$ rpki-client -vvf repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133352e302f32342d3234203d3e2034333832.roa File: 3230322e39332e3133352e302f32342d3234203d3e2034333832.roa (raw, json) Hash identifier: rB0iPDe1IvoHV8TArDppc7ofeTkq1pWYD7pulqib69A= Subject key identifier: 03:38:16:7B:94:DE:D1:A4:08:D4:88:70:80:92:18:F9:D9:66:4C:D7 Certificate issuer: /CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Certificate serial: 249E620301A0B8468E4267D3B3A3A48EF6AA358C Authority key identifier: 01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133352e302f32342d3234203d3e2034333832.roa Signing time: Wed 21 Aug 2024 14:01:41 +0000 ROA not before: Wed 21 Aug 2024 13:56:41 +0000 ROA not after: Wed 20 Aug 2025 14:01:41 +0000 asID: 4382 IP address blocks: 202.93.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:9e:62:03:01:a0:b8:46:8e:42:67:d3:b3:a3:a4:8e:f6:aa:35:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Validity Not Before: Aug 21 13:56:41 2024 GMT Not After : Aug 20 14:01:41 2025 GMT Subject: CN=0338167B94DED1A408D48870809218F9D9664CD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:f1:1e:d1:fc:3d:4d:c0:90:9c:63:d3:84:77: cf:e6:0d:33:0c:4d:04:72:9a:18:4c:c6:0d:ea:25: 44:82:42:9f:be:c7:85:8d:3e:a3:72:3a:7f:f8:73: 3c:20:d0:9e:69:90:07:ae:0b:31:a0:bd:31:f8:cc: ec:dd:fb:b3:55:89:3c:5d:c7:a6:cf:59:e9:ef:e7: 96:f9:3f:f1:44:ef:c1:31:cc:da:d0:20:92:e1:6b: 1c:f9:cc:29:22:12:e3:c9:42:4b:0c:31:29:6b:1b: 7f:28:16:9f:53:5d:36:50:32:a7:4e:d8:69:53:8d: 7a:f7:c3:aa:3e:eb:96:81:0a:22:36:1a:6a:0f:f3: 9d:40:d1:a6:53:ff:e9:ec:33:91:8a:0e:cf:63:4b: 74:c1:f6:ee:79:e4:bd:92:d5:82:3c:0b:02:00:69: b6:e4:51:1e:26:41:dc:57:08:52:35:79:ee:f2:e5: 1f:97:2d:97:04:fe:9d:19:c3:6b:03:47:1a:ce:1d: d3:a3:bb:1f:d0:bb:0f:e4:c4:25:d9:dd:57:2f:3d: 2d:c8:ee:14:63:14:04:98:68:17:ec:74:ea:13:86: 21:33:52:da:1a:72:f8:6a:b8:26:03:7e:b3:a0:a0: e1:1e:40:93:25:3b:28:cb:ea:db:10:72:36:18:bb: f7:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:38:16:7B:94:DE:D1:A4:08:D4:88:70:80:92:18:F9:D9:66:4C:D7 X509v3 Authority Key Identifier: keyid:01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133352e302f32342d3234203d3e2034333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.135.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:26:16:b1:05:83:a0:3b:d8:d9:2b:34:68:8b:90:60:8d:51: 63:72:68:da:d2:be:ce:fd:2d:7f:7b:6c:a8:56:ff:b8:06:bf: 1c:71:22:31:ef:8f:2c:f3:4a:93:db:28:8a:2d:d6:51:9e:36: 92:70:db:61:73:ca:30:82:71:65:0d:d1:f4:c0:7b:c2:28:88: 98:4b:3c:83:ca:f3:07:26:41:39:ad:66:78:02:d2:9f:21:24: f9:bc:d6:8e:f2:1d:30:4c:2d:69:c5:7e:61:d3:28:f1:6f:80: d0:a2:e5:68:ad:9b:a7:33:93:6a:fe:53:b2:98:7d:d9:d3:67: 7a:52:69:8e:78:ae:02:e2:cc:be:27:49:a3:4f:fc:21:3f:f4: 31:2c:ae:99:52:83:2f:99:67:b1:a7:0f:4c:d2:1b:d6:4c:07: bd:19:0a:48:65:39:c0:77:d2:d3:b2:0e:8a:53:5b:d6:97:b3: 1b:c1:bd:5b:10:46:33:26:aa:ae:1a:08:4e:03:e2:d1:83:64: d0:0c:3c:fc:2c:8f:29:5e:3a:3e:af:ce:c6:1b:b7:3c:20:7c: 30:ab:b5:5f:a2:30:f1:aa:96:ae:23:66:7b:80:03:a3:e9:0d: 33:e8:8e:02:73:1a:e2:fb:91:07:50:e8:f9:01:59:18:9f:6d: 4b:0a:8c:c3 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUJJ5iAwGguEaOQmfTs6OkjvaqNYwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMx RUZEQTkzQzAeFw0yNDA4MjExMzU2NDFaFw0yNTA4MjAxNDAxNDFaMDMxMTAvBgNV BAMTKDAzMzgxNjdCOTRERUQxQTQwOEQ0ODg3MDgwOTIxOEY5RDk2NjRDRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm8R7R/D1NwJCcY9OEd8/mDTMM TQRymhhMxg3qJUSCQp++x4WNPqNyOn/4czwg0J5pkAeuCzGgvTH4zOzd+7NViTxd x6bPWenv55b5P/FE78ExzNrQIJLhaxz5zCkiEuPJQksMMSlrG38oFp9TXTZQMqdO 2GlTjXr3w6o+65aBCiI2GmoP851A0aZT/+nsM5GKDs9jS3TB9u555L2S1YI8CwIA abbkUR4mQdxXCFI1ee7y5R+XLZcE/p0Zw2sDRxrOHdOjux/Quw/kxCXZ3VcvPS3I 7hRjFASYaBfsdOoThiEzUtoacvhquCYDfrOgoOEeQJMlOyjL6tsQcjYYu/dRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUAzgWe5Te0aQI1IhwgJIY+dlmTNcwHwYDVR0j BBgwFoAUAS0vWZN/2+ZQlbnrSXHZ0x79qTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODZiMzg4OS02OTY2LTQ1ZWYtOTA3My1hZDE0MDExYWMzYjIvMC8wMTJEMkY1OTkz N0ZEQkU2NTA5NUI5RUI0OTcxRDlEMzFFRkRBOTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMxRUZE QTkzQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4NmIzODg5LTY5NjYtNDVlZi05 MDczLWFkMTQwMTFhYzNiMi8wLzMyMzAzMjJlMzkzMzJlMzEzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzMzM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKXYcwDQYJKoZIhvcN AQELBQADggEBAG8mFrEFg6A72NkrNGiLkGCNUWNyaNrSvs79LX97bKhW/7gGvxxx IjHvjyzzSpPbKIot1lGeNpJw22FzyjCCcWUN0fTAe8IoiJhLPIPK8wcmQTmtZngC 0p8hJPm81o7yHTBMLWnFfmHTKPFvgNCi5Witm6czk2r+U7KYfdnTZ3pSaY54rgLi zL4nSaNP/CE/9DEsrplSgy+ZZ7GnD0zSG9ZMB70ZCkhlOcB30tOyDopTW9aXsxvB vVsQRjMmqq4aCE4D4tGDZNAMPPwsjyleOj6vzsYbtzwgfDCrtV+iMPGqlq4jZnuA A6PpDTPojgJzGuL7kQdQ6PkBWRifbUsKjMM= -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:03 2024 by rpki-client on console-ams.rpki-client.org