$ rpki-client -vvf repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/3230322e3136302e3133392e302f32342d3234203d3e20313334363337.roa File: 3230322e3136302e3133392e302f32342d3234203d3e20313334363337.roa (raw, json) Hash identifier: ay9FqNgqakgPU86pod+cWStCSanG5DJcEkdA8/rLFKk= Subject key identifier: B4:23:5A:28:26:B2:54:DD:C1:ED:BE:A6:19:71:4C:C5:EC:68:5A:6B Certificate issuer: /CN=027DBEC91021154263BB0CF1565833705023D987 Certificate serial: 2E84A1D0A7B0B113A33240F27E3EC812156154CA Authority key identifier: 02:7D:BE:C9:10:21:15:42:63:BB:0C:F1:56:58:33:70:50:23:D9:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/027DBEC91021154263BB0CF1565833705023D987.cer Subject info access: rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/3230322e3136302e3133392e302f32342d3234203d3e20313334363337.roa Signing time: Tue 20 Feb 2024 08:27:47 +0000 ROA not before: Tue 20 Feb 2024 08:22:47 +0000 ROA not after: Tue 18 Feb 2025 08:27:47 +0000 asID: 134637 IP address blocks: 202.160.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/027DBEC91021154263BB0CF1565833705023D987.crl rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/027DBEC91021154263BB0CF1565833705023D987.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/027DBEC91021154263BB0CF1565833705023D987.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:84:a1:d0:a7:b0:b1:13:a3:32:40:f2:7e:3e:c8:12:15:61:54:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=027DBEC91021154263BB0CF1565833705023D987 Validity Not Before: Feb 20 08:22:47 2024 GMT Not After : Feb 18 08:27:47 2025 GMT Subject: CN=B4235A2826B254DDC1EDBEA619714CC5EC685A6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:54:77:53:c3:4a:0d:82:25:8e:7a:f7:bc:0f: 2e:28:8e:72:a0:ed:06:b9:ab:d4:fe:4e:2b:ee:e7: 79:ed:9c:82:40:48:a6:4e:1c:c6:fc:2e:f9:9f:79: db:4e:85:28:72:42:c9:bd:05:07:7c:61:88:3c:cb: f9:74:e4:21:03:cd:27:c5:b2:63:3f:81:5f:2f:ed: a9:a5:ae:7e:2c:90:e5:8c:27:b2:df:27:49:d0:73: 45:49:eb:42:df:3c:6c:7b:a0:cb:9f:cf:f7:5e:6b: 5f:d0:06:34:b0:ea:d4:26:0e:13:98:fe:44:0c:40: 55:db:be:ca:70:63:80:76:05:fd:87:aa:ce:94:43: f5:9d:29:c6:09:27:49:33:7a:96:24:3e:d8:29:63: 84:21:c0:e4:93:c2:95:c6:66:99:a5:91:67:5f:21: 56:24:11:89:ab:67:bb:4a:47:c0:8e:49:6d:ed:dc: ea:d9:c4:13:28:c0:93:dd:30:cf:f6:97:05:3a:99: 03:33:11:90:d4:8d:7b:42:ca:c0:9d:2c:cb:78:d5: 01:b0:b5:49:a2:f3:be:db:ad:66:21:2e:d9:5c:a3: 9b:76:00:c5:6e:8d:28:97:a7:ba:34:39:51:44:7b: f2:9e:db:23:51:be:1f:d1:ce:d3:b8:be:a4:68:f3: 24:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:23:5A:28:26:B2:54:DD:C1:ED:BE:A6:19:71:4C:C5:EC:68:5A:6B X509v3 Authority Key Identifier: keyid:02:7D:BE:C9:10:21:15:42:63:BB:0C:F1:56:58:33:70:50:23:D9:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/027DBEC91021154263BB0CF1565833705023D987.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/027DBEC91021154263BB0CF1565833705023D987.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/3230322e3136302e3133392e302f32342d3234203d3e20313334363337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.160.139.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:65:aa:dd:c0:5d:ca:c7:6d:b9:64:33:f2:54:5c:73:64:5f: 08:54:20:3e:d2:4d:28:0f:65:f6:c4:8c:3b:48:29:cb:86:2f: 10:fc:0d:b9:2b:8b:f1:98:5f:6f:2b:8f:ef:62:2a:f7:b8:40: 72:30:c0:d8:0b:dc:12:b3:40:f2:77:a8:cb:06:a5:13:fa:cd: a8:aa:ad:02:e4:25:10:a1:c9:32:53:9f:d0:d0:1e:77:bd:0b: 5d:8e:aa:d3:c1:34:a5:f1:9f:4c:9a:d8:d3:f3:a0:ae:2d:0b: 37:f3:b8:fa:30:ac:7f:94:f8:a8:d4:50:5e:c9:47:33:31:19: 59:da:02:72:d3:af:14:6b:75:86:8b:db:e2:d2:1d:a7:51:db: 1c:d1:40:0a:2d:6b:7d:7e:8f:13:34:e5:7a:40:b4:22:de:5d: 71:3a:28:10:60:f5:23:97:bc:4d:6e:57:c1:d4:6f:c4:17:12: 23:0a:f2:1a:a4:14:96:34:b1:72:10:cc:8c:af:85:5d:0d:ea: fc:5e:22:31:1a:b0:d7:c2:2d:dd:4e:d2:fb:2f:e1:3b:68:e5: 6f:36:85:9f:33:5b:a0:d0:42:da:89:9c:44:26:a8:a4:7f:9e: 2a:a1:8f:f4:2a:a5:dd:59:f7:80:3e:8d:55:62:89:5d:46:d5: 90:af:7c:59 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULoSh0KewsROjMkDyfj7IEhVhVMowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI3REJFQzkxMDIxMTU0MjYzQkIwQ0YxNTY1ODMzNzA1 MDIzRDk4NzAeFw0yNDAyMjAwODIyNDdaFw0yNTAyMTgwODI3NDdaMDMxMTAvBgNV BAMTKEI0MjM1QTI4MjZCMjU0RERDMUVEQkVBNjE5NzE0Q0M1RUM2ODVBNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRVHdTw0oNgiWOeve8Dy4ojnKg 7Qa5q9T+Tivu53ntnIJASKZOHMb8LvmfedtOhShyQsm9BQd8YYg8y/l05CEDzSfF smM/gV8v7amlrn4skOWMJ7LfJ0nQc0VJ60LfPGx7oMufz/dea1/QBjSw6tQmDhOY /kQMQFXbvspwY4B2Bf2Hqs6UQ/WdKcYJJ0kzepYkPtgpY4QhwOSTwpXGZpmlkWdf IVYkEYmrZ7tKR8COSW3t3OrZxBMowJPdMM/2lwU6mQMzEZDUjXtCysCdLMt41QGw tUmi877brWYhLtlco5t2AMVujSiXp7o0OVFEe/Ke2yNRvh/RztO4vqRo8yQ1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtCNaKCayVN3B7b6mGXFMxexoWmswHwYDVR0j BBgwFoAUAn2+yRAhFUJjuwzxVlgzcFAj2YcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzRmMjE0YS1iZjU1LTQwNDgtODQ1ZC0yMDY3NWZiNWYyYTQvMC8wMjdEQkVDOTEw MjExNTQyNjNCQjBDRjE1NjU4MzM3MDUwMjNEOTg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI3REJFQzkxMDIxMTU0MjYzQkIwQ0YxNTY1ODMzNzA1MDIz RDk4Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA3NGYyMTRhLWJmNTUtNDA0OC04 NDVkLTIwNjc1ZmI1ZjJhNC8wLzMyMzAzMjJlMzEzNjMwMmUzMTMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKoIswDQYJ KoZIhvcNAQELBQADggEBAJplqt3AXcrHbblkM/JUXHNkXwhUID7STSgPZfbEjDtI KcuGLxD8Dbkri/GYX28rj+9iKve4QHIwwNgL3BKzQPJ3qMsGpRP6zaiqrQLkJRCh yTJTn9DQHne9C12OqtPBNKXxn0ya2NPzoK4tCzfzuPowrH+U+KjUUF7JRzMxGVna AnLTrxRrdYaL2+LSHadR2xzRQAota31+jxM05XpAtCLeXXE6KBBg9SOXvE1uV8HU b8QXEiMK8hqkFJY0sXIQzIyvhV0N6vxeIjEasNfCLd1O0vsv4Tto5W82hZ8zW6DQ QtqJnEQmqKR/niqhj/Qqpd1Z94A+jVViiV1G1ZCvfFk= -----END CERTIFICATE-----Generated at Sat Jun 1 09:09:42 2024 by rpki-client on console-fra.rpki-client.org