$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31302e302f32342d3234203d3e203338313530.roa File: 3230322e39312e31302e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: DLxQo0gdb9JVW6MFJYL4swYph24mURb/ELIJzCfK7Kk= Subject key identifier: 42:C1:45:DB:A3:6A:AB:28:8D:2A:E8:DE:BD:A6:F8:C6:D5:3B:D7:A9 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 239BE929239C9B958A3AE2E26813C90CDE25CD47 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31302e302f32342d3234203d3e203338313530.roa Signing time: Mon 01 Jul 2024 01:03:29 +0000 ROA not before: Mon 01 Jul 2024 00:58:29 +0000 ROA not after: Mon 30 Jun 2025 01:03:29 +0000 asID: 38150 IP address blocks: 202.91.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 06:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:9b:e9:29:23:9c:9b:95:8a:3a:e2:e2:68:13:c9:0c:de:25:cd:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 1 00:58:29 2024 GMT Not After : Jun 30 01:03:29 2025 GMT Subject: CN=42C145DBA36AAB288D2AE8DEBDA6F8C6D53BD7A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:1e:d2:24:45:44:ef:1c:e2:fd:85:a1:aa:17: 8d:52:69:45:57:71:92:46:d8:e9:5c:11:c4:97:41: 68:e6:08:8f:98:4c:2d:4f:53:42:b6:ae:25:99:ee: 14:34:bb:af:bd:2d:01:e0:4f:0c:6a:50:23:8d:0b: fb:92:bd:40:e2:18:5c:c2:98:d2:52:6b:f2:ad:56: 9a:50:68:4f:20:5e:bd:c2:6e:a0:e4:bd:18:af:84: f9:92:0b:72:ab:fa:bd:21:d3:98:7b:dc:f8:7c:41: ac:10:c8:1b:a6:52:9b:d5:2d:57:af:d3:2d:6b:63: db:51:29:9d:8c:2c:4f:46:d8:24:42:b5:8d:2c:a1: e3:64:52:9d:1e:7f:3e:6d:77:9e:e3:18:f7:0a:23: fd:40:fc:07:79:91:6f:f1:67:ec:bc:54:1f:c8:53: b1:05:ef:42:5d:f7:06:57:40:66:47:30:11:c2:f6: 0e:a1:0c:b9:d0:6b:3d:9f:51:9b:03:34:40:21:0e: c9:94:d2:c5:f3:e8:40:01:ba:df:60:bc:96:ca:6d: f8:09:db:65:67:e1:f6:6c:b0:8e:a4:fa:31:04:97: 1e:db:96:66:03:ac:07:54:52:23:c3:3d:6e:7a:d8: 64:02:88:b5:80:b8:0b:9f:05:1b:48:b1:cb:b7:a9: e3:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:C1:45:DB:A3:6A:AB:28:8D:2A:E8:DE:BD:A6:F8:C6:D5:3B:D7:A9 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31302e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.10.0/24 Signature Algorithm: sha256WithRSAEncryption 72:ed:38:fb:35:96:fa:38:29:e2:d7:6d:f0:b8:50:d0:65:4c: 9d:57:cb:d6:8c:8e:72:8c:31:66:ed:2c:5f:49:d0:a1:dc:82: f0:aa:3b:f9:58:55:19:4f:e6:7d:bb:68:b7:d0:05:60:65:e5: 06:d8:db:4f:6e:70:84:71:5f:4b:1b:40:46:78:cc:af:50:8a: df:9b:7d:f3:93:08:5c:f1:0a:d2:9b:6b:e2:72:a5:e8:e6:36: 7c:8b:10:7d:55:e4:33:ef:31:77:1f:ee:c5:00:43:5c:1d:df: c7:58:6c:b9:ad:3e:d5:a4:05:5a:ff:f1:1c:25:54:0c:41:e2: db:ac:fd:ea:f6:90:f8:f4:c5:11:46:75:12:7f:a1:64:9c:56: 6c:1b:d3:f8:09:2a:5c:ff:89:51:99:4c:4a:ad:7e:98:c2:38: 19:8e:46:92:6d:57:d6:22:81:e9:1d:d8:a4:66:75:8d:fa:a1: b4:d1:94:4c:1e:8f:1f:df:89:1a:9e:c8:2f:00:9c:2c:08:fa: 72:34:a2:67:1d:71:85:32:28:74:3f:8b:78:dd:e5:b6:48:8d: 2a:e1:6c:54:0b:a7:ee:29:7f:a8:00:af:0d:0f:b2:bb:0d:c6: 9e:f0:6d:b9:62:e3:7f:87:b1:a8:e8:8e:2d:62:2a:b0:47:40: 3a:dd:e6:02 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUI5vpKSOcm5WKOuLiaBPJDN4lzUcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNDA3MDEwMDU4MjlaFw0yNTA2MzAwMTAzMjlaMDMxMTAvBgNV BAMTKDQyQzE0NURCQTM2QUFCMjg4RDJBRThERUJEQTZGOEM2RDUzQkQ3QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChHtIkRUTvHOL9haGqF41SaUVX cZJG2OlcEcSXQWjmCI+YTC1PU0K2riWZ7hQ0u6+9LQHgTwxqUCONC/uSvUDiGFzC mNJSa/KtVppQaE8gXr3CbqDkvRivhPmSC3Kr+r0h05h73Ph8QawQyBumUpvVLVev 0y1rY9tRKZ2MLE9G2CRCtY0soeNkUp0efz5td57jGPcKI/1A/Ad5kW/xZ+y8VB/I U7EF70Jd9wZXQGZHMBHC9g6hDLnQaz2fUZsDNEAhDsmU0sXz6EABut9gvJbKbfgJ 22Vn4fZssI6k+jEElx7blmYDrAdUUiPDPW562GQCiLWAuAufBRtIscu3qeMvAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUQsFF26NqqyiNKujevab4xtU716kwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzAzMjJlMzkzMTJlMzEzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWwowDQYJKoZIhvcN AQELBQADggEBAHLtOPs1lvo4KeLXbfC4UNBlTJ1Xy9aMjnKMMWbtLF9J0KHcgvCq O/lYVRlP5n27aLfQBWBl5QbY209ucIRxX0sbQEZ4zK9Qit+bffOTCFzxCtKba+Jy pejmNnyLEH1V5DPvMXcf7sUAQ1wd38dYbLmtPtWkBVr/8RwlVAxB4tus/er2kPj0 xRFGdRJ/oWScVmwb0/gJKlz/iVGZTEqtfpjCOBmORpJtV9Yigekd2KRmdY36obTR lEwejx/fiRqeyC8AnCwI+nI0omcdcYUyKHQ/i3jd5bZIjSrhbFQLp+4pf6gArw0P srsNxp7wbbli43+Hsajoji1iKrBHQDrd5gI= -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:38 2024 by rpki-client on console-ams.rpki-client.org