$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31322e302f32342d3234203d3e203338313530.roa File: 3230322e39312e31322e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: w+MxiQGbDB18Rg5VSNV+eDaLzxTuL21IeMT2XF0iFag= Subject key identifier: 22:EF:D6:7E:BC:D0:60:21:A4:17:5F:AC:EC:BD:EB:EF:23:05:D3:22 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 01C0DF4DFB19F8A28D3413534F0AD8666C8DEDBC Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31322e302f32342d3234203d3e203338313530.roa Signing time: Mon 01 Jul 2024 01:03:28 +0000 ROA not before: Mon 01 Jul 2024 00:58:28 +0000 ROA not after: Mon 30 Jun 2025 01:03:28 +0000 asID: 38150 IP address blocks: 202.91.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 06:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:c0:df:4d:fb:19:f8:a2:8d:34:13:53:4f:0a:d8:66:6c:8d:ed:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 1 00:58:28 2024 GMT Not After : Jun 30 01:03:28 2025 GMT Subject: CN=22EFD67EBCD06021A4175FACECBDEBEF2305D322 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:10:fb:22:65:05:5c:c7:e7:a4:4f:c3:0c:97: 45:c3:07:fd:cb:ac:01:ab:bb:3a:ce:29:86:f9:b5: c2:82:a5:87:3a:9d:de:aa:6b:5d:1b:6c:9a:3a:a3: 34:47:52:ad:37:b3:b9:f0:dc:4c:48:02:e1:64:a6: 4f:63:41:9b:7d:49:1f:e8:ae:e4:7c:7b:e0:a4:6d: a0:3f:fc:1e:43:0b:3a:ad:5a:b6:10:c0:4b:d7:a9: fc:ca:6e:c3:ea:a9:0f:76:e6:a1:9c:b0:a7:09:2d: 13:ef:44:b2:3e:2b:59:69:50:3c:29:94:00:6a:47: f8:d2:f6:1e:0a:d6:1a:9a:22:df:a8:c8:c1:0c:4a: 0d:29:af:a2:fa:47:c6:6e:2f:25:f4:b4:37:b0:fa: cf:1a:03:da:89:5e:a8:c3:05:18:25:4b:d3:88:27: 5f:50:ea:2f:d3:4e:6d:a9:83:30:68:d3:26:9e:86: 2e:1d:46:00:54:d9:88:bf:78:d8:a2:3e:f2:3b:1d: e5:04:b2:fe:c2:bc:95:d0:1d:ce:f9:49:ff:8f:ab: 91:b7:63:f2:3b:66:18:96:94:6f:61:ac:29:0f:3c: 0f:7f:b3:5a:71:74:c9:7d:06:5e:bb:e8:a7:6c:f2: 04:86:d8:f1:1b:b8:73:ca:77:c4:a6:e8:5e:cf:a1: d5:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:EF:D6:7E:BC:D0:60:21:A4:17:5F:AC:EC:BD:EB:EF:23:05:D3:22 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31322e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.12.0/24 Signature Algorithm: sha256WithRSAEncryption 76:1c:5d:74:8c:bc:74:d6:e4:7c:87:ff:ab:3b:00:6a:69:7b: a2:ca:d2:05:28:15:8d:10:5f:43:32:b3:6b:37:6b:74:bb:a9: e3:38:e6:be:fe:2b:e4:41:38:93:c7:1a:03:d2:3b:1e:8b:ab: da:bc:51:d8:b4:55:4e:cb:52:8b:25:cf:7f:42:ef:3d:03:54: 68:fb:ea:3d:19:e7:5d:6e:05:69:b1:d3:06:0b:2d:4d:ce:70: 4e:7a:78:ab:fb:ce:19:c5:a7:c8:1b:dd:90:13:03:0e:c3:a9: 35:70:a4:d1:65:0a:42:3d:52:6f:17:12:52:c0:8f:fb:3c:e6: 9e:41:3a:29:60:22:c1:37:d2:c8:c5:3a:91:3a:2b:a6:02:45: 02:8e:76:58:c9:a8:6b:83:61:47:7c:54:0e:2f:7c:1c:56:e8: e3:56:57:de:41:b4:39:4f:84:81:99:b5:d2:95:d9:e8:af:6e: 35:79:c4:60:4e:ec:0d:b4:52:6c:fe:2a:ec:36:dc:ab:91:e1: 37:b6:ab:6b:10:af:5b:23:cc:90:70:17:12:08:4c:df:a7:7a: 7e:1d:86:ce:f2:80:56:39:1e:39:9c:32:ef:a5:c9:0d:51:5c: 6c:74:49:fc:1e:95:b7:a9:47:17:c3:4a:e6:88:fc:ce:ed:4b: e4:da:61:36 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUAcDfTfsZ+KKNNBNTTwrYZmyN7bwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNDA3MDEwMDU4MjhaFw0yNTA2MzAwMTAzMjhaMDMxMTAvBgNV BAMTKDIyRUZENjdFQkNEMDYwMjFBNDE3NUZBQ0VDQkRFQkVGMjMwNUQzMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGEPsiZQVcx+ekT8MMl0XDB/3L rAGruzrOKYb5tcKCpYc6nd6qa10bbJo6ozRHUq03s7nw3ExIAuFkpk9jQZt9SR/o ruR8e+CkbaA//B5DCzqtWrYQwEvXqfzKbsPqqQ925qGcsKcJLRPvRLI+K1lpUDwp lABqR/jS9h4K1hqaIt+oyMEMSg0pr6L6R8ZuLyX0tDew+s8aA9qJXqjDBRglS9OI J19Q6i/TTm2pgzBo0yaehi4dRgBU2Yi/eNiiPvI7HeUEsv7CvJXQHc75Sf+Pq5G3 Y/I7ZhiWlG9hrCkPPA9/s1pxdMl9Bl676Kds8gSG2PEbuHPKd8Sm6F7PodVjAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUIu/WfrzQYCGkF1+s7L3r7yMF0yIwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzAzMjJlMzkzMTJlMzEzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWwwwDQYJKoZIhvcN AQELBQADggEBAHYcXXSMvHTW5HyH/6s7AGppe6LK0gUoFY0QX0Mys2s3a3S7qeM4 5r7+K+RBOJPHGgPSOx6Lq9q8Udi0VU7LUoslz39C7z0DVGj76j0Z511uBWmx0wYL LU3OcE56eKv7zhnFp8gb3ZATAw7DqTVwpNFlCkI9Um8XElLAj/s85p5BOilgIsE3 0sjFOpE6K6YCRQKOdljJqGuDYUd8VA4vfBxW6ONWV95BtDlPhIGZtdKV2eivbjV5 xGBO7A20Umz+Kuw23KuR4Te2q2sQr1sjzJBwFxIITN+nen4dhs7ygFY5HjmcMu+l yQ1RXGx0SfwelbepRxfDSuaI/M7tS+TaYTY= -----END CERTIFICATE-----Generated at Fri Nov 22 03:50:41 2024 by rpki-client on console-fra.rpki-client.org