$ rpki-client -vvf repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133302e302f32342d3234203d3e2034333832.roa File: 3230322e39332e3133302e302f32342d3234203d3e2034333832.roa (raw, json) Hash identifier: 8dppdnbd7qFucEL/ieNhiadT+mtJaudRUbFkfMc503w= Subject key identifier: 46:36:8E:C4:55:F4:19:36:B4:04:DB:AE:C0:D2:21:0B:B1:62:9B:1D Certificate issuer: /CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Certificate serial: 5FCC9B2A7F98B10C67DE5E4E7B5F04C48DA8A182 Authority key identifier: 01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133302e302f32342d3234203d3e2034333832.roa Signing time: Wed 21 Aug 2024 14:01:42 +0000 ROA not before: Wed 21 Aug 2024 13:56:42 +0000 ROA not after: Wed 20 Aug 2025 14:01:42 +0000 asID: 4382 IP address blocks: 202.93.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:cc:9b:2a:7f:98:b1:0c:67:de:5e:4e:7b:5f:04:c4:8d:a8:a1:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Validity Not Before: Aug 21 13:56:42 2024 GMT Not After : Aug 20 14:01:42 2025 GMT Subject: CN=46368EC455F41936B404DBAEC0D2210BB1629B1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6d:03:85:ce:e4:b5:07:77:92:0e:b4:75:8e: b1:d2:68:18:b4:c3:24:8c:dd:ad:dd:8f:fa:d8:fe: 74:39:b8:0b:21:6f:14:7e:50:db:14:5c:ca:23:2e: 0d:4d:ce:95:77:78:e0:42:8c:5d:d0:68:a0:9b:64: 12:9a:41:a0:64:74:f8:fc:d1:fb:34:84:f9:5c:6e: 92:ce:1a:2a:0d:ba:70:81:a3:25:d3:a7:e3:b8:d2: 30:41:9e:72:a5:0e:5f:6c:89:7f:e6:ce:57:5e:c5: ca:73:85:ff:5f:d0:d1:f9:3f:bf:b4:37:79:74:6c: 1f:0f:16:55:2a:18:0a:77:31:dc:8a:4c:7b:28:07: ff:4d:e3:0b:23:3c:c4:ff:44:e5:dc:27:3c:4c:29: 4f:65:54:c9:e0:9d:f1:05:eb:dc:af:14:5b:96:c8: 72:59:b4:a4:4a:4a:15:07:80:21:e4:44:c0:d1:9a: ee:04:06:52:40:56:ce:6b:db:d1:3e:12:f1:0f:ea: bb:9a:12:6e:7a:9b:62:f9:f4:74:b1:8f:0f:97:cf: ba:2a:6e:ad:04:df:9b:27:60:69:90:38:c7:6a:bb: bf:a4:4e:0b:5b:f7:07:9b:b7:af:f7:27:01:78:1a: b3:c2:9f:42:ae:00:2b:08:60:38:ac:ec:fa:66:79: 8a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:36:8E:C4:55:F4:19:36:B4:04:DB:AE:C0:D2:21:0B:B1:62:9B:1D X509v3 Authority Key Identifier: keyid:01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133302e302f32342d3234203d3e2034333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.130.0/24 Signature Algorithm: sha256WithRSAEncryption 46:f7:ed:66:8f:76:07:a6:96:8e:ec:70:71:c7:67:b3:d6:fc: da:17:2b:c0:3c:19:02:cf:dd:64:87:ed:7b:0e:ff:3f:cb:7c: 59:53:f9:57:ef:05:c9:ef:06:a7:8b:cf:26:c9:f6:2f:35:49: c2:07:18:6a:88:60:84:41:1e:7e:38:ee:44:69:53:16:ef:53: 87:91:4e:74:93:7b:db:dc:d7:be:c3:e0:a2:93:aa:1a:92:94: dd:c6:f6:6f:0b:85:cc:fd:c4:aa:2c:dc:03:99:7f:95:46:d9: 0c:f0:b1:3a:25:d7:26:00:d3:f0:83:fe:07:4b:ca:1e:8a:a4: 7c:81:98:30:a6:c3:1c:74:91:d4:f3:69:d8:82:3e:27:65:f2: 71:80:90:c8:7b:ce:8a:1c:9b:8f:8a:ef:38:6a:b3:5c:fd:4d: 2e:9a:c3:4f:7f:87:fd:eb:dc:d7:47:73:df:af:f0:df:4a:46: 1d:de:c5:3d:89:73:cf:b6:35:26:19:66:19:41:5b:66:dc:2e: f5:a6:60:3b:6d:6a:4b:77:15:46:c9:74:e9:14:33:68:ac:45: 5e:5a:75:20:b6:7c:dc:03:d6:cc:b9:54:e8:17:a1:22:dc:fd: cc:88:e2:06:e4:f2:e8:6a:17:fb:b9:bf:75:9b:85:a3:54:fe: 6e:57:4c:29 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUX8ybKn+YsQxn3l5Oe18ExI2ooYIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMx RUZEQTkzQzAeFw0yNDA4MjExMzU2NDJaFw0yNTA4MjAxNDAxNDJaMDMxMTAvBgNV BAMTKDQ2MzY4RUM0NTVGNDE5MzZCNDA0REJBRUMwRDIyMTBCQjE2MjlCMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCubQOFzuS1B3eSDrR1jrHSaBi0 wySM3a3dj/rY/nQ5uAshbxR+UNsUXMojLg1NzpV3eOBCjF3QaKCbZBKaQaBkdPj8 0fs0hPlcbpLOGioNunCBoyXTp+O40jBBnnKlDl9siX/mzldexcpzhf9f0NH5P7+0 N3l0bB8PFlUqGAp3MdyKTHsoB/9N4wsjPMT/ROXcJzxMKU9lVMngnfEF69yvFFuW yHJZtKRKShUHgCHkRMDRmu4EBlJAVs5r29E+EvEP6ruaEm56m2L59HSxjw+Xz7oq bq0E35snYGmQOMdqu7+kTgtb9webt6/3JwF4GrPCn0KuACsIYDis7PpmeYp7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQURjaOxFX0GTa0BNuuwNIhC7Fimx0wHwYDVR0j BBgwFoAUAS0vWZN/2+ZQlbnrSXHZ0x79qTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODZiMzg4OS02OTY2LTQ1ZWYtOTA3My1hZDE0MDExYWMzYjIvMC8wMTJEMkY1OTkz N0ZEQkU2NTA5NUI5RUI0OTcxRDlEMzFFRkRBOTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMxRUZE QTkzQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4NmIzODg5LTY5NjYtNDVlZi05 MDczLWFkMTQwMTFhYzNiMi8wLzMyMzAzMjJlMzkzMzJlMzEzMzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzMzM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKXYIwDQYJKoZIhvcN AQELBQADggEBAEb37WaPdgemlo7scHHHZ7PW/NoXK8A8GQLP3WSH7XsO/z/LfFlT +VfvBcnvBqeLzybJ9i81ScIHGGqIYIRBHn447kRpUxbvU4eRTnSTe9vc177D4KKT qhqSlN3G9m8Lhcz9xKos3AOZf5VG2QzwsTol1yYA0/CD/gdLyh6KpHyBmDCmwxx0 kdTzadiCPidl8nGAkMh7zoocm4+K7zhqs1z9TS6aw09/h/3r3NdHc9+v8N9KRh3e xT2Jc8+2NSYZZhlBW2bcLvWmYDttakt3FUbJdOkUM2isRV5adSC2fNwD1sy5VOgX oSLc/cyI4gbk8uhqF/u5v3WbhaNU/m5XTCk= -----END CERTIFICATE-----Generated at Thu Nov 21 09:17:19 2024 by rpki-client on console-fra.rpki-client.org