$ rpki-client -vvf repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/3230332e3131342e3232362e302f32342d3234203d3e203435373033.roa File: 3230332e3131342e3232362e302f32342d3234203d3e203435373033.roa (raw, json) Hash identifier: LWGboPtK+gSwHRL85RymH7WpCh3CMf7M7Q8ltJJ+Juc= Subject key identifier: BD:3B:F0:EE:86:67:99:5B:DE:7B:82:14:D1:66:26:7C:8A:0C:3C:3B Certificate issuer: /CN=B7959E04EF090801395CE53E099D09F7AF2EF81B Certificate serial: 3B8D1620F9217A23EBE97AE664F9F14F27E63089 Authority key identifier: B7:95:9E:04:EF:09:08:01:39:5C:E5:3E:09:9D:09:F7:AF:2E:F8:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7959E04EF090801395CE53E099D09F7AF2EF81B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/3230332e3131342e3232362e302f32342d3234203d3e203435373033.roa Signing time: Fri 14 Jun 2024 04:00:00 +0000 ROA not before: Fri 14 Jun 2024 03:55:00 +0000 ROA not after: Fri 13 Jun 2025 04:00:00 +0000 asID: 45703 IP address blocks: 203.114.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/B7959E04EF090801395CE53E099D09F7AF2EF81B.crl rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/B7959E04EF090801395CE53E099D09F7AF2EF81B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7959E04EF090801395CE53E099D09F7AF2EF81B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:8d:16:20:f9:21:7a:23:eb:e9:7a:e6:64:f9:f1:4f:27:e6:30:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7959E04EF090801395CE53E099D09F7AF2EF81B Validity Not Before: Jun 14 03:55:00 2024 GMT Not After : Jun 13 04:00:00 2025 GMT Subject: CN=BD3BF0EE8667995BDE7B8214D166267C8A0C3C3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2b:fd:2c:c9:31:81:a4:08:63:1d:d4:51:bb: e9:73:02:1b:9c:51:59:6f:00:da:0a:54:f1:5f:18: f0:da:90:f0:14:f4:50:21:64:7d:16:1a:3a:b7:b7: 30:ef:e7:57:cb:6d:07:f7:ee:33:ea:74:1f:81:32: 27:3c:3e:ef:09:5f:84:29:3b:c1:09:8e:d9:83:90: 43:f5:8d:5f:54:b6:d6:de:10:38:4d:2c:f8:1d:61: 4d:85:89:4d:b3:72:cc:22:27:2d:e8:62:0d:13:75: 45:42:c2:e6:4f:83:ae:43:ea:1c:e3:29:36:22:dc: 15:1d:ac:9a:e0:79:1d:e6:2c:6d:34:36:e3:76:b7: a1:f4:c4:80:b2:0f:c3:3a:e7:bc:03:f7:5b:e6:7c: 86:71:e9:69:3e:0e:83:67:17:85:b1:3b:d3:8c:c6: dd:3b:51:3b:63:65:dd:34:6c:08:9b:64:81:1a:de: 45:2b:98:89:8c:af:ee:27:82:84:d1:81:7f:96:7e: c1:e8:47:bc:ed:09:17:85:74:0e:f9:14:d0:87:d4: a5:08:d2:ce:da:d1:7a:9e:c3:04:49:c7:6d:d2:5e: 26:29:e5:a5:e0:bb:ca:92:04:cb:e2:7f:de:c2:b9: 2b:c9:0a:76:86:0d:0d:c2:c8:d7:00:5c:39:63:8a: 62:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:3B:F0:EE:86:67:99:5B:DE:7B:82:14:D1:66:26:7C:8A:0C:3C:3B X509v3 Authority Key Identifier: keyid:B7:95:9E:04:EF:09:08:01:39:5C:E5:3E:09:9D:09:F7:AF:2E:F8:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/B7959E04EF090801395CE53E099D09F7AF2EF81B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7959E04EF090801395CE53E099D09F7AF2EF81B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/3230332e3131342e3232362e302f32342d3234203d3e203435373033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.114.226.0/24 Signature Algorithm: sha256WithRSAEncryption 01:a3:91:b3:e2:78:cc:19:a8:e4:c6:6f:aa:e4:1d:99:54:84: fa:47:7e:25:5d:89:92:df:09:0b:3b:ec:78:2b:79:d6:44:87: 89:2c:34:a6:fc:ce:55:00:2e:9d:6f:10:1c:0c:2f:c3:13:e9: 00:67:17:ab:15:8e:c9:fa:e1:9b:54:49:2e:13:90:27:1d:1c: 86:a9:0e:4e:9a:a1:7b:83:2b:83:d4:d4:ed:36:cb:04:d9:df: 3d:e5:5c:49:e2:68:07:ca:1a:8a:bd:20:fd:2a:20:f9:75:90: 5a:7a:26:e3:f7:37:da:5b:99:a5:22:e8:6c:3a:2e:79:47:6c: a1:88:38:ca:66:4d:c4:f4:1f:63:6a:c6:4b:7c:eb:1c:63:e5: 4c:96:05:3a:48:a3:b1:e9:6c:5e:69:b8:e2:96:74:c2:f8:50: 33:fd:22:f1:11:23:4e:59:e8:44:d3:c1:c7:76:bb:72:ca:96: 70:f4:89:b2:43:37:28:66:99:38:39:70:08:fe:de:8e:5a:34: 25:8a:53:2c:84:48:c9:d4:ac:b0:0f:22:d5:34:df:de:8d:90: 13:fa:04:24:65:9b:b4:d3:7c:89:73:1f:95:d9:f9:d8:7b:e6: f8:ce:66:dd:42:39:9d:d1:8b:85:d7:a9:b6:b8:e9:d7:25:cf: e0:1b:4b:6d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUO40WIPkheiPr6XrmZPnxTyfmMIkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjc5NTlFMDRFRjA5MDgwMTM5NUNFNTNFMDk5RDA5RjdB RjJFRjgxQjAeFw0yNDA2MTQwMzU1MDBaFw0yNTA2MTMwNDAwMDBaMDMxMTAvBgNV BAMTKEJEM0JGMEVFODY2Nzk5NUJERTdCODIxNEQxNjYyNjdDOEEwQzNDM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOK/0syTGBpAhjHdRRu+lzAhuc UVlvANoKVPFfGPDakPAU9FAhZH0WGjq3tzDv51fLbQf37jPqdB+BMic8Pu8JX4Qp O8EJjtmDkEP1jV9UttbeEDhNLPgdYU2FiU2zcswiJy3oYg0TdUVCwuZPg65D6hzj KTYi3BUdrJrgeR3mLG00NuN2t6H0xICyD8M657wD91vmfIZx6Wk+DoNnF4WxO9OM xt07UTtjZd00bAibZIEa3kUrmImMr+4ngoTRgX+WfsHoR7ztCReFdA75FNCH1KUI 0s7a0XqewwRJx23SXiYp5aXgu8qSBMvif97CuSvJCnaGDQ3CyNcAXDljimIvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvTvw7oZnmVvee4IU0WYmfIoMPDswHwYDVR0j BBgwFoAUt5WeBO8JCAE5XOU+CZ0J968u+BswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDYzYWU3Yy1hNmZmLTRmZDgtOTZmMi0wYmExODgwMTMzYzcvMC9CNzk1OUUwNEVG MDkwODAxMzk1Q0U1M0UwOTlEMDlGN0FGMkVGODFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjc5NTlFMDRFRjA5MDgwMTM5NUNFNTNFMDk5RDA5RjdBRjJF RjgxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0NjNhZTdjLWE2ZmYtNGZkOC05 NmYyLTBiYTE4ODAxMzNjNy8wLzMyMzAzMzJlMzEzMTM0MmUzMjMyMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzczMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy3LiMA0GCSqG SIb3DQEBCwUAA4IBAQABo5Gz4njMGajkxm+q5B2ZVIT6R34lXYmS3wkLO+x4K3nW RIeJLDSm/M5VAC6dbxAcDC/DE+kAZxerFY7J+uGbVEkuE5AnHRyGqQ5OmqF7gyuD 1NTtNssE2d895VxJ4mgHyhqKvSD9KiD5dZBaeibj9zfaW5mlIuhsOi55R2yhiDjK Zk3E9B9jasZLfOscY+VMlgU6SKOx6WxeabjilnTC+FAz/SLxESNOWehE08HHdrty ypZw9ImyQzcoZpk4OXAI/t6OWjQlilMshEjJ1KywDyLVNN/ejZAT+gQkZZu003yJ cx+V2fnYe+b4zmbdQjmd0YuF16m2uOnXJc/gG0tt -----END CERTIFICATE-----Generated at Sat Nov 23 20:17:06 2024 by rpki-client on console-ams.rpki-client.org