$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e31342e302f32342d3234203d3e203234323034.roa File: 3230332e38302e31342e302f32342d3234203d3e203234323034.roa (raw, json) Hash identifier: NUbYBP04DuPbGhyIytzZLet0AimjBEKWNuV7fszyTmU= Subject key identifier: 77:E8:C2:6A:11:D9:35:F2:82:9B:A5:0E:FF:4F:66:6B:01:C0:98:80 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 46A1C92A45AD6FFD29ECAF3A0C4C37DE90386963 Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e31342e302f32342d3234203d3e203234323034.roa Signing time: Mon 01 Jul 2024 01:04:24 +0000 ROA not before: Mon 01 Jul 2024 00:59:24 +0000 ROA not after: Mon 30 Jun 2025 01:04:24 +0000 asID: 24204 IP address blocks: 203.80.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:a1:c9:2a:45:ad:6f:fd:29:ec:af:3a:0c:4c:37:de:90:38:69:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Jul 1 00:59:24 2024 GMT Not After : Jun 30 01:04:24 2025 GMT Subject: CN=77E8C26A11D935F2829BA50EFF4F666B01C09880 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c9:dc:a7:98:00:4a:72:d5:6e:63:c1:b6:c9: 29:ec:d3:15:7d:4b:5a:33:09:66:75:bb:fc:ef:47: 46:95:de:a9:a6:92:58:a2:f4:08:b0:23:8e:34:d9: 9b:2d:0a:72:57:b5:a7:78:02:d7:e0:c1:c4:7f:a1: 21:eb:81:5a:e8:8f:87:b0:43:3d:0d:6c:88:ad:dd: 70:0a:15:c0:a0:f3:f5:dd:02:7f:69:50:90:8f:52: 8d:5e:42:c0:57:0e:46:e1:ed:0e:f5:1b:bf:4c:19: 8a:06:01:6b:57:27:b3:66:e0:f8:e3:e0:08:ad:c2: 64:c4:3f:f8:05:e7:06:64:44:12:f4:8c:d3:a6:69: dd:e5:c9:e7:bb:16:e2:76:39:82:fe:ff:64:54:01: ac:82:41:27:c7:9b:c2:f8:f9:7b:67:b3:50:7c:66: b3:4a:38:6f:6d:1f:dc:91:f6:a3:a3:de:e1:b3:9a: ea:19:ab:33:dc:b5:1c:4d:37:50:37:83:a8:bc:e9: ea:84:1a:24:25:45:e6:b3:1b:37:7c:29:6d:d3:51: 16:c2:d8:b0:47:66:52:a5:6f:f0:22:86:77:4c:07: 82:72:94:eb:18:4c:72:4d:1c:35:00:15:39:8f:0f: 83:23:d1:5d:5b:06:2d:b4:73:91:77:c3:e0:79:ba: 34:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:E8:C2:6A:11:D9:35:F2:82:9B:A5:0E:FF:4F:66:6B:01:C0:98:80 X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e31342e302f32342d3234203d3e203234323034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.80.14.0/24 Signature Algorithm: sha256WithRSAEncryption 34:0d:73:ff:72:78:3a:e8:3e:25:0d:5e:0d:98:f8:34:f3:d9: d7:08:82:a9:cc:dd:a7:3e:88:a8:20:d5:51:57:f6:df:39:f3: 8c:a0:88:e1:ce:88:88:d3:f0:b7:92:b0:aa:9b:28:9f:cf:e4: 44:e3:62:a0:de:79:14:42:5f:94:cb:23:38:9b:47:92:79:c5: 12:14:c6:22:83:a7:3f:52:40:c4:fe:aa:2a:60:a6:cb:be:9c: 5e:00:eb:27:87:69:96:85:e4:e1:f5:a9:ef:81:09:5a:14:57: f3:03:4f:37:6a:60:54:ce:ce:25:22:a9:68:61:44:2d:77:7f: 6f:86:f4:61:24:84:a2:94:cc:06:0c:cb:10:98:d5:9e:6c:7c: 0b:6f:fd:74:af:89:d9:c4:1a:d3:52:dd:91:c2:c9:b3:32:34: 0a:51:4d:47:58:97:f5:ac:72:80:90:37:0d:74:ba:48:bf:fb: f4:82:ce:57:72:e8:83:1b:83:00:e7:16:4f:87:71:c9:60:48: 95:f4:f4:f5:80:fe:69:c1:32:8f:27:67:58:82:b3:65:df:09: 35:a1:52:f0:4e:23:00:bb:60:d1:fd:8f:51:aa:55:24:b1:7d: 22:65:a2:f6:6b:4f:87:2d:13:f9:aa:c7:ff:50:44:84:59:a5: 9f:48:4e:74 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIURqHJKkWtb/0p7K86DEw33pA4aWMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNDA3MDEwMDU5MjRaFw0yNTA2MzAwMTA0MjRaMDMxMTAvBgNV BAMTKDc3RThDMjZBMTFEOTM1RjI4MjlCQTUwRUZGNEY2NjZCMDFDMDk4ODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQydynmABKctVuY8G2ySns0xV9 S1ozCWZ1u/zvR0aV3qmmklii9AiwI4402ZstCnJXtad4AtfgwcR/oSHrgVroj4ew Qz0NbIit3XAKFcCg8/XdAn9pUJCPUo1eQsBXDkbh7Q71G79MGYoGAWtXJ7Nm4Pjj 4AitwmTEP/gF5wZkRBL0jNOmad3lyee7FuJ2OYL+/2RUAayCQSfHm8L4+Xtns1B8 ZrNKOG9tH9yR9qOj3uGzmuoZqzPctRxNN1A3g6i86eqEGiQlReazGzd8KW3TURbC 2LBHZlKlb/AihndMB4JylOsYTHJNHDUAFTmPD4Mj0V1bBi20c5F3w+B5ujRTAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUd+jCahHZNfKCm6UO/09mawHAmIAwHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyNGE5MTA1LThkMmEtNGIzOC1h NmFlLTA1ZWFkNjk3MTlhMy8wLzMyMzAzMzJlMzgzMDJlMzEzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzMjMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLUA4wDQYJKoZIhvcN AQELBQADggEBADQNc/9yeDroPiUNXg2Y+DTz2dcIgqnM3ac+iKgg1VFX9t8584yg iOHOiIjT8LeSsKqbKJ/P5ETjYqDeeRRCX5TLIzibR5J5xRIUxiKDpz9SQMT+qipg psu+nF4A6yeHaZaF5OH1qe+BCVoUV/MDTzdqYFTOziUiqWhhRC13f2+G9GEkhKKU zAYMyxCY1Z5sfAtv/XSvidnEGtNS3ZHCybMyNApRTUdYl/WscoCQNw10uki/+/SC zldy6IMbgwDnFk+HcclgSJX09PWA/mnBMo8nZ1iCs2XfCTWhUvBOIwC7YNH9j1Gq VSSxfSJlovZrT4ctE/mqx/9QRIRZpZ9ITnQ= -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:28 2024 by rpki-client on console-ams.rpki-client.org