b7:e6:5d:24:e4:29:00:e4:1c:8d:c2:c8:e3:2d: 0d:c3:8c:0e:60:57:b7:48:eb:99:db:34:c7:a2:94:df:1e:fd: 40:9a:39:cf:e7:29:c0:3e:36:e5:7a:1e:16:d3:33:3e:12:60: b6:c8:f3:89:b4:79:20:61:63:a7:6e:6d:f7:0d:89:96:1c:9d: 23:b6:16:db:ab:a8:15:8d:92:a7:ac:7e:6c:3d:38:15:d9:08: 38:e2:07:8f:60:1a:28:2e:72:87:97:0f:43:dc:7d:89:96:14: 59:50:21:7a:32:e1:9e:47:27:78:23:33:73:30:f2:2d:3f:2f: 2f:92:e9:de:a9:3a:6f:0e:91:9a:43:be:b8:3c:86:ba:21:a6: 96:e7:aa:5a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUA/cuDy02RT2TsubA2eTHuBLbHn8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yMzEyMDUwODAxNTVaFw0yNDEyMDMwODA2NTVaMDMxMTAvBgNV BAMTKDM2OEZGNENBNjdFODk1MjY5OUE1OTEyM0ExREJCMzZGNDUxNDIyRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwfLhYbwtIzHv/U/gpi/WSzrs/ rbx0DM8owlT6rCrd63eoDFo5ITiKn5hKEA68gcUJDis8lE8tyLQc4JgarnChCctX Mx8kHrXirE0VaqUslJRAWYs713NSZESsqsvVffsZw09RbsV8JMFobZljW2HH7cge ALqWgPjXrQgs+yfIlKiM1d8D8+/SY0OA2hZs0FE0XLgxFzedOnmgmbfHE3PdcTre xDx7ADtc3QxWhs4FGtNsuIxMZ+Qi3nRyuMuc3GJU7MSUvIVZEKdcCeCwcD2uf/ME sEiUXg62zzfHy6PaZIZdEuXj6b/28rPMBAk2chZwT+GXyV934v+ZXDd6xABNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNo/0ymfolSaZpZEjoduzb0UUIuMwHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4KjANBgkqhkiG 9w0BAQsFAAOCAQEAM8t4LKebRwbngUQ+i8TGYU3NWaOUaG37MijuqWjPjqWwQGb4 2i+wJ8FkHePjTzrd+EjSZ2Bu+1A8okYKj9FuCr8MsdvsAIR28Z1Ss1sggJT0oDDt exyhHD32iuVm3GU6V+pekFEUtnwFOlWOU8oWnLfmXSTkKQDkHI3CyOMtDcOMDmBX t0jrmds0x6KU3x79QJo5z+cpwD425XoeFtMzPhJgtsjzibR5IGFjp25t9w2Jlhyd I7YW26uoFY2Sp6x+bD04FdkIOOIHj2AaKC5yh5cPQ9x9iZYUWVAhejLhnkcneCMz czDyLT8vL5Lp3qk6bw6RmkO+uDyGuiGmlueqWg== -----END CERTIFICATE-----Generated at Sun May 5 22:36:38 2024 by rpki-client on console-ams.rpki-client.org