$ rpki-client -vvf repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/3230322e39352e3132382e302f31392d3234203d3e2039383735.roa File: 3230322e39352e3132382e302f31392d3234203d3e2039383735.roa (raw, json) Hash identifier: bK7PeScu6XHhz2xJEcDpC7NmFTLmb33Y24c0SZj9KXQ= Subject key identifier: 76:2A:A7:60:DE:61:A7:F1:BD:CB:9C:89:15:81:FF:26:0F:6C:FE:6B Certificate issuer: /CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Certificate serial: 11D3821E5FB227851A140C2B8BFC61EC04482415 Authority key identifier: F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/3230322e39352e3132382e302f31392d3234203d3e2039383735.roa Signing time: Fri 01 Mar 2024 08:02:01 +0000 ROA not before: Fri 01 Mar 2024 07:57:01 +0000 ROA not after: Fri 28 Feb 2025 08:02:01 +0000 asID: 9875 IP address blocks: 202.95.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:d3:82:1e:5f:b2:27:85:1a:14:0c:2b:8b:fc:61:ec:04:48:24:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Validity Not Before: Mar 1 07:57:01 2024 GMT Not After : Feb 28 08:02:01 2025 GMT Subject: CN=762AA760DE61A7F1BDCB9C891581FF260F6CFE6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:51:d4:f5:dc:98:5e:a0:7e:3f:37:17:43:e5: d9:c8:ba:5f:c9:28:4b:bd:11:b1:ee:22:7d:56:5e: 79:2b:2b:6e:c7:0f:94:cb:79:64:6e:d8:ad:de:fa: b2:1c:b9:6b:c1:f6:63:c1:7c:d1:eb:26:a2:44:a5: eb:cb:7a:cd:ce:94:ab:5e:2d:8b:b6:d2:9a:78:96: 57:07:54:a1:c0:8d:99:36:d3:78:49:fa:f4:7b:42: af:12:89:8a:b2:f6:67:88:69:e9:1d:76:25:eb:8c: 91:27:a1:73:83:7b:37:02:d8:f7:2c:19:17:1a:c9: 30:92:7d:4a:e2:f4:d4:cb:34:41:49:fd:d1:ff:2d: 75:65:8b:c9:60:a2:09:66:c1:a0:ec:df:50:36:ac: aa:e5:2a:6a:d9:2b:66:41:0d:54:75:3a:f6:92:f7: 69:d6:70:06:e1:3c:fd:92:64:3b:d7:53:d1:61:a9: 94:ff:63:d6:cc:8a:91:62:c1:33:2f:91:d7:8b:6f: 84:b5:85:aa:36:5d:76:0b:d4:ae:21:9d:c9:77:db: 8a:77:28:38:ad:1e:2b:dd:ec:6f:08:3a:cb:2c:61: f1:a3:34:70:04:7a:76:62:79:d6:a6:81:38:c1:4c: 1d:be:bc:db:b9:fd:a7:0b:39:7c:cf:07:32:e2:f4: d2:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:2A:A7:60:DE:61:A7:F1:BD:CB:9C:89:15:81:FF:26:0F:6C:FE:6B X509v3 Authority Key Identifier: keyid:F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/3230322e39352e3132382e302f31392d3234203d3e2039383735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.95.128.0/19 Signature Algorithm: sha256WithRSAEncryption a9:4d:7c:5f:c4:3b:88:f2:26:01:63:30:78:e7:dc:d2:7b:ea: 8b:ee:2e:e9:aa:71:5a:90:e9:b7:15:dd:ce:7d:55:78:92:e7: 94:09:57:e2:59:03:b8:99:dc:22:80:49:ae:0d:31:f5:c1:30: e5:2b:d6:ea:99:c7:a3:bf:61:22:4b:84:7d:6f:c3:78:3c:dc: 00:c2:5e:28:71:1a:1a:af:87:1f:3c:91:00:25:c7:76:1d:29: 61:af:c7:30:dc:91:a7:cf:e9:02:48:9d:e5:e5:83:df:eb:b8: ac:eb:12:41:34:e1:1a:0f:76:7c:0a:54:fc:59:c7:02:7d:27: 19:48:21:d7:cc:cf:27:4e:9d:83:f1:bb:d2:78:ca:ce:91:17: 90:01:fd:c5:d2:b7:11:ae:4d:e7:1e:57:0e:8e:5c:3f:31:e8: 91:d7:57:42:d0:8f:49:48:dd:8c:70:14:2d:9d:9e:ac:75:56: 99:d9:95:86:e3:3f:8d:53:f2:25:cb:54:e2:f1:5c:85:2c:3f: a0:3d:e7:c0:59:22:2e:6b:95:dd:b2:0f:2f:a6:bc:ba:6c:6c: 4a:4d:ff:7a:bc:6c:db:8b:1a:e3:f3:81:a6:7c:55:77:b5:4c: 75:3c:98:7b:4c:c9:91:c6:fc:61:33:7c:fe:cb:0e:c3:11:c0: 12:99:fe:de -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUEdOCHl+yJ4UaFAwri/xh7ARIJBUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZG MjhGODA2NjAeFw0yNDAzMDEwNzU3MDFaFw0yNTAyMjgwODAyMDFaMDMxMTAvBgNV BAMTKDc2MkFBNzYwREU2MUE3RjFCRENCOUM4OTE1ODFGRjI2MEY2Q0ZFNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDUdT13JheoH4/NxdD5dnIul/J KEu9EbHuIn1WXnkrK27HD5TLeWRu2K3e+rIcuWvB9mPBfNHrJqJEpevLes3OlKte LYu20pp4llcHVKHAjZk203hJ+vR7Qq8SiYqy9meIaekddiXrjJEnoXODezcC2Pcs GRcayTCSfUri9NTLNEFJ/dH/LXVli8lgoglmwaDs31A2rKrlKmrZK2ZBDVR1OvaS 92nWcAbhPP2SZDvXU9FhqZT/Y9bMipFiwTMvkdeLb4S1hao2XXYL1K4hncl324p3 KDitHivd7G8IOsssYfGjNHAEenZiedamgTjBTB2+vNu5/acLOXzPBzLi9NKpAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUdiqnYN5hp/G9y5yJFYH/Jg9s/mswHwYDVR0j BBgwFoAU8zEnsiUkVLSRxdyf45N8VvKPgGYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmJmZTc3Ni0wMGEzLTQ3NzYtYmYzZi01MjExOTQ2MTAxYzMvMC9GMzMxMjdCMjI1 MjQ1NEI0OTFDNURDOUZFMzkzN0M1NkYyOEY4MDY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZGMjhG ODA2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViYmZlNzc2LTAwYTMtNDc3Ni1i ZjNmLTUyMTE5NDYxMDFjMy8wLzMyMzAzMjJlMzkzNTJlMzEzMjM4MmUzMDJmMzEz OTJkMzIzNDIwM2QzZTIwMzkzODM3MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXKX4AwDQYJKoZIhvcN AQELBQADggEBAKlNfF/EO4jyJgFjMHjn3NJ76ovuLumqcVqQ6bcV3c59VXiS55QJ V+JZA7iZ3CKASa4NMfXBMOUr1uqZx6O/YSJLhH1vw3g83ADCXihxGhqvhx88kQAl x3YdKWGvxzDckafP6QJIneXlg9/ruKzrEkE04RoPdnwKVPxZxwJ9JxlIIdfMzydO nYPxu9J4ys6RF5AB/cXStxGuTeceVw6OXD8x6JHXV0LQj0lI3YxwFC2dnqx1VpnZ lYbjP41T8iXLVOLxXIUsP6A958BZIi5rld2yDy+mvLpsbEpN/3q8bNuLGuPzgaZ8 VXe1THU8mHtMyZHG/GEzfP7LDsMRwBKZ/t4= -----END CERTIFICATE-----Generated at Sat May 4 02:34:30 2024 by rpki-client on console-fra.rpki-client.org