$ rpki-client -vvf repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/3230322e34372e3137352e302f32342d3234203d3e20313532303333.roa File: 3230322e34372e3137352e302f32342d3234203d3e20313532303333.roa (raw, json) Hash identifier: dVzkaZwBc16NerGBbnPkInQRl7szohhHPD7ETdIV3jg= Subject key identifier: CB:95:0D:E7:9F:4C:C6:14:01:74:4D:6F:C9:67:B4:3E:E2:E1:11:F5 Certificate issuer: /CN=14CF99DEFA1B9276EBEE61180DF4770177957E3B Certificate serial: 0FC5AA29DE6B74315C31C497F3F5E2FE2F04E5B0 Authority key identifier: 14:CF:99:DE:FA:1B:92:76:EB:EE:61:18:0D:F4:77:01:77:95:7E:3B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CF99DEFA1B9276EBEE61180DF4770177957E3B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/3230322e34372e3137352e302f32342d3234203d3e20313532303333.roa Signing time: Wed 11 Sep 2024 22:38:53 +0000 ROA not before: Wed 11 Sep 2024 22:33:53 +0000 ROA not after: Wed 10 Sep 2025 22:38:53 +0000 asID: 152033 IP address blocks: 202.47.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.crl rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CF99DEFA1B9276EBEE61180DF4770177957E3B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 03:03:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:c5:aa:29:de:6b:74:31:5c:31:c4:97:f3:f5:e2:fe:2f:04:e5:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14CF99DEFA1B9276EBEE61180DF4770177957E3B Validity Not Before: Sep 11 22:33:53 2024 GMT Not After : Sep 10 22:38:53 2025 GMT Subject: CN=CB950DE79F4CC61401744D6FC967B43EE2E111F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:13:09:99:c5:c1:fa:82:30:ba:39:6e:01:16: 42:c1:ce:af:6f:c6:9a:a4:b6:11:c9:ef:99:bb:38: 73:e2:a4:8a:93:ca:d6:be:ac:53:24:a1:ca:33:0f: c2:79:49:4a:2f:06:81:12:9b:38:0a:13:5c:13:48: cc:06:84:3e:83:90:52:ad:20:85:77:0e:4a:09:03: 01:4f:e2:c3:26:e5:1c:7b:5e:a0:1e:c5:7e:ca:6d: e0:f4:39:91:2b:6d:61:b3:6a:ce:fb:33:79:91:a1: 87:f0:80:6e:b9:23:6f:65:ea:d1:08:59:bb:e1:e5: d5:c5:3b:88:61:92:a1:a3:ee:35:b8:21:54:59:10: 55:aa:bc:7e:29:ae:46:ee:cd:b3:9a:0d:ec:d5:e9: bf:55:15:d1:49:72:ff:15:4e:96:1d:25:0c:2e:90: ab:fc:c4:67:59:03:f7:83:5a:33:98:e8:18:02:b9: 1c:db:26:8e:5d:b4:d1:7e:51:1b:b9:a5:fe:3f:96: 8f:ff:6d:52:98:a7:7d:59:bf:0d:8f:5d:e6:23:40: ac:18:bf:7c:b7:0c:e0:18:8e:40:c9:e2:55:57:0a: 3d:3b:af:a3:8a:2c:46:d0:af:31:68:85:fa:dc:73: 95:c2:0b:ce:82:c4:2c:ad:f5:a5:e7:56:34:81:eb: d4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:95:0D:E7:9F:4C:C6:14:01:74:4D:6F:C9:67:B4:3E:E2:E1:11:F5 X509v3 Authority Key Identifier: keyid:14:CF:99:DE:FA:1B:92:76:EB:EE:61:18:0D:F4:77:01:77:95:7E:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CF99DEFA1B9276EBEE61180DF4770177957E3B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/3230322e34372e3137352e302f32342d3234203d3e20313532303333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.175.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:20:fc:43:db:d9:e7:bd:74:56:38:d2:1d:a9:ce:34:d4:32: 99:f8:14:27:6a:8e:cc:4a:c7:a7:74:25:eb:9c:d0:67:20:a5: 97:2b:db:b3:f6:8e:b5:5c:e5:5e:67:80:49:b1:d8:61:e2:2f: 90:4f:83:72:4f:76:0f:68:71:e5:ae:98:ac:7d:86:cf:4a:40: 35:f2:0d:6a:f5:12:5e:37:82:55:22:27:b7:e7:45:41:d8:02: 56:01:1a:9d:b0:e6:8e:91:61:99:97:18:24:0c:34:a4:10:67: 78:ac:4c:47:e7:34:7e:17:66:1f:ca:e1:c9:b6:55:50:a3:4b: bd:15:ae:1f:b9:37:79:25:ca:70:0a:bc:8b:e1:33:1d:2b:f9: b3:c5:50:69:3e:29:3d:b7:dd:e5:70:2e:d4:df:a9:24:69:b5: 61:3d:8d:53:13:e1:70:7e:0b:22:f6:7b:3f:05:47:02:28:a3: 7b:c1:36:aa:73:d0:7a:5c:9a:52:c6:3d:0e:d5:30:22:cb:a5: 42:2a:25:d3:61:12:bf:0c:7d:45:7b:51:6a:ab:42:c7:a3:2f: 83:c7:6d:1b:6d:bb:9c:9e:81:17:42:da:36:9d:96:ed:40:b2: 54:6c:76:98:f0:75:cb:29:24:df:57:53:89:09:d2:b9:86:96: b9:b3:41:48 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUD8WqKd5rdDFcMcSX8/Xi/i8E5bAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRDRjk5REVGQTFCOTI3NkVCRUU2MTE4MERGNDc3MDE3 Nzk1N0UzQjAeFw0yNDA5MTEyMjMzNTNaFw0yNTA5MTAyMjM4NTNaMDMxMTAvBgNV BAMTKENCOTUwREU3OUY0Q0M2MTQwMTc0NEQ2RkM5NjdCNDNFRTJFMTExRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtEwmZxcH6gjC6OW4BFkLBzq9v xpqkthHJ75m7OHPipIqTyta+rFMkocozD8J5SUovBoESmzgKE1wTSMwGhD6DkFKt IIV3DkoJAwFP4sMm5Rx7XqAexX7KbeD0OZErbWGzas77M3mRoYfwgG65I29l6tEI Wbvh5dXFO4hhkqGj7jW4IVRZEFWqvH4prkbuzbOaDezV6b9VFdFJcv8VTpYdJQwu kKv8xGdZA/eDWjOY6BgCuRzbJo5dtNF+URu5pf4/lo//bVKYp31Zvw2PXeYjQKwY v3y3DOAYjkDJ4lVXCj07r6OKLEbQrzFohfrcc5XCC86CxCyt9aXnVjSB69RRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUy5UN559MxhQBdE1vyWe0PuLhEfUwHwYDVR0j BBgwFoAUFM+Z3vobknbr7mEYDfR3AXeVfjswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w OTdmNTE2MS0wNzBmLTQzMzktYWY0ZS1iYzMzZmRmYjY3YjgvMC8xNENGOTlERUZB MUI5Mjc2RUJFRTYxMTgwREY0NzcwMTc3OTU3RTNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTRDRjk5REVGQTFCOTI3NkVCRUU2MTE4MERGNDc3MDE3Nzk1 N0UzQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA5N2Y1MTYxLTA3MGYtNDMzOS1h ZjRlLWJjMzNmZGZiNjdiOC8wLzMyMzAzMjJlMzQzNzJlMzEzNzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyi+vMA0GCSqG SIb3DQEBCwUAA4IBAQBKIPxD29nnvXRWONIdqc401DKZ+BQnao7MSsendCXrnNBn IKWXK9uz9o61XOVeZ4BJsdhh4i+QT4NyT3YPaHHlrpisfYbPSkA18g1q9RJeN4JV Iie350VB2AJWARqdsOaOkWGZlxgkDDSkEGd4rExH5zR+F2YfyuHJtlVQo0u9Fa4f uTd5JcpwCryL4TMdK/mzxVBpPik9t93lcC7U36kkabVhPY1TE+Fwfgsi9ns/BUcC KKN7wTaqc9B6XJpSxj0O1TAiy6VCKiXTYRK/DH1Fe1Fqq0LHoy+Dx20bbbucnoEX Qto2nZbtQLJUbHaY8HXLKSTfV1OJCdK5hpa5s0FI -----END CERTIFICATE-----Generated at Fri Feb 21 11:07:25 2025 by rpki-client