$ rpki-client -vvf repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138382e302f32332d3234203d3e20313339333831.roa File: 3230322e34372e3138382e302f32332d3234203d3e20313339333831.roa (raw, json) Hash identifier: tN8NkSCug0bPTsksPXpdsMz/L4Lku2L5HCPREpY8i/M= Subject key identifier: 4D:04:84:B2:81:0E:FE:BC:C0:B9:5C:39:DF:83:6F:74:CD:DA:A7:14 Certificate issuer: /CN=79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E Certificate serial: 0AF5B2CDC146E581544A8A146818B4B2F905A78E Authority key identifier: 79:BD:07:5D:1B:C4:BD:8A:E0:C2:6E:FD:2D:37:22:CC:F6:EF:F6:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138382e302f32332d3234203d3e20313339333831.roa Signing time: Sat 16 Nov 2024 06:00:02 +0000 ROA not before: Sat 16 Nov 2024 05:55:02 +0000 ROA not after: Sat 15 Nov 2025 06:00:02 +0000 asID: 139381 IP address blocks: 202.47.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.crl rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:f5:b2:cd:c1:46:e5:81:54:4a:8a:14:68:18:b4:b2:f9:05:a7:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E Validity Not Before: Nov 16 05:55:02 2024 GMT Not After : Nov 15 06:00:02 2025 GMT Subject: CN=4D0484B2810EFEBCC0B95C39DF836F74CDDAA714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f5:7b:a0:c8:9f:19:bf:2b:21:3d:9c:81:49: 26:dd:43:4f:1a:7d:f1:d0:77:b8:87:7c:56:a6:c3: a0:e0:10:ad:e5:77:5b:14:f8:1e:38:23:0b:7e:35: 7d:38:49:94:35:86:4d:e8:75:08:08:47:3c:9b:06: ce:e7:26:c9:00:0b:4b:aa:1a:bf:8e:00:4a:cf:4b: 28:0f:a4:53:87:99:88:c2:7b:b6:c6:16:60:7d:43: 93:06:fa:b4:11:aa:31:9f:01:09:f3:17:f2:1f:cb: 8e:7f:79:a6:2f:4a:1d:70:05:1f:e9:21:36:fa:28: 67:5a:51:e4:ea:31:0d:a7:12:dd:f9:aa:0e:58:b6: 0a:7d:f0:05:9a:af:96:ef:eb:aa:2a:d4:d1:05:17: 7b:3e:f1:ae:64:75:aa:81:7e:f3:e0:4f:39:3e:85: 41:01:62:db:aa:88:99:11:c5:6c:03:18:f1:f3:5d: 15:42:30:6b:70:5c:a6:da:4d:a6:93:59:4b:64:9b: 53:a3:5c:6b:ef:d9:95:50:af:e4:54:8f:4a:94:76: 3a:c3:e5:9d:16:24:18:ea:ad:3c:89:55:15:03:04: 4a:3b:ad:72:22:54:af:6a:ca:d5:6d:df:a1:1d:e8: e3:bf:d2:d5:f1:e4:c5:62:e6:1d:c7:9d:ad:dd:64: ba:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:04:84:B2:81:0E:FE:BC:C0:B9:5C:39:DF:83:6F:74:CD:DA:A7:14 X509v3 Authority Key Identifier: keyid:79:BD:07:5D:1B:C4:BD:8A:E0:C2:6E:FD:2D:37:22:CC:F6:EF:F6:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138382e302f32332d3234203d3e20313339333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.188.0/23 Signature Algorithm: sha256WithRSAEncryption 40:81:21:7f:04:18:34:de:3c:f1:4a:3e:3b:03:7d:92:29:19: 8a:80:96:02:78:ef:48:e9:e0:b8:b4:c7:67:48:b1:16:00:15: d1:c8:ed:8b:00:f2:d5:3f:21:31:24:be:73:b7:a9:09:3d:3b: 97:89:75:69:d7:de:f0:e9:fe:42:94:b6:9e:3c:04:4f:25:40: 99:0f:51:63:8e:0f:88:a1:9c:f5:ac:a0:7a:47:ff:7c:d0:66: 28:c1:2f:44:3c:fc:35:96:8a:28:b3:3c:d3:0b:37:58:2e:ba: fc:fd:fd:f1:d7:15:7c:d3:92:4f:f5:0d:42:83:b8:28:1a:a7: 80:fd:66:39:20:f7:76:8d:e5:70:8b:a1:a3:1d:7b:39:bc:88: cc:d0:2e:7b:fb:02:e4:8b:83:de:20:28:52:3a:db:b8:85:e4: a2:93:02:f5:b6:e6:b2:62:b6:14:d6:be:fc:cb:da:45:a6:87: 3b:c0:7c:d9:93:e0:1e:df:2c:83:8b:92:13:de:37:04:cf:92: 36:1e:a4:a7:da:b7:19:a2:05:a0:2a:af:6b:b4:e2:a0:09:1c: db:5a:c8:cc:54:07:6d:fb:61:5f:ed:83:3d:ea:3c:dc:cb:f9: ab:33:ba:da:ec:12:14:59:75:94:95:9c:f4:d9:dc:14:fe:5b: ba:89:00:dc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCvWyzcFG5YFUSooUaBi0svkFp44wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzlCRDA3NUQxQkM0QkQ4QUUwQzI2RUZEMkQzNzIyQ0NG NkVGRjY1RTAeFw0yNDExMTYwNTU1MDJaFw0yNTExMTUwNjAwMDJaMDMxMTAvBgNV BAMTKDREMDQ4NEIyODEwRUZFQkNDMEI5NUMzOURGODM2Rjc0Q0REQUE3MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn9XugyJ8ZvyshPZyBSSbdQ08a ffHQd7iHfFamw6DgEK3ld1sU+B44Iwt+NX04SZQ1hk3odQgIRzybBs7nJskAC0uq Gr+OAErPSygPpFOHmYjCe7bGFmB9Q5MG+rQRqjGfAQnzF/Ify45/eaYvSh1wBR/p ITb6KGdaUeTqMQ2nEt35qg5Ytgp98AWar5bv66oq1NEFF3s+8a5kdaqBfvPgTzk+ hUEBYtuqiJkRxWwDGPHzXRVCMGtwXKbaTaaTWUtkm1OjXGvv2ZVQr+RUj0qUdjrD 5Z0WJBjqrTyJVRUDBEo7rXIiVK9qytVt36Ed6OO/0tXx5MVi5h3Hna3dZLqdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTQSEsoEO/rzAuVw534NvdM3apxQwHwYDVR0j BBgwFoAUeb0HXRvEvYrgwm79LTcizPbv9l4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZWU5NDAxNC04N2ZhLTRiYzItYjFjNi03ZmQyYTg5NDc2ZjMvMC83OUJEMDc1RDFC QzRCRDhBRTBDMjZFRkQyRDM3MjJDQ0Y2RUZGNjVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzlCRDA3NUQxQkM0QkQ4QUUwQzI2RUZEMkQzNzIyQ0NGNkVG RjY1RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlZTk0MDE0LTg3ZmEtNGJjMi1i MWM2LTdmZDJhODk0NzZmMy8wLzMyMzAzMjJlMzQzNzJlMzEzODM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzMzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQByi+8MA0GCSqG SIb3DQEBCwUAA4IBAQBAgSF/BBg03jzxSj47A32SKRmKgJYCeO9I6eC4tMdnSLEW ABXRyO2LAPLVPyExJL5zt6kJPTuXiXVp197w6f5ClLaePARPJUCZD1Fjjg+IoZz1 rKB6R/980GYowS9EPPw1loooszzTCzdYLrr8/f3x1xV805JP9Q1Cg7goGqeA/WY5 IPd2jeVwi6GjHXs5vIjM0C57+wLki4PeIChSOtu4heSikwL1tuayYrYU1r78y9pF poc7wHzZk+Ae3yyDi5IT3jcEz5I2HqSn2rcZogWgKq9rtOKgCRzbWsjMVAdt+2Ff 7YM96jzcy/mrM7ra7BIUWXWUlZz02dwU/lu6iQDc -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:01 2024 by rpki-client on console-ams.rpki-client.org