$ rpki-client -vvf repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3230322e37302e3133362e302f32342d3234203d3e203436303334.roa File: 3230322e37302e3133362e302f32342d3234203d3e203436303334.roa (raw, json) Hash identifier: 4RAp4F/7XGUDJWluz8ukd4JUDTUiL5R6CUgISPZWwHM= Subject key identifier: E9:13:AC:15:95:3F:E3:E9:D6:E2:B5:D2:A8:B0:F9:CB:AD:D9:5C:02 Certificate issuer: /CN=E89C93F089A07D03B5794B0C02239EF67E1D721C Certificate serial: 6665AFB448BC3DA54DB97A6AB7ABDB8BFF81CAA1 Authority key identifier: E8:9C:93:F0:89:A0:7D:03:B5:79:4B:0C:02:23:9E:F6:7E:1D:72:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E89C93F089A07D03B5794B0C02239EF67E1D721C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3230322e37302e3133362e302f32342d3234203d3e203436303334.roa Signing time: Thu 21 Nov 2024 12:34:12 +0000 ROA not before: Thu 21 Nov 2024 12:29:12 +0000 ROA not after: Thu 20 Nov 2025 12:34:12 +0000 asID: 46034 IP address blocks: 202.70.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/E89C93F089A07D03B5794B0C02239EF67E1D721C.crl rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/E89C93F089A07D03B5794B0C02239EF67E1D721C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E89C93F089A07D03B5794B0C02239EF67E1D721C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:65:af:b4:48:bc:3d:a5:4d:b9:7a:6a:b7:ab:db:8b:ff:81:ca:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E89C93F089A07D03B5794B0C02239EF67E1D721C Validity Not Before: Nov 21 12:29:12 2024 GMT Not After : Nov 20 12:34:12 2025 GMT Subject: CN=E913AC15953FE3E9D6E2B5D2A8B0F9CBADD95C02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:48:a8:a7:d1:9e:9a:7f:52:87:04:38:5f:e5: a6:e9:36:55:83:22:ce:d7:4f:88:47:e6:af:70:af: d7:c2:a2:fb:d4:90:6c:23:c7:91:51:4e:32:1a:91: 84:79:9b:0e:5f:6d:31:c0:a3:97:bb:0d:d6:af:79: 20:0e:68:41:b6:b8:7a:cb:b8:e0:9c:a4:87:31:8f: fe:af:a1:36:d2:e6:8f:67:a4:e5:44:81:d7:03:a5: 25:19:17:74:46:0b:25:cf:1c:24:95:0e:e8:ae:ec: ab:3c:f8:1a:26:d9:eb:4f:11:e1:cb:15:cd:cd:d8: 15:8c:af:f8:a8:d3:5e:b8:3a:45:df:1b:16:f3:18: bb:17:68:ca:df:da:6a:93:89:61:fa:32:db:4e:15: 48:63:0d:14:ed:18:bf:9c:44:bd:c1:27:45:cf:47: 30:05:06:a4:3b:48:a8:59:4f:5b:7f:23:72:0a:ab: fe:81:a8:78:fd:1f:5f:07:b8:42:cc:23:8e:dc:f0: 21:6a:9e:72:5f:01:98:9e:9c:75:c3:49:54:be:1c: d5:3d:c3:e3:03:5b:ce:a5:52:f7:29:3f:93:64:c9: e8:23:60:2f:8c:b4:b1:89:8a:85:ab:e5:e7:fb:66: fb:a6:ae:bc:7c:26:9b:ef:55:56:50:fd:74:5e:c3: 2a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:13:AC:15:95:3F:E3:E9:D6:E2:B5:D2:A8:B0:F9:CB:AD:D9:5C:02 X509v3 Authority Key Identifier: keyid:E8:9C:93:F0:89:A0:7D:03:B5:79:4B:0C:02:23:9E:F6:7E:1D:72:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/E89C93F089A07D03B5794B0C02239EF67E1D721C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E89C93F089A07D03B5794B0C02239EF67E1D721C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3230322e37302e3133362e302f32342d3234203d3e203436303334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.70.136.0/24 Signature Algorithm: sha256WithRSAEncryption 94:0e:c8:8a:29:1b:75:10:c3:47:63:4d:63:d0:d2:b5:3f:8e: 1e:38:1f:e1:7e:07:ba:0b:38:aa:14:a5:f3:52:24:71:bd:4f: 2d:ff:f7:53:d5:8c:96:a2:af:9f:30:a7:a1:65:b8:cf:fa:f2: dd:12:5b:df:ec:96:64:50:83:c8:a6:28:03:80:e2:22:35:97: b3:7b:bb:3d:1b:c2:09:c6:93:65:ff:34:7e:4a:bb:72:9a:ba: 3a:e9:6d:d1:19:1a:31:80:6a:3b:2a:24:14:bb:f9:cb:26:ff: 56:2d:fe:01:31:ff:ee:27:59:53:5d:8a:5f:a1:86:17:ab:b9: 1f:d0:a2:b2:a4:2e:6d:7c:64:5a:da:3e:28:70:a8:25:cc:91: 63:f3:40:0f:34:2b:c0:d5:20:4d:7f:2d:5e:76:f0:fc:d3:cd: ad:cb:fa:d7:9c:fc:13:53:42:47:97:62:15:55:43:e5:26:f4: 78:69:91:17:f7:ab:ae:a6:ae:22:e9:62:93:11:71:c7:e7:be: d7:5a:64:f7:48:7f:66:01:27:66:c3:cb:86:e7:b9:61:04:0d: 23:c2:18:39:f1:85:80:1b:a5:cd:a2:98:7e:9a:9a:29:e4:76: 2a:9b:af:77:ef:a1:40:37:38:cf:93:6e:29:cd:12:9b:84:ef: ad:e0:21:e3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZmWvtEi8PaVNuXpqt6vbi/+ByqEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5QzkzRjA4OUEwN0QwM0I1Nzk0QjBDMDIyMzlFRjY3 RTFENzIxQzAeFw0yNDExMjExMjI5MTJaFw0yNTExMjAxMjM0MTJaMDMxMTAvBgNV BAMTKEU5MTNBQzE1OTUzRkUzRTlENkUyQjVEMkE4QjBGOUNCQUREOTVDMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeSKin0Z6af1KHBDhf5abpNlWD Is7XT4hH5q9wr9fCovvUkGwjx5FRTjIakYR5mw5fbTHAo5e7DdaveSAOaEG2uHrL uOCcpIcxj/6voTbS5o9npOVEgdcDpSUZF3RGCyXPHCSVDuiu7Ks8+Bom2etPEeHL Fc3N2BWMr/io0164OkXfGxbzGLsXaMrf2mqTiWH6MttOFUhjDRTtGL+cRL3BJ0XP RzAFBqQ7SKhZT1t/I3IKq/6BqHj9H18HuELMI47c8CFqnnJfAZienHXDSVS+HNU9 w+MDW86lUvcpP5NkyegjYC+MtLGJioWr5ef7Zvumrrx8JpvvVVZQ/XRewyq7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6ROsFZU/4+nW4rXSqLD5y63ZXAIwHwYDVR0j BBgwFoAU6JyT8ImgfQO1eUsMAiOe9n4dchwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 Zjg4NTFlNS1lZTViLTQxZTEtOWFiYy00NDI2NTFkMjcyOTQvMC9FODlDOTNGMDg5 QTA3RDAzQjU3OTRCMEMwMjIzOUVGNjdFMUQ3MjFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTg5QzkzRjA4OUEwN0QwM0I1Nzk0QjBDMDIyMzlFRjY3RTFE NzIxQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmODg1MWU1LWVlNWItNDFlMS05 YWJjLTQ0MjY1MWQyNzI5NC8wLzMyMzAzMjJlMzczMDJlMzEzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpGiDANBgkqhkiG 9w0BAQsFAAOCAQEAlA7IiikbdRDDR2NNY9DStT+OHjgf4X4Hugs4qhSl81Ikcb1P Lf/3U9WMlqKvnzCnoWW4z/ry3RJb3+yWZFCDyKYoA4DiIjWXs3u7PRvCCcaTZf80 fkq7cpq6Oult0RkaMYBqOyokFLv5yyb/Vi3+ATH/7idZU12KX6GGF6u5H9CisqQu bXxkWto+KHCoJcyRY/NADzQrwNUgTX8tXnbw/NPNrcv615z8E1NCR5diFVVD5Sb0 eGmRF/errqauIulikxFxx+e+11pk90h/ZgEnZsPLhue5YQQNI8IYOfGFgBulzaKY fpqaKeR2Kpuvd++hQDc4z5NuKc0Sm4TvreAh4w== -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:46 2024 by rpki-client on console-ams.rpki-client.org