$ rpki-client -vvf repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132342e302f32332d3233203d3e20313339393532.roa File: 3230332e3137352e3132342e302f32332d3233203d3e20313339393532.roa (raw, json) Hash identifier: gXTQ4iT2+M95jzjV19QqT3H5eF4qOuCe6B3fvF/CJrk= Subject key identifier: C3:44:96:1C:1E:53:C9:4B:58:E2:C0:18:C1:78:33:B2:17:C7:8F:A7 Certificate issuer: /CN=4E4C9A47789406B9086713C5B821524B664E7C90 Certificate serial: 26182F330440B6BB2FC66ACA46E491490D46E872 Authority key identifier: 4E:4C:9A:47:78:94:06:B9:08:67:13:C5:B8:21:52:4B:66:4E:7C:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E4C9A47789406B9086713C5B821524B664E7C90.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132342e302f32332d3233203d3e20313339393532.roa Signing time: Tue 26 Dec 2023 23:29:40 +0000 ROA not before: Tue 26 Dec 2023 23:24:40 +0000 ROA not after: Tue 24 Dec 2024 23:29:40 +0000 asID: 139952 IP address blocks: 203.175.124.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/4E4C9A47789406B9086713C5B821524B664E7C90.crl rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/4E4C9A47789406B9086713C5B821524B664E7C90.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E4C9A47789406B9086713C5B821524B664E7C90.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:18:2f:33:04:40:b6:bb:2f:c6:6a:ca:46:e4:91:49:0d:46:e8:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E4C9A47789406B9086713C5B821524B664E7C90 Validity Not Before: Dec 26 23:24:40 2023 GMT Not After : Dec 24 23:29:40 2024 GMT Subject: CN=C344961C1E53C94B58E2C018C17833B217C78FA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:20:06:84:f0:c0:72:2e:55:a9:a4:ca:a4:43: 28:cd:af:2c:d7:44:a1:1e:ed:76:bd:8c:e2:4a:49: f0:47:74:12:9a:c9:00:fd:48:9e:0f:fa:6c:95:51: 7f:5d:95:3c:3e:d6:2e:99:1e:76:c4:ab:3b:ff:ad: e7:1d:cb:4d:6a:af:d3:4f:fb:33:23:46:a0:61:e6: c5:03:49:86:dd:1f:4e:e3:7a:90:48:4e:1c:b9:16: f3:98:10:33:02:b9:a3:6d:07:6c:ac:1d:2b:c1:ed: 0f:10:38:fd:4b:f7:82:ca:e8:00:d5:90:14:9a:6b: 95:a2:df:b2:38:6a:9f:f8:68:ed:85:e9:56:95:4c: ab:47:70:98:ef:ad:91:3f:95:98:f8:63:f9:75:4a: 0f:e2:b3:b6:13:87:da:09:57:1e:0e:76:f1:cc:50: 29:25:56:d7:6a:65:63:f9:81:bc:8d:07:5a:36:0e: 12:08:93:08:a4:ec:ff:86:80:af:1b:d2:a6:bc:a2: 38:27:10:a4:3a:bd:bd:b9:e5:48:24:99:c6:3e:df: 2c:a3:79:1a:d8:51:72:d8:bc:4b:71:8d:77:29:e4: d7:fd:8c:96:cc:8d:96:64:bb:de:08:bd:a5:11:26: d4:9f:98:4a:1f:9c:49:20:b2:c3:6f:e1:9a:04:8c: 53:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:44:96:1C:1E:53:C9:4B:58:E2:C0:18:C1:78:33:B2:17:C7:8F:A7 X509v3 Authority Key Identifier: keyid:4E:4C:9A:47:78:94:06:B9:08:67:13:C5:B8:21:52:4B:66:4E:7C:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/4E4C9A47789406B9086713C5B821524B664E7C90.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E4C9A47789406B9086713C5B821524B664E7C90.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132342e302f32332d3233203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.175.124.0/23 Signature Algorithm: sha256WithRSAEncryption 18:92:a3:17:16:e9:b0:ee:0f:bc:da:f8:ce:b2:29:ed:98:90: 4a:e2:4b:2c:5c:4a:7f:99:e1:5a:9b:f6:85:a6:0d:85:f2:15: 55:fb:c2:6e:60:f6:da:dd:8c:d6:96:6d:3e:63:f5:b5:1c:0d: a0:da:e1:ec:ef:6f:30:37:d1:23:6c:99:12:1b:17:6f:de:de: db:ec:a4:7f:8e:7e:a2:42:e6:f6:8a:06:54:5b:62:eb:09:b3: d8:75:93:d5:96:9c:7f:d3:8b:0d:65:90:2b:de:a9:47:07:81: 0f:7c:2d:1c:dc:45:d8:b5:7f:a9:f4:22:f9:cb:5e:88:86:58: 0c:8c:ab:1a:9a:72:6b:8b:02:36:fd:b4:f1:e1:17:d8:af:63: 27:5c:86:85:61:db:b4:ae:d5:37:bf:74:ac:58:2a:63:92:80: 1a:eb:37:7e:d8:6e:8f:f6:28:c9:be:36:3d:96:6b:be:eb:05: 66:ff:c5:dc:7e:85:51:41:f2:fa:e8:b1:68:5a:ca:2f:4b:3b: 90:14:b2:00:3d:60:78:66:d8:5f:18:2c:88:0b:6a:fb:4d:e5: f8:c6:91:02:a3:05:b1:c0:65:17:f2:67:f9:c5:34:d0:d4:98: 0b:8a:ee:5a:a7:92:fd:2e:1a:12:55:75:2f:df:4f:9a:d7:ca: 98:57:b6:37 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJhgvMwRAtrsvxmrKRuSRSQ1G6HIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEU0QzlBNDc3ODk0MDZCOTA4NjcxM0M1QjgyMTUyNEI2 NjRFN0M5MDAeFw0yMzEyMjYyMzI0NDBaFw0yNDEyMjQyMzI5NDBaMDMxMTAvBgNV BAMTKEMzNDQ5NjFDMUU1M0M5NEI1OEUyQzAxOEMxNzgzM0IyMTdDNzhGQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHIAaE8MByLlWppMqkQyjNryzX RKEe7Xa9jOJKSfBHdBKayQD9SJ4P+myVUX9dlTw+1i6ZHnbEqzv/recdy01qr9NP +zMjRqBh5sUDSYbdH07jepBIThy5FvOYEDMCuaNtB2ysHSvB7Q8QOP1L94LK6ADV kBSaa5Wi37I4ap/4aO2F6VaVTKtHcJjvrZE/lZj4Y/l1Sg/is7YTh9oJVx4OdvHM UCklVtdqZWP5gbyNB1o2DhIIkwik7P+GgK8b0qa8ojgnEKQ6vb255UgkmcY+3yyj eRrYUXLYvEtxjXcp5Nf9jJbMjZZku94IvaURJtSfmEofnEkgssNv4ZoEjFNnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUw0SWHB5TyUtY4sAYwXgzshfHj6cwHwYDVR0j BBgwFoAUTkyaR3iUBrkIZxPFuCFSS2ZOfJAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmIzOGY3OS0yNmQzLTQ0ODktYTQ3ZC0wYTg4MDViNDQ4YWUvMC80RTRDOUE0Nzc4 OTQwNkI5MDg2NzEzQzVCODIxNTI0QjY2NEU3QzkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEU0QzlBNDc3ODk0MDZCOTA4NjcxM0M1QjgyMTUyNEI2NjRF N0M5MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyYjM4Zjc5LTI2ZDMtNDQ4OS1h NDdkLTBhODgwNWI0NDhhZS8wLzMyMzAzMzJlMzEzNzM1MmUzMTMyMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHLr3wwDQYJ KoZIhvcNAQELBQADggEBABiSoxcW6bDuD7za+M6yKe2YkEriSyxcSn+Z4Vqb9oWm DYXyFVX7wm5g9trdjNaWbT5j9bUcDaDa4ezvbzA30SNsmRIbF2/e3tvspH+OfqJC 5vaKBlRbYusJs9h1k9WWnH/Tiw1lkCveqUcHgQ98LRzcRdi1f6n0IvnLXoiGWAyM qxqacmuLAjb9tPHhF9ivYydchoVh27Su1Te/dKxYKmOSgBrrN37Ybo/2KMm+Nj2W a77rBWb/xdx+hVFB8vrosWhayi9LO5AUsgA9YHhm2F8YLIgLavtN5fjGkQKjBbHA ZRfyZ/nFNNDUmAuK7lqnkv0uGhJVdS/fT5rXyphXtjc= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:25 2024 by rpki-client on console-fra.rpki-client.org