$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31332e302f32342d3234203d3e203338313530.roa File: 3230322e39312e31332e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: Wtm1w2LUkfHMAUBMo8NjVJYbQmXKg5zGneLmy036pZw= Subject key identifier: 23:47:7E:85:57:64:39:A1:4F:64:50:20:16:13:35:56:2E:95:CF:A9 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 77AAF0E172EF0153718C107E43AF1F3A7421B6E4 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31332e302f32342d3234203d3e203338313530.roa Signing time: Mon 01 Jul 2024 01:03:29 +0000 ROA not before: Mon 01 Jul 2024 00:58:29 +0000 ROA not after: Mon 30 Jun 2025 01:03:29 +0000 asID: 38150 IP address blocks: 202.91.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 06:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:aa:f0:e1:72:ef:01:53:71:8c:10:7e:43:af:1f:3a:74:21:b6:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 1 00:58:29 2024 GMT Not After : Jun 30 01:03:29 2025 GMT Subject: CN=23477E85576439A14F645020161335562E95CFA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:da:5d:00:55:aa:54:a1:ba:83:7e:ba:65:bf: 8e:54:ff:32:93:df:ee:ab:c3:15:e3:71:e0:2f:34: db:3f:cc:d4:05:4a:ec:98:71:ad:a4:c0:39:75:3e: aa:c1:9f:f5:48:13:1f:88:89:c5:9b:36:8c:b6:db: 98:ef:92:47:d5:3b:16:89:04:ca:a1:08:85:4e:25: 50:fe:85:a9:cf:08:65:c0:c6:43:68:36:46:93:85: de:b4:1b:a6:49:e0:ad:5f:52:be:be:d9:ae:76:df: e1:6e:20:dc:9e:e4:00:7e:ac:15:c3:62:7a:61:34: a1:37:09:96:11:6c:88:59:eb:1b:2a:4b:4e:88:a6: 52:fa:b6:dd:56:33:19:1c:91:17:3d:17:bc:a5:40: 82:a1:06:df:2a:ed:46:3d:44:8d:e6:37:c0:bb:cb: 10:dc:0f:40:43:d3:47:70:8f:35:15:03:0f:fb:0f: 82:c2:c4:8c:5f:7f:15:b0:c4:5b:7b:24:bd:29:10: d5:43:98:6f:06:20:e0:b2:e8:16:89:29:6c:22:fb: 7a:cf:44:16:bc:fa:0b:7b:d0:cb:36:31:4c:24:f1: 15:92:84:81:16:65:7a:b2:0e:58:4f:6d:30:ca:fd: be:dd:b7:19:24:41:b4:ce:34:51:a3:31:a3:ea:72: 51:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:47:7E:85:57:64:39:A1:4F:64:50:20:16:13:35:56:2E:95:CF:A9 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31332e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.13.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:47:0c:d9:57:7a:ed:64:c9:f0:3a:2b:f9:d3:22:76:b2:fb: c2:a1:81:6e:99:c2:54:64:0a:62:c1:c3:80:29:82:b0:bc:ed: bd:5b:45:c8:2c:80:9a:39:e3:55:8f:2d:51:c8:0a:aa:a8:dc: e0:31:ff:06:e2:bc:a8:19:d4:1e:29:ff:91:33:41:c4:6d:c4: 8f:de:9c:56:7b:14:55:4d:ff:7a:b2:e4:05:6d:20:1e:dc:b0: 51:59:e6:9e:9d:b5:fc:77:f8:2d:f8:07:9c:2e:e4:35:47:66: 2e:8c:64:cc:2a:42:0f:f9:20:ee:b2:bb:9d:aa:9d:3f:74:88: 12:42:4e:e3:7f:cb:20:55:e7:11:67:a3:4d:2d:b6:b3:0f:2c: 2c:46:66:34:25:9b:36:4c:7e:a7:cc:ff:5a:49:d9:13:ec:15: db:15:17:fa:72:7e:9f:cf:fc:ae:bb:4e:f8:26:39:25:e7:81: 13:bc:5d:fc:a0:42:04:b6:02:d1:67:08:13:2f:1e:87:d4:75: 68:8e:f2:5d:c8:20:30:9b:5f:c4:be:74:5a:11:f3:5c:5a:60: 57:42:93:11:7e:ab:5d:fe:47:68:3f:b1:32:b1:f2:17:19:c3: 2a:01:10:20:87:6d:46:70:f6:49:63:d9:2b:53:bb:aa:2b:51: d3:1e:fd:76 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUd6rw4XLvAVNxjBB+Q68fOnQhtuQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNDA3MDEwMDU4MjlaFw0yNTA2MzAwMTAzMjlaMDMxMTAvBgNV BAMTKDIzNDc3RTg1NTc2NDM5QTE0RjY0NTAyMDE2MTMzNTU2MkU5NUNGQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG2l0AVapUobqDfrplv45U/zKT 3+6rwxXjceAvNNs/zNQFSuyYca2kwDl1PqrBn/VIEx+IicWbNoy225jvkkfVOxaJ BMqhCIVOJVD+hanPCGXAxkNoNkaThd60G6ZJ4K1fUr6+2a523+FuINye5AB+rBXD YnphNKE3CZYRbIhZ6xsqS06IplL6tt1WMxkckRc9F7ylQIKhBt8q7UY9RI3mN8C7 yxDcD0BD00dwjzUVAw/7D4LCxIxffxWwxFt7JL0pENVDmG8GIOCy6BaJKWwi+3rP RBa8+gt70Ms2MUwk8RWShIEWZXqyDlhPbTDK/b7dtxkkQbTONFGjMaPqclHfAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUI0d+hVdkOaFPZFAgFhM1Vi6Vz6kwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzAzMjJlMzkzMTJlMzEzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWw0wDQYJKoZIhvcN AQELBQADggEBAI1HDNlXeu1kyfA6K/nTInay+8KhgW6ZwlRkCmLBw4ApgrC87b1b RcgsgJo541WPLVHICqqo3OAx/wbivKgZ1B4p/5EzQcRtxI/enFZ7FFVN/3qy5AVt IB7csFFZ5p6dtfx3+C34B5wu5DVHZi6MZMwqQg/5IO6yu52qnT90iBJCTuN/yyBV 5xFno00ttrMPLCxGZjQlmzZMfqfM/1pJ2RPsFdsVF/pyfp/P/K67TvgmOSXngRO8 XfygQgS2AtFnCBMvHofUdWiO8l3IIDCbX8S+dFoR81xaYFdCkxF+q13+R2g/sTKx 8hcZwyoBECCHbUZw9klj2StTu6orUdMe/XY= -----END CERTIFICATE-----Generated at Fri Nov 22 03:50:41 2024 by rpki-client on console-fra.rpki-client.org