$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32302e302f32342d3234203d3e20313431363733.roa File: 3230322e35372e32302e302f32342d3234203d3e20313431363733.roa (raw, json) Hash identifier: BzFu2n43chglMdGgc1jSFgViLyWmM8uXCxYjJL33VPs= Subject key identifier: FA:B8:D1:9E:2E:D0:ED:BE:93:18:5E:D0:C5:95:73:8E:8C:0A:51:99 Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Certificate serial: 6804EAD6901ABC98D3F71B87E39240BD9B8DD16F Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32302e302f32342d3234203d3e20313431363733.roa Signing time: Sun 07 Jan 2024 02:00:01 +0000 ROA not before: Sun 07 Jan 2024 01:55:01 +0000 ROA not after: Sun 05 Jan 2025 02:00:01 +0000 asID: 141673 IP address blocks: 202.57.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:56:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:04:ea:d6:90:1a:bc:98:d3:f7:1b:87:e3:92:40:bd:9b:8d:d1:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Validity Not Before: Jan 7 01:55:01 2024 GMT Not After : Jan 5 02:00:01 2025 GMT Subject: CN=FAB8D19E2ED0EDBE93185ED0C595738E8C0A5199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ce:3d:1b:cb:40:b6:28:b0:f6:d4:a2:80:d5: b5:b0:4a:50:d1:43:5f:ab:4b:1c:0c:2d:20:e1:11: df:de:4b:f4:9b:ca:66:db:ac:e5:88:30:bd:ee:38: be:9f:8b:df:c3:76:e9:c9:18:58:7b:20:76:4e:3e: 49:fc:1b:d5:14:ed:51:e9:4b:fb:c9:c1:b7:aa:ec: be:bc:ac:86:0e:08:c0:46:7e:7a:cd:e4:aa:00:48: 56:8e:d3:0b:10:34:d3:26:40:03:90:be:42:24:24: ad:6e:29:28:71:d9:a1:27:0b:e8:c3:6a:52:9f:b2: 50:d6:04:08:e7:ac:70:e0:dc:22:b7:ec:13:eb:ea: 88:38:4d:fb:a3:ad:08:1e:fd:ad:ae:8a:07:88:90: da:61:5a:09:e3:8d:c0:76:3b:82:93:21:9a:bc:64: f9:22:6f:cc:b1:03:c3:53:5f:44:c2:8c:f6:8b:48: 79:8a:dc:65:c8:47:f0:4a:1b:00:23:e2:c1:4d:fa: 47:4b:81:47:07:a6:59:85:4a:03:58:8e:4d:e3:22: 8e:dd:b6:d9:b4:ad:9c:99:67:b0:4b:9d:3a:18:b6: 11:ef:17:7c:96:be:09:03:3e:43:4d:a9:ec:18:69: 55:b8:a7:78:90:a5:d0:ef:4c:9d:1f:55:45:68:23: e8:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:B8:D1:9E:2E:D0:ED:BE:93:18:5E:D0:C5:95:73:8E:8C:0A:51:99 X509v3 Authority Key Identifier: keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32302e302f32342d3234203d3e20313431363733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.57.20.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:e8:44:c4:e9:91:2a:17:db:50:18:91:24:09:0e:75:c7:84: 2f:5a:0e:7f:88:0f:29:e2:75:39:1a:21:58:fc:c8:aa:5f:d0: 0f:a0:ea:6f:33:58:f3:63:4a:ff:bf:73:cb:13:b8:9d:da:e7: 23:fc:22:97:ab:75:f4:34:1e:ca:39:72:53:58:87:26:bf:35: 29:90:4c:9c:c4:ca:6a:f6:9f:e1:ad:6c:c8:13:ba:f0:c8:89: 77:71:4d:12:0b:01:78:47:52:61:e7:75:cf:28:47:d4:ea:fa: 07:bd:99:d0:6d:22:5e:64:a7:21:07:b3:2e:a7:3c:92:02:8e: 08:3d:b2:08:df:e9:79:a6:39:a2:6c:16:d8:69:b3:1a:f7:a8: cc:93:1a:33:e5:28:95:0b:3b:d7:65:06:71:95:d8:0e:0b:93: 2b:4d:e2:e4:59:ae:af:fa:cb:85:04:22:62:1a:d4:1e:55:0c: 3d:4d:b6:ae:a4:68:3c:d8:75:43:b7:3d:da:17:21:03:fd:7d: 3c:ed:c3:11:56:3a:04:2f:4e:9f:45:3b:5f:28:f4:9b:0b:6b: 1c:16:03:bd:5e:7a:07:80:31:5a:21:89:8f:11:2a:50:ce:3e: ad:bf:ea:bc:27:53:fe:8a:f1:03:a7:03:d4:d4:b7:2e:06:31: 65:f5:81:ea -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaATq1pAavJjT9xuH45JAvZuN0W8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3 Qjg1OUJENTAeFw0yNDAxMDcwMTU1MDFaFw0yNTAxMDUwMjAwMDFaMDMxMTAvBgNV BAMTKEZBQjhEMTlFMkVEMEVEQkU5MzE4NUVEMEM1OTU3MzhFOEMwQTUxOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/zj0by0C2KLD21KKA1bWwSlDR Q1+rSxwMLSDhEd/eS/SbymbbrOWIML3uOL6fi9/DdunJGFh7IHZOPkn8G9UU7VHp S/vJwbeq7L68rIYOCMBGfnrN5KoASFaO0wsQNNMmQAOQvkIkJK1uKShx2aEnC+jD alKfslDWBAjnrHDg3CK37BPr6og4TfujrQge/a2uigeIkNphWgnjjcB2O4KTIZq8 ZPkib8yxA8NTX0TCjPaLSHmK3GXIR/BKGwAj4sFN+kdLgUcHplmFSgNYjk3jIo7d ttm0rZyZZ7BLnToYthHvF3yWvgkDPkNNqewYaVW4p3iQpdDvTJ0fVUVoI+gnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+rjRni7Q7b6TGF7QxZVzjowKUZkwHwYDVR0j BBgwFoAUH5ae6bCDjSIVYRioiLgb8nuFm9UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZDNmMDk1Yi03MTMwLTQxMjItYWYyNS03ZDJlN2ExMWIxYjEvMC8xRjk2OUVFOUIw ODM4RDIyMTU2MTE4QTg4OEI4MUJGMjdCODU5QkQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3Qjg1 OUJENS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkM2YwOTViLTcxMzAtNDEyMi1h ZjI1LTdkMmU3YTExYjFiMS8wLzMyMzAzMjJlMzUzNzJlMzIzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM2MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo5FDANBgkqhkiG 9w0BAQsFAAOCAQEAf+hExOmRKhfbUBiRJAkOdceEL1oOf4gPKeJ1ORohWPzIql/Q D6DqbzNY82NK/79zyxO4ndrnI/wil6t19DQeyjlyU1iHJr81KZBMnMTKavaf4a1s yBO68MiJd3FNEgsBeEdSYed1zyhH1Or6B72Z0G0iXmSnIQezLqc8kgKOCD2yCN/p eaY5omwW2GmzGveozJMaM+UolQs712UGcZXYDguTK03i5Fmur/rLhQQiYhrUHlUM PU22rqRoPNh1Q7c92hchA/19PO3DEVY6BC9On0U7Xyj0mwtrHBYDvV56B4AxWiGJ jxEqUM4+rb/qvCdT/orxA6cD1NS3LgYxZfWB6g== -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org