$ rpki-client -vvf repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/3230332e3134352e36332e302f32342d3234203d3e203436303233.roa File: 3230332e3134352e36332e302f32342d3234203d3e203436303233.roa (raw, json) Hash identifier: WAJ22gxcIZsLrG3fwFj6LAYpg0sHhVFWhpG6gRBIpI8= Subject key identifier: FC:52:C3:33:15:2E:37:40:11:A9:7A:25:69:59:0F:C6:18:15:97:C8 Certificate issuer: /CN=21AB9EB0A860D2619CF210410608EB831A463442 Certificate serial: 3AA111C3D45AA9F449C562101650890A35DA9C5B Authority key identifier: 21:AB:9E:B0:A8:60:D2:61:9C:F2:10:41:06:08:EB:83:1A:46:34:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AB9EB0A860D2619CF210410608EB831A463442.cer Subject info access: rsync://repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/3230332e3134352e36332e302f32342d3234203d3e203436303233.roa Signing time: Tue 05 Nov 2024 12:05:36 +0000 ROA not before: Tue 05 Nov 2024 12:00:36 +0000 ROA not after: Tue 04 Nov 2025 12:05:36 +0000 asID: 46023 IP address blocks: 203.145.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/21AB9EB0A860D2619CF210410608EB831A463442.crl rsync://repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/21AB9EB0A860D2619CF210410608EB831A463442.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AB9EB0A860D2619CF210410608EB831A463442.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:a1:11:c3:d4:5a:a9:f4:49:c5:62:10:16:50:89:0a:35:da:9c:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AB9EB0A860D2619CF210410608EB831A463442 Validity Not Before: Nov 5 12:00:36 2024 GMT Not After : Nov 4 12:05:36 2025 GMT Subject: CN=FC52C333152E374011A97A2569590FC6181597C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d8:b2:f2:a0:0f:05:89:0a:35:36:5e:c5:a5: 73:5b:7f:0a:c0:c7:e6:62:8f:0e:d4:99:c0:8c:e1: cd:27:a0:5e:e1:6f:5f:95:22:7e:86:8d:25:d3:6a: b4:6e:d5:54:c4:6c:88:27:f7:2c:44:c1:5e:e4:c8: 7a:0d:7a:f8:c3:09:89:a6:3e:3b:44:0d:06:2e:bd: 31:65:cf:b6:c4:19:ab:12:bf:50:b8:4e:67:b0:cf: 71:e6:22:c8:db:f9:45:7e:02:ed:f0:3a:81:c9:bc: 11:94:05:a6:20:ef:39:1f:8e:3a:9b:90:fd:7e:c2: db:d1:2e:ac:62:ad:e9:b8:35:e2:44:6a:63:cc:14: 02:a9:d9:cb:f2:b6:0f:49:49:ef:8d:5e:e5:3c:f0: b0:15:de:f2:19:e2:4e:d3:99:c5:19:e9:ed:f3:e7: 82:34:30:97:fd:c2:9f:62:03:4b:70:75:e6:a1:46: 31:ee:2c:6e:a7:87:3d:d9:41:9a:89:52:f3:80:d2: dd:5a:05:00:b1:6a:f5:6c:f5:fd:b7:65:71:4b:2c: 50:90:7b:15:4b:87:2f:58:dc:f3:7d:90:df:b1:e4: 7f:6b:28:1d:42:5f:09:69:dc:80:d0:f4:8d:66:a7: f8:05:1b:86:12:a2:2a:ad:ce:9c:70:87:46:43:c9: 5e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:52:C3:33:15:2E:37:40:11:A9:7A:25:69:59:0F:C6:18:15:97:C8 X509v3 Authority Key Identifier: keyid:21:AB:9E:B0:A8:60:D2:61:9C:F2:10:41:06:08:EB:83:1A:46:34:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/21AB9EB0A860D2619CF210410608EB831A463442.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AB9EB0A860D2619CF210410608EB831A463442.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/3230332e3134352e36332e302f32342d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.145.63.0/24 Signature Algorithm: sha256WithRSAEncryption 62:68:5f:3a:1a:c6:20:1b:38:81:97:50:49:48:62:0f:86:b7: 03:fe:4d:c9:2f:91:ee:58:07:34:86:43:4c:87:50:c4:d0:19: f7:8e:92:ef:4a:15:66:cc:2f:2a:a7:bb:85:7d:0b:bb:ad:59: e5:40:07:d1:c8:1c:88:14:37:89:f6:24:4a:0a:f0:07:64:c8: 93:44:9c:27:82:92:c5:5e:44:be:77:ab:1b:5e:f5:40:05:7a: ad:bb:3d:a2:b7:3b:6b:4d:de:1c:11:67:80:f0:c0:fc:f8:61: 69:e0:0f:9e:3b:3f:b3:17:e4:ce:09:f4:92:f7:58:19:47:21: 4d:f3:eb:b8:51:db:c8:6c:90:51:70:1e:4a:18:e6:31:8c:90: bb:51:67:01:aa:51:65:13:1a:e3:d6:9b:00:50:0c:13:95:6a: 8c:06:3a:73:5e:18:f8:22:e0:2d:00:47:fc:04:c6:f6:72:2a: 1c:ba:80:cf:96:82:03:e5:69:5a:22:05:24:96:e1:51:24:be: 66:21:e0:24:14:b8:80:4d:1d:ac:91:03:9c:80:8b:20:7e:a0: 9b:b2:e4:84:30:86:03:e1:56:45:00:19:09:1c:e4:3b:63:b1: ea:55:8e:3c:de:a5:1a:a3:13:e0:76:53:00:01:99:1b:d1:0c: e2:1e:e2:61 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOqERw9RaqfRJxWIQFlCJCjXanFswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQjlFQjBBODYwRDI2MTlDRjIxMDQxMDYwOEVCODMx QTQ2MzQ0MjAeFw0yNDExMDUxMjAwMzZaFw0yNTExMDQxMjA1MzZaMDMxMTAvBgNV BAMTKEZDNTJDMzMzMTUyRTM3NDAxMUE5N0EyNTY5NTkwRkM2MTgxNTk3QzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC2LLyoA8FiQo1Nl7FpXNbfwrA x+Zijw7UmcCM4c0noF7hb1+VIn6GjSXTarRu1VTEbIgn9yxEwV7kyHoNevjDCYmm PjtEDQYuvTFlz7bEGasSv1C4Tmewz3HmIsjb+UV+Au3wOoHJvBGUBaYg7zkfjjqb kP1+wtvRLqxirem4NeJEamPMFAKp2cvytg9JSe+NXuU88LAV3vIZ4k7TmcUZ6e3z 54I0MJf9wp9iA0twdeahRjHuLG6nhz3ZQZqJUvOA0t1aBQCxavVs9f23ZXFLLFCQ exVLhy9Y3PN9kN+x5H9rKB1CXwlp3IDQ9I1mp/gFG4YSoiqtzpxwh0ZDyV6dAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/FLDMxUuN0ARqXolaVkPxhgVl8gwHwYDVR0j BBgwFoAUIauesKhg0mGc8hBBBgjrgxpGNEIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z M2RkYTkyMy1lYTM2LTQ1NmItYmFmZS00MGU2YjYyZjUwYzUvMC8yMUFCOUVCMEE4 NjBEMjYxOUNGMjEwNDEwNjA4RUI4MzFBNDYzNDQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQjlFQjBBODYwRDI2MTlDRjIxMDQxMDYwOEVCODMxQTQ2 MzQ0Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzZGRhOTIzLWVhMzYtNDU2Yi1i YWZlLTQwZTZiNjJmNTBjNS8wLzMyMzAzMzJlMzEzNDM1MmUzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMuRPzANBgkqhkiG 9w0BAQsFAAOCAQEAYmhfOhrGIBs4gZdQSUhiD4a3A/5NyS+R7lgHNIZDTIdQxNAZ 946S70oVZswvKqe7hX0Lu61Z5UAH0cgciBQ3ifYkSgrwB2TIk0ScJ4KSxV5Evner G171QAV6rbs9orc7a03eHBFngPDA/PhhaeAPnjs/sxfkzgn0kvdYGUchTfPruFHb yGyQUXAeShjmMYyQu1FnAapRZRMa49abAFAME5VqjAY6c14Y+CLgLQBH/ATG9nIq HLqAz5aCA+VpWiIFJJbhUSS+ZiHgJBS4gE0drJEDnICLIH6gm7LkhDCGA+FWRQAZ CRzkO2Ox6lWOPN6lGqMT4HZTAAGZG9EM4h7iYQ== -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:03 2024 by rpki-client on console-ams.rpki-client.org