$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32342e302f32342d3234203d3e20313430343639.roa File: 3230322e35372e32342e302f32342d3234203d3e20313430343639.roa (raw, json) Hash identifier: m+iFf6x78xMNG3cgj5SBa8woS/ACjDi5PHEdG0OXJdQ= Subject key identifier: 25:2B:0A:C3:77:AC:81:A2:0C:84:13:72:41:CB:17:0A:59:FB:F8:97 Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Certificate serial: 2D1999C5E5D3492913442805BD714D51E0F2684F Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32342e302f32342d3234203d3e20313430343639.roa Signing time: Mon 04 Nov 2024 16:00:01 +0000 ROA not before: Mon 04 Nov 2024 15:55:01 +0000 ROA not after: Mon 03 Nov 2025 16:00:01 +0000 asID: 140469 IP address blocks: 202.57.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:56:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:19:99:c5:e5:d3:49:29:13:44:28:05:bd:71:4d:51:e0:f2:68:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Validity Not Before: Nov 4 15:55:01 2024 GMT Not After : Nov 3 16:00:01 2025 GMT Subject: CN=252B0AC377AC81A20C84137241CB170A59FBF897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3c:61:86:31:e4:e4:b2:0c:16:64:49:65:ec: 8e:a3:ae:ee:72:b7:74:53:c8:03:d6:75:21:52:c7: 4c:f0:da:4a:e0:59:e0:4d:63:db:f3:73:84:e1:5b: da:b9:69:7a:e4:39:e2:c5:73:a2:fe:af:88:8c:1f: d8:97:91:c0:95:ae:d8:bb:ee:bb:b4:d3:c7:0c:d7: 7e:83:31:74:df:cc:54:4f:d3:c0:38:b3:4b:a9:7b: c5:67:e1:26:b0:19:e4:04:6a:2c:28:f9:f7:85:e7: 14:08:ea:3f:fa:cc:13:56:2f:7d:c8:05:28:e1:34: 46:b2:af:d8:fe:54:31:ef:c0:7e:66:39:a0:33:89: 9b:9f:9a:17:26:c3:6b:ed:27:71:27:f2:7c:92:a4: 62:3c:d0:52:a4:c0:28:e6:d9:82:a0:07:6f:d2:e2: 45:5b:07:54:e2:5a:6a:89:e2:18:28:e7:3d:9c:da: 2a:77:86:ce:35:a4:b2:8b:bf:b9:e3:d7:6c:25:9a: 8d:56:18:56:c2:87:2c:85:65:94:6f:e0:db:ed:de: ae:fb:90:44:f8:c2:72:28:fe:1a:17:b9:bd:f4:05: c6:c0:72:41:7a:a5:dc:8b:1a:8a:3f:e9:41:45:b3: b2:4e:a5:b7:81:17:f1:c4:8e:a5:f3:f9:00:63:83: f4:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:2B:0A:C3:77:AC:81:A2:0C:84:13:72:41:CB:17:0A:59:FB:F8:97 X509v3 Authority Key Identifier: keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32342e302f32342d3234203d3e20313430343639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.57.24.0/24 Signature Algorithm: sha256WithRSAEncryption 68:da:cb:a6:37:82:52:b2:0b:04:86:fa:60:ab:3c:db:f8:bd: 0b:4f:ee:a8:78:bf:79:0f:af:19:a9:36:43:79:6b:4c:17:f2: bb:cf:53:4a:1a:72:54:d1:83:16:08:c5:c2:3c:03:af:46:4f: 89:7e:46:33:72:e4:b9:85:9a:4c:70:cf:fb:2f:e1:5d:64:3e: ae:7e:33:3b:55:9e:da:b6:4e:8c:48:b8:70:bf:cd:83:89:04: f0:2c:ef:a6:05:5c:e4:a1:4e:58:5b:11:70:97:3b:1d:d8:77: 96:19:9f:3d:21:ce:90:7f:c7:3a:69:e3:56:cb:23:b0:b6:6e: a1:9a:af:a3:9c:c1:0e:30:a5:d7:78:88:99:6f:e5:18:20:18: de:1c:33:c7:85:97:00:06:bc:23:62:4c:f9:65:50:45:d6:47: 8e:ea:c4:37:87:bc:4d:1d:33:0d:1a:d2:22:b9:c6:dd:23:b9: c9:bc:e6:f6:99:7c:3c:54:f9:68:1a:c7:a8:5d:1c:6b:7d:9f: 79:63:c1:27:ee:b9:b4:2b:ba:61:5e:d0:d9:c4:e6:4d:05:fd: 9f:8a:c2:f1:b6:8c:69:fa:c6:fd:e4:c3:9d:df:35:e5:88:4e: 22:02:3d:52:fa:a6:8a:30:f6:84:5c:fd:19:17:3a:a4:6a:a8: 59:d8:82:a9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULRmZxeXTSSkTRCgFvXFNUeDyaE8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3 Qjg1OUJENTAeFw0yNDExMDQxNTU1MDFaFw0yNTExMDMxNjAwMDFaMDMxMTAvBgNV BAMTKDI1MkIwQUMzNzdBQzgxQTIwQzg0MTM3MjQxQ0IxNzBBNTlGQkY4OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8PGGGMeTksgwWZEll7I6jru5y t3RTyAPWdSFSx0zw2krgWeBNY9vzc4ThW9q5aXrkOeLFc6L+r4iMH9iXkcCVrti7 7ru008cM136DMXTfzFRP08A4s0upe8Vn4SawGeQEaiwo+feF5xQI6j/6zBNWL33I BSjhNEayr9j+VDHvwH5mOaAziZufmhcmw2vtJ3En8nySpGI80FKkwCjm2YKgB2/S 4kVbB1TiWmqJ4hgo5z2c2ip3hs41pLKLv7nj12wlmo1WGFbChyyFZZRv4Nvt3q77 kET4wnIo/hoXub30BcbAckF6pdyLGoo/6UFFs7JOpbeBF/HEjqXz+QBjg/T1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJSsKw3esgaIMhBNyQcsXCln7+JcwHwYDVR0j BBgwFoAUH5ae6bCDjSIVYRioiLgb8nuFm9UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZDNmMDk1Yi03MTMwLTQxMjItYWYyNS03ZDJlN2ExMWIxYjEvMC8xRjk2OUVFOUIw ODM4RDIyMTU2MTE4QTg4OEI4MUJGMjdCODU5QkQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3Qjg1 OUJENS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkM2YwOTViLTcxMzAtNDEyMi1h ZjI1LTdkMmU3YTExYjFiMS8wLzMyMzAzMjJlMzUzNzJlMzIzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDM0MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo5GDANBgkqhkiG 9w0BAQsFAAOCAQEAaNrLpjeCUrILBIb6YKs82/i9C0/uqHi/eQ+vGak2Q3lrTBfy u89TShpyVNGDFgjFwjwDr0ZPiX5GM3LkuYWaTHDP+y/hXWQ+rn4zO1We2rZOjEi4 cL/Ng4kE8CzvpgVc5KFOWFsRcJc7Hdh3lhmfPSHOkH/HOmnjVssjsLZuoZqvo5zB DjCl13iImW/lGCAY3hwzx4WXAAa8I2JM+WVQRdZHjurEN4e8TR0zDRrSIrnG3SO5 ybzm9pl8PFT5aBrHqF0ca32feWPBJ+65tCu6YV7Q2cTmTQX9n4rC8baMafrG/eTD nd815YhOIgI9UvqmijD2hFz9GRc6pGqoWdiCqQ== -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org