$ rpki-client -vvf repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/3230322e34372e3138362e302f32342d3234203d3e20313532303234.roa File: 3230322e34372e3138362e302f32342d3234203d3e20313532303234.roa (raw, json) Hash identifier: 0amdlqtrcYJjDto4OJYklzgZ1YTSYlkdFSOoVx3OhSE= Subject key identifier: EE:4F:40:EC:09:BA:F3:CF:0C:42:4E:FF:AB:E8:B4:47:C7:D0:7A:19 Certificate issuer: /CN=C2E929DFB05F81B91880BC808154365AECAC27D2 Certificate serial: 0E8BC3B1F4681C9CA95A78E3B700DDEB20F46C63 Authority key identifier: C2:E9:29:DF:B0:5F:81:B9:18:80:BC:80:81:54:36:5A:EC:AC:27:D2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2E929DFB05F81B91880BC808154365AECAC27D2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/3230322e34372e3138362e302f32342d3234203d3e20313532303234.roa Signing time: Sun 04 Aug 2024 15:21:26 +0000 ROA not before: Sun 04 Aug 2024 15:16:26 +0000 ROA not after: Sun 03 Aug 2025 15:21:26 +0000 asID: 152024 IP address blocks: 202.47.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/C2E929DFB05F81B91880BC808154365AECAC27D2.crl rsync://repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/C2E929DFB05F81B91880BC808154365AECAC27D2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2E929DFB05F81B91880BC808154365AECAC27D2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:8b:c3:b1:f4:68:1c:9c:a9:5a:78:e3:b7:00:dd:eb:20:f4:6c:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2E929DFB05F81B91880BC808154365AECAC27D2 Validity Not Before: Aug 4 15:16:26 2024 GMT Not After : Aug 3 15:21:26 2025 GMT Subject: CN=EE4F40EC09BAF3CF0C424EFFABE8B447C7D07A19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:6c:09:a5:81:89:88:03:bf:bf:79:b9:b3:ee: 4f:45:f1:19:ac:a3:ea:9d:e2:8a:17:19:b2:15:74: 71:00:da:78:94:dd:50:13:e1:0a:8e:a5:86:d0:08: ec:44:3a:97:f8:98:ab:57:0d:bf:a4:5d:8f:81:e4: c3:7c:5d:4e:31:d5:be:1b:58:66:ec:51:72:a7:e8: b3:57:62:60:33:75:4a:3f:41:2e:3c:fa:f9:af:47: fb:5f:b6:36:ce:9f:d6:83:6e:ae:08:73:70:d8:b5: 94:24:a4:e0:3d:91:e6:36:af:ff:c2:f0:c0:39:1e: e8:e9:fa:c1:ca:6f:b6:5b:59:d0:9e:d5:a8:9e:78: c9:cd:05:5b:7d:b7:62:bf:8f:93:56:12:40:d7:7e: 76:89:84:e0:2a:86:8e:40:ca:d7:9d:cd:b6:ba:ed: ac:4b:be:e1:2a:af:99:25:7c:8e:ea:44:08:61:fa: 83:d6:76:32:96:a7:3d:6e:5d:ad:99:83:fd:c1:33: 01:ed:00:65:4b:34:3a:cc:7d:70:2a:ab:a1:bd:9f: de:e5:21:0d:5e:ec:a1:3a:27:2d:90:29:f1:93:64: cd:53:03:cb:fb:7f:9e:98:49:0e:35:50:3e:5c:bf: 1a:4f:c2:3d:7c:b3:7b:18:d7:be:4e:04:5a:8d:e3: b4:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:4F:40:EC:09:BA:F3:CF:0C:42:4E:FF:AB:E8:B4:47:C7:D0:7A:19 X509v3 Authority Key Identifier: keyid:C2:E9:29:DF:B0:5F:81:B9:18:80:BC:80:81:54:36:5A:EC:AC:27:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/C2E929DFB05F81B91880BC808154365AECAC27D2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2E929DFB05F81B91880BC808154365AECAC27D2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/3230322e34372e3138362e302f32342d3234203d3e20313532303234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.186.0/24 Signature Algorithm: sha256WithRSAEncryption 22:c6:9f:59:09:0b:25:4a:91:74:50:46:b6:f3:68:75:55:ab: 87:75:87:d9:4d:04:54:a8:1f:50:7b:35:6d:d6:15:5b:cd:71: 9d:f7:a5:2f:e0:1d:16:b1:b8:70:da:c1:ba:0a:b0:12:93:99: 9b:3b:2e:b3:ad:fb:8d:23:4d:41:85:20:e3:b8:0b:31:f2:0d: da:af:13:13:02:ca:09:30:93:a1:5e:59:c6:eb:e4:ba:ca:73: ad:df:31:dc:42:02:ab:7e:46:9e:db:cd:1a:2c:02:90:05:23: 14:42:b3:86:43:0d:2d:b7:4f:a3:30:7e:22:24:f5:3e:ef:e4: 91:3d:7a:d3:60:51:46:35:47:33:c9:1e:8c:59:4a:0e:df:09: 59:1c:f4:e0:5e:5f:e3:d6:ad:c0:77:3e:ed:3c:3b:d4:1d:dc: 60:82:e9:bd:a7:9e:68:56:5f:aa:57:36:cd:ea:d1:cd:a0:89: 7f:00:4e:80:f7:38:46:9a:a4:d7:96:a9:22:ee:71:00:d3:87: 01:ba:90:15:ec:39:28:d2:d6:85:c7:39:4b:2c:3f:7d:30:5f: cf:a8:d5:7d:bd:c5:9e:7d:cf:95:3b:80:3b:97:ed:f2:37:3e: d5:dc:8b:d4:4c:67:40:ac:59:13:2e:eb:79:10:56:b8:75:b9: 18:94:55:fe -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDovDsfRoHJypWnjjtwDd6yD0bGMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJFOTI5REZCMDVGODFCOTE4ODBCQzgwODE1NDM2NUFF Q0FDMjdEMjAeFw0yNDA4MDQxNTE2MjZaFw0yNTA4MDMxNTIxMjZaMDMxMTAvBgNV BAMTKEVFNEY0MEVDMDlCQUYzQ0YwQzQyNEVGRkFCRThCNDQ3QzdEMDdBMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZbAmlgYmIA7+/ebmz7k9F8Rms o+qd4ooXGbIVdHEA2niU3VAT4QqOpYbQCOxEOpf4mKtXDb+kXY+B5MN8XU4x1b4b WGbsUXKn6LNXYmAzdUo/QS48+vmvR/tftjbOn9aDbq4Ic3DYtZQkpOA9keY2r//C 8MA5Hujp+sHKb7ZbWdCe1aieeMnNBVt9t2K/j5NWEkDXfnaJhOAqho5Aytedzba6 7axLvuEqr5klfI7qRAhh+oPWdjKWpz1uXa2Zg/3BMwHtAGVLNDrMfXAqq6G9n97l IQ1e7KE6Jy2QKfGTZM1TA8v7f56YSQ41UD5cvxpPwj18s3sY175OBFqN47QJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7k9A7Am6888MQk7/q+i0R8fQehkwHwYDVR0j BBgwFoAUwukp37BfgbkYgLyAgVQ2WuysJ9IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDZmZmFkMi0yMGJjLTQyNDYtODI5My00NDY2NmNlMWNmZTAvMC9DMkU5MjlERkIw NUY4MUI5MTg4MEJDODA4MTU0MzY1QUVDQUMyN0QyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzJFOTI5REZCMDVGODFCOTE4ODBCQzgwODE1NDM2NUFFQ0FD MjdEMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkNmZmYWQyLTIwYmMtNDI0Ni04 MjkzLTQ0NjY2Y2UxY2ZlMC8wLzMyMzAzMjJlMzQzNzJlMzEzODM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyi+6MA0GCSqG SIb3DQEBCwUAA4IBAQAixp9ZCQslSpF0UEa282h1VauHdYfZTQRUqB9QezVt1hVb zXGd96Uv4B0Wsbhw2sG6CrASk5mbOy6zrfuNI01BhSDjuAsx8g3arxMTAsoJMJOh XlnG6+S6ynOt3zHcQgKrfkae280aLAKQBSMUQrOGQw0tt0+jMH4iJPU+7+SRPXrT YFFGNUczyR6MWUoO3wlZHPTgXl/j1q3Adz7tPDvUHdxggum9p55oVl+qVzbN6tHN oIl/AE6A9zhGmqTXlqki7nEA04cBupAV7Dko0taFxzlLLD99MF/PqNV9vcWefc+V O4A7l+3yNz7V3IvUTGdArFkTLut5EFa4dbkYlFX+ -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:28 2024 by rpki-client on console-fra.rpki-client.org