$ rpki-client -vvf repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/3230332e3136312e32342e302f32312d3234203d3e20313338383233.roa File: 3230332e3136312e32342e302f32312d3234203d3e20313338383233.roa (raw, json) Hash identifier: lo4yxUtNCz4EjKhcrzQOe8Sn1VQNBaKuqAdNxONcvKA= Subject key identifier: 0A:2D:D1:DB:A6:F4:CB:5D:D1:79:84:CF:E6:9E:B3:B5:88:9E:9E:9C Certificate issuer: /CN=E2111F10F01C17C4A322DAF5076425FBD824219D Certificate serial: 7F99D49A593BE2380CCB964C9E4B71C8B0016E0D Authority key identifier: E2:11:1F:10:F0:1C:17:C4:A3:22:DA:F5:07:64:25:FB:D8:24:21:9D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2111F10F01C17C4A322DAF5076425FBD824219D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/3230332e3136312e32342e302f32312d3234203d3e20313338383233.roa Signing time: Sun 17 Sep 2023 10:00:00 +0000 ROA not before: Sun 17 Sep 2023 09:55:00 +0000 ROA not after: Sun 15 Sep 2024 10:00:00 +0000 asID: 138823 IP address blocks: 203.161.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/E2111F10F01C17C4A322DAF5076425FBD824219D.crl rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/E2111F10F01C17C4A322DAF5076425FBD824219D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2111F10F01C17C4A322DAF5076425FBD824219D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 02:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:99:d4:9a:59:3b:e2:38:0c:cb:96:4c:9e:4b:71:c8:b0:01:6e:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E2111F10F01C17C4A322DAF5076425FBD824219D Validity Not Before: Sep 17 09:55:00 2023 GMT Not After : Sep 15 10:00:00 2024 GMT Subject: CN=0A2DD1DBA6F4CB5DD17984CFE69EB3B5889E9E9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ca:86:ac:b6:3b:e6:11:3f:26:3c:82:d1:3f: 0a:49:46:b9:4f:f0:d0:36:27:09:d2:01:b8:2e:b0: d3:fe:02:3b:5d:8e:41:59:dc:43:d0:41:21:42:1a: e9:b1:1a:f2:4c:51:10:bc:42:f2:ca:79:ee:3e:e8: 16:76:e7:4a:f6:90:18:b5:00:16:a6:37:bb:bd:37: 6a:af:28:2e:21:c7:ad:eb:18:a5:9d:24:05:df:8d: da:08:17:0b:38:b0:0e:a2:5c:d5:3c:ef:80:fa:ca: f7:c4:b7:21:36:76:4b:02:8a:48:bb:59:9f:38:9c: 5a:ef:a5:66:84:45:ee:17:84:84:ec:fe:6e:03:57: 04:48:3a:bb:77:90:09:65:85:57:57:82:e3:9d:68: 1d:71:bb:2c:23:db:aa:83:9c:2d:7c:e4:ba:15:65: ae:c4:e2:9c:c3:f3:bf:e9:f8:25:82:8b:c9:bb:70: c4:ba:33:48:8e:ae:91:29:1b:1f:bf:33:47:35:ad: a7:81:39:4a:dc:ae:ea:f2:2c:54:ef:be:ef:be:0b: 00:af:46:af:e0:b2:a5:bb:44:0c:7d:99:e3:30:8c: 4e:40:67:da:40:fc:26:31:e6:70:db:1e:92:4e:33: 69:fa:25:8c:0f:22:33:55:58:83:cf:9e:54:48:07: 7c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:2D:D1:DB:A6:F4:CB:5D:D1:79:84:CF:E6:9E:B3:B5:88:9E:9E:9C X509v3 Authority Key Identifier: keyid:E2:11:1F:10:F0:1C:17:C4:A3:22:DA:F5:07:64:25:FB:D8:24:21:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/E2111F10F01C17C4A322DAF5076425FBD824219D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2111F10F01C17C4A322DAF5076425FBD824219D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/3230332e3136312e32342e302f32312d3234203d3e20313338383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.161.24.0/21 Signature Algorithm: sha256WithRSAEncryption e2:c7:d8:f5:3d:a7:bc:c2:ff:97:1c:be:fe:73:49:ca:67:ff: 2a:ca:da:5e:02:b2:f5:a4:6e:8a:08:79:d7:78:74:ab:50:7f: 78:f7:02:e3:56:8d:15:b5:ac:3e:ad:8a:a3:08:7d:2b:00:d4: 40:32:b3:e8:b2:cf:59:3d:21:49:8e:db:93:40:90:bd:54:0e: 03:b2:bd:d7:58:b5:be:c0:06:bc:0a:58:d2:44:73:66:45:4f: 0a:23:e6:7c:a5:6d:84:ed:d0:1b:5c:43:87:ef:02:a5:1d:12: c1:b9:72:d4:7f:4a:4c:de:fb:3e:ed:40:e9:1d:01:db:85:15: 2e:21:11:58:b2:79:2a:4d:c4:9e:12:7d:2b:ff:f8:7f:95:3b: ef:34:93:1a:94:88:99:c4:f1:02:46:24:ed:ad:51:34:51:33: d2:74:a9:a7:ab:7a:4c:18:03:37:c9:0c:cf:81:f1:d0:0f:74: 07:96:aa:0b:a1:98:b1:2a:d1:e4:cd:2e:d0:2b:39:e1:d0:e9: 5d:07:5a:aa:c0:05:c6:b5:dd:85:41:fa:70:26:5d:b7:eb:a7: 89:26:f3:72:08:70:c4:b8:c8:c5:35:d1:2e:a9:d4:7d:87:c9: 6b:f3:9f:20:7d:ae:6a:21:07:b3:d1:7d:e8:67:51:8a:05:61: 4e:0d:c7:ee -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUf5nUmlk74jgMy5ZMnktxyLABbg0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTIxMTFGMTBGMDFDMTdDNEEzMjJEQUY1MDc2NDI1RkJE ODI0MjE5RDAeFw0yMzA5MTcwOTU1MDBaFw0yNDA5MTUxMDAwMDBaMDMxMTAvBgNV BAMTKDBBMkREMURCQTZGNENCNUREMTc5ODRDRkU2OUVCM0I1ODg5RTlFOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCyoastjvmET8mPILRPwpJRrlP 8NA2JwnSAbgusNP+AjtdjkFZ3EPQQSFCGumxGvJMURC8QvLKee4+6BZ250r2kBi1 ABamN7u9N2qvKC4hx63rGKWdJAXfjdoIFws4sA6iXNU874D6yvfEtyE2dksCiki7 WZ84nFrvpWaERe4XhITs/m4DVwRIOrt3kAllhVdXguOdaB1xuywj26qDnC185LoV Za7E4pzD87/p+CWCi8m7cMS6M0iOrpEpGx+/M0c1raeBOUrcruryLFTvvu++CwCv Rq/gsqW7RAx9meMwjE5AZ9pA/CYx5nDbHpJOM2n6JYwPIjNVWIPPnlRIB3xrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCi3R26b0y13ReYTP5p6ztYienpwwHwYDVR0j BBgwFoAU4hEfEPAcF8SjItr1B2Ql+9gkIZ0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MjE1OGFlYy01MjgxLTQyZTYtOTc5Yi1mY2E2MWQ0N2M4NDUvMC9FMjExMUYxMEYw MUMxN0M0QTMyMkRBRjUwNzY0MjVGQkQ4MjQyMTlELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTIxMTFGMTBGMDFDMTdDNEEzMjJEQUY1MDc2NDI1RkJEODI0 MjE5RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyMTU4YWVjLTUyODEtNDJlNi05 NzliLWZjYTYxZDQ3Yzg0NS8wLzMyMzAzMzJlMzEzNjMxMmUzMjM0MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDy6EYMA0GCSqG SIb3DQEBCwUAA4IBAQDix9j1Pae8wv+XHL7+c0nKZ/8qytpeArL1pG6KCHnXeHSr UH949wLjVo0Vtaw+rYqjCH0rANRAMrPoss9ZPSFJjtuTQJC9VA4Dsr3XWLW+wAa8 CljSRHNmRU8KI+Z8pW2E7dAbXEOH7wKlHRLBuXLUf0pM3vs+7UDpHQHbhRUuIRFY snkqTcSeEn0r//h/lTvvNJMalIiZxPECRiTtrVE0UTPSdKmnq3pMGAM3yQzPgfHQ D3QHlqoLoZixKtHkzS7QKznh0OldB1qqwAXGtd2FQfpwJl2366eJJvNyCHDEuMjF NdEuqdR9h8lr858gfa5qIQez0X3oZ1GKBWFODcfu -----END CERTIFICATE-----Generated at Sat Apr 27 10:12:39 2024 by rpki-client on console-ams.rpki-client.org