$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32372e302f32342d3234203d3e20313430343639.roa File: 3230322e35372e32372e302f32342d3234203d3e20313430343639.roa (raw, json) Hash identifier: 1LTZq4OamLGaIEc7s8hORwOna9UqTifBlZPqeEuXpEA= Subject key identifier: 20:6F:5C:B9:EF:10:34:A8:E5:90:33:25:B3:B8:E9:6B:C9:DC:27:6D Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Certificate serial: 51D6306FCEDE37F4B329F5ED5F91500DD4F34FE7 Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32372e302f32342d3234203d3e20313430343639.roa Signing time: Thu 17 Oct 2024 11:00:01 +0000 ROA not before: Thu 17 Oct 2024 10:55:01 +0000 ROA not after: Thu 16 Oct 2025 11:00:01 +0000 asID: 140469 IP address blocks: 202.57.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:56:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:d6:30:6f:ce:de:37:f4:b3:29:f5:ed:5f:91:50:0d:d4:f3:4f:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Validity Not Before: Oct 17 10:55:01 2024 GMT Not After : Oct 16 11:00:01 2025 GMT Subject: CN=206F5CB9EF1034A8E5903325B3B8E96BC9DC276D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:da:f1:26:f6:50:b2:ca:b0:c8:bb:7d:53:7a: df:93:e7:cc:51:ab:63:ba:ab:86:5b:85:39:db:6d: e4:e5:42:b8:95:a5:eb:3d:bb:23:f5:ac:df:10:2e: 45:5e:0e:e3:1c:d0:a4:16:5d:40:a0:c3:ba:4c:28: 09:6c:81:07:ab:a0:5a:5c:a5:1c:19:33:e9:c6:da: 8a:9d:52:3f:15:80:c2:4a:6e:b2:44:25:04:ed:99: 1c:bc:dc:c3:f4:77:67:42:86:2a:da:c5:b1:9a:15: 0c:0e:85:c6:fd:e2:e2:65:fb:b9:4c:57:7b:6b:09: ab:23:45:af:91:fa:1e:f3:6b:af:43:0a:14:07:f7: 32:af:68:ef:be:49:09:62:50:57:53:a4:2e:78:e4: aa:4f:f3:5e:75:8d:70:73:0e:fa:ca:47:e6:25:2e: a2:8f:50:03:9f:15:c0:32:74:0b:2c:60:c1:11:87: 28:1e:ff:40:1c:85:a2:e7:07:53:e2:09:dc:35:d5: ea:1d:a2:fc:08:05:4f:f2:33:4d:4d:89:a8:25:40: d2:d6:e7:d8:af:c2:67:89:d6:3e:47:45:40:9a:11: d3:46:11:64:1e:b2:86:f7:c9:8a:ff:0b:89:e8:37: 05:8f:37:08:09:b8:75:0a:38:79:18:00:67:94:dc: 67:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:6F:5C:B9:EF:10:34:A8:E5:90:33:25:B3:B8:E9:6B:C9:DC:27:6D X509v3 Authority Key Identifier: keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32372e302f32342d3234203d3e20313430343639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.57.27.0/24 Signature Algorithm: sha256WithRSAEncryption ad:dd:0a:45:5e:30:23:ad:32:42:d6:b9:73:db:54:83:7f:0d: fc:c7:dc:22:c2:58:4b:96:02:b2:c5:28:de:97:74:4e:8d:b2: 83:85:90:c8:ad:50:09:f5:1d:0d:9a:7e:f1:26:e8:76:09:69: 2d:fd:c0:98:d9:2b:dc:1c:82:18:10:88:34:1c:ce:51:33:69: 4a:ab:8c:0c:f7:99:f7:e7:85:f1:91:f4:00:91:5c:49:9a:ce: 63:f7:be:1a:1e:bb:43:67:fe:ef:f3:22:65:6d:19:98:b5:d8: ea:7a:27:01:31:0b:59:3d:b5:85:ff:33:43:2e:1d:3c:64:ec: e9:e1:9d:bd:9e:28:f7:a1:f7:6b:02:60:3b:b9:7c:f4:8b:61: f7:5f:78:0a:11:ee:31:d3:70:a8:06:91:8b:a7:03:1a:a5:5d: 91:06:0d:cf:3c:6d:98:e3:9f:ce:05:5b:03:e3:01:67:52:76: 67:6f:7a:b2:01:dc:42:57:a0:b1:b2:80:fa:20:4e:76:db:09: 82:58:a4:3a:b7:85:4c:a9:05:e7:29:02:47:c4:fb:15:81:00: 01:36:02:51:4b:c6:c4:01:11:37:7c:4a:6b:80:8c:41:bb:b5: fb:93:0c:7a:5d:9f:40:9a:63:d3:9c:37:d9:aa:b5:78:15:3a: 50:e7:8c:e0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUdYwb87eN/SzKfXtX5FQDdTzT+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3 Qjg1OUJENTAeFw0yNDEwMTcxMDU1MDFaFw0yNTEwMTYxMTAwMDFaMDMxMTAvBgNV BAMTKDIwNkY1Q0I5RUYxMDM0QThFNTkwMzMyNUIzQjhFOTZCQzlEQzI3NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC12vEm9lCyyrDIu31Tet+T58xR q2O6q4ZbhTnbbeTlQriVpes9uyP1rN8QLkVeDuMc0KQWXUCgw7pMKAlsgQeroFpc pRwZM+nG2oqdUj8VgMJKbrJEJQTtmRy83MP0d2dChiraxbGaFQwOhcb94uJl+7lM V3trCasjRa+R+h7za69DChQH9zKvaO++SQliUFdTpC545KpP8151jXBzDvrKR+Yl LqKPUAOfFcAydAssYMERhyge/0AchaLnB1PiCdw11eodovwIBU/yM01NiaglQNLW 59ivwmeJ1j5HRUCaEdNGEWQesob3yYr/C4noNwWPNwgJuHUKOHkYAGeU3GcfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIG9cue8QNKjlkDMls7jpa8ncJ20wHwYDVR0j BBgwFoAUH5ae6bCDjSIVYRioiLgb8nuFm9UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZDNmMDk1Yi03MTMwLTQxMjItYWYyNS03ZDJlN2ExMWIxYjEvMC8xRjk2OUVFOUIw ODM4RDIyMTU2MTE4QTg4OEI4MUJGMjdCODU5QkQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3Qjg1 OUJENS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkM2YwOTViLTcxMzAtNDEyMi1h ZjI1LTdkMmU3YTExYjFiMS8wLzMyMzAzMjJlMzUzNzJlMzIzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDM0MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo5GzANBgkqhkiG 9w0BAQsFAAOCAQEArd0KRV4wI60yQta5c9tUg38N/MfcIsJYS5YCssUo3pd0To2y g4WQyK1QCfUdDZp+8SbodglpLf3AmNkr3ByCGBCINBzOUTNpSquMDPeZ9+eF8ZH0 AJFcSZrOY/e+Gh67Q2f+7/MiZW0ZmLXY6nonATELWT21hf8zQy4dPGTs6eGdvZ4o 96H3awJgO7l89Ith9194ChHuMdNwqAaRi6cDGqVdkQYNzzxtmOOfzgVbA+MBZ1J2 Z296sgHcQlegsbKA+iBOdtsJglikOreFTKkF5ykCR8T7FYEAATYCUUvGxAERN3xK a4CMQbu1+5MMel2fQJpj05w32aq1eBU6UOeM4A== -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org