$ rpki-client -vvf repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138382e302f32342d3234203d3e20313339333831.roa File: 3230322e34372e3138382e302f32342d3234203d3e20313339333831.roa (raw, json) Hash identifier: SlIodNo+0Jy6QzQYVlHodcFOXk7t+zYJNa4DOQOaN/g= Subject key identifier: 59:75:5E:14:B6:6A:20:AD:D5:46:C4:C3:4C:ED:29:88:DC:1E:9E:41 Certificate issuer: /CN=79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E Certificate serial: 272EBC3FFA691884A75605FB55C844FCC3F1DCAA Authority key identifier: 79:BD:07:5D:1B:C4:BD:8A:E0:C2:6E:FD:2D:37:22:CC:F6:EF:F6:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138382e302f32342d3234203d3e20313339333831.roa Signing time: Mon 11 Nov 2024 09:00:02 +0000 ROA not before: Mon 11 Nov 2024 08:55:02 +0000 ROA not after: Mon 10 Nov 2025 09:00:02 +0000 asID: 139381 IP address blocks: 202.47.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.crl rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:2e:bc:3f:fa:69:18:84:a7:56:05:fb:55:c8:44:fc:c3:f1:dc:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E Validity Not Before: Nov 11 08:55:02 2024 GMT Not After : Nov 10 09:00:02 2025 GMT Subject: CN=59755E14B66A20ADD546C4C34CED2988DC1E9E41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4a:b6:e8:0e:cc:b9:f5:34:45:34:3b:68:4e: d0:71:36:d3:14:36:ee:55:28:64:e4:5a:cd:ab:b6: 65:7b:2e:b3:20:6d:9c:28:d7:27:ac:6e:c7:07:91: 3e:f1:de:b2:f2:92:1e:d5:75:fe:f2:fe:75:f9:bd: 5d:3c:b1:ba:ba:50:9f:2f:7b:59:d1:28:99:d6:4d: 08:f9:f9:66:04:7c:d7:ab:73:06:ef:2a:69:3d:79: b5:09:f4:2f:18:9d:06:d8:bb:b8:34:21:a2:0a:11: 33:ab:f5:bc:52:ec:25:54:c5:3f:fa:a8:11:01:1c: aa:9e:b5:9b:1a:16:d4:20:fd:d5:1e:08:40:2b:d9: 40:87:da:e3:6c:d8:ab:32:55:ec:8a:78:6a:93:d4: 21:f5:cf:dd:36:2c:7c:d3:9a:70:c0:7b:c1:e0:dc: 95:95:1f:33:72:da:79:b1:51:06:87:2a:d5:65:62: c9:7c:8d:e2:ea:0c:49:4e:8c:c5:e4:24:88:9e:b3: 9b:10:09:23:09:61:75:21:ad:b0:6e:39:34:3b:d4: d0:d7:c0:f0:6f:4a:19:ca:a8:c0:14:08:c0:71:a6: d6:74:21:59:83:89:ab:c0:f3:13:00:b0:2f:c2:5d: de:20:5d:1c:53:69:8e:5c:4e:ba:ec:d4:61:ff:70: 2c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:75:5E:14:B6:6A:20:AD:D5:46:C4:C3:4C:ED:29:88:DC:1E:9E:41 X509v3 Authority Key Identifier: keyid:79:BD:07:5D:1B:C4:BD:8A:E0:C2:6E:FD:2D:37:22:CC:F6:EF:F6:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138382e302f32342d3234203d3e20313339333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.188.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:3b:56:25:25:04:ee:35:94:68:66:41:a1:2a:1f:4e:27:94: a2:4c:dd:3d:bd:28:bc:b9:32:04:1c:03:88:bd:f0:fe:22:04: 3d:a2:df:15:fd:82:ce:88:6c:a8:01:86:bd:33:4b:d0:0f:47: 35:52:69:0a:b2:f6:92:0c:69:ed:40:c7:6b:38:f9:e7:b9:18: 4e:58:a0:5b:3d:64:22:23:2c:b4:04:29:c5:6b:0b:4a:82:99: fc:f0:75:5c:c5:9c:d9:bb:78:dc:6a:9d:97:a2:18:24:82:d7: 22:1d:45:14:16:cf:f9:66:e9:13:13:8e:4c:97:e7:a7:21:7a: 4e:07:d1:0f:ad:96:69:21:c3:ac:1c:0c:e8:81:9d:1f:8b:e0: ab:9f:48:c4:2c:52:17:29:c5:e7:42:29:b0:7b:26:7a:86:af: e3:54:24:f7:2b:e9:c1:b6:1a:3c:ae:eb:b0:44:8e:f7:24:47: c6:00:37:c0:ae:84:bb:46:10:48:5f:56:65:75:a9:66:e8:07: e5:31:fb:80:6f:a3:85:d4:e9:a7:0d:cb:4f:3b:20:c3:20:aa: 63:77:fb:f0:61:82:a8:cc:32:ba:13:e4:fa:7b:a2:ba:68:dc: 42:ca:bf:3a:3f:b7:7f:3d:bc:75:8b:ad:d5:52:6e:9e:d4:86: df:6a:71:8f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJy68P/ppGISnVgX7VchE/MPx3KowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzlCRDA3NUQxQkM0QkQ4QUUwQzI2RUZEMkQzNzIyQ0NG NkVGRjY1RTAeFw0yNDExMTEwODU1MDJaFw0yNTExMTAwOTAwMDJaMDMxMTAvBgNV BAMTKDU5NzU1RTE0QjY2QTIwQURENTQ2QzRDMzRDRUQyOTg4REMxRTlFNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtSrboDsy59TRFNDtoTtBxNtMU Nu5VKGTkWs2rtmV7LrMgbZwo1yesbscHkT7x3rLykh7Vdf7y/nX5vV08sbq6UJ8v e1nRKJnWTQj5+WYEfNercwbvKmk9ebUJ9C8YnQbYu7g0IaIKETOr9bxS7CVUxT/6 qBEBHKqetZsaFtQg/dUeCEAr2UCH2uNs2KsyVeyKeGqT1CH1z902LHzTmnDAe8Hg 3JWVHzNy2nmxUQaHKtVlYsl8jeLqDElOjMXkJIies5sQCSMJYXUhrbBuOTQ71NDX wPBvShnKqMAUCMBxptZ0IVmDiavA8xMAsC/CXd4gXRxTaY5cTrrs1GH/cCyjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWXVeFLZqIK3VRsTDTO0piNwenkEwHwYDVR0j BBgwFoAUeb0HXRvEvYrgwm79LTcizPbv9l4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZWU5NDAxNC04N2ZhLTRiYzItYjFjNi03ZmQyYTg5NDc2ZjMvMC83OUJEMDc1RDFC QzRCRDhBRTBDMjZFRkQyRDM3MjJDQ0Y2RUZGNjVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzlCRDA3NUQxQkM0QkQ4QUUwQzI2RUZEMkQzNzIyQ0NGNkVG RjY1RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlZTk0MDE0LTg3ZmEtNGJjMi1i MWM2LTdmZDJhODk0NzZmMy8wLzMyMzAzMjJlMzQzNzJlMzEzODM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzMzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyi+8MA0GCSqG SIb3DQEBCwUAA4IBAQBqO1YlJQTuNZRoZkGhKh9OJ5SiTN09vSi8uTIEHAOIvfD+ IgQ9ot8V/YLOiGyoAYa9M0vQD0c1UmkKsvaSDGntQMdrOPnnuRhOWKBbPWQiIyy0 BCnFawtKgpn88HVcxZzZu3jcap2XohgkgtciHUUUFs/5ZukTE45Ml+enIXpOB9EP rZZpIcOsHAzogZ0fi+Crn0jELFIXKcXnQimweyZ6hq/jVCT3K+nBtho8ruuwRI73 JEfGADfAroS7RhBIX1Zldalm6AflMfuAb6OF1OmnDctPOyDDIKpjd/vwYYKozDK6 E+T6e6K6aNxCyr86P7d/Pbx1i63VUm6e1IbfanGP -----END CERTIFICATE-----Generated at Thu Nov 21 00:19:20 2024 by rpki-client on console-fra.rpki-client.org