$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31352e302f32342d3234203d3e203338313530.roa File: 3230322e39312e31352e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: YzITjDQsLZYdV9iPbkoBc0BV/7hfCBo8LKPdZNMO5zk= Subject key identifier: 28:E9:DC:3C:99:6C:39:2A:73:CF:44:31:BC:12:2E:AE:42:56:A4:A1 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 526900CD2113A9E8256FBD317954176CBEB90414 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31352e302f32342d3234203d3e203338313530.roa Signing time: Mon 01 Jul 2024 01:03:32 +0000 ROA not before: Mon 01 Jul 2024 00:58:32 +0000 ROA not after: Mon 30 Jun 2025 01:03:32 +0000 asID: 38150 IP address blocks: 202.91.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 06:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:69:00:cd:21:13:a9:e8:25:6f:bd:31:79:54:17:6c:be:b9:04:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 1 00:58:32 2024 GMT Not After : Jun 30 01:03:32 2025 GMT Subject: CN=28E9DC3C996C392A73CF4431BC122EAE4256A4A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:20:97:d0:3b:2b:33:7e:bf:dd:b3:4c:ba:3c: 02:f6:e4:81:a0:19:54:45:31:b0:a0:c1:75:16:10: df:dd:a5:93:e5:59:7d:2f:bb:91:b6:0e:d5:62:54: 65:38:31:28:82:c7:da:88:5c:a1:fb:06:d1:d3:60: a7:19:53:e9:90:0f:cb:5b:e4:76:91:13:e0:f7:11: c9:d5:41:1b:aa:24:b7:69:1d:94:0b:8e:1f:03:da: c4:89:3d:ac:6e:f8:e6:0f:ad:c1:8b:8d:4a:b2:df: 6b:7e:23:4a:6b:de:be:2b:33:51:cf:b7:75:c3:85: 26:2a:ab:80:da:3e:a1:ab:2a:17:a9:e2:9b:e4:bb: 3c:cb:fe:18:05:1a:8d:a0:6c:81:48:23:87:d6:aa: 67:73:6e:e6:47:ed:95:62:4f:35:32:27:66:49:78: 0f:ac:53:02:48:08:f3:51:0e:6f:f0:9b:80:6d:ca: 4b:83:cc:17:c7:cb:66:cf:97:88:5f:f7:c4:8d:57: 04:fc:56:63:fc:50:02:11:30:38:db:65:27:5a:a0: bc:eb:ec:cd:5a:3f:0f:91:ba:31:bb:87:e0:28:da: 24:15:67:28:14:05:b0:37:8c:05:1a:a4:d6:cc:b9: 09:de:51:e7:90:20:8c:96:97:78:98:13:43:d7:f8: 3f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:E9:DC:3C:99:6C:39:2A:73:CF:44:31:BC:12:2E:AE:42:56:A4:A1 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31352e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.15.0/24 Signature Algorithm: sha256WithRSAEncryption 17:5c:26:d0:c6:29:7e:11:b2:ee:27:81:13:3d:00:92:72:d9: 8d:ef:80:f3:d1:05:12:b0:bc:91:c3:46:92:b9:a6:ea:d5:95: 9f:7e:8f:85:4a:0d:89:6d:91:61:a2:8e:b1:61:bd:14:b7:4f: 7c:a2:3a:74:13:37:46:ef:06:8f:bb:eb:75:d5:bf:b5:c0:cf: 45:05:4e:ab:cb:b1:49:d2:8b:00:21:81:c9:0b:75:95:a7:8a: 8f:e3:dd:cb:e4:00:6b:82:7b:58:73:1d:41:30:8c:c0:3d:da: f3:37:3a:a9:43:ae:39:36:3a:a5:ff:5a:51:f4:62:45:61:9f: 5c:8d:e3:7c:15:78:2b:c5:20:16:a1:67:80:c3:33:bb:39:14: 7b:0a:e0:37:bc:90:8b:4b:00:ac:d8:01:7f:06:d5:21:03:5d: 24:6c:c1:7d:9f:33:3a:ae:b3:dd:f3:08:ef:19:13:f4:76:f5: 37:ef:66:cd:3e:48:98:c5:64:04:83:ea:7e:e4:14:ad:46:64: df:53:82:ab:24:9b:6b:06:e3:fa:f8:4d:20:a1:78:8d:e9:3c: 69:51:71:cc:32:e5:90:c6:63:4a:b8:63:ea:08:0c:bc:14:3e: be:27:e7:87:91:7e:db:08:65:11:95:dc:41:4e:14:81:92:7b: 4b:b1:11:19 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUUmkAzSETqeglb70xeVQXbL65BBQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNDA3MDEwMDU4MzJaFw0yNTA2MzAwMTAzMzJaMDMxMTAvBgNV BAMTKDI4RTlEQzNDOTk2QzM5MkE3M0NGNDQzMUJDMTIyRUFFNDI1NkE0QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8IJfQOyszfr/ds0y6PAL25IGg GVRFMbCgwXUWEN/dpZPlWX0vu5G2DtViVGU4MSiCx9qIXKH7BtHTYKcZU+mQD8tb 5HaRE+D3EcnVQRuqJLdpHZQLjh8D2sSJPaxu+OYPrcGLjUqy32t+I0pr3r4rM1HP t3XDhSYqq4DaPqGrKhep4pvkuzzL/hgFGo2gbIFII4fWqmdzbuZH7ZViTzUyJ2ZJ eA+sUwJICPNRDm/wm4BtykuDzBfHy2bPl4hf98SNVwT8VmP8UAIRMDjbZSdaoLzr 7M1aPw+RujG7h+Ao2iQVZygUBbA3jAUapNbMuQneUeeQIIyWl3iYE0PX+D/xAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUKOncPJlsOSpzz0QxvBIurkJWpKEwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzAzMjJlMzkzMTJlMzEzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWw8wDQYJKoZIhvcN AQELBQADggEBABdcJtDGKX4Rsu4ngRM9AJJy2Y3vgPPRBRKwvJHDRpK5purVlZ9+ j4VKDYltkWGijrFhvRS3T3yiOnQTN0bvBo+763XVv7XAz0UFTqvLsUnSiwAhgckL dZWnio/j3cvkAGuCe1hzHUEwjMA92vM3OqlDrjk2OqX/WlH0YkVhn1yN43wVeCvF IBahZ4DDM7s5FHsK4De8kItLAKzYAX8G1SEDXSRswX2fMzqus93zCO8ZE/R29Tfv Zs0+SJjFZASD6n7kFK1GZN9Tgqskm2sG4/r4TSCheI3pPGlRccwy5ZDGY0q4Y+oI DLwUPr4n54eRftsIZRGV3EFOFIGSe0uxERk= -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:38 2024 by rpki-client on console-ams.rpki-client.org