$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3230322e3135342e3138342e302f32312d3234203d3e2039343232.roa File: 3230322e3135342e3138342e302f32312d3234203d3e2039343232.roa (raw, json) Hash identifier: P7Z6XRJZfWLIwLc37QAohPD8GShqj3t7azYOQZsaPgs= Subject key identifier: 6D:4A:7E:20:93:C9:AF:C0:E0:59:18:C5:F8:BB:3E:4D:C8:74:6C:AC Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 2E02B896893985796156D08A6B9A04406AC8B68E Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3230322e3135342e3138342e302f32312d3234203d3e2039343232.roa Signing time: Mon 01 Jul 2024 01:05:17 +0000 ROA not before: Mon 01 Jul 2024 01:00:17 +0000 ROA not after: Mon 30 Jun 2025 01:05:17 +0000 asID: 9422 IP address blocks: 202.154.184.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:02:b8:96:89:39:85:79:61:56:d0:8a:6b:9a:04:40:6a:c8:b6:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Jul 1 01:00:17 2024 GMT Not After : Jun 30 01:05:17 2025 GMT Subject: CN=6D4A7E2093C9AFC0E05918C5F8BB3E4DC8746CAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ce:3e:17:75:4c:c3:44:36:b9:22:6a:9a:79: f6:ac:62:06:77:6c:9f:50:16:8e:7b:50:6c:b5:95: 7c:06:14:cc:96:e5:88:0c:7a:e9:6f:78:e4:43:3c: bd:25:78:84:5d:f8:20:ec:4e:ca:df:11:0c:76:ce: 12:1d:33:c3:d5:a9:6a:86:f2:6f:3e:35:78:29:2d: 5c:2c:5f:db:bd:63:1b:da:e5:17:ac:6a:dc:fe:4a: 07:50:13:4b:03:17:7d:c2:b1:09:25:43:a0:6b:34: c1:6b:2c:b7:56:00:69:2a:66:31:ce:84:c8:33:ea: 10:f0:fe:a2:f2:5d:bf:ba:35:5b:c0:ea:77:6d:9b: ec:87:99:84:31:be:ad:1c:0a:4c:70:43:13:8f:8f: ec:74:be:fb:c4:04:22:39:76:85:91:b0:94:c9:32: ab:8b:fa:7b:73:fc:69:77:43:00:1c:11:e4:e3:4f: 34:05:6f:c4:d1:34:de:f7:d8:f4:c8:20:ca:ca:56: 0f:c0:d8:e2:80:af:b0:1d:72:61:04:e8:7f:12:6d: 1d:00:40:b9:8a:cc:a2:e9:cf:22:a6:70:ca:0e:7b: 22:e6:a2:df:ab:42:76:da:57:be:19:7c:84:68:9f: 38:fe:b0:b6:38:b5:7c:b3:7b:f9:04:ea:5f:53:f7: 36:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:4A:7E:20:93:C9:AF:C0:E0:59:18:C5:F8:BB:3E:4D:C8:74:6C:AC X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3230322e3135342e3138342e302f32312d3234203d3e2039343232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.184.0/21 Signature Algorithm: sha256WithRSAEncryption 21:db:0d:78:61:74:3a:12:92:89:b5:2a:85:c5:ba:86:0f:8d: cb:e0:b6:af:47:b0:2d:65:c4:73:a5:48:23:9d:04:6b:e9:10: d1:66:df:84:2c:55:53:f1:6b:32:e8:b3:95:5a:94:b8:ec:bf: 05:ba:16:01:d1:78:c6:6b:74:13:b7:e3:7e:31:16:b7:f6:11: 01:18:53:6a:00:98:16:29:b7:11:f7:1f:37:ac:0e:13:c7:b9: 4e:f2:6b:4f:46:c4:4f:05:e8:69:6b:6a:e3:f8:2c:16:79:b2: 1c:3f:fb:d4:97:b5:8e:ff:d3:9c:f6:70:72:7a:04:d4:eb:ca: 83:60:c2:33:46:6c:97:98:e6:02:24:9d:f9:3c:1d:66:5d:a4: 07:57:55:10:b7:bb:e9:40:e2:03:7e:4a:21:8a:8e:d1:98:6a: b4:31:70:fa:44:80:7c:73:65:d4:f6:4c:09:ba:ab:c2:d1:95: 60:e1:67:28:f7:ec:fd:9d:91:58:1b:a5:f4:3c:60:ad:c2:9d: a2:77:4f:4b:9c:f0:69:6d:9d:11:24:d3:46:92:7f:3e:d8:1c: 4b:86:1f:68:3a:1d:64:a5:01:d6:86:36:5f:c6:ce:f6:b8:08: b6:e9:dd:b5:52:f1:57:2e:1e:50:c3:40:34:f3:85:b1:52:9e: 42:f0:7c:62 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULgK4lok5hXlhVtCKa5oEQGrIto4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNDA3MDEwMTAwMTdaFw0yNTA2MzAwMTA1MTdaMDMxMTAvBgNV BAMTKDZENEE3RTIwOTNDOUFGQzBFMDU5MThDNUY4QkIzRTREQzg3NDZDQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMzj4XdUzDRDa5ImqaefasYgZ3 bJ9QFo57UGy1lXwGFMyW5YgMeulveORDPL0leIRd+CDsTsrfEQx2zhIdM8PVqWqG 8m8+NXgpLVwsX9u9Yxva5Resatz+SgdQE0sDF33CsQklQ6BrNMFrLLdWAGkqZjHO hMgz6hDw/qLyXb+6NVvA6ndtm+yHmYQxvq0cCkxwQxOPj+x0vvvEBCI5doWRsJTJ MquL+ntz/Gl3QwAcEeTjTzQFb8TRNN732PTIIMrKVg/A2OKAr7AdcmEE6H8SbR0A QLmKzKLpzyKmcMoOeyLmot+rQnbaV74ZfIRonzj+sLY4tXyze/kE6l9T9zblAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbUp+IJPJr8DgWRjF+Ls+Tch0bKwwHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMyMzAzMjJlMzEzNTM0MmUzMTM4MzQyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzOTM0MzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8qauDANBgkqhkiG 9w0BAQsFAAOCAQEAIdsNeGF0OhKSibUqhcW6hg+Ny+C2r0ewLWXEc6VII50Ea+kQ 0WbfhCxVU/FrMuizlVqUuOy/BboWAdF4xmt0E7fjfjEWt/YRARhTagCYFim3Efcf N6wOE8e5TvJrT0bETwXoaWtq4/gsFnmyHD/71Je1jv/TnPZwcnoE1OvKg2DCM0Zs l5jmAiSd+TwdZl2kB1dVELe76UDiA35KIYqO0ZhqtDFw+kSAfHNl1PZMCbqrwtGV YOFnKPfs/Z2RWBul9DxgrcKdondPS5zwaW2dESTTRpJ/PtgcS4YfaDodZKUB1oY2 X8bO9rgItundtVLxVy4eUMNANPOFsVKeQvB8Yg== -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:03 2024 by rpki-client on console-ams.rpki-client.org