$ rpki-client -vvf repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133362e302f32342d3234203d3e2034333832.roa File: 3230322e39332e3133362e302f32342d3234203d3e2034333832.roa (raw, json) Hash identifier: Hv+9iV6JRwD2KdeBNp3e/Z0RYUsiD3ECKpjYMRUbkN4= Subject key identifier: AD:0C:33:CD:51:BD:D7:D9:26:B9:57:43:F4:31:D6:1E:A3:94:46:CE Certificate issuer: /CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Certificate serial: 73ED07264EF1C72DF27E19863FEFD2C609C8827B Authority key identifier: 01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133362e302f32342d3234203d3e2034333832.roa Signing time: Wed 21 Aug 2024 14:01:42 +0000 ROA not before: Wed 21 Aug 2024 13:56:42 +0000 ROA not after: Wed 20 Aug 2025 14:01:42 +0000 asID: 4382 IP address blocks: 202.93.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:ed:07:26:4e:f1:c7:2d:f2:7e:19:86:3f:ef:d2:c6:09:c8:82:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Validity Not Before: Aug 21 13:56:42 2024 GMT Not After : Aug 20 14:01:42 2025 GMT Subject: CN=AD0C33CD51BDD7D926B95743F431D61EA39446CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:62:5e:94:ef:54:48:23:5d:9d:7e:fc:41:43: f4:88:9c:aa:42:c2:de:42:97:f1:3e:70:c4:48:48: 74:d3:25:8e:d6:cc:6f:be:2f:3f:a1:7d:75:de:a1: 18:29:ce:08:ef:3c:20:82:bc:93:b6:da:7d:04:d9: 37:19:44:08:12:e6:00:ee:b0:8e:3a:fa:df:ec:4f: 13:b0:ae:cd:ef:82:fd:b2:7f:98:9d:b6:62:86:28: 08:9f:02:34:a0:a4:18:ab:26:08:26:c2:c6:63:e9: 6f:69:73:5c:93:76:f7:ee:70:6d:32:2f:1d:f1:d1: cb:02:d5:e8:5f:70:0e:b5:94:4b:97:18:ba:00:50: 8e:bc:51:e6:1e:7b:39:d5:36:ff:a6:25:83:1f:ff: 1f:49:b9:3e:df:b5:84:b3:8b:10:ff:f7:1f:31:ed: 8e:b7:10:db:2e:4c:eb:30:2f:77:70:82:64:c0:51: fb:2c:4c:5d:5b:6a:52:51:92:85:da:e9:bc:5d:a9: ad:7d:b0:11:a9:7a:f0:1b:c2:08:28:19:42:80:9e: 84:91:72:03:9a:c9:1e:2b:86:2a:cc:22:7d:60:5f: 17:84:bb:d4:1c:fe:28:91:62:92:d7:d5:88:2a:7e: 82:0f:8e:ab:38:00:15:24:9a:cc:67:20:fc:21:3c: c2:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:0C:33:CD:51:BD:D7:D9:26:B9:57:43:F4:31:D6:1E:A3:94:46:CE X509v3 Authority Key Identifier: keyid:01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133362e302f32342d3234203d3e2034333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.136.0/24 Signature Algorithm: sha256WithRSAEncryption 26:af:b2:28:bf:3b:7b:12:7e:1b:31:17:67:6c:30:3c:40:54: 9e:96:61:fc:82:65:18:86:57:f0:05:02:a9:d5:57:f2:63:9b: f9:a2:6b:5f:d4:ac:74:30:e4:df:b1:dd:fa:1a:f5:0c:c2:93: 08:77:cd:d2:ff:83:b9:c1:e6:52:61:a5:e7:d2:5b:94:28:ea: 78:45:a3:a7:e8:60:d1:b1:63:30:a9:c0:15:3b:a3:ac:59:63: c6:f7:46:d3:73:ab:57:81:c7:99:a2:3b:07:1b:43:dd:52:f8: 38:42:31:08:5c:3f:52:52:96:a9:3a:88:f5:2a:ab:df:65:60: e8:01:10:e2:cb:33:de:86:96:03:65:ef:e0:6e:1f:3c:ed:70: f0:18:9e:60:4c:7e:b0:f7:30:c1:b9:47:48:3d:c8:40:a8:6a: f9:ec:8a:b7:e5:e7:f8:45:9b:7b:ce:09:4b:d1:a0:9e:35:70: 2f:d1:24:0b:86:0f:54:74:02:e1:fc:a0:a0:d9:16:77:74:24: 87:18:90:82:42:5f:97:9d:e2:7e:7f:78:43:75:a4:f5:d4:9d: 84:c8:58:4a:08:20:e7:14:e7:bc:2e:25:b2:6e:0d:81:01:6d: 6d:c2:06:6e:dd:2e:4c:db:bb:50:5a:73:d3:27:12:29:7d:19: 92:e0:9f:43 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUc+0HJk7xxy3yfhmGP+/SxgnIgnswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMx RUZEQTkzQzAeFw0yNDA4MjExMzU2NDJaFw0yNTA4MjAxNDAxNDJaMDMxMTAvBgNV BAMTKEFEMEMzM0NENTFCREQ3RDkyNkI5NTc0M0Y0MzFENjFFQTM5NDQ2Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQYl6U71RII12dfvxBQ/SInKpC wt5Cl/E+cMRISHTTJY7WzG++Lz+hfXXeoRgpzgjvPCCCvJO22n0E2TcZRAgS5gDu sI46+t/sTxOwrs3vgv2yf5idtmKGKAifAjSgpBirJggmwsZj6W9pc1yTdvfucG0y Lx3x0csC1ehfcA61lEuXGLoAUI68UeYeeznVNv+mJYMf/x9JuT7ftYSzixD/9x8x 7Y63ENsuTOswL3dwgmTAUfssTF1balJRkoXa6bxdqa19sBGpevAbwggoGUKAnoSR cgOayR4rhirMIn1gXxeEu9Qc/iiRYpLX1YgqfoIPjqs4ABUkmsxnIPwhPMJFAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUrQwzzVG919kmuVdD9DHWHqOURs4wHwYDVR0j BBgwFoAUAS0vWZN/2+ZQlbnrSXHZ0x79qTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODZiMzg4OS02OTY2LTQ1ZWYtOTA3My1hZDE0MDExYWMzYjIvMC8wMTJEMkY1OTkz N0ZEQkU2NTA5NUI5RUI0OTcxRDlEMzFFRkRBOTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMxRUZE QTkzQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4NmIzODg5LTY5NjYtNDVlZi05 MDczLWFkMTQwMTFhYzNiMi8wLzMyMzAzMjJlMzkzMzJlMzEzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzMzM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKXYgwDQYJKoZIhvcN AQELBQADggEBACavsii/O3sSfhsxF2dsMDxAVJ6WYfyCZRiGV/AFAqnVV/Jjm/mi a1/UrHQw5N+x3foa9QzCkwh3zdL/g7nB5lJhpefSW5Qo6nhFo6foYNGxYzCpwBU7 o6xZY8b3RtNzq1eBx5miOwcbQ91S+DhCMQhcP1JSlqk6iPUqq99lYOgBEOLLM96G lgNl7+BuHzztcPAYnmBMfrD3MMG5R0g9yECoavnsirfl5/hFm3vOCUvRoJ41cC/R JAuGD1R0AuH8oKDZFnd0JIcYkIJCX5ed4n5/eEN1pPXUnYTIWEoIIOcU57wuJbJu DYEBbW3CBm7dLkzbu1Bac9MnEil9GZLgn0M= -----END CERTIFICATE-----Generated at Thu Nov 21 09:17:19 2024 by rpki-client on console-fra.rpki-client.org