$ rpki-client -vvf repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/3230332e3131342e3232372e302f32342d3234203d3e203435373033.roa File: 3230332e3131342e3232372e302f32342d3234203d3e203435373033.roa (raw, json) Hash identifier: Qhz1RApXBe0gWEJjcaGGU332QJ8ddI3BbDQYhOlylDg= Subject key identifier: 77:EA:6E:2A:F9:2B:52:A9:53:A5:FB:A4:A7:38:9A:4C:4A:BE:C4:CF Certificate issuer: /CN=B7959E04EF090801395CE53E099D09F7AF2EF81B Certificate serial: 783D10518AB2BA3AAF35828A90119CFE2B52D75E Authority key identifier: B7:95:9E:04:EF:09:08:01:39:5C:E5:3E:09:9D:09:F7:AF:2E:F8:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7959E04EF090801395CE53E099D09F7AF2EF81B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/3230332e3131342e3232372e302f32342d3234203d3e203435373033.roa Signing time: Fri 14 Jun 2024 04:00:00 +0000 ROA not before: Fri 14 Jun 2024 03:55:00 +0000 ROA not after: Fri 13 Jun 2025 04:00:00 +0000 asID: 45703 IP address blocks: 203.114.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/B7959E04EF090801395CE53E099D09F7AF2EF81B.crl rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/B7959E04EF090801395CE53E099D09F7AF2EF81B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7959E04EF090801395CE53E099D09F7AF2EF81B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:3d:10:51:8a:b2:ba:3a:af:35:82:8a:90:11:9c:fe:2b:52:d7:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7959E04EF090801395CE53E099D09F7AF2EF81B Validity Not Before: Jun 14 03:55:00 2024 GMT Not After : Jun 13 04:00:00 2025 GMT Subject: CN=77EA6E2AF92B52A953A5FBA4A7389A4C4ABEC4CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4a:bf:47:e0:f2:7c:b2:03:aa:d1:90:5f:cf: fe:a6:d9:90:8c:d3:49:55:bc:d2:77:c0:22:63:52: cc:91:39:ef:4e:5d:d0:9f:65:75:90:8d:9d:9d:56: 83:b5:5c:00:11:f2:31:2c:ca:c2:45:d5:16:92:af: 43:fe:aa:3b:68:85:e8:11:e8:2d:40:50:41:88:f6: 26:b6:b2:c8:78:e3:f0:19:44:9a:31:b6:4a:7f:1a: 2c:26:04:cd:47:25:f0:ec:ee:be:1c:49:d4:a3:b5: 57:29:4c:f8:7b:fe:9b:f2:26:13:cc:f9:a1:63:91: a1:7e:20:19:dd:f7:f7:54:e3:17:90:74:82:94:db: d5:21:fd:68:2c:d4:7d:fe:ad:2e:99:28:41:f9:ca: a8:5b:30:f1:f4:31:99:c4:ca:c3:1c:20:7e:c4:45: 50:ab:0d:15:27:c4:41:25:3b:33:e5:b9:b8:df:9f: 06:8c:ef:31:9c:7b:1e:1e:85:39:dc:83:2f:aa:a8: 2d:89:9b:83:1f:0f:cf:db:8d:a2:9a:80:a3:19:8f: 93:63:5f:1d:94:d3:ed:99:65:76:8a:64:56:87:e1: b2:e6:41:68:19:52:1b:1e:7e:02:5c:55:88:3a:98: c4:a0:09:16:d8:6f:96:63:94:83:c1:ba:2f:91:33: f8:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:EA:6E:2A:F9:2B:52:A9:53:A5:FB:A4:A7:38:9A:4C:4A:BE:C4:CF X509v3 Authority Key Identifier: keyid:B7:95:9E:04:EF:09:08:01:39:5C:E5:3E:09:9D:09:F7:AF:2E:F8:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/B7959E04EF090801395CE53E099D09F7AF2EF81B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7959E04EF090801395CE53E099D09F7AF2EF81B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/3230332e3131342e3232372e302f32342d3234203d3e203435373033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.114.227.0/24 Signature Algorithm: sha256WithRSAEncryption 96:e4:02:b3:f5:ec:3f:b2:16:8e:a3:d8:50:8c:4e:f8:bc:80: 17:78:02:62:13:48:aa:3c:be:84:8c:4f:a1:dc:39:44:cc:af: 07:f3:8f:97:cc:22:c3:44:38:cc:5a:88:9b:0f:ea:8a:2b:11: 08:36:8f:4f:33:76:26:f6:7c:26:89:a8:17:5b:67:53:c9:e1: 68:0d:47:c8:e0:88:61:bc:d1:2c:59:79:f5:a6:db:c8:41:c1: 5c:30:cf:95:f0:e5:a2:dd:96:e9:e1:6e:95:18:35:f2:99:32: 2a:28:3f:39:5d:ad:b9:04:ec:87:0e:34:89:9e:1e:ad:83:62: 61:54:90:6e:89:04:23:f5:88:eb:5f:8f:0d:a7:7c:5a:74:8f: cb:4a:8a:a1:4d:8a:bd:1d:03:0a:0a:de:47:f3:8a:c5:f4:9d: 13:9e:95:dc:0a:37:df:c6:32:79:ee:ce:14:ba:f6:4a:57:7e: 50:8f:e7:97:31:7c:28:b4:ba:d4:29:8a:60:7c:8d:3f:1c:47: fd:03:77:27:b6:6c:b5:13:a9:ad:18:4b:8b:d3:3e:08:62:0a: bd:10:03:59:f9:4c:0f:ee:ce:0a:b0:b5:48:09:59:92:a7:2e: a0:e7:c6:69:df:d9:bd:ab:d8:78:3a:49:b3:34:fa:8e:e8:1c: 35:ab:f2:9f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeD0QUYqyujqvNYKKkBGc/itS114wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjc5NTlFMDRFRjA5MDgwMTM5NUNFNTNFMDk5RDA5RjdB RjJFRjgxQjAeFw0yNDA2MTQwMzU1MDBaFw0yNTA2MTMwNDAwMDBaMDMxMTAvBgNV BAMTKDc3RUE2RTJBRjkyQjUyQTk1M0E1RkJBNEE3Mzg5QTRDNEFCRUM0Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzSr9H4PJ8sgOq0ZBfz/6m2ZCM 00lVvNJ3wCJjUsyROe9OXdCfZXWQjZ2dVoO1XAAR8jEsysJF1RaSr0P+qjtohegR 6C1AUEGI9ia2ssh44/AZRJoxtkp/GiwmBM1HJfDs7r4cSdSjtVcpTPh7/pvyJhPM +aFjkaF+IBnd9/dU4xeQdIKU29Uh/Wgs1H3+rS6ZKEH5yqhbMPH0MZnEysMcIH7E RVCrDRUnxEElOzPlubjfnwaM7zGcex4ehTncgy+qqC2Jm4MfD8/bjaKagKMZj5Nj Xx2U0+2ZZXaKZFaH4bLmQWgZUhsefgJcVYg6mMSgCRbYb5ZjlIPBui+RM/hTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUd+puKvkrUqlTpfukpziaTEq+xM8wHwYDVR0j BBgwFoAUt5WeBO8JCAE5XOU+CZ0J968u+BswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDYzYWU3Yy1hNmZmLTRmZDgtOTZmMi0wYmExODgwMTMzYzcvMC9CNzk1OUUwNEVG MDkwODAxMzk1Q0U1M0UwOTlEMDlGN0FGMkVGODFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjc5NTlFMDRFRjA5MDgwMTM5NUNFNTNFMDk5RDA5RjdBRjJF RjgxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0NjNhZTdjLWE2ZmYtNGZkOC05 NmYyLTBiYTE4ODAxMzNjNy8wLzMyMzAzMzJlMzEzMTM0MmUzMjMyMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzczMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy3LjMA0GCSqG SIb3DQEBCwUAA4IBAQCW5AKz9ew/shaOo9hQjE74vIAXeAJiE0iqPL6EjE+h3DlE zK8H84+XzCLDRDjMWoibD+qKKxEINo9PM3Ym9nwmiagXW2dTyeFoDUfI4IhhvNEs WXn1ptvIQcFcMM+V8OWi3Zbp4W6VGDXymTIqKD85Xa25BOyHDjSJnh6tg2JhVJBu iQQj9YjrX48Np3xadI/LSoqhTYq9HQMKCt5H84rF9J0TnpXcCjffxjJ57s4UuvZK V35Qj+eXMXwotLrUKYpgfI0/HEf9A3cntmy1E6mtGEuL0z4IYgq9EANZ+UwP7s4K sLVICVmSpy6g58Zp39m9q9h4OkmzNPqO6Bw1q/Kf -----END CERTIFICATE-----Generated at Sat Nov 23 20:31:23 2024 by rpki-client on console-fra.rpki-client.org