$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31342e302f32342d3234203d3e203338313530.roa File: 3230322e39312e31342e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: 8A/BY747A8tcSGdw0kTUxTjlElKl9Fd3VYE57A9ejPU= Subject key identifier: 6C:FF:48:ED:BA:57:E9:0E:7A:4E:B5:AD:22:A6:60:18:78:72:09:76 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 36CA471687208C0C2ABC67EE3199DF9DB46CED4B Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31342e302f32342d3234203d3e203338313530.roa Signing time: Mon 01 Jul 2024 01:03:28 +0000 ROA not before: Mon 01 Jul 2024 00:58:28 +0000 ROA not after: Mon 30 Jun 2025 01:03:28 +0000 asID: 38150 IP address blocks: 202.91.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 06:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:ca:47:16:87:20:8c:0c:2a:bc:67:ee:31:99:df:9d:b4:6c:ed:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 1 00:58:28 2024 GMT Not After : Jun 30 01:03:28 2025 GMT Subject: CN=6CFF48EDBA57E90E7A4EB5AD22A6601878720976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:59:59:84:8a:21:02:45:6a:b8:3b:54:13:89: 4c:93:a3:48:85:a3:48:1e:5e:af:fe:6e:f4:f1:ae: bf:67:bf:51:7a:4f:c2:ec:e2:67:31:5d:a0:e8:79: a2:b8:14:33:52:1a:83:7c:bb:e2:c7:4b:d0:b5:d3: c3:84:b1:82:08:7e:d1:80:96:61:10:71:0b:40:9c: e8:c0:99:8b:3a:e6:d5:68:4a:b8:67:a9:f1:b7:29: ce:d9:56:21:e0:9d:68:61:90:28:79:1a:9d:9f:35: 0a:40:d7:ac:bd:00:a0:99:51:63:97:74:cc:08:e8: 0d:6e:ec:e5:48:f9:ed:e9:35:56:2b:2d:37:d9:d0: ab:e3:b1:03:c6:86:0d:b8:81:52:75:3c:31:e6:7d: 13:ac:dd:b9:20:f3:09:f4:d5:ca:9c:a6:87:c3:d2: b0:e5:d0:7e:7e:0b:db:f5:e6:2e:42:9c:41:ee:d1: 44:18:c2:46:31:2e:26:fa:c2:6a:f9:c8:04:93:6b: c5:19:1f:dd:54:5e:f5:da:4b:fd:52:d8:46:0a:36: 68:26:bc:1a:42:cf:c7:6a:7c:d9:7a:08:0c:81:80: 6c:ae:70:8c:3c:2c:bd:85:00:38:bb:7c:ee:a8:c1: 87:80:4f:5a:e8:01:fb:c5:09:d8:9f:07:5e:b3:54: e5:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:FF:48:ED:BA:57:E9:0E:7A:4E:B5:AD:22:A6:60:18:78:72:09:76 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31342e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.14.0/24 Signature Algorithm: sha256WithRSAEncryption 83:2d:f9:5d:b5:af:07:fd:f6:0a:dd:d4:c4:b9:8e:76:fd:11: 34:19:f1:44:e4:be:a7:06:2d:1e:85:a9:3e:bd:09:59:0b:6d: a7:26:2a:5f:75:d3:1b:b5:dd:a9:52:43:48:6b:ac:74:27:36: e2:b7:fb:0e:53:50:61:1b:7f:71:84:46:77:6e:95:9a:b2:cd: 67:3e:ca:1a:c3:74:e5:f5:41:25:c9:fb:02:0b:ea:9f:ca:ee: 66:77:19:f0:3d:f1:ea:85:e8:5d:b5:22:06:64:ed:d8:84:9a: f6:f7:58:68:8e:ef:9e:65:67:aa:88:f5:b3:ae:4f:99:05:4f: 77:5a:8a:f3:0f:5b:f6:df:8d:17:16:4a:d7:4a:7c:72:33:10: a0:8c:a9:b2:be:50:ff:a0:70:3f:ae:e5:4b:bd:e3:cd:62:bf: c5:a1:9f:bc:9f:46:fc:d6:9f:7e:e1:90:19:af:6e:20:5e:8a: 2f:99:9e:bf:59:20:83:6e:79:35:5e:76:b2:6c:8b:f3:c8:65: 77:e0:6f:31:5b:61:c0:f0:5f:d2:b4:6d:79:23:7e:e6:58:9c: 6e:51:93:0b:46:71:e1:df:68:8d:b8:06:1f:1c:fb:b7:13:45: 79:31:82:23:43:38:b8:fc:91:72:d9:bf:c3:f8:a2:5f:3d:d1: 2e:76:ed:66 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUNspHFocgjAwqvGfuMZnfnbRs7UswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNDA3MDEwMDU4MjhaFw0yNTA2MzAwMTAzMjhaMDMxMTAvBgNV BAMTKDZDRkY0OEVEQkE1N0U5MEU3QTRFQjVBRDIyQTY2MDE4Nzg3MjA5NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9WVmEiiECRWq4O1QTiUyTo0iF o0geXq/+bvTxrr9nv1F6T8Ls4mcxXaDoeaK4FDNSGoN8u+LHS9C108OEsYIIftGA lmEQcQtAnOjAmYs65tVoSrhnqfG3Kc7ZViHgnWhhkCh5Gp2fNQpA16y9AKCZUWOX dMwI6A1u7OVI+e3pNVYrLTfZ0KvjsQPGhg24gVJ1PDHmfROs3bkg8wn01cqcpofD 0rDl0H5+C9v15i5CnEHu0UQYwkYxLib6wmr5yASTa8UZH91UXvXaS/1S2EYKNmgm vBpCz8dqfNl6CAyBgGyucIw8LL2FADi7fO6owYeAT1roAfvFCdifB16zVOVbAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUbP9I7bpX6Q56TrWtIqZgGHhyCXYwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzAzMjJlMzkzMTJlMzEzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWw4wDQYJKoZIhvcN AQELBQADggEBAIMt+V21rwf99grd1MS5jnb9ETQZ8UTkvqcGLR6FqT69CVkLbacm Kl910xu13alSQ0hrrHQnNuK3+w5TUGEbf3GERndulZqyzWc+yhrDdOX1QSXJ+wIL 6p/K7mZ3GfA98eqF6F21IgZk7diEmvb3WGiO755lZ6qI9bOuT5kFT3daivMPW/bf jRcWStdKfHIzEKCMqbK+UP+gcD+u5Uu9481iv8Whn7yfRvzWn37hkBmvbiBeii+Z nr9ZIINueTVedrJsi/PIZXfgbzFbYcDwX9K0bXkjfuZYnG5RkwtGceHfaI24Bh8c +7cTRXkxgiNDOLj8kXLZv8P4ol890S527WY= -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:38 2024 by rpki-client on console-ams.rpki-client.org