$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32352e302f32342d3234203d3e20313430343639.roa File: 3230322e35372e32352e302f32342d3234203d3e20313430343639.roa (raw, json) Hash identifier: s5VhGyqquShG7gVjj17riZ/dr+Nk1vl6gg38DZ33Yns= Subject key identifier: F7:C8:2F:3E:D1:E4:5D:37:51:06:5E:99:12:E8:EC:B0:B6:18:9D:39 Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Certificate serial: 6DD9C2DAA1FB1AAF5A19E329FE087FDA7E8AA7B6 Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32352e302f32342d3234203d3e20313430343639.roa Signing time: Mon 04 Nov 2024 15:00:01 +0000 ROA not before: Mon 04 Nov 2024 14:55:01 +0000 ROA not after: Mon 03 Nov 2025 15:00:01 +0000 asID: 140469 IP address blocks: 202.57.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:56:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:d9:c2:da:a1:fb:1a:af:5a:19:e3:29:fe:08:7f:da:7e:8a:a7:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Validity Not Before: Nov 4 14:55:01 2024 GMT Not After : Nov 3 15:00:01 2025 GMT Subject: CN=F7C82F3ED1E45D3751065E9912E8ECB0B6189D39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:7a:a4:d5:64:4f:a4:47:b7:e6:01:ca:7f:9a: 38:14:fe:a5:86:91:59:6c:5e:18:67:65:22:bf:d5: 78:40:fa:c9:45:bc:a9:7a:50:5b:32:be:8e:6a:13: e4:0a:27:08:d5:60:bd:f7:70:f1:46:70:17:d5:3a: f2:61:10:f1:e5:6e:7b:e0:e4:5f:8f:80:d1:18:de: 51:e8:e8:c2:7f:67:b8:ed:06:f7:40:ee:a2:44:7c: 32:bb:25:70:44:5f:70:4a:0d:9e:95:6e:b5:d4:b4: a0:0d:c6:de:04:89:aa:27:2e:49:84:46:83:bb:55: d6:ce:96:54:1f:71:3c:4d:44:13:8d:59:0e:81:83: af:c8:75:ed:1c:20:98:21:7c:32:5e:1b:3b:77:ef: fa:8f:8e:7d:f5:99:ac:76:7f:c2:3e:8e:4f:8e:cd: e4:aa:7d:54:84:9a:60:7b:81:ab:e2:d4:f8:aa:74: 38:a6:27:19:c0:3f:9d:93:0c:47:e7:6e:37:fa:c2: e7:5c:88:ef:93:82:18:ea:d0:be:db:9f:d4:20:b5: 33:7e:b5:7c:ec:96:09:a1:48:0b:61:e2:0d:73:5e: c4:84:91:d5:75:e6:21:b9:0d:ee:f0:f9:1c:4b:2b: 9d:a8:b9:ba:63:6e:7a:9c:bf:89:07:da:9e:42:a4: 21:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:C8:2F:3E:D1:E4:5D:37:51:06:5E:99:12:E8:EC:B0:B6:18:9D:39 X509v3 Authority Key Identifier: keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32352e302f32342d3234203d3e20313430343639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.57.25.0/24 Signature Algorithm: sha256WithRSAEncryption 44:f5:b9:1b:dc:91:a8:cc:43:04:89:0b:ba:20:33:6b:8f:6f: b7:5a:84:da:2e:b9:4f:2c:84:30:8e:c8:f7:c8:f0:f1:22:fc: 78:36:4a:b4:a5:de:c8:fa:b9:de:0b:6e:1b:1a:90:4a:c9:71: ae:03:48:fc:89:67:dc:ef:1a:b8:e8:12:91:bc:b7:58:fd:76: 56:08:bb:27:05:0e:85:d1:86:47:da:94:a1:30:a1:d9:f4:d0: db:97:6b:76:9e:00:bb:32:f0:b4:c3:e0:0a:d6:3e:1c:22:c4: 77:00:ba:8c:6e:3b:2c:65:af:51:f3:ba:b3:f8:11:f6:27:b7: 30:0d:8e:b4:44:b4:11:04:49:10:ee:62:6b:4d:22:e2:62:98: 5d:16:ad:99:60:58:7a:a4:53:5b:f4:c9:58:a0:9a:6e:98:e7: 3d:55:b8:4e:70:01:19:2d:f0:22:14:9f:24:e2:9d:98:1b:cc: b3:ce:3d:00:68:ca:c2:a6:96:fd:d3:b4:fe:ce:41:3c:87:8d: 63:15:09:ef:e7:e7:80:07:f3:c9:ae:41:a5:6e:4e:36:d4:00: e2:0d:7a:1f:8e:04:1d:89:59:d8:83:d5:38:c5:a8:e0:7b:cc: 2b:ce:3b:16:11:fc:8a:52:63:16:da:fc:48:0a:78:a9:e6:f2: fe:5f:7b:30 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbdnC2qH7Gq9aGeMp/gh/2n6Kp7YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3 Qjg1OUJENTAeFw0yNDExMDQxNDU1MDFaFw0yNTExMDMxNTAwMDFaMDMxMTAvBgNV BAMTKEY3QzgyRjNFRDFFNDVEMzc1MTA2NUU5OTEyRThFQ0IwQjYxODlEMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDteqTVZE+kR7fmAcp/mjgU/qWG kVlsXhhnZSK/1XhA+slFvKl6UFsyvo5qE+QKJwjVYL33cPFGcBfVOvJhEPHlbnvg 5F+PgNEY3lHo6MJ/Z7jtBvdA7qJEfDK7JXBEX3BKDZ6VbrXUtKANxt4EiaonLkmE RoO7VdbOllQfcTxNRBONWQ6Bg6/Ide0cIJghfDJeGzt37/qPjn31max2f8I+jk+O zeSqfVSEmmB7gavi1PiqdDimJxnAP52TDEfnbjf6wudciO+Tghjq0L7bn9QgtTN+ tXzslgmhSAth4g1zXsSEkdV15iG5De7w+RxLK52oubpjbnqcv4kH2p5CpCGPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU98gvPtHkXTdRBl6ZEujssLYYnTkwHwYDVR0j BBgwFoAUH5ae6bCDjSIVYRioiLgb8nuFm9UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZDNmMDk1Yi03MTMwLTQxMjItYWYyNS03ZDJlN2ExMWIxYjEvMC8xRjk2OUVFOUIw ODM4RDIyMTU2MTE4QTg4OEI4MUJGMjdCODU5QkQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3Qjg1 OUJENS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkM2YwOTViLTcxMzAtNDEyMi1h ZjI1LTdkMmU3YTExYjFiMS8wLzMyMzAzMjJlMzUzNzJlMzIzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDM0MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo5GTANBgkqhkiG 9w0BAQsFAAOCAQEARPW5G9yRqMxDBIkLuiAza49vt1qE2i65TyyEMI7I98jw8SL8 eDZKtKXeyPq53gtuGxqQSslxrgNI/Iln3O8auOgSkby3WP12Vgi7JwUOhdGGR9qU oTCh2fTQ25drdp4AuzLwtMPgCtY+HCLEdwC6jG47LGWvUfO6s/gR9ie3MA2OtES0 EQRJEO5ia00i4mKYXRatmWBYeqRTW/TJWKCabpjnPVW4TnABGS3wIhSfJOKdmBvM s849AGjKwqaW/dO0/s5BPIeNYxUJ7+fngAfzya5BpW5ONtQA4g16H44EHYlZ2IPV OMWo4HvMK847FhH8ilJjFtr8SAp4qeby/l97MA== -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org