$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e382e302f32342d3234203d3e203234323034.roa File: 3230332e38302e382e302f32342d3234203d3e203234323034.roa (raw, json) Hash identifier: C+GCiZbyOWqTIP/iREeF81SfHqAfUnmzJ8NSghudrRI= Subject key identifier: E1:82:AC:C6:6E:1E:67:20:86:15:4A:34:74:EF:6A:C0:4A:83:C8:FD Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 6505118DEFE8F29C3D8EFC00E05205F3C62DF68F Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e382e302f32342d3234203d3e203234323034.roa Signing time: Mon 01 Jul 2024 01:04:23 +0000 ROA not before: Mon 01 Jul 2024 00:59:23 +0000 ROA not after: Mon 30 Jun 2025 01:04:23 +0000 asID: 24204 IP address blocks: 203.80.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:05:11:8d:ef:e8:f2:9c:3d:8e:fc:00:e0:52:05:f3:c6:2d:f6:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Jul 1 00:59:23 2024 GMT Not After : Jun 30 01:04:23 2025 GMT Subject: CN=E182ACC66E1E672086154A3474EF6AC04A83C8FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:00:de:4c:f7:1c:eb:11:6c:aa:07:cc:3e:82: aa:cd:da:2e:a3:cc:22:09:f6:55:71:18:94:2c:2e: c8:12:bf:7b:3c:12:87:42:8b:37:7a:ec:2a:09:ab: a6:87:ac:60:0c:04:b4:03:0a:df:76:4f:24:98:f1: 09:21:6a:9c:1b:2d:89:74:8a:d8:24:87:78:65:61: c2:c3:c8:04:47:ff:c2:59:9a:b2:47:4f:39:b4:33: 7a:1f:85:15:53:50:03:a4:73:fb:de:27:0b:9b:15: df:1e:9d:fd:de:05:22:5f:3a:a1:a3:f7:4f:9f:c1: dd:89:19:5f:be:8e:e2:ab:41:3e:ee:72:1b:c1:73: 22:d7:55:ba:0e:9a:cc:a3:28:4a:68:d2:9d:f3:ed: 56:74:f2:2e:96:1f:73:37:39:31:02:6d:de:10:43: 7f:f2:77:6c:2f:54:5d:d7:69:25:61:af:4f:b2:0b: 6e:50:d3:93:63:1f:a5:1e:8d:de:46:f4:b4:b8:6d: ac:94:40:72:ed:d1:2d:8b:0b:3f:14:7f:a7:36:b4: 50:86:6b:4c:bb:4d:77:bc:82:e5:51:39:f4:8d:65: cc:61:cf:08:62:2a:9d:02:b0:41:23:06:43:1c:16: 64:f7:c0:e1:c2:49:86:85:78:25:1b:8f:86:88:98: 2f:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:82:AC:C6:6E:1E:67:20:86:15:4A:34:74:EF:6A:C0:4A:83:C8:FD X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e382e302f32342d3234203d3e203234323034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.80.8.0/24 Signature Algorithm: sha256WithRSAEncryption 95:7a:7e:a3:4b:69:67:cf:cb:cc:ec:07:f2:be:00:6b:a1:5e: 03:32:aa:89:eb:01:27:16:79:a8:2d:05:8e:e2:3f:5b:33:c2: d7:55:f1:22:fe:eb:a3:e0:ef:ed:4e:3f:ac:0d:4c:12:c4:73: d0:7c:d8:62:eb:6e:36:65:9c:c6:c0:b5:af:95:16:0f:f0:4f: 7b:7a:fb:5f:2f:27:b3:6e:7c:a9:41:f3:a4:6e:f4:8f:72:84: 94:f8:30:c5:12:a4:b4:55:4a:58:e8:9f:61:30:67:94:b0:b4: 65:79:3e:3b:ba:fa:7f:45:22:6b:5a:02:b6:05:61:0b:6e:a1: dd:4c:0c:08:c1:6f:5d:81:56:93:f3:34:cb:5c:5b:0e:97:4a: d8:b7:fe:f9:c4:83:24:7d:40:49:9d:db:e5:a3:2a:50:63:62: 34:02:dd:f7:c0:2e:a0:6f:5c:c2:db:d5:6f:df:5e:5a:54:c9: d9:8b:46:63:47:22:70:73:cf:a5:60:eb:59:ba:ab:41:43:65: 6c:cc:68:43:85:c2:b0:d8:c1:2e:d5:ad:c9:15:9b:f8:95:3d: e2:a4:74:31:8e:e4:74:44:c8:bf:4f:21:12:79:ca:f3:0e:c3: 52:55:94:a2:d5:cb:24:e4:8b:5d:ec:a9:db:49:19:11:67:3c: 24:2c:fa:b4 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUZQURje/o8pw9jvwA4FIF88Yt9o8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNDA3MDEwMDU5MjNaFw0yNTA2MzAwMTA0MjNaMDMxMTAvBgNV BAMTKEUxODJBQ0M2NkUxRTY3MjA4NjE1NEEzNDc0RUY2QUMwNEE4M0M4RkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjAN5M9xzrEWyqB8w+gqrN2i6j zCIJ9lVxGJQsLsgSv3s8EodCizd67CoJq6aHrGAMBLQDCt92TySY8QkhapwbLYl0 itgkh3hlYcLDyARH/8JZmrJHTzm0M3ofhRVTUAOkc/veJwubFd8enf3eBSJfOqGj 90+fwd2JGV++juKrQT7uchvBcyLXVboOmsyjKEpo0p3z7VZ08i6WH3M3OTECbd4Q Q3/yd2wvVF3XaSVhr0+yC25Q05NjH6Uejd5G9LS4bayUQHLt0S2LCz8Uf6c2tFCG a0y7TXe8guVROfSNZcxhzwhiKp0CsEEjBkMcFmT3wOHCSYaFeCUbj4aImC+3AgMB AAGjggItMIICKTAdBgNVHQ4EFgQU4YKsxm4eZyCGFUo0dO9qwEqDyP0wHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTI0YTkxMDUtOGQyYS00YjM4LWE2 YWUtMDVlYWQ2OTcxOWEzLzAvMzIzMDMzMmUzODMwMmUzODJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMyMzQzMjMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLUAgwDQYJKoZIhvcNAQEL BQADggEBAJV6fqNLaWfPy8zsB/K+AGuhXgMyqonrAScWeagtBY7iP1szwtdV8SL+ 66Pg7+1OP6wNTBLEc9B82GLrbjZlnMbAta+VFg/wT3t6+18vJ7NufKlB86Ru9I9y hJT4MMUSpLRVSljon2EwZ5SwtGV5Pju6+n9FImtaArYFYQtuod1MDAjBb12BVpPz NMtcWw6XSti3/vnEgyR9QEmd2+WjKlBjYjQC3ffALqBvXMLb1W/fXlpUydmLRmNH InBzz6Vg61m6q0FDZWzMaEOFwrDYwS7VrckVm/iVPeKkdDGO5HREyL9PIRJ5yvMO w1JVlKLVyyTki13sqdtJGRFnPCQs+rQ= -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:28 2024 by rpki-client on console-ams.rpki-client.org