$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34372e302f32342d3234203d3e203435333235.roa File: 3132322e3234382e34372e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: t3QPana5dKtmAJku6Sp1iCaXTk1w2+3k2/ByjnqYvFA= Subject key identifier: 10:1A:E5:C6:37:84:14:8C:91:88:82:D8:10:30:63:DC:AE:23:10:DA Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 799B79FF7A0E45D1C77083E8477BA5283064E2F8 Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34372e302f32342d3234203d3e203435333235.roa Signing time: Tue 05 Dec 2023 09:49:32 +0000 ROA not before: Tue 05 Dec 2023 09:44:32 +0000 ROA not after: Tue 03 Dec 2024 09:49:32 +0000 asID: 45325 IP address blocks: 122.248.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:9b:79:ff:7a:0e:45:d1:c7:70:83:e8:47:7b:a5:28:30:64:e2:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Dec 5 09:44:32 2023 GMT Not After : Dec 3 09:49:32 2024 GMT Subject: CN=101AE5C63784148C918882D8103063DCAE2310DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d8:da:ee:7d:45:ec:ae:30:73:ce:63:8c:11: 7f:0b:13:9d:03:4e:a0:dc:5e:ad:22:47:99:d8:28: fd:21:e4:c0:96:1d:99:34:3d:54:ee:53:d4:56:55: 23:74:20:dc:e2:e2:c1:28:f7:70:8f:e3:fe:a6:06: 12:a5:66:d6:08:38:e4:e4:00:f8:38:2e:05:f3:14: fc:26:1e:db:2d:35:67:2c:f8:42:91:15:40:d0:2d: e4:b2:f0:fc:61:3f:3f:e3:1b:6c:79:71:75:bb:7e: f0:db:48:12:aa:f6:45:bf:35:9f:62:51:57:a3:af: 51:c3:08:a2:cd:8b:48:4a:14:1c:76:e1:d4:26:59: 7e:31:d2:51:4a:54:1a:d4:db:3c:ff:16:9f:4d:b4: b4:1d:e3:2c:e4:5c:61:1d:ea:c6:ab:e3:58:e6:5d: 80:12:3d:92:6c:31:98:1f:22:3f:8c:24:95:74:08: e4:ea:46:37:b5:65:58:1d:d7:7d:13:61:77:51:8a: 22:96:89:94:f0:be:71:64:97:98:a0:6b:9d:09:6e: a3:f5:fb:dd:43:6b:42:ad:c7:d0:dd:c8:ec:6d:62: 1f:2d:aa:22:9c:8a:b2:77:a7:e9:64:93:5d:4a:3d: 18:5a:45:60:09:09:ca:68:55:e5:89:96:ea:8f:bd: cf:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:1A:E5:C6:37:84:14:8C:91:88:82:D8:10:30:63:DC:AE:23:10:DA X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34372e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.47.0/24 Signature Algorithm: sha256WithRSAEncryption 96:a5:7b:3a:b5:8d:85:b4:6c:29:c3:62:27:f3:4d:52:47:a4: 54:8b:cf:d5:74:ff:4f:30:9c:f5:72:45:6f:ed:54:a2:33:7d: f1:c9:ad:14:f3:86:51:e1:aa:bd:ec:ec:d2:5d:d1:a3:23:a3: 25:5e:50:f6:11:5c:6b:2c:b9:75:2a:63:cf:96:3e:94:1b:6e: 8d:5e:e2:7c:21:37:c5:27:31:04:e5:9c:25:b9:73:d6:a5:d4: 26:af:c2:97:85:a8:4a:6d:34:b9:97:7f:7a:dc:d8:f5:3c:9f: b4:8a:9b:dc:bc:a7:fe:3f:34:f7:53:10:2a:3e:92:1b:9c:1a: 6e:39:2b:13:16:8f:34:64:a7:e0:92:24:5a:9e:13:03:fc:c6: 34:25:85:9e:aa:f0:8a:d4:d7:ae:fd:3b:7c:22:43:79:6a:49: 08:9d:24:46:ff:ad:f3:9d:db:10:7a:bd:96:17:f6:38:ce:30: 1b:e9:50:b3:05:29:38:31:cd:4f:2f:4d:3d:2d:57:d1:90:91: b4:44:6c:9c:6d:55:36:84:01:fc:68:b1:33:be:7e:ff:6a:eb: 5b:db:57:ba:ce:28:9a:64:db:8e:fb:ba:df:19:8c:18:5d:c7: 56:aa:0f:35:9a:be:98:53:96:ec:20:bc:70:9f:07:7d:5c:1b: 17:0e:a4:86 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeZt5/3oORdHHcIPoR3ulKDBk4vgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yMzEyMDUwOTQ0MzJaFw0yNDEyMDMwOTQ5MzJaMDMxMTAvBgNV BAMTKDEwMUFFNUM2Mzc4NDE0OEM5MTg4ODJEODEwMzA2M0RDQUUyMzEwREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZ2NrufUXsrjBzzmOMEX8LE50D TqDcXq0iR5nYKP0h5MCWHZk0PVTuU9RWVSN0INzi4sEo93CP4/6mBhKlZtYIOOTk APg4LgXzFPwmHtstNWcs+EKRFUDQLeSy8PxhPz/jG2x5cXW7fvDbSBKq9kW/NZ9i UVejr1HDCKLNi0hKFBx24dQmWX4x0lFKVBrU2zz/Fp9NtLQd4yzkXGEd6sar41jm XYASPZJsMZgfIj+MJJV0COTqRje1ZVgd130TYXdRiiKWiZTwvnFkl5iga50JbqP1 +91Da0Ktx9DdyOxtYh8tqiKcirJ3p+lkk11KPRhaRWAJCcpoVeWJluqPvc8vAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUEBrlxjeEFIyRiILYEDBj3K4jENowHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzNDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4LzANBgkqhkiG 9w0BAQsFAAOCAQEAlqV7OrWNhbRsKcNiJ/NNUkekVIvP1XT/TzCc9XJFb+1UojN9 8cmtFPOGUeGqvezs0l3RoyOjJV5Q9hFcayy5dSpjz5Y+lBtujV7ifCE3xScxBOWc Jblz1qXUJq/Cl4WoSm00uZd/etzY9TyftIqb3Lyn/j8091MQKj6SG5wabjkrExaP NGSn4JIkWp4TA/zGNCWFnqrwitTXrv07fCJDeWpJCJ0kRv+t853bEHq9lhf2OM4w G+lQswUpODHNTy9NPS1X0ZCRtERsnG1VNoQB/GixM75+/2rrW9tXus4ommTbjvu6 3xmMGF3HVqoPNZq+mFOW7CC8cJ8HfVwbFw6khg== -----END CERTIFICATE-----Generated at Sun May 5 22:36:38 2024 by rpki-client on console-ams.rpki-client.org