$ rpki-client -vvf repo-rpki.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/3230322e3132392e3232342e302f32322d3234203d3e203338373831.roa File: 3230322e3132392e3232342e302f32322d3234203d3e203338373831.roa (raw, json) Hash identifier: ASTP/Ns/ArmugM2J+rWvnVdL7xU8qGXnTiOu43cw3NQ= Subject key identifier: F4:91:71:1C:F1:0C:6D:87:1C:FC:36:89:71:2E:51:28:5E:85:92:48 Certificate issuer: /CN=1678F34665D7A5281AECD895B892F07EA136CF72 Certificate serial: 1FF37D296C8AA92FE1D9E296DC294CED9771D0AE Authority key identifier: 16:78:F3:46:65:D7:A5:28:1A:EC:D8:95:B8:92:F0:7E:A1:36:CF:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1678F34665D7A5281AECD895B892F07EA136CF72.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/3230322e3132392e3232342e302f32322d3234203d3e203338373831.roa Signing time: Mon 01 Jul 2024 01:03:34 +0000 ROA not before: Mon 01 Jul 2024 00:58:34 +0000 ROA not after: Mon 30 Jun 2025 01:03:34 +0000 asID: 38781 IP address blocks: 202.129.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/1678F34665D7A5281AECD895B892F07EA136CF72.crl rsync://repo-rpki.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/1678F34665D7A5281AECD895B892F07EA136CF72.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1678F34665D7A5281AECD895B892F07EA136CF72.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 16:03:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:f3:7d:29:6c:8a:a9:2f:e1:d9:e2:96:dc:29:4c:ed:97:71:d0:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1678F34665D7A5281AECD895B892F07EA136CF72 Validity Not Before: Jul 1 00:58:34 2024 GMT Not After : Jun 30 01:03:34 2025 GMT Subject: CN=F491711CF10C6D871CFC3689712E51285E859248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:04:51:57:29:85:94:3d:41:3d:19:3b:85:3e: bf:ea:05:8f:07:fa:33:e8:e9:f4:07:8e:12:60:a5: ba:44:9a:44:53:80:98:3e:1a:0f:a6:f6:28:b5:d4: 40:d1:2b:da:43:78:cf:5d:d8:54:c6:4c:2d:ea:2c: 96:8b:59:3b:ac:b2:29:f5:54:3d:6c:58:2d:1d:d3: 88:e8:1f:ca:0a:f9:ae:d0:62:2a:7a:d1:95:96:2a: 7c:15:fa:03:ab:a6:e1:5a:b1:95:0f:98:d2:6e:82: 53:c4:2c:69:55:9c:45:03:3e:6e:30:eb:85:55:57: c0:4f:72:bd:4d:e7:75:c8:a7:3b:9c:b9:88:26:4a: 56:de:8b:65:a9:74:1a:2e:56:21:b8:37:7b:64:d7: a5:cf:58:08:15:d3:06:26:fe:d4:6e:bb:d8:db:82: 82:d4:f8:41:ab:a4:e6:4e:46:13:e3:63:d9:06:ef: dd:78:d3:c3:82:c4:98:fe:bb:1a:79:5d:64:aa:9f: 11:18:b4:f4:50:b1:8f:ee:d3:a1:45:3e:b5:95:35: 62:5a:68:40:5b:22:c5:b2:c9:6f:8d:97:69:75:da: 15:92:cb:eb:9a:b3:29:20:c9:eb:ba:39:7c:44:4d: a5:28:2e:6d:20:8e:b5:bc:d7:9f:d6:c5:60:5c:f2: 7c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:91:71:1C:F1:0C:6D:87:1C:FC:36:89:71:2E:51:28:5E:85:92:48 X509v3 Authority Key Identifier: keyid:16:78:F3:46:65:D7:A5:28:1A:EC:D8:95:B8:92:F0:7E:A1:36:CF:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/1678F34665D7A5281AECD895B892F07EA136CF72.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1678F34665D7A5281AECD895B892F07EA136CF72.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/3230322e3132392e3232342e302f32322d3234203d3e203338373831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.129.224.0/22 Signature Algorithm: sha256WithRSAEncryption 09:23:91:66:54:1d:70:ae:3a:3e:57:47:d1:ad:8a:48:f6:79: 76:0a:5b:29:91:46:f1:35:46:96:8d:7b:b1:f0:72:95:e6:c9: 75:03:02:34:6b:cf:bb:f1:d4:6a:40:72:98:4d:6a:79:f3:aa: d6:bb:ac:b7:b0:99:bd:9b:ef:fd:46:7e:63:4f:6a:cc:0f:d0: 8c:1e:d7:c5:0d:a0:33:c2:8c:93:1c:c4:c1:73:b8:bd:d2:91: 05:c9:90:70:88:72:fd:9d:2b:a0:d5:6c:b7:53:9f:e0:07:fd: 4a:15:c4:9e:ea:2a:c4:18:6b:26:ec:4f:8e:7f:8d:6e:31:d7: 4f:ab:d6:c5:40:88:bd:53:c8:af:b7:ab:c4:31:06:7a:c9:80: 97:42:2f:e7:97:bc:0b:7c:4d:bf:42:c8:60:b4:59:6d:49:7c: 3d:5f:87:ae:aa:c1:d7:b5:af:6a:b4:d7:99:68:b7:be:9e:db: 48:a1:c9:42:ec:37:9e:a4:9e:43:eb:fa:6c:46:17:f0:80:69: 7e:68:0a:00:d2:68:25:28:70:83:f9:21:2e:16:eb:36:52:ca: 60:13:89:cd:18:6b:15:35:39:88:9b:5a:90:c8:74:94:4d:44: af:0c:95:b5:50:77:a3:d0:aa:06:1a:ca:1e:92:49:5e:60:95: 57:31:a4:f1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUH/N9KWyKqS/h2eKW3ClM7Zdx0K4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY3OEYzNDY2NUQ3QTUyODFBRUNEODk1Qjg5MkYwN0VB MTM2Q0Y3MjAeFw0yNDA3MDEwMDU4MzRaFw0yNTA2MzAwMTAzMzRaMDMxMTAvBgNV BAMTKEY0OTE3MTFDRjEwQzZEODcxQ0ZDMzY4OTcxMkU1MTI4NUU4NTkyNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmBFFXKYWUPUE9GTuFPr/qBY8H +jPo6fQHjhJgpbpEmkRTgJg+Gg+m9ii11EDRK9pDeM9d2FTGTC3qLJaLWTussin1 VD1sWC0d04joH8oK+a7QYip60ZWWKnwV+gOrpuFasZUPmNJuglPELGlVnEUDPm4w 64VVV8BPcr1N53XIpzucuYgmSlbei2WpdBouViG4N3tk16XPWAgV0wYm/tRuu9jb goLU+EGrpOZORhPjY9kG791408OCxJj+uxp5XWSqnxEYtPRQsY/u06FFPrWVNWJa aEBbIsWyyW+Nl2l12hWSy+uasykgyeu6OXxETaUoLm0gjrW815/WxWBc8nwHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9JFxHPEMbYcc/DaJcS5RKF6FkkgwHwYDVR0j BBgwFoAUFnjzRmXXpSga7NiVuJLwfqE2z3IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzkzNjg2Yi0zMzg0LTQ0MTItOGU3Yy1lOWQxYjg1MmFhMWUvMC8xNjc4RjM0NjY1 RDdBNTI4MUFFQ0Q4OTVCODkyRjA3RUExMzZDRjcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY3OEYzNDY2NUQ3QTUyODFBRUNEODk1Qjg5MkYwN0VBMTM2 Q0Y3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OTM2ODZiLTMzODQtNDQxMi04 ZTdjLWU5ZDFiODUyYWExZS8wLzMyMzAzMjJlMzEzMjM5MmUzMjMyMzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMzM4MzczODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCyoHgMA0GCSqG SIb3DQEBCwUAA4IBAQAJI5FmVB1wrjo+V0fRrYpI9nl2ClspkUbxNUaWjXux8HKV 5sl1AwI0a8+78dRqQHKYTWp586rWu6y3sJm9m+/9Rn5jT2rMD9CMHtfFDaAzwoyT HMTBc7i90pEFyZBwiHL9nSug1Wy3U5/gB/1KFcSe6irEGGsm7E+Of41uMddPq9bF QIi9U8ivt6vEMQZ6yYCXQi/nl7wLfE2/QshgtFltSXw9X4euqsHXta9qtNeZaLe+ nttIoclC7DeepJ5D6/psRhfwgGl+aAoA0mglKHCD+SEuFus2UspgE4nNGGsVNTmI m1qQyHSUTUSvDJW1UHej0KoGGsoekkleYJVXMaTx -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:11 2024 by rpki-client on console-fra.rpki-client.org