$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34352e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e34352e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: sKqe/v72Bkg2bo/MAJzQwOx67n39YutbyZ1RMbwLFW4= Subject key identifier: 0F:8A:70:49:63:2E:D3:34:0C:3B:85:41:37:65:E8:D3:15:64:AC:58 Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 0E240493A88D063AAD157B3B505740006854C0C3 Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34352e302f32342d3234203d3e203435333235.roa Signing time: Tue 05 Nov 2024 09:00:02 +0000 ROA not before: Tue 05 Nov 2024 08:55:02 +0000 ROA not after: Tue 04 Nov 2025 09:00:02 +0000 asID: 45325 IP address blocks: 122.248.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:24:04:93:a8:8d:06:3a:ad:15:7b:3b:50:57:40:00:68:54:c0:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Nov 5 08:55:02 2024 GMT Not After : Nov 4 09:00:02 2025 GMT Subject: CN=0F8A7049632ED3340C3B85413765E8D31564AC58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c9:d9:00:4c:15:55:4f:5d:12:e0:f9:fa:91: dc:cf:67:82:7a:8e:a5:43:45:d8:68:46:5c:68:ee: 04:ea:c3:23:37:e9:f2:52:61:e1:7b:b3:94:3a:48: dd:94:07:3a:87:15:78:16:ac:97:e5:66:cf:e3:e4: 73:c9:09:82:98:76:9c:d8:7f:fd:37:0c:9f:a1:0d: f8:b3:9f:d9:be:45:02:26:27:2f:d9:af:c8:b7:0e: b4:c6:aa:0f:3a:68:37:9c:b5:81:be:7d:73:7d:cd: 4e:e0:50:34:4d:03:28:f8:1c:12:3b:f2:62:c8:a9: c8:2b:da:f8:6e:2c:55:eb:ee:20:2c:db:de:b9:c8: 49:54:fd:68:8f:eb:a9:96:00:3b:92:81:6e:28:fa: 5b:cd:78:0c:c2:94:ed:d2:b8:c7:2f:2f:36:1e:9d: 68:97:d4:ee:45:9a:c4:7c:92:7e:bc:35:81:2c:f5: 32:28:dc:bc:30:53:61:0b:e7:3b:9d:d6:ba:f7:b2: 71:6c:ca:fa:b3:41:fa:7e:30:74:c7:86:21:3d:e2: 88:c6:ee:b4:1e:da:ce:dd:b3:2c:1c:31:10:9a:96: 89:1c:8b:3e:57:77:fe:d3:c8:37:2a:8f:86:c6:b7: b7:7f:7f:59:d2:69:70:42:7b:6d:ae:98:b5:d5:7c: fa:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:8A:70:49:63:2E:D3:34:0C:3B:85:41:37:65:E8:D3:15:64:AC:58 X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34352e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.45.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:b7:af:cc:5c:0a:e1:cd:d9:b5:8a:76:e6:56:7d:71:b8:87: c9:ab:91:c7:38:c6:67:f2:77:d4:21:1a:47:2f:fe:8e:0a:9a: 42:5e:4f:d2:ed:12:21:a9:6e:56:f4:b5:55:83:5e:af:e8:d2: f6:1f:05:e2:0f:2a:00:d0:da:9a:6c:53:45:01:f4:db:55:8d: 85:70:34:e3:6f:cc:80:cc:6d:e3:9f:fb:60:d0:5a:1e:f7:4f: a4:1b:b6:b3:48:d6:bb:5b:44:f1:4c:94:de:bd:61:51:98:6c: 86:b3:37:20:33:fd:64:81:98:e6:0b:9a:e8:91:d9:f3:b3:6f: 4b:90:9f:25:5b:49:3f:47:f3:3b:f2:6f:47:ba:83:f4:65:0c: f5:bd:e0:3e:09:60:e7:00:20:68:87:36:f8:24:45:c5:01:c1: 76:2c:24:7a:a2:81:75:dc:3a:8d:27:f3:3a:ea:b9:e6:eb:60: 57:c4:0c:70:ff:9e:25:5c:0b:bc:c5:b5:dd:5b:ba:b0:ea:16: 4e:5d:c5:ee:12:14:b3:f3:16:49:15:d5:01:77:74:0d:74:ce: e6:db:34:61:80:14:a3:86:8b:7d:c9:e4:b0:e6:04:17:26:09: a6:44:8b:19:57:43:bb:b4:c3:28:fa:54:73:9e:69:02:69:23: c9:42:9e:db -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDiQEk6iNBjqtFXs7UFdAAGhUwMMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yNDExMDUwODU1MDJaFw0yNTExMDQwOTAwMDJaMDMxMTAvBgNV BAMTKDBGOEE3MDQ5NjMyRUQzMzQwQzNCODU0MTM3NjVFOEQzMTU2NEFDNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuydkATBVVT10S4Pn6kdzPZ4J6 jqVDRdhoRlxo7gTqwyM36fJSYeF7s5Q6SN2UBzqHFXgWrJflZs/j5HPJCYKYdpzY f/03DJ+hDfizn9m+RQImJy/Zr8i3DrTGqg86aDectYG+fXN9zU7gUDRNAyj4HBI7 8mLIqcgr2vhuLFXr7iAs2965yElU/WiP66mWADuSgW4o+lvNeAzClO3SuMcvLzYe nWiX1O5FmsR8kn68NYEs9TIo3LwwU2EL5zud1rr3snFsyvqzQfp+MHTHhiE94ojG 7rQe2s7dsywcMRCalokciz5Xd/7TyDcqj4bGt7d/f1nSaXBCe22umLXVfPptAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUD4pwSWMu0zQMO4VBN2Xo0xVkrFgwHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4LTANBgkqhkiG 9w0BAQsFAAOCAQEAnLevzFwK4c3ZtYp25lZ9cbiHyauRxzjGZ/J31CEaRy/+jgqa Ql5P0u0SIaluVvS1VYNer+jS9h8F4g8qANDammxTRQH021WNhXA042/MgMxt45/7 YNBaHvdPpBu2s0jWu1tE8UyU3r1hUZhshrM3IDP9ZIGY5gua6JHZ87NvS5CfJVtJ P0fzO/JvR7qD9GUM9b3gPglg5wAgaIc2+CRFxQHBdiwkeqKBddw6jSfzOuq55utg V8QMcP+eJVwLvMW13Vu6sOoWTl3F7hIUs/MWSRXVAXd0DXTO5ts0YYAUo4aLfcnk sOYEFyYJpkSLGVdDu7TDKPpUc55pAmkjyUKe2w== -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:53 2024 by rpki-client on console-fra.rpki-client.org