$ rpki-client -vvf repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132342e302f32332d3233203d3e20313339393532.roa File: 3230332e3137352e3132342e302f32332d3233203d3e20313339393532.roa (raw, json) Hash identifier: CTs5Uh+PUGuoZ85gWtFwiFdp4wiz7Vv/jmvFnjE17aI= Subject key identifier: F6:B7:27:AF:95:6C:84:5A:5B:D3:23:8D:83:A2:32:8E:8E:24:2F:EC Certificate issuer: /CN=4E4C9A47789406B9086713C5B821524B664E7C90 Certificate serial: 47B3E201E12BAB28E8BF5E88CF5C86009DFAE23B Authority key identifier: 4E:4C:9A:47:78:94:06:B9:08:67:13:C5:B8:21:52:4B:66:4E:7C:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E4C9A47789406B9086713C5B821524B664E7C90.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132342e302f32332d3233203d3e20313339393532.roa Signing time: Wed 27 Nov 2024 00:00:02 +0000 ROA not before: Tue 26 Nov 2024 23:55:02 +0000 ROA not after: Wed 26 Nov 2025 00:00:02 +0000 asID: 139952 IP address blocks: 203.175.124.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/4E4C9A47789406B9086713C5B821524B664E7C90.crl rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/4E4C9A47789406B9086713C5B821524B664E7C90.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E4C9A47789406B9086713C5B821524B664E7C90.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 14:25:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:b3:e2:01:e1:2b:ab:28:e8:bf:5e:88:cf:5c:86:00:9d:fa:e2:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E4C9A47789406B9086713C5B821524B664E7C90 Validity Not Before: Nov 26 23:55:02 2024 GMT Not After : Nov 26 00:00:02 2025 GMT Subject: CN=F6B727AF956C845A5BD3238D83A2328E8E242FEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c2:56:61:71:86:df:ef:c1:e4:b6:58:34:c6: 6c:09:83:fc:53:d6:cd:16:65:72:e8:c5:09:67:a6: a4:fa:d0:a7:2d:a9:a5:1c:e1:a0:c0:65:f1:14:e0: 8c:f5:97:15:40:79:3f:e5:ee:89:a8:f2:37:68:36: 04:83:35:ca:58:9d:8c:9f:76:3b:5d:8a:ef:b2:3d: 11:7a:12:42:b8:ed:8a:3e:e2:ee:cc:15:bf:2c:a5: 19:6a:84:db:6a:75:bf:97:f2:89:1b:d8:15:77:0f: 70:53:72:49:c5:bf:c5:33:f3:a4:6a:74:06:3f:6f: 41:52:71:a6:81:35:dd:87:a0:94:39:1e:2e:be:5f: 35:91:1d:a3:d5:7a:05:12:9c:86:ed:67:a1:63:3a: 66:fd:34:3e:53:7e:b9:97:0b:b9:6f:f7:cc:3e:5d: 3b:92:30:81:80:60:60:25:2c:1c:1f:23:45:2c:f0: f0:94:71:4c:98:5d:3b:38:4f:26:e0:b9:39:03:64: 6f:a3:ca:b7:f5:51:9b:a6:e7:16:22:e3:a5:4c:71: 68:97:2f:e2:a8:52:77:b1:73:e4:59:d3:dd:09:b9: bc:d2:f6:5d:28:37:e4:df:ca:41:f1:ce:c7:94:81: bc:55:89:01:36:0b:96:0c:57:d7:9d:0d:36:b6:e6: 84:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:B7:27:AF:95:6C:84:5A:5B:D3:23:8D:83:A2:32:8E:8E:24:2F:EC X509v3 Authority Key Identifier: keyid:4E:4C:9A:47:78:94:06:B9:08:67:13:C5:B8:21:52:4B:66:4E:7C:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/4E4C9A47789406B9086713C5B821524B664E7C90.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E4C9A47789406B9086713C5B821524B664E7C90.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132342e302f32332d3233203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.175.124.0/23 Signature Algorithm: sha256WithRSAEncryption 30:1f:7e:2f:9b:5d:86:43:49:e6:d6:52:7c:b3:fd:97:07:d9: b0:c7:a2:76:f6:43:a2:a2:d6:73:dd:fe:b6:2c:ae:25:c4:5c: e7:b6:4d:43:f2:57:25:ac:6c:ec:e8:6e:a5:76:72:71:51:9f: 69:1d:13:2d:d7:bd:4c:be:41:4e:6d:17:80:cd:48:2c:f1:74: 32:10:cc:ec:66:09:a3:3c:f8:cc:07:c2:ae:5c:67:68:70:8d: 62:c3:7b:18:08:e3:cf:98:1b:5b:3f:eb:b0:57:05:8d:32:c0: 30:7e:d3:7d:8b:5e:c9:f1:c2:05:6b:7d:83:6c:e1:ca:c9:1d: 3e:10:e8:8d:12:90:21:b5:8c:50:44:f0:88:b9:95:74:4d:75: e0:b2:84:db:e2:c3:a1:7b:83:9d:7a:4a:c0:25:98:81:86:d5: 58:81:e9:c7:48:5d:21:15:4e:fe:3d:5f:e1:f4:25:83:cc:ae: 8c:c9:8d:b9:2b:f6:be:0b:d0:60:ce:02:9a:5d:55:66:8a:a9: e6:b1:72:aa:3f:30:d1:ce:56:82:20:af:e0:24:be:6c:b5:a7: 5a:a1:5f:ff:58:a4:94:23:3c:45:70:a7:14:92:b8:f7:c7:9b: db:08:7b:70:c4:cc:75:47:f1:2f:14:7f:40:84:03:3e:da:34: d1:24:5a:02 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUR7PiAeErqyjov16Iz1yGAJ364jswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEU0QzlBNDc3ODk0MDZCOTA4NjcxM0M1QjgyMTUyNEI2 NjRFN0M5MDAeFw0yNDExMjYyMzU1MDJaFw0yNTExMjYwMDAwMDJaMDMxMTAvBgNV BAMTKEY2QjcyN0FGOTU2Qzg0NUE1QkQzMjM4RDgzQTIzMjhFOEUyNDJGRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCewlZhcYbf78Hktlg0xmwJg/xT 1s0WZXLoxQlnpqT60KctqaUc4aDAZfEU4Iz1lxVAeT/l7omo8jdoNgSDNcpYnYyf djtdiu+yPRF6EkK47Yo+4u7MFb8spRlqhNtqdb+X8okb2BV3D3BTcknFv8Uz86Rq dAY/b0FScaaBNd2HoJQ5Hi6+XzWRHaPVegUSnIbtZ6FjOmb9ND5TfrmXC7lv98w+ XTuSMIGAYGAlLBwfI0Us8PCUcUyYXTs4TybguTkDZG+jyrf1UZum5xYi46VMcWiX L+KoUnexc+RZ090JubzS9l0oN+TfykHxzseUgbxViQE2C5YMV9edDTa25oTvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU9rcnr5VshFpb0yONg6Iyjo4kL+wwHwYDVR0j BBgwFoAUTkyaR3iUBrkIZxPFuCFSS2ZOfJAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmIzOGY3OS0yNmQzLTQ0ODktYTQ3ZC0wYTg4MDViNDQ4YWUvMC80RTRDOUE0Nzc4 OTQwNkI5MDg2NzEzQzVCODIxNTI0QjY2NEU3QzkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEU0QzlBNDc3ODk0MDZCOTA4NjcxM0M1QjgyMTUyNEI2NjRF N0M5MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyYjM4Zjc5LTI2ZDMtNDQ4OS1h NDdkLTBhODgwNWI0NDhhZS8wLzMyMzAzMzJlMzEzNzM1MmUzMTMyMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHLr3wwDQYJ KoZIhvcNAQELBQADggEBADAffi+bXYZDSebWUnyz/ZcH2bDHonb2Q6Ki1nPd/rYs riXEXOe2TUPyVyWsbOzobqV2cnFRn2kdEy3XvUy+QU5tF4DNSCzxdDIQzOxmCaM8 +MwHwq5cZ2hwjWLDexgI48+YG1s/67BXBY0ywDB+032LXsnxwgVrfYNs4crJHT4Q 6I0SkCG1jFBE8Ii5lXRNdeCyhNviw6F7g516SsAlmIGG1ViB6cdIXSEVTv49X+H0 JYPMrozJjbkr9r4L0GDOAppdVWaKqeaxcqo/MNHOVoIgr+Akvmy1p1qhX/9YpJQj PEVwpxSSuPfHm9sIe3DEzHVH8S8Uf0CEAz7aNNEkWgI= -----END CERTIFICATE-----Generated at Sun Apr 6 08:34:29 2025 by rpki-client