$ rpki-client -vvf repo-rpki.idnic.net/repo/150d1aa1-4c7f-448b-b2bb-02c57151f210/0/3230322e3138332e302e302f31392d3139203d3e20313331373336.roa File: 3230322e3138332e302e302f31392d3139203d3e20313331373336.roa (raw, json) Hash identifier: VRIMxbKk2/BgJ4rNh3WEsQrmcL4C16eroJWi/c1DV6o= Subject key identifier: CD:52:F1:DF:3C:89:DC:55:9D:24:44:DB:66:A1:7B:03:27:8D:DD:B1 Certificate issuer: /CN=732F46D74C7A8C5D888A7091A706F3A09EFE96A3 Certificate serial: 316F686B5F57F1E2D4F89071F42401C40DCBB083 Authority key identifier: 73:2F:46:D7:4C:7A:8C:5D:88:8A:70:91:A7:06:F3:A0:9E:FE:96:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/732F46D74C7A8C5D888A7091A706F3A09EFE96A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/150d1aa1-4c7f-448b-b2bb-02c57151f210/0/3230322e3138332e302e302f31392d3139203d3e20313331373336.roa Signing time: Sat 23 Nov 2024 04:47:13 +0000 ROA not before: Sat 23 Nov 2024 04:42:13 +0000 ROA not after: Sat 22 Nov 2025 04:47:13 +0000 asID: 131736 IP address blocks: 202.183.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/150d1aa1-4c7f-448b-b2bb-02c57151f210/0/732F46D74C7A8C5D888A7091A706F3A09EFE96A3.crl rsync://repo-rpki.idnic.net/repo/150d1aa1-4c7f-448b-b2bb-02c57151f210/0/732F46D74C7A8C5D888A7091A706F3A09EFE96A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/732F46D74C7A8C5D888A7091A706F3A09EFE96A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 11:44:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:6f:68:6b:5f:57:f1:e2:d4:f8:90:71:f4:24:01:c4:0d:cb:b0:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=732F46D74C7A8C5D888A7091A706F3A09EFE96A3 Validity Not Before: Nov 23 04:42:13 2024 GMT Not After : Nov 22 04:47:13 2025 GMT Subject: CN=CD52F1DF3C89DC559D2444DB66A17B03278DDDB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:19:91:cd:14:17:1f:39:0f:5a:51:09:72:ff: 24:85:ce:c8:3b:93:b7:d8:df:44:e7:42:29:d9:a4: 73:e5:d4:bc:f8:e9:67:a5:af:b5:00:0f:57:7a:52: d8:0e:bd:75:a6:25:a4:99:11:c3:2d:fd:5c:05:ec: 57:62:fb:50:4f:7b:1c:03:9e:c9:c9:12:80:72:ca: bd:1a:ab:86:91:72:36:92:3c:67:eb:13:bc:38:2f: fd:a2:00:4e:b7:97:da:e6:f9:0d:33:7a:60:dd:e0: 93:d0:93:88:48:54:59:85:2f:4a:44:87:75:ed:a8: 4c:d9:1e:bd:dd:b6:73:8b:74:8b:46:22:5f:9a:fe: 44:9b:ad:91:09:af:53:51:c2:e1:6e:4c:c1:3c:85: 7f:30:a3:66:48:a5:46:ce:98:82:17:78:91:56:43: 10:46:ee:86:a1:b6:56:e3:78:c7:e5:27:82:2a:cd: 69:2e:16:fb:f5:9f:c0:88:02:89:a1:ef:e2:bf:79: 0d:e1:22:5d:28:5b:73:39:4b:03:df:f0:d3:1e:3c: 08:63:81:a4:25:84:df:28:7d:b5:4e:e8:08:84:a4: 96:db:ba:9a:3d:0f:1c:c3:52:85:ea:4c:f4:50:a7: 9c:4b:c0:28:a5:58:77:40:71:4c:30:a9:d7:d6:fb: 26:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:52:F1:DF:3C:89:DC:55:9D:24:44:DB:66:A1:7B:03:27:8D:DD:B1 X509v3 Authority Key Identifier: keyid:73:2F:46:D7:4C:7A:8C:5D:88:8A:70:91:A7:06:F3:A0:9E:FE:96:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/150d1aa1-4c7f-448b-b2bb-02c57151f210/0/732F46D74C7A8C5D888A7091A706F3A09EFE96A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/732F46D74C7A8C5D888A7091A706F3A09EFE96A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/150d1aa1-4c7f-448b-b2bb-02c57151f210/0/3230322e3138332e302e302f31392d3139203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.183.0.0/19 Signature Algorithm: sha256WithRSAEncryption 3b:99:58:2b:cb:26:38:2f:9d:fb:3c:77:cd:c1:c0:c2:41:89: 32:a7:ca:9e:1d:88:0e:e6:ae:9c:04:ba:dc:3f:6a:e3:c8:99: ec:17:59:e4:4c:88:0a:b9:56:c3:d1:5b:0d:24:a4:88:7e:c1: 39:ec:d7:3a:0a:f0:a0:9b:c0:fe:52:ef:97:60:48:99:b9:b3: 7a:1b:20:e5:3c:85:30:a0:4e:87:f0:9a:25:86:14:c4:43:d2: c7:ac:66:1d:88:1f:1a:1c:d2:57:dd:a5:d0:64:44:a8:08:a5: 31:ad:ca:b6:5c:19:a9:61:9e:af:bd:28:ef:7d:56:ef:18:88: f2:ed:41:66:52:a8:f9:fa:7a:dc:c2:32:76:9e:8a:e2:70:d2: 72:42:1e:9d:07:30:ca:06:52:19:72:33:a0:58:3e:5c:05:10: 85:60:55:8f:31:71:7f:61:46:e8:80:b6:5c:d8:f0:c2:04:fa: 1d:08:84:fd:06:71:9c:75:ea:ec:79:98:ef:7a:ee:90:b1:a3: 05:b1:53:f7:f6:5a:c5:49:48:c9:d9:a0:c9:59:2f:b3:86:7c: 35:07:a1:bf:6e:3c:16:14:cc:65:92:cb:02:e9:26:3b:3f:65: 37:d1:47:e2:f3:85:3c:40:c5:7a:71:2d:00:6a:58:10:d0:55: 1e:4f:c2:77 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMW9oa19X8eLU+JBx9CQBxA3LsIMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzMyRjQ2RDc0QzdBOEM1RDg4OEE3MDkxQTcwNkYzQTA5 RUZFOTZBMzAeFw0yNDExMjMwNDQyMTNaFw0yNTExMjIwNDQ3MTNaMDMxMTAvBgNV BAMTKENENTJGMURGM0M4OURDNTU5RDI0NDREQjY2QTE3QjAzMjc4REREQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5GZHNFBcfOQ9aUQly/ySFzsg7 k7fY30TnQinZpHPl1Lz46Welr7UAD1d6UtgOvXWmJaSZEcMt/VwF7Fdi+1BPexwD nsnJEoByyr0aq4aRcjaSPGfrE7w4L/2iAE63l9rm+Q0zemDd4JPQk4hIVFmFL0pE h3XtqEzZHr3dtnOLdItGIl+a/kSbrZEJr1NRwuFuTME8hX8wo2ZIpUbOmIIXeJFW QxBG7oahtlbjeMflJ4IqzWkuFvv1n8CIAomh7+K/eQ3hIl0oW3M5SwPf8NMePAhj gaQlhN8ofbVO6AiEpJbbupo9DxzDUoXqTPRQp5xLwCilWHdAcUwwqdfW+ybrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzVLx3zyJ3FWdJETbZqF7AyeN3bEwHwYDVR0j BBgwFoAUcy9G10x6jF2IinCRpwbzoJ7+lqMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NTBkMWFhMS00YzdmLTQ0OGItYjJiYi0wMmM1NzE1MWYyMTAvMC83MzJGNDZENzRD N0E4QzVEODg4QTcwOTFBNzA2RjNBMDlFRkU5NkEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzMyRjQ2RDc0QzdBOEM1RDg4OEE3MDkxQTcwNkYzQTA5RUZF OTZBMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE1MGQxYWExLTRjN2YtNDQ4Yi1i MmJiLTAyYzU3MTUxZjIxMC8wLzMyMzAzMjJlMzEzODMzMmUzMDJlMzAyZjMxMzky ZDMxMzkyMDNkM2UyMDMxMzMzMTM3MzMzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcq3ADANBgkqhkiG 9w0BAQsFAAOCAQEAO5lYK8smOC+d+zx3zcHAwkGJMqfKnh2IDuaunAS63D9q48iZ 7BdZ5EyICrlWw9FbDSSkiH7BOezXOgrwoJvA/lLvl2BImbmzehsg5TyFMKBOh/Ca JYYUxEPSx6xmHYgfGhzSV92l0GREqAilMa3KtlwZqWGer70o731W7xiI8u1BZlKo +fp63MIydp6K4nDSckIenQcwygZSGXIzoFg+XAUQhWBVjzFxf2FG6IC2XNjwwgT6 HQiE/QZxnHXq7HmY73rukLGjBbFT9/ZaxUlIydmgyVkvs4Z8NQehv248FhTMZZLL AukmOz9lN9FH4vOFPEDFenEtAGpYENBVHk/Cdw== -----END CERTIFICATE-----Generated at Mon Nov 25 09:00:38 2024 by rpki-client on console-fra.rpki-client.org