$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e31332e302f32342d3234203d3e203234323034.roa File: 3230332e38302e31332e302f32342d3234203d3e203234323034.roa (raw, json) Hash identifier: NJdokcXpJ5XaumKzAZ6NIMhaU1ktPDdYz9EjGIFdANE= Subject key identifier: 1E:81:00:72:C9:91:2D:88:CE:28:FF:6A:41:38:3F:8B:27:EB:B8:B1 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 444C05B33FED168B8B08CA2930394F8E3F770655 Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e31332e302f32342d3234203d3e203234323034.roa Signing time: Mon 01 Jul 2024 01:04:23 +0000 ROA not before: Mon 01 Jul 2024 00:59:23 +0000 ROA not after: Mon 30 Jun 2025 01:04:23 +0000 asID: 24204 IP address blocks: 203.80.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:4c:05:b3:3f:ed:16:8b:8b:08:ca:29:30:39:4f:8e:3f:77:06:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Jul 1 00:59:23 2024 GMT Not After : Jun 30 01:04:23 2025 GMT Subject: CN=1E810072C9912D88CE28FF6A41383F8B27EBB8B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c0:3f:2b:30:71:17:b9:4f:35:cf:b4:33:13: 31:e9:a1:4f:43:54:5a:89:33:10:77:3f:ad:ab:27: 38:05:00:2e:de:a3:3a:d8:f7:fe:cb:6c:88:08:e4: c4:51:a3:d9:f7:c4:d8:80:91:25:f4:c0:d3:02:a5: 2f:81:ad:0e:cb:70:0c:05:dd:74:16:6d:c8:9d:21: 41:85:ce:a1:ef:a4:b8:c8:ab:df:e9:47:eb:0e:ec: 5f:a3:b0:31:99:85:2a:b9:6f:64:d1:f7:7c:14:b8: c4:ad:f0:b7:1a:51:6e:4b:18:0d:19:61:f3:e3:c4: 1f:1f:0d:ba:32:0d:56:58:87:5b:fa:a7:e5:47:38: 61:c2:ed:31:83:38:09:44:c8:6d:6e:fd:4e:34:84: e6:ec:b7:53:0d:59:e7:d6:cd:96:b9:a6:e6:a5:e8: 0a:92:9a:dc:1b:28:56:60:00:1f:78:cb:b3:5e:1c: 66:4a:42:c7:17:08:8c:16:97:f6:38:6a:d9:c2:61: 53:ee:d3:53:43:92:79:76:91:82:c1:de:45:90:16: d6:9f:6f:2f:33:e7:2a:9f:6e:02:18:87:79:de:93: de:57:95:a8:ba:81:94:a7:88:38:bd:e0:c8:19:69: a2:f8:ec:28:e6:2f:7f:f8:c0:68:d8:43:99:ea:73: bc:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:81:00:72:C9:91:2D:88:CE:28:FF:6A:41:38:3F:8B:27:EB:B8:B1 X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e31332e302f32342d3234203d3e203234323034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.80.13.0/24 Signature Algorithm: sha256WithRSAEncryption 25:a2:67:fc:7b:c0:d9:c3:c9:5e:fa:26:2f:7a:47:7c:8e:de: 26:3f:f4:72:46:01:74:58:44:fb:f2:6a:42:82:c4:e2:08:f1: 6d:a3:26:1c:2e:bb:c7:14:df:ad:b0:0e:1e:29:ef:40:f5:78: 31:41:82:69:79:18:dd:02:25:f1:a5:88:68:f6:45:07:80:98: af:7a:2f:ac:05:73:c1:9d:4f:62:5b:87:34:35:22:29:63:3a: f1:0d:11:df:c5:dc:32:a6:c8:9d:30:7a:fc:e0:ee:18:a8:90: a3:df:80:64:6b:7c:10:bf:00:cc:f7:40:ee:14:b3:7f:2a:e1: a8:cd:d5:01:07:88:9f:87:d5:9a:22:db:e2:d5:2b:2c:a7:db: 3c:ee:e7:a6:5d:11:59:8e:12:bb:92:65:ca:42:a4:27:31:5c: f0:13:a9:d9:18:fb:7d:18:ba:72:0e:75:a0:31:2c:38:2d:f3: a1:c1:d6:43:a3:47:36:c0:f6:40:ee:a9:85:1b:03:2e:95:0e: be:f8:dc:ae:aa:da:35:82:f1:78:ba:ad:35:98:1b:fc:2c:46: 0e:b3:35:5d:50:4d:e1:c6:6b:51:7e:44:54:76:b8:b1:45:66: 0a:a1:b5:76:0a:65:e1:0f:f6:04:f1:e5:77:a4:71:9b:c9:a1: 2c:ed:38:04 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUREwFsz/tFouLCMopMDlPjj93BlUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNDA3MDEwMDU5MjNaFw0yNTA2MzAwMTA0MjNaMDMxMTAvBgNV BAMTKDFFODEwMDcyQzk5MTJEODhDRTI4RkY2QTQxMzgzRjhCMjdFQkI4QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLwD8rMHEXuU81z7QzEzHpoU9D VFqJMxB3P62rJzgFAC7eozrY9/7LbIgI5MRRo9n3xNiAkSX0wNMCpS+BrQ7LcAwF 3XQWbcidIUGFzqHvpLjIq9/pR+sO7F+jsDGZhSq5b2TR93wUuMSt8LcaUW5LGA0Z YfPjxB8fDboyDVZYh1v6p+VHOGHC7TGDOAlEyG1u/U40hObst1MNWefWzZa5pual 6AqSmtwbKFZgAB94y7NeHGZKQscXCIwWl/Y4atnCYVPu01NDknl2kYLB3kWQFtaf by8z5yqfbgIYh3nek95Xlai6gZSniDi94MgZaaL47CjmL3/4wGjYQ5nqc7whAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUHoEAcsmRLYjOKP9qQTg/iyfruLEwHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyNGE5MTA1LThkMmEtNGIzOC1h NmFlLTA1ZWFkNjk3MTlhMy8wLzMyMzAzMzJlMzgzMDJlMzEzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzMjMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLUA0wDQYJKoZIhvcN AQELBQADggEBACWiZ/x7wNnDyV76Ji96R3yO3iY/9HJGAXRYRPvyakKCxOII8W2j Jhwuu8cU362wDh4p70D1eDFBgml5GN0CJfGliGj2RQeAmK96L6wFc8GdT2JbhzQ1 IiljOvENEd/F3DKmyJ0wevzg7hiokKPfgGRrfBC/AMz3QO4Us38q4ajN1QEHiJ+H 1Zoi2+LVKyyn2zzu56ZdEVmOEruSZcpCpCcxXPATqdkY+30YunIOdaAxLDgt86HB 1kOjRzbA9kDuqYUbAy6VDr743K6q2jWC8Xi6rTWYG/wsRg6zNV1QTeHGa1F+RFR2 uLFFZgqhtXYKZeEP9gTx5XekcZvJoSztOAQ= -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:41 2024 by rpki-client on console-fra.rpki-client.org