$ rpki-client -vvf repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3230332e38392e32342e302f32312d3234203d3e203234353231.roa File: 3230332e38392e32342e302f32312d3234203d3e203234353231.roa (raw, json) Hash identifier: syMxoH32sVPHfiuDKx0dcV1rG21CMB4OxA/QueWQFVc= Subject key identifier: D7:5F:BB:B1:7E:88:5C:15:09:9A:3F:38:49:17:CB:A6:90:EE:00:BA Certificate issuer: /CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Certificate serial: 0F7C3AA3077A0474C79B720DD045CDAAB74631B4 Authority key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3230332e38392e32342e302f32312d3234203d3e203234353231.roa Signing time: Mon 01 Jul 2024 01:03:51 +0000 ROA not before: Mon 01 Jul 2024 00:58:51 +0000 ROA not after: Mon 30 Jun 2025 01:03:51 +0000 asID: 24521 IP address blocks: 203.89.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:7c:3a:a3:07:7a:04:74:c7:9b:72:0d:d0:45:cd:aa:b7:46:31:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Validity Not Before: Jul 1 00:58:51 2024 GMT Not After : Jun 30 01:03:51 2025 GMT Subject: CN=D75FBBB17E885C15099A3F384917CBA690EE00BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:7b:56:83:e9:f9:80:c5:21:19:86:b7:4d:60: c5:40:09:a3:53:fd:7c:5c:31:f9:9f:6a:33:63:64: 06:3b:21:d3:92:fa:f4:c8:4f:d3:20:0f:df:95:55: 10:5b:14:e3:28:6d:2b:8b:79:0d:0e:e1:15:ca:12: f4:65:bb:cb:b9:c7:26:63:ba:40:39:79:e3:5a:b4: d8:e9:ab:5d:69:5e:f2:b2:74:6f:43:01:e7:f5:d1: 61:ec:ab:1d:ef:87:80:d6:22:33:22:1a:9a:55:16: 89:5c:91:f5:48:6a:79:97:a2:44:2e:cc:e7:30:dc: 62:a0:e0:31:90:7d:02:0e:11:f6:63:2d:69:8b:d9: 80:c9:e8:6f:ce:a1:38:72:2c:c9:7d:87:1f:ce:59: 36:2a:57:75:16:e3:cb:2c:64:01:f3:4b:99:94:46: 77:97:02:2d:cd:9d:83:3c:af:85:bc:7c:d9:1a:47: 6b:cb:54:d9:2f:5c:9f:30:f6:17:94:26:65:f6:28: 2e:4d:c6:5f:ce:73:be:f9:d3:cc:c0:5b:b7:40:ad: 99:bf:35:49:78:ce:ae:63:06:01:ec:c7:ea:7f:12: d4:0d:b0:c9:de:61:d0:2c:76:06:f5:59:ba:2f:3b: 08:4c:a7:06:15:b1:49:1f:eb:12:03:17:0a:b8:8d: ad:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:5F:BB:B1:7E:88:5C:15:09:9A:3F:38:49:17:CB:A6:90:EE:00:BA X509v3 Authority Key Identifier: keyid:C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3230332e38392e32342e302f32312d3234203d3e203234353231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.89.24.0/21 Signature Algorithm: sha256WithRSAEncryption 7c:c8:09:77:22:7d:46:b0:f1:96:40:12:c8:f9:88:1b:2e:00: 67:31:0f:a8:8e:0d:7f:01:a0:b3:88:65:a8:69:e1:1a:fd:3a: ad:6c:03:cd:8c:d1:8d:fd:ae:a8:93:40:70:1d:cf:21:d1:63: 7f:77:13:8b:78:07:7d:97:09:10:72:f7:68:fb:bf:be:d6:10: f8:d4:ba:19:66:7f:d3:01:80:af:ba:3b:10:29:e5:bc:ec:b8: 58:8e:d6:e6:16:a3:4b:9d:33:bb:1c:08:34:46:59:2a:d9:42: 01:3a:71:e0:c2:4b:f0:55:db:d3:2f:dc:c5:60:a4:24:da:da: af:a8:76:07:44:ba:65:81:c6:05:ef:52:03:a1:d8:d0:b4:5a: ed:03:ad:75:f6:07:5d:00:6c:fc:04:b0:b1:90:bf:8a:55:ee: 1e:1d:6d:ee:f6:1c:4d:34:ad:07:ec:fb:3d:7e:2f:6d:ff:03: 56:08:f2:31:e7:90:83:b7:72:62:48:36:3b:52:c6:1a:3e:a2: 6a:9b:e0:e1:53:5f:6d:d4:64:f8:ea:1c:1d:cc:47:6e:b5:60: 9e:20:40:29:1e:e7:56:a8:39:fc:be:39:b5:c8:ba:8f:a3:b2: 4e:29:ba:e6:4b:6f:ee:14:3b:4e:07:48:1d:ab:bb:1f:a4:eb: 8d:33:c8:3c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUD3w6owd6BHTHm3IN0EXNqrdGMbQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgz QjI3MUUzRTAeFw0yNDA3MDEwMDU4NTFaFw0yNTA2MzAwMTAzNTFaMDMxMTAvBgNV BAMTKEQ3NUZCQkIxN0U4ODVDMTUwOTlBM0YzODQ5MTdDQkE2OTBFRTAwQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCae1aD6fmAxSEZhrdNYMVACaNT /XxcMfmfajNjZAY7IdOS+vTIT9MgD9+VVRBbFOMobSuLeQ0O4RXKEvRlu8u5xyZj ukA5eeNatNjpq11pXvKydG9DAef10WHsqx3vh4DWIjMiGppVFolckfVIanmXokQu zOcw3GKg4DGQfQIOEfZjLWmL2YDJ6G/OoThyLMl9hx/OWTYqV3UW48ssZAHzS5mU RneXAi3NnYM8r4W8fNkaR2vLVNkvXJ8w9heUJmX2KC5Nxl/Oc77508zAW7dArZm/ NUl4zq5jBgHsx+p/EtQNsMneYdAsdgb1WbovOwhMpwYVsUkf6xIDFwq4ja0FAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU11+7sX6IXBUJmj84SRfLppDuALowHwYDVR0j BBgwFoAUw/dF7ef0wNjlZ0lltSCACDsnHj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMC9DM0Y3NDVFREU3 RjRDMEQ4RTU2NzQ5NjVCNTIwODAwODNCMjcxRTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgzQjI3 MUUzRS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIxLTFiN2ItNDY3MS1h Yjk0LTVjNWU3NDg4MjU0Ny8wLzMyMzAzMzJlMzgzOTJlMzIzNDJlMzAyZjMyMzEy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPLWRgwDQYJKoZIhvcN AQELBQADggEBAHzICXcifUaw8ZZAEsj5iBsuAGcxD6iODX8BoLOIZahp4Rr9Oq1s A82M0Y39rqiTQHAdzyHRY393E4t4B32XCRBy92j7v77WEPjUuhlmf9MBgK+6OxAp 5bzsuFiO1uYWo0udM7scCDRGWSrZQgE6ceDCS/BV29Mv3MVgpCTa2q+odgdEumWB xgXvUgOh2NC0Wu0DrXX2B10AbPwEsLGQv4pV7h4dbe72HE00rQfs+z1+L23/A1YI 8jHnkIO3cmJINjtSxho+omqb4OFTX23UZPjqHB3MR261YJ4gQCke51aoOfy+ObXI uo+jsk4puuZLb+4UO04HSB2rux+k640zyDw= -----END CERTIFICATE-----Generated at Sun Nov 24 08:01:25 2024 by rpki-client on console-fra.rpki-client.org