$ rpki-client -vvf repo-rpki.idnic.net/repo/083977f4-8c2d-4eb1-b4cd-35b49216e073/0/3230322e35322e34382e302f32332d3234203d3e203436303535.roa File: 3230322e35322e34382e302f32332d3234203d3e203436303535.roa (raw, json) Hash identifier: RObXqV2h2Y7B94Dk0WIVsNRj4cjkiSDSsAdqCU52AWM= Subject key identifier: 5A:97:3A:93:7B:F0:3E:9E:CF:4C:3E:9B:DD:0B:4F:B5:0A:ED:3C:A6 Certificate issuer: /CN=FBD3B28C9075529DEE8151C4E44B0CBC13FFDA91 Certificate serial: 63ABED391F0F1600634D49DBDD7C0E5B794B4227 Authority key identifier: FB:D3:B2:8C:90:75:52:9D:EE:81:51:C4:E4:4B:0C:BC:13:FF:DA:91 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBD3B28C9075529DEE8151C4E44B0CBC13FFDA91.cer Subject info access: rsync://repo-rpki.idnic.net/repo/083977f4-8c2d-4eb1-b4cd-35b49216e073/0/3230322e35322e34382e302f32332d3234203d3e203436303535.roa Signing time: Wed 24 Jul 2024 14:01:02 +0000 ROA not before: Wed 24 Jul 2024 13:56:02 +0000 ROA not after: Wed 23 Jul 2025 14:01:02 +0000 asID: 46055 IP address blocks: 202.52.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/083977f4-8c2d-4eb1-b4cd-35b49216e073/0/FBD3B28C9075529DEE8151C4E44B0CBC13FFDA91.crl rsync://repo-rpki.idnic.net/repo/083977f4-8c2d-4eb1-b4cd-35b49216e073/0/FBD3B28C9075529DEE8151C4E44B0CBC13FFDA91.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBD3B28C9075529DEE8151C4E44B0CBC13FFDA91.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:ab:ed:39:1f:0f:16:00:63:4d:49:db:dd:7c:0e:5b:79:4b:42:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FBD3B28C9075529DEE8151C4E44B0CBC13FFDA91 Validity Not Before: Jul 24 13:56:02 2024 GMT Not After : Jul 23 14:01:02 2025 GMT Subject: CN=5A973A937BF03E9ECF4C3E9BDD0B4FB50AED3CA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e7:89:6a:72:81:fd:bb:b5:57:9f:32:ff:87: 4e:2a:56:24:48:96:a5:24:ae:1c:13:fc:2a:f5:bb: 44:11:c6:60:b9:3c:db:f3:a9:87:57:0a:9e:18:42: 50:1d:cc:77:be:8a:9c:32:89:6b:7a:b8:f7:fb:4f: a2:f4:1b:ab:3b:63:b0:7f:a2:93:d1:43:24:b8:86: ca:a4:13:a8:44:c7:1e:7d:45:0a:ca:35:da:42:02: 62:20:d4:a8:8b:f6:30:c4:e3:7e:cc:ab:18:09:58: 02:0c:ce:2c:15:69:df:73:2e:45:d8:43:01:c6:38: 0d:67:f1:da:31:af:37:8c:90:8e:de:9b:f5:5a:d6: 65:fd:af:9a:52:4d:7d:46:6a:17:ed:a2:10:85:d2: a6:6b:97:c8:fd:06:78:51:84:24:cd:40:8b:2e:b1: 85:9d:21:9d:a1:ec:3a:83:44:bc:c3:57:c1:d4:eb: 67:50:16:c6:60:40:6d:79:48:ba:cf:ec:c9:f8:16: c1:1f:02:e9:e5:d3:2a:4a:5c:6e:94:df:c8:af:70: 7b:73:9c:dd:a4:f6:6f:54:53:3d:60:e8:c2:81:e7: 27:63:56:3d:56:5e:3a:e3:16:fe:31:53:9f:87:63: 9b:07:8c:f1:eb:ef:01:ce:9c:51:5b:09:9a:48:32: a6:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:97:3A:93:7B:F0:3E:9E:CF:4C:3E:9B:DD:0B:4F:B5:0A:ED:3C:A6 X509v3 Authority Key Identifier: keyid:FB:D3:B2:8C:90:75:52:9D:EE:81:51:C4:E4:4B:0C:BC:13:FF:DA:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/083977f4-8c2d-4eb1-b4cd-35b49216e073/0/FBD3B28C9075529DEE8151C4E44B0CBC13FFDA91.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBD3B28C9075529DEE8151C4E44B0CBC13FFDA91.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/083977f4-8c2d-4eb1-b4cd-35b49216e073/0/3230322e35322e34382e302f32332d3234203d3e203436303535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.52.48.0/23 Signature Algorithm: sha256WithRSAEncryption f6:3b:dc:6c:db:a2:9b:42:c2:45:cd:c5:30:d4:9f:9d:37:80: cc:78:db:cb:5d:b0:8b:ce:11:4f:4d:2a:a5:b1:a9:06:b5:de: 70:3d:a2:7b:00:01:a0:d1:26:28:ee:11:ca:3d:7b:a9:de:d0: 4d:a9:27:df:ee:92:2e:cb:db:6b:28:3d:be:55:84:0f:ff:57: 41:af:8c:e6:6d:3e:b5:ee:3a:8d:e5:f8:5d:a1:a8:ce:e7:61: 9f:6a:68:cf:e6:ba:d4:ef:19:6a:9b:cb:bb:16:e5:b7:81:35: 9f:74:bd:b7:ef:00:5c:bd:06:d5:53:d7:24:16:7f:11:d0:e6: 2e:9e:e3:b7:70:96:7a:8f:ee:a7:a2:d1:f8:35:01:a9:da:cb: 3e:c5:15:cc:a6:f9:7b:57:12:91:22:f1:5d:94:1c:03:79:25: 82:bb:5e:52:04:1c:61:bb:2d:39:25:32:96:bd:48:4a:f8:b3: 72:1a:c6:cb:98:53:ac:24:48:99:3f:91:27:bc:e0:ab:03:73: 72:c7:df:2a:ef:85:13:8a:e2:e0:95:af:7a:b7:f6:d0:da:13: bc:fe:72:9c:61:f1:30:fd:ac:78:d9:28:ad:2a:40:cd:ef:a0: cc:2d:24:7f:3a:cf:7b:64:55:f6:83:08:c0:43:d7:d8:bc:48: 69:f3:4d:47 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUY6vtOR8PFgBjTUnb3XwOW3lLQicwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkJEM0IyOEM5MDc1NTI5REVFODE1MUM0RTQ0QjBDQkMx M0ZGREE5MTAeFw0yNDA3MjQxMzU2MDJaFw0yNTA3MjMxNDAxMDJaMDMxMTAvBgNV BAMTKDVBOTczQTkzN0JGMDNFOUVDRjRDM0U5QkREMEI0RkI1MEFFRDNDQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj54lqcoH9u7VXnzL/h04qViRI lqUkrhwT/Cr1u0QRxmC5PNvzqYdXCp4YQlAdzHe+ipwyiWt6uPf7T6L0G6s7Y7B/ opPRQyS4hsqkE6hExx59RQrKNdpCAmIg1KiL9jDE437MqxgJWAIMziwVad9zLkXY QwHGOA1n8doxrzeMkI7em/Va1mX9r5pSTX1GahftohCF0qZrl8j9BnhRhCTNQIsu sYWdIZ2h7DqDRLzDV8HU62dQFsZgQG15SLrP7Mn4FsEfAunl0ypKXG6U38ivcHtz nN2k9m9UUz1g6MKB5ydjVj1WXjrjFv4xU5+HY5sHjPHr7wHOnFFbCZpIMqaNAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUWpc6k3vwPp7PTD6b3QtPtQrtPKYwHwYDVR0j BBgwFoAU+9OyjJB1Up3ugVHE5EsMvBP/2pEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ODM5NzdmNC04YzJkLTRlYjEtYjRjZC0zNWI0OTIxNmUwNzMvMC9GQkQzQjI4Qzkw NzU1MjlERUU4MTUxQzRFNDRCMENCQzEzRkZEQTkxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkJEM0IyOEM5MDc1NTI5REVFODE1MUM0RTQ0QjBDQkMxM0ZG REE5MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA4Mzk3N2Y0LThjMmQtNGViMS1i NGNkLTM1YjQ5MjE2ZTA3My8wLzMyMzAzMjJlMzUzMjJlMzQzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM0MzYzMDM1MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKNDAwDQYJKoZIhvcN AQELBQADggEBAPY73GzboptCwkXNxTDUn503gMx428tdsIvOEU9NKqWxqQa13nA9 onsAAaDRJijuEco9e6ne0E2pJ9/uki7L22soPb5VhA//V0GvjOZtPrXuOo3l+F2h qM7nYZ9qaM/mutTvGWqby7sW5beBNZ90vbfvAFy9BtVT1yQWfxHQ5i6e47dwlnqP 7qei0fg1Aanayz7FFcym+XtXEpEi8V2UHAN5JYK7XlIEHGG7LTklMpa9SEr4s3Ia xsuYU6wkSJk/kSe84KsDc3LH3yrvhROK4uCVr3q39tDaE7z+cpxh8TD9rHjZKK0q QM3voMwtJH86z3tkVfaDCMBD19i8SGnzTUc= -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:32 2024 by rpki-client on console-fra.rpki-client.org