$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34322e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e34322e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: T+SWFO13m2kN/1XsFtFDv/pk8oDn2YA821lnA+njwCE= Subject key identifier: E0:B1:88:E4:86:71:B5:65:E0:82:5D:DA:3D:E1:B2:13:D5:F2:5D:36 Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 61863903621028322E2F7F7FD5AB4979D926F4A8 Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34322e302f32342d3234203d3e203435333235.roa Signing time: Tue 05 Nov 2024 09:00:03 +0000 ROA not before: Tue 05 Nov 2024 08:55:03 +0000 ROA not after: Tue 04 Nov 2025 09:00:03 +0000 asID: 45325 IP address blocks: 122.248.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:86:39:03:62:10:28:32:2e:2f:7f:7f:d5:ab:49:79:d9:26:f4:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Nov 5 08:55:03 2024 GMT Not After : Nov 4 09:00:03 2025 GMT Subject: CN=E0B188E48671B565E0825DDA3DE1B213D5F25D36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b2:f4:9a:a2:f2:c8:a2:bd:51:91:23:10:d0: 1f:f6:81:94:81:5e:2d:7d:07:e9:f1:fb:a8:67:6f: 45:a6:61:27:a3:5c:3c:ba:4e:42:70:a9:5d:f0:7b: df:ac:f6:28:1a:09:a2:93:32:06:68:ba:c0:23:82: 51:95:1d:77:15:3f:f5:4d:db:60:b3:f3:72:13:02: 7c:9d:b8:ed:4c:33:75:0f:e7:d8:97:a1:ba:08:96: 39:17:7b:da:6a:a7:6b:e5:27:37:13:90:9e:9a:f7: a8:65:02:c4:a8:b5:da:a7:4a:5e:c0:bb:a9:fd:06: 91:bb:ae:21:cc:a9:5f:41:52:13:01:62:48:8a:7b: 6e:c5:3d:6e:57:ab:ab:06:80:16:23:c6:ea:af:f8: b9:94:51:ef:b6:77:68:f7:04:59:b0:90:7a:2c:2a: ba:cf:2c:5b:d9:5c:f6:39:4c:0d:e5:4f:b3:c8:89: 42:b7:c8:3f:8c:f2:3f:59:17:10:58:c1:05:f0:ed: d6:a6:cf:a2:5c:1f:4f:9c:ae:64:9a:ed:bb:9c:fd: 9a:2d:01:64:24:db:51:23:7c:ad:5b:22:63:7b:dc: 95:e6:9a:02:9d:b2:4f:9d:74:c9:d2:96:c7:8e:97: c1:f0:b2:e5:15:f6:39:d5:42:8c:05:2e:d8:8b:09: c2:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:B1:88:E4:86:71:B5:65:E0:82:5D:DA:3D:E1:B2:13:D5:F2:5D:36 X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34322e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.42.0/24 Signature Algorithm: sha256WithRSAEncryption a0:77:18:5c:5f:04:41:ad:45:11:e1:92:61:fa:f7:fc:2a:bf: c9:7e:b5:2e:75:6c:70:55:33:45:d0:b8:fd:ce:20:4c:d7:2a: 95:ba:54:7c:d1:58:7c:e0:54:ea:05:7d:a3:b6:7b:60:1a:17: 5e:d7:92:32:85:9d:c7:82:e9:99:29:98:bc:93:43:d3:32:57: 6d:d9:55:06:d7:21:d9:29:2d:a2:29:ed:e9:61:a9:0d:1f:05: 29:41:b4:04:4a:19:ff:c4:f7:bd:e4:a3:1e:87:51:95:ef:49: f5:38:83:0c:60:ba:ea:6a:7d:74:a3:5b:5a:cd:d4:24:eb:76: 8a:64:e6:aa:89:41:1b:a5:08:8c:de:98:e7:cf:e1:45:83:0f: ae:59:34:c2:d4:d9:0d:48:a1:94:12:c4:9d:b6:ef:2f:84:72: 3f:69:d1:b9:ef:28:30:e0:8d:62:de:61:e5:6e:2f:82:23:7b: 52:c3:7f:d3:1c:32:04:76:90:a7:a6:40:7c:14:50:60:dd:58: 66:df:ea:52:2a:46:34:81:e4:00:fa:51:51:34:1f:0b:17:60: 4d:e3:1c:84:91:7e:3a:8c:bb:c7:48:5b:fd:c3:6d:6f:cc:09: aa:26:f4:00:45:79:96:43:74:1d:61:ef:73:7e:9a:09:ac:d6: d0:55:79:70 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYYY5A2IQKDIuL39/1atJedkm9KgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yNDExMDUwODU1MDNaFw0yNTExMDQwOTAwMDNaMDMxMTAvBgNV BAMTKEUwQjE4OEU0ODY3MUI1NjVFMDgyNUREQTNERTFCMjEzRDVGMjVEMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrsvSaovLIor1RkSMQ0B/2gZSB Xi19B+nx+6hnb0WmYSejXDy6TkJwqV3we9+s9igaCaKTMgZousAjglGVHXcVP/VN 22Cz83ITAnyduO1MM3UP59iXoboIljkXe9pqp2vlJzcTkJ6a96hlAsSotdqnSl7A u6n9BpG7riHMqV9BUhMBYkiKe27FPW5Xq6sGgBYjxuqv+LmUUe+2d2j3BFmwkHos KrrPLFvZXPY5TA3lT7PIiUK3yD+M8j9ZFxBYwQXw7damz6JcH0+crmSa7buc/Zot AWQk21EjfK1bImN73JXmmgKdsk+ddMnSlseOl8HwsuUV9jnVQowFLtiLCcItAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4LGI5IZxtWXggl3aPeGyE9XyXTYwHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4KjANBgkqhkiG 9w0BAQsFAAOCAQEAoHcYXF8EQa1FEeGSYfr3/Cq/yX61LnVscFUzRdC4/c4gTNcq lbpUfNFYfOBU6gV9o7Z7YBoXXteSMoWdx4LpmSmYvJND0zJXbdlVBtch2Sktoint 6WGpDR8FKUG0BEoZ/8T3veSjHodRle9J9TiDDGC66mp9dKNbWs3UJOt2imTmqolB G6UIjN6Y58/hRYMPrlk0wtTZDUihlBLEnbbvL4RyP2nRue8oMOCNYt5h5W4vgiN7 UsN/0xwyBHaQp6ZAfBRQYN1YZt/qUipGNIHkAPpRUTQfCxdgTeMchJF+Ooy7x0hb /cNtb8wJqib0AEV5lkN0HWHvc36aCazW0FV5cA== -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:53 2024 by rpki-client on console-fra.rpki-client.org