$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32362e302f32342d3234203d3e20313430343639.roa File: 3230322e35372e32362e302f32342d3234203d3e20313430343639.roa (raw, json) Hash identifier: Q0qOJ/lZFg5h7UgexbzOBngIpLcaN5DOfBR3Xnw+miE= Subject key identifier: 71:FD:CF:1C:E7:B8:89:3E:A0:70:BA:F8:01:17:8C:C8:3B:48:AE:C5 Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Certificate serial: 76A7AD4456C1CA24015439EAE5C71E3B57E18247 Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32362e302f32342d3234203d3e20313430343639.roa Signing time: Mon 04 Nov 2024 15:00:01 +0000 ROA not before: Mon 04 Nov 2024 14:55:01 +0000 ROA not after: Mon 03 Nov 2025 15:00:01 +0000 asID: 140469 IP address blocks: 202.57.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:56:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:a7:ad:44:56:c1:ca:24:01:54:39:ea:e5:c7:1e:3b:57:e1:82:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Validity Not Before: Nov 4 14:55:01 2024 GMT Not After : Nov 3 15:00:01 2025 GMT Subject: CN=71FDCF1CE7B8893EA070BAF801178CC83B48AEC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3b:37:43:4d:2a:49:5d:ca:fe:55:7b:09:50: 16:3e:4a:e5:b3:02:24:00:bf:49:d6:5c:1a:0a:69: 4c:a1:eb:d3:40:67:30:af:a7:b6:46:02:d4:12:fe: 38:96:17:6a:b2:12:04:94:0f:d2:f0:4c:36:11:8d: b2:32:16:3d:2c:9f:d3:19:b2:02:06:4a:29:25:16: bf:81:cf:41:23:0a:07:a5:75:2c:f3:0f:ea:41:3e: 99:32:11:6d:2b:8a:02:cb:86:78:8d:a7:c9:fb:f7: f6:ff:79:05:12:3e:d5:86:54:27:1c:00:9b:9e:77: 3d:b3:db:76:84:86:12:d1:54:db:bf:d2:7d:0c:53: 2a:4e:d4:85:66:8c:b5:7c:0f:fc:0e:f4:61:2d:73: 92:86:02:dd:a7:1b:06:f7:59:0c:11:74:23:02:e7: 8e:3d:69:03:23:b2:29:c6:9f:c9:61:88:3c:c8:04: 0c:8b:ed:fe:cb:2d:74:b3:6c:9d:55:d6:5a:6b:56: cb:93:db:8a:9b:81:5c:57:43:4e:f8:e1:83:30:fc: cc:56:1f:a0:f1:f0:9a:dd:32:9f:10:e6:21:5e:4f: 69:c4:f6:dd:fa:16:3c:08:94:f1:5e:f7:83:6e:83: 14:e7:32:4b:66:8f:55:35:cf:ff:e0:3c:51:a6:b5: 5c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:FD:CF:1C:E7:B8:89:3E:A0:70:BA:F8:01:17:8C:C8:3B:48:AE:C5 X509v3 Authority Key Identifier: keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32362e302f32342d3234203d3e20313430343639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.57.26.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:be:67:39:4f:9a:d8:19:dc:46:c6:1a:33:00:64:98:6d:ac: 04:f1:29:ce:9a:02:95:e8:a8:23:5e:d2:74:09:52:b7:bd:bf: 94:70:bc:df:a1:ae:e7:ca:c9:b8:43:79:01:d4:50:ff:6c:bf: 2e:4f:55:b8:40:3c:5a:43:97:da:79:78:a5:1e:f4:97:7b:99: 94:a5:30:1c:ae:85:44:1a:a7:88:d2:1d:de:7b:00:1f:d7:13: 95:7a:e5:28:fc:5b:fe:3c:1b:84:91:6d:15:9b:e4:b4:65:a6: d6:8e:0c:01:b7:2a:52:ab:2c:bd:20:3b:5e:4c:1b:bd:19:cb: a8:0e:9c:1c:5a:db:c6:5f:4d:ba:6a:51:e8:f9:3d:8a:47:68: bc:21:59:c9:01:a8:5f:a3:31:59:b7:b9:1c:64:27:be:d1:35: 5a:52:81:3c:27:d2:23:36:f9:e8:b3:8a:9a:9c:30:d0:6d:43: e9:83:52:1e:e0:a5:34:29:3a:b3:90:0c:66:6c:cd:db:4e:5c: 2f:17:70:dc:60:cc:04:4d:5c:ed:03:55:23:17:87:c5:7c:b6: 1f:81:10:77:ee:f5:4b:25:70:c3:98:cc:06:96:79:98:3f:d2: 5e:e8:1f:5a:a5:6f:4b:33:b7:b3:f3:db:63:80:ea:5e:da:21: e5:22:90:e6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdqetRFbByiQBVDnq5cceO1fhgkcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3 Qjg1OUJENTAeFw0yNDExMDQxNDU1MDFaFw0yNTExMDMxNTAwMDFaMDMxMTAvBgNV BAMTKDcxRkRDRjFDRTdCODg5M0VBMDcwQkFGODAxMTc4Q0M4M0I0OEFFQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNOzdDTSpJXcr+VXsJUBY+SuWz AiQAv0nWXBoKaUyh69NAZzCvp7ZGAtQS/jiWF2qyEgSUD9LwTDYRjbIyFj0sn9MZ sgIGSiklFr+Bz0EjCgeldSzzD+pBPpkyEW0rigLLhniNp8n79/b/eQUSPtWGVCcc AJuedz2z23aEhhLRVNu/0n0MUypO1IVmjLV8D/wO9GEtc5KGAt2nGwb3WQwRdCMC 5449aQMjsinGn8lhiDzIBAyL7f7LLXSzbJ1V1lprVsuT24qbgVxXQ0744YMw/MxW H6Dx8JrdMp8Q5iFeT2nE9t36FjwIlPFe94NugxTnMktmj1U1z//gPFGmtVwtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUcf3PHOe4iT6gcLr4AReMyDtIrsUwHwYDVR0j BBgwFoAUH5ae6bCDjSIVYRioiLgb8nuFm9UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZDNmMDk1Yi03MTMwLTQxMjItYWYyNS03ZDJlN2ExMWIxYjEvMC8xRjk2OUVFOUIw ODM4RDIyMTU2MTE4QTg4OEI4MUJGMjdCODU5QkQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3Qjg1 OUJENS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkM2YwOTViLTcxMzAtNDEyMi1h ZjI1LTdkMmU3YTExYjFiMS8wLzMyMzAzMjJlMzUzNzJlMzIzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDM0MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo5GjANBgkqhkiG 9w0BAQsFAAOCAQEAH75nOU+a2BncRsYaMwBkmG2sBPEpzpoCleioI17SdAlSt72/ lHC836Gu58rJuEN5AdRQ/2y/Lk9VuEA8WkOX2nl4pR70l3uZlKUwHK6FRBqniNId 3nsAH9cTlXrlKPxb/jwbhJFtFZvktGWm1o4MAbcqUqssvSA7XkwbvRnLqA6cHFrb xl9NumpR6Pk9ikdovCFZyQGoX6MxWbe5HGQnvtE1WlKBPCfSIzb56LOKmpww0G1D 6YNSHuClNCk6s5AMZmzN205cLxdw3GDMBE1c7QNVIxeHxXy2H4EQd+71SyVww5jM BpZ5mD/SXugfWqVvSzO3s/PbY4DqXtoh5SKQ5g== -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:43 2024 by rpki-client on console-fra.rpki-client.org