$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3132352e3230382e3132382e302f31382d3234203d3e2034373837.roa File: 3132352e3230382e3132382e302f31382d3234203d3e2034373837.roa (raw, json) Hash identifier: AZNZKkH1GQiVLP7BEKsLUDDMAUPAyMg46B/w908VaBY= Subject key identifier: 8E:8B:88:23:EB:62:FB:10:06:17:5D:5C:50:39:E2:C7:2E:76:02:C5 Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 6364A73DBB2597AC33A722CEA8AAA6A88C683E1D Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3132352e3230382e3132382e302f31382d3234203d3e2034373837.roa Signing time: Mon 22 Jul 2024 16:37:24 +0000 ROA not before: Mon 22 Jul 2024 16:32:24 +0000 ROA not after: Mon 21 Jul 2025 16:37:24 +0000 asID: 4787 IP address blocks: 125.208.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:64:a7:3d:bb:25:97:ac:33:a7:22:ce:a8:aa:a6:a8:8c:68:3e:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Jul 22 16:32:24 2024 GMT Not After : Jul 21 16:37:24 2025 GMT Subject: CN=8E8B8823EB62FB1006175D5C5039E2C72E7602C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:82:2b:14:d6:eb:4d:95:bd:36:d6:5d:1d:47: 54:2b:4e:3f:e1:47:32:f2:8b:a3:0a:83:7e:6c:bf: a4:84:fa:19:d8:c7:4e:ab:89:84:c5:b4:18:61:a5: 56:7d:f9:50:74:50:71:96:f4:e2:af:41:84:87:fc: a6:8c:30:24:e7:e4:12:7a:93:d1:49:4c:da:5a:36: 27:91:83:da:91:dc:c8:4c:b7:f4:89:14:69:07:cb: 5d:86:88:50:33:58:16:ec:9f:5c:de:28:66:34:ec: e5:bc:92:c8:5b:eb:c8:8d:b1:dc:fb:a1:97:53:8d: b5:ea:8f:6e:49:61:6d:fc:c1:4f:ef:6e:f8:b4:d2: 9e:01:6d:4e:3a:41:d4:b7:19:fa:46:c3:24:b0:3c: 16:9f:8c:ca:50:a4:ce:fb:72:c4:bf:dc:67:28:1c: 51:77:43:7a:d9:af:60:05:77:d8:11:38:4a:b2:0a: 3f:ae:77:b6:a8:0f:0a:10:77:bc:db:55:f1:1b:1d: b1:b8:15:85:0d:d5:b1:9e:3f:19:99:2a:3d:56:8d: a5:0f:da:0e:96:6e:65:e8:fe:d6:61:ce:f1:45:9a: 1e:4b:84:e5:0c:bd:de:60:2a:25:90:39:a7:67:1c: 4a:74:cc:18:aa:0c:05:bb:cc:21:5a:05:ec:67:6a: 32:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:8B:88:23:EB:62:FB:10:06:17:5D:5C:50:39:E2:C7:2E:76:02:C5 X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3132352e3230382e3132382e302f31382d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 125.208.128.0/18 Signature Algorithm: sha256WithRSAEncryption 97:49:8a:d3:41:a2:58:5d:83:27:12:20:37:e0:3e:08:ae:28: 48:da:bf:66:a4:04:5f:cc:0b:08:6f:40:31:57:33:4a:dc:62: 74:54:9b:f0:91:28:ed:7c:3d:8f:1a:0e:63:5f:52:77:1e:5b: ad:87:e1:77:aa:f0:76:8c:89:08:0d:73:72:20:48:3f:df:26: 2e:e7:3d:10:c7:c5:73:dd:3d:a7:6b:29:0a:ee:ba:25:cc:20: 29:73:a4:91:c7:6a:3d:60:57:1c:22:f1:53:0f:31:a8:96:77: 9f:d7:72:c5:41:ec:8f:9c:0f:a5:3d:70:01:32:93:e2:77:b0: a7:42:db:e7:bf:ba:33:bc:ba:8f:ad:a6:39:59:0d:60:19:83: 32:f0:ca:98:03:cf:1a:a9:7e:12:60:4d:49:d4:0a:4b:c2:13: 65:21:d7:c3:4d:a9:2c:26:95:d6:b8:d5:b3:d7:f7:ac:3a:a8: ab:12:fd:dd:ab:48:1b:64:86:87:f6:d8:78:9c:29:14:a4:79: b1:0d:9a:dc:da:32:9f:f1:41:7f:03:f3:ea:30:50:06:94:01: ce:00:ce:8e:b1:85:ed:14:aa:d4:d4:7d:3a:35:aa:35:45:2e: 5c:e9:66:d5:01:a2:78:69:36:a7:88:7a:c2:bc:1b:2a:8d:f0: 82:b8:c2:ee -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUY2SnPbsll6wzpyLOqKqmqIxoPh0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yNDA3MjIxNjMyMjRaFw0yNTA3MjExNjM3MjRaMDMxMTAvBgNV BAMTKDhFOEI4ODIzRUI2MkZCMTAwNjE3NUQ1QzUwMzlFMkM3MkU3NjAyQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7gisU1utNlb021l0dR1QrTj/h RzLyi6MKg35sv6SE+hnYx06riYTFtBhhpVZ9+VB0UHGW9OKvQYSH/KaMMCTn5BJ6 k9FJTNpaNieRg9qR3MhMt/SJFGkHy12GiFAzWBbsn1zeKGY07OW8kshb68iNsdz7 oZdTjbXqj25JYW38wU/vbvi00p4BbU46QdS3GfpGwySwPBafjMpQpM77csS/3Gco HFF3Q3rZr2AFd9gROEqyCj+ud7aoDwoQd7zbVfEbHbG4FYUN1bGePxmZKj1WjaUP 2g6WbmXo/tZhzvFFmh5LhOUMvd5gKiWQOadnHEp0zBiqDAW7zCFaBexnajLFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjouII+ti+xAGF11cUDnixy52AsUwHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMxMzIzNTJlMzIzMDM4MmUzMTMyMzgyZTMwMmYz MTM4MmQzMjM0MjAzZDNlMjAzNDM3MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBn3QgDANBgkqhkiG 9w0BAQsFAAOCAQEAl0mK00GiWF2DJxIgN+A+CK4oSNq/ZqQEX8wLCG9AMVczStxi dFSb8JEo7Xw9jxoOY19Sdx5brYfhd6rwdoyJCA1zciBIP98mLuc9EMfFc909p2sp Cu66JcwgKXOkkcdqPWBXHCLxUw8xqJZ3n9dyxUHsj5wPpT1wATKT4newp0Lb57+6 M7y6j62mOVkNYBmDMvDKmAPPGql+EmBNSdQKS8ITZSHXw02pLCaV1rjVs9f3rDqo qxL93atIG2SGh/bYeJwpFKR5sQ2a3Noyn/FBfwPz6jBQBpQBzgDOjrGF7RSq1NR9 OjWqNUUuXOlm1QGieGk2p4h6wrwbKo3wgrjC7g== -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:40 2024 by rpki-client on console-fra.rpki-client.org