$ rpki-client -vvf repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133332e302f32342d3234203d3e2034333832.roa File: 3230322e39332e3133332e302f32342d3234203d3e2034333832.roa (raw, json) Hash identifier: jpzCHaIdGXtjfUd7/tHrnDNIalNtrrhQPvzQekSGQc4= Subject key identifier: 20:BE:68:FA:81:A7:DD:7B:A2:E9:FA:DE:9D:B8:6B:5F:FC:76:56:55 Certificate issuer: /CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Certificate serial: 76C52686D09180F65978751D25A887B1B7C52939 Authority key identifier: 01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133332e302f32342d3234203d3e2034333832.roa Signing time: Wed 21 Aug 2024 14:01:40 +0000 ROA not before: Wed 21 Aug 2024 13:56:40 +0000 ROA not after: Wed 20 Aug 2025 14:01:40 +0000 asID: 4382 IP address blocks: 202.93.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:c5:26:86:d0:91:80:f6:59:78:75:1d:25:a8:87:b1:b7:c5:29:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Validity Not Before: Aug 21 13:56:40 2024 GMT Not After : Aug 20 14:01:40 2025 GMT Subject: CN=20BE68FA81A7DD7BA2E9FADE9DB86B5FFC765655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:87:1d:d5:35:7d:77:b5:aa:44:73:6e:a4:ee: 6a:c1:be:bb:ff:95:42:d9:6e:cc:36:76:ee:f6:49: e6:4c:ff:1f:b9:88:76:ff:a3:a3:b3:5e:e0:5b:3d: 6e:1d:2f:a8:5e:52:6f:4a:9f:24:9f:bf:7f:94:e3: b5:03:19:8e:b5:e1:19:2f:4a:db:79:49:3c:ad:13: 30:b1:ef:ca:c3:1b:ea:94:e4:6b:78:f7:67:89:2c: 99:d9:1e:12:fb:5d:97:89:17:0f:a0:bc:e4:e6:f3: 23:0e:54:5e:d1:8f:58:9e:76:ad:8e:38:4e:3c:bc: a0:af:ce:2b:87:4d:55:a7:8d:c4:49:7d:01:aa:ba: 5d:c9:78:f7:d5:25:5a:01:ca:50:c6:b7:ad:da:80: 44:7e:ee:d6:f2:b6:19:c6:e0:46:a4:5f:70:4d:88: a0:2d:7c:8f:a9:ae:4f:24:03:84:7f:35:a4:dd:34: 86:f8:11:e9:b5:70:19:7f:4e:9b:60:57:75:5a:63: c9:1f:1e:3c:68:6f:07:50:15:de:1a:91:06:4c:f3: fd:b8:c4:8e:23:b6:ca:2e:3a:17:9f:ed:00:28:71: c0:9d:7d:9b:84:8f:16:11:69:a7:28:26:81:65:80: 1c:3a:b2:47:41:f1:f0:83:ee:eb:f9:59:56:db:5b: 5b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:BE:68:FA:81:A7:DD:7B:A2:E9:FA:DE:9D:B8:6B:5F:FC:76:56:55 X509v3 Authority Key Identifier: keyid:01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133332e302f32342d3234203d3e2034333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.133.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:2d:8f:22:87:c1:74:6a:cf:4c:a6:04:0a:ad:57:f2:0b:a8: f8:78:b0:11:ad:72:4c:3f:20:04:2f:7b:46:42:8c:a2:9f:da: 23:e0:2c:c1:56:61:67:51:16:ea:5a:bb:dd:3a:a8:e7:05:b9: 5d:76:ce:e1:bc:68:01:40:2f:c9:25:fb:ae:1e:73:80:4a:7d: 3e:6c:d4:ae:14:9a:5a:15:a6:0b:33:0f:5e:6d:ed:ee:95:05: 53:07:c8:59:bd:f1:bd:e1:55:cb:0f:3e:d5:8e:62:7e:5d:91: dc:c9:ff:10:b1:34:06:cc:c5:59:6e:86:c2:81:36:13:b7:e5: 52:64:15:9d:15:54:0c:a2:80:a7:d4:76:af:5c:c2:2d:88:c8: 4a:c4:1f:f4:f0:9e:cd:9b:8d:66:19:7c:c7:a8:fc:71:16:a8: bb:bf:00:a1:51:fb:5e:2f:65:6c:38:70:63:49:e7:d6:d4:80: 27:2c:0e:f9:4e:32:c2:60:70:c8:2c:c6:85:5f:4d:33:ac:93: a2:a3:38:81:2d:bb:e9:0b:e1:dc:08:95:75:ab:fd:81:25:a0: 5f:19:c0:79:8b:4d:62:d5:46:c1:b4:af:36:a0:3e:93:3e:da: 59:5c:e0:64:b5:f6:28:7b:fa:77:5b:20:15:85:17:48:23:4a: 5c:42:78:f5 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUdsUmhtCRgPZZeHUdJaiHsbfFKTkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMx RUZEQTkzQzAeFw0yNDA4MjExMzU2NDBaFw0yNTA4MjAxNDAxNDBaMDMxMTAvBgNV BAMTKDIwQkU2OEZBODFBN0REN0JBMkU5RkFERTlEQjg2QjVGRkM3NjU2NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIhx3VNX13tapEc26k7mrBvrv/ lULZbsw2du72SeZM/x+5iHb/o6OzXuBbPW4dL6heUm9KnySfv3+U47UDGY614Rkv Stt5STytEzCx78rDG+qU5Gt492eJLJnZHhL7XZeJFw+gvOTm8yMOVF7Rj1iedq2O OE48vKCvziuHTVWnjcRJfQGqul3JePfVJVoBylDGt63agER+7tbythnG4EakX3BN iKAtfI+prk8kA4R/NaTdNIb4Eem1cBl/TptgV3VaY8kfHjxobwdQFd4akQZM8/24 xI4jtsouOhef7QAoccCdfZuEjxYRaacoJoFlgBw6skdB8fCD7uv5WVbbW1tdAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUIL5o+oGn3Xui6frenbhrX/x2VlUwHwYDVR0j BBgwFoAUAS0vWZN/2+ZQlbnrSXHZ0x79qTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODZiMzg4OS02OTY2LTQ1ZWYtOTA3My1hZDE0MDExYWMzYjIvMC8wMTJEMkY1OTkz N0ZEQkU2NTA5NUI5RUI0OTcxRDlEMzFFRkRBOTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMxRUZE QTkzQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4NmIzODg5LTY5NjYtNDVlZi05 MDczLWFkMTQwMTFhYzNiMi8wLzMyMzAzMjJlMzkzMzJlMzEzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzMzM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKXYUwDQYJKoZIhvcN AQELBQADggEBAB0tjyKHwXRqz0ymBAqtV/ILqPh4sBGtckw/IAQve0ZCjKKf2iPg LMFWYWdRFupau906qOcFuV12zuG8aAFAL8kl+64ec4BKfT5s1K4UmloVpgszD15t 7e6VBVMHyFm98b3hVcsPPtWOYn5dkdzJ/xCxNAbMxVluhsKBNhO35VJkFZ0VVAyi gKfUdq9cwi2IyErEH/Twns2bjWYZfMeo/HEWqLu/AKFR+14vZWw4cGNJ59bUgCcs DvlOMsJgcMgsxoVfTTOsk6KjOIEtu+kL4dwIlXWr/YEloF8ZwHmLTWLVRsG0rzag PpM+2llc4GS19ih7+ndbIBWFF0gjSlxCePU= -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:03 2024 by rpki-client on console-ams.rpki-client.org