$ rpki-client -vvf repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa File: 3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa (raw, json) Hash identifier: MJ3CUcHS7duuhrDqhl4k5LTVEi1ORUC7D4f930RrTmc= Subject key identifier: 6F:88:3A:93:52:26:B2:67:04:25:40:C0:0F:47:5C:28:55:62:27:19 Certificate issuer: /CN=C2F956B126884B5EFD8DDADCEB0E33E1B5306336 Certificate serial: 7DDF49F3B98695FB68DEBDA533ED6FAC20080238 Authority key identifier: C2:F9:56:B1:26:88:4B:5E:FD:8D:DA:DC:EB:0E:33:E1:B5:30:63:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer Subject info access: rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa Signing time: Sun 03 Mar 2024 06:58:04 +0000 ROA not before: Sun 03 Mar 2024 06:53:04 +0000 ROA not after: Sun 02 Mar 2025 06:58:04 +0000 asID: 142375 IP address blocks: 203.145.58.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 00:56:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:df:49:f3:b9:86:95:fb:68:de:bd:a5:33:ed:6f:ac:20:08:02:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2F956B126884B5EFD8DDADCEB0E33E1B5306336 Validity Not Before: Mar 3 06:53:04 2024 GMT Not After : Mar 2 06:58:04 2025 GMT Subject: CN=6F883A935226B267042540C00F475C2855622719 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:10:ad:55:2f:72:59:a6:70:6c:4f:24:40:ec: bb:7b:f2:c5:7b:f9:9d:16:03:75:b9:34:ce:08:e7: d4:c4:d6:51:3e:a5:bf:bf:f6:1b:62:c8:d6:04:01: c6:d5:3a:3b:a5:72:3f:ae:f7:1f:3b:65:9d:d6:34: 7c:dc:7f:1a:3d:71:d9:f9:b5:72:db:b2:fa:a9:2b: ab:4a:0c:a4:0b:34:c2:06:9a:3a:02:f8:3b:60:a2: 12:fa:c7:72:6d:b9:92:d5:96:77:4c:bb:d3:b6:7b: cb:70:7f:13:89:5b:b8:81:20:70:53:21:cb:62:c8: 23:82:ea:b3:fa:72:08:86:ef:3a:7a:63:69:36:a3: 45:e3:30:a8:2f:b8:d5:50:85:97:f0:28:31:6b:31: ad:3d:23:de:ef:e2:25:1d:33:da:2c:0f:12:64:0d: dc:3b:08:c6:5a:05:88:c5:70:f5:15:51:80:6a:24: 37:47:3c:ea:be:fa:04:fd:c4:9e:0d:14:43:f0:42: 94:97:0d:74:9c:60:5d:43:3e:47:5f:e6:c5:e6:d6: 75:01:64:f5:f9:aa:dd:8e:61:70:a3:cb:0b:fe:03: 46:03:92:77:ba:c3:9e:2e:25:82:07:93:17:7e:50: 1e:a5:b4:b3:b0:db:d8:e3:b7:c2:72:93:1e:67:7f: b2:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:88:3A:93:52:26:B2:67:04:25:40:C0:0F:47:5C:28:55:62:27:19 X509v3 Authority Key Identifier: keyid:C2:F9:56:B1:26:88:4B:5E:FD:8D:DA:DC:EB:0E:33:E1:B5:30:63:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.145.58.0/23 Signature Algorithm: sha256WithRSAEncryption 05:0a:92:65:08:19:c5:64:d8:2e:a1:73:25:e6:ac:84:f9:68: e1:2a:7f:0f:db:42:78:c4:fe:ec:aa:78:1e:9a:d9:21:8d:b0: b8:a7:1f:3c:d5:c4:b3:3d:ec:8e:ae:f8:23:09:49:70:a6:33: 01:b3:55:5c:22:95:14:24:00:b0:da:cf:2d:d4:ec:ab:97:45: 65:19:57:61:1c:8f:69:8f:21:a8:85:5a:7d:90:c9:5f:ea:37: 7e:50:4b:92:95:18:f9:87:1f:3e:06:82:85:d1:e5:bb:d3:61: af:2e:e2:64:0e:a4:71:95:e7:87:be:23:37:d5:33:d9:4c:4e: ec:6f:12:8c:fb:a1:ee:7e:54:3d:91:8d:a5:8d:8e:02:17:cc: 97:0b:a0:db:c9:d3:93:52:2c:ff:92:4f:54:61:a8:7c:a9:2c: 5c:c9:29:78:12:be:d6:80:96:22:e4:a2:a0:e9:87:62:59:d2: b1:91:8d:94:36:85:c3:50:d8:31:ac:23:6c:bb:4f:dc:66:c4: 7b:e6:f4:62:a1:0f:95:15:d6:2a:a0:73:14:23:0e:21:3b:e3: 68:bc:4f:46:14:6c:4d:e8:8a:46:8b:4f:63:c5:9a:1d:6b:94: 4f:07:cf:05:27:87:03:29:e9:2f:94:8e:70:12:af:65:36:37: 4f:b5:e9:d2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfd9J87mGlfto3r2lM+1vrCAIAjgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMzRTFC NTMwNjMzNjAeFw0yNDAzMDMwNjUzMDRaFw0yNTAzMDIwNjU4MDRaMDMxMTAvBgNV BAMTKDZGODgzQTkzNTIyNkIyNjcwNDI1NDBDMDBGNDc1QzI4NTU2MjI3MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9EK1VL3JZpnBsTyRA7Lt78sV7 +Z0WA3W5NM4I59TE1lE+pb+/9htiyNYEAcbVOjulcj+u9x87ZZ3WNHzcfxo9cdn5 tXLbsvqpK6tKDKQLNMIGmjoC+DtgohL6x3JtuZLVlndMu9O2e8twfxOJW7iBIHBT IctiyCOC6rP6cgiG7zp6Y2k2o0XjMKgvuNVQhZfwKDFrMa09I97v4iUdM9osDxJk Ddw7CMZaBYjFcPUVUYBqJDdHPOq++gT9xJ4NFEPwQpSXDXScYF1DPkdf5sXm1nUB ZPX5qt2OYXCjywv+A0YDkne6w54uJYIHkxd+UB6ltLOw29jjt8Jykx5nf7I/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUb4g6k1ImsmcEJUDAD0dcKFViJxkwHwYDVR0j BBgwFoAUwvlWsSaIS179jdrc6w4z4bUwYzYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NmFhM2JlYi01NzYxLTRjMzQtODhkMy0wMTVjY2M2NDAwMmYvMC9DMkY5NTZCMTI2 ODg0QjVFRkQ4RERBRENFQjBFMzNFMUI1MzA2MzM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMzRTFCNTMw NjMzNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM2YWEzYmViLTU3NjEtNGMzNC04 OGQzLTAxNWNjYzY0MDAyZi8wLzMyMzAzMzJlMzEzNDM1MmUzNTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy5E6MA0GCSqG SIb3DQEBCwUAA4IBAQAFCpJlCBnFZNguoXMl5qyE+WjhKn8P20J4xP7sqngemtkh jbC4px881cSzPeyOrvgjCUlwpjMBs1VcIpUUJACw2s8t1Oyrl0VlGVdhHI9pjyGo hVp9kMlf6jd+UEuSlRj5hx8+BoKF0eW702GvLuJkDqRxleeHviM31TPZTE7sbxKM +6HuflQ9kY2ljY4CF8yXC6DbydOTUiz/kk9UYah8qSxcySl4Er7WgJYi5KKg6Ydi WdKxkY2UNoXDUNgxrCNsu0/cZsR75vRioQ+VFdYqoHMUIw4hO+NovE9GFGxN6IpG i09jxZoda5RPB88FJ4cDKekvlI5wEq9lNjdPtenS -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:58 2024 by rpki-client on console-ams.rpki-client.org