$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32312e302f32342d3234203d3e20313431363733.roa File: 3230322e35372e32312e302f32342d3234203d3e20313431363733.roa (raw, json) Hash identifier: TPr77EoAIVHtCQKiAjmbt5bRWqc/2aluWcJV4D10c/Y= Subject key identifier: 82:0D:EE:45:B6:52:10:28:51:72:8F:CE:F3:4A:B9:D5:3A:AE:AB:AD Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Certificate serial: 7AF40FD9C5CA52FB0A92CA52FEC945E72185A634 Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32312e302f32342d3234203d3e20313431363733.roa Signing time: Sun 07 Jan 2024 02:00:01 +0000 ROA not before: Sun 07 Jan 2024 01:55:01 +0000 ROA not after: Sun 05 Jan 2025 02:00:01 +0000 asID: 141673 IP address blocks: 202.57.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:56:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:f4:0f:d9:c5:ca:52:fb:0a:92:ca:52:fe:c9:45:e7:21:85:a6:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Validity Not Before: Jan 7 01:55:01 2024 GMT Not After : Jan 5 02:00:01 2025 GMT Subject: CN=820DEE45B652102851728FCEF34AB9D53AAEABAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6e:98:bd:63:88:a4:9d:b1:b0:09:53:04:09: 02:84:26:2b:29:9d:45:a8:50:0e:a3:75:a5:a9:36: fe:67:88:47:09:30:7a:bd:df:1f:7b:57:f3:e5:9d: 8e:a8:32:be:b1:60:2b:e5:14:5e:ff:0c:2f:76:ab: 7b:8f:2a:78:0d:b6:f1:f7:7e:8e:65:26:b6:dc:96: 97:aa:2a:df:51:a9:f6:4f:f7:21:fb:38:1d:40:68: 5f:37:1b:1b:55:20:9e:13:56:e1:b2:e7:e1:93:dc: 58:38:fd:4d:ed:37:f8:43:65:be:ad:ba:3f:32:e9: 02:3a:54:15:9e:a8:40:7c:2d:14:62:8e:24:40:40: 71:3c:6a:96:39:db:47:ae:50:00:55:f0:5f:f8:26: 40:75:e6:8b:10:dd:72:ae:9a:82:27:c8:f8:09:b6: ff:bc:ca:9b:1e:9c:a4:f0:35:82:1d:d4:77:94:bf: 53:ef:f3:32:56:37:35:de:39:5f:67:b4:9d:55:3a: fa:f2:14:02:7e:17:5a:68:1a:e4:c8:df:e3:78:b7: 2d:51:cb:13:19:59:6c:dc:28:29:d3:cd:7b:2a:40: f4:11:85:af:03:29:f6:5c:0b:ba:87:4c:29:7d:d2: 8f:75:0e:cf:ad:a8:17:b1:01:c4:62:88:73:6b:b2: 79:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:0D:EE:45:B6:52:10:28:51:72:8F:CE:F3:4A:B9:D5:3A:AE:AB:AD X509v3 Authority Key Identifier: keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32312e302f32342d3234203d3e20313431363733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.57.21.0/24 Signature Algorithm: sha256WithRSAEncryption be:c1:76:7d:35:8d:ba:4b:44:38:2d:e3:b3:21:d6:ea:d4:b8: a3:f3:65:ca:a7:1f:d5:21:0c:01:ce:63:e7:3c:bc:e9:aa:6e: d7:8e:09:ec:81:6e:03:8e:59:97:25:ed:1e:61:f0:84:e4:23: 35:b4:a9:4d:03:fa:e1:b7:f3:5e:60:8d:30:1b:fb:3f:6b:a8: ca:fe:f5:bf:df:c8:27:a9:ac:c3:19:dc:d0:f1:85:44:a4:bb: f2:b8:c2:fa:f0:30:4c:f8:ac:a4:78:33:7b:d5:fe:08:0f:45: 0f:f1:09:23:e3:66:78:8f:25:05:88:60:c5:51:c8:b7:9e:2c: 6d:3e:b6:9f:79:59:ae:05:21:c9:00:44:1c:d2:b6:fe:06:d6: 97:62:61:c1:d8:aa:ff:dd:c7:a8:9b:7d:57:c1:0b:d8:94:a3: e3:07:1f:61:e2:33:28:44:57:89:71:61:e4:3a:80:ca:83:fa: 5a:a5:7f:c5:01:5b:db:59:2f:bf:e3:1f:05:87:34:45:38:76: aa:e9:1e:28:fe:87:42:a7:85:0e:7c:50:2d:c6:03:34:69:09: f8:5f:21:34:28:1a:df:67:f0:e2:4e:d1:d7:9a:f0:e2:19:d8: 6b:7c:53:fe:98:01:ee:45:8c:63:1f:d2:a0:ef:fa:4a:9a:2c: 07:66:23:ea -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUevQP2cXKUvsKkspS/slF5yGFpjQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3 Qjg1OUJENTAeFw0yNDAxMDcwMTU1MDFaFw0yNTAxMDUwMjAwMDFaMDMxMTAvBgNV BAMTKDgyMERFRTQ1QjY1MjEwMjg1MTcyOEZDRUYzNEFCOUQ1M0FBRUFCQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4bpi9Y4iknbGwCVMECQKEJisp nUWoUA6jdaWpNv5niEcJMHq93x97V/PlnY6oMr6xYCvlFF7/DC92q3uPKngNtvH3 fo5lJrbclpeqKt9RqfZP9yH7OB1AaF83GxtVIJ4TVuGy5+GT3Fg4/U3tN/hDZb6t uj8y6QI6VBWeqEB8LRRijiRAQHE8apY520euUABV8F/4JkB15osQ3XKumoInyPgJ tv+8ypsenKTwNYId1HeUv1Pv8zJWNzXeOV9ntJ1VOvryFAJ+F1poGuTI3+N4ty1R yxMZWWzcKCnTzXsqQPQRha8DKfZcC7qHTCl90o91Ds+tqBexAcRiiHNrsnkPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgg3uRbZSEChRco/O80q51Tquq60wHwYDVR0j BBgwFoAUH5ae6bCDjSIVYRioiLgb8nuFm9UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZDNmMDk1Yi03MTMwLTQxMjItYWYyNS03ZDJlN2ExMWIxYjEvMC8xRjk2OUVFOUIw ODM4RDIyMTU2MTE4QTg4OEI4MUJGMjdCODU5QkQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3Qjg1 OUJENS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkM2YwOTViLTcxMzAtNDEyMi1h ZjI1LTdkMmU3YTExYjFiMS8wLzMyMzAzMjJlMzUzNzJlMzIzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM2MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo5FTANBgkqhkiG 9w0BAQsFAAOCAQEAvsF2fTWNuktEOC3jsyHW6tS4o/Nlyqcf1SEMAc5j5zy86apu 144J7IFuA45ZlyXtHmHwhOQjNbSpTQP64bfzXmCNMBv7P2uoyv71v9/IJ6mswxnc 0PGFRKS78rjC+vAwTPispHgze9X+CA9FD/EJI+NmeI8lBYhgxVHIt54sbT62n3lZ rgUhyQBEHNK2/gbWl2Jhwdiq/93HqJt9V8EL2JSj4wcfYeIzKERXiXFh5DqAyoP6 WqV/xQFb21kvv+MfBYc0RTh2qukeKP6HQqeFDnxQLcYDNGkJ+F8hNCga32fw4k7R 15rw4hnYa3xT/pgB7kWMYx/SoO/6SposB2Yj6g== -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org