$ rpki-client -vvf repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e34392e302f32342d3234203d3e203338313435.roa File: 3230322e3138302e34392e302f32342d3234203d3e203338313435.roa (raw, json) Hash identifier: 9vEr+rW9AjCmQf87UbUqdHYs29iLEMAjVaNaC9HO/xg= Subject key identifier: 64:00:40:86:7B:39:7F:3F:4C:95:CB:FB:5B:0C:8F:85:00:97:EF:D8 Certificate issuer: /CN=365454AF0090F9E623861AF2120855412F7447D1 Certificate serial: 291CF7855700373CD82176B3F4674D453A9F1646 Authority key identifier: 36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e34392e302f32342d3234203d3e203338313435.roa Signing time: Thu 12 Sep 2024 06:00:00 +0000 ROA not before: Thu 12 Sep 2024 05:55:00 +0000 ROA not after: Thu 11 Sep 2025 06:00:00 +0000 asID: 38145 IP address blocks: 202.180.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.crl rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:1c:f7:85:57:00:37:3c:d8:21:76:b3:f4:67:4d:45:3a:9f:16:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=365454AF0090F9E623861AF2120855412F7447D1 Validity Not Before: Sep 12 05:55:00 2024 GMT Not After : Sep 11 06:00:00 2025 GMT Subject: CN=640040867B397F3F4C95CBFB5B0C8F850097EFD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:dd:22:ce:7c:a5:82:39:24:a9:3a:a7:79:76: e5:81:91:cc:c8:d8:7c:2b:98:b2:b3:89:41:34:d3: 21:81:45:4e:36:1c:30:b5:a2:40:d1:05:d2:01:8a: f7:0b:e9:9e:40:ba:2b:a9:1c:05:da:a6:c4:b6:b6: 50:85:82:06:0b:b2:31:1f:b7:4c:c1:c7:e7:e1:32: 93:47:47:88:ca:b1:83:b5:b4:e5:d8:6a:ff:12:be: 97:4a:4f:14:79:c4:c7:f8:d3:f4:8e:4a:ae:bd:ff: ef:fb:64:a6:b4:50:1e:61:d2:41:27:03:33:a4:a3: 18:75:6f:87:fe:6e:b5:93:5c:e6:ea:14:c3:3c:4d: 5f:03:d9:a2:f8:b8:2e:d6:72:c0:2c:2d:b2:81:a6: ae:ed:5e:3a:48:71:64:0f:53:ec:68:01:f9:c4:f7: b5:83:08:15:84:db:41:88:0e:a6:fd:74:ff:c5:ad: 87:a5:74:66:9d:84:96:f9:a2:76:c0:0b:0e:2e:05: d0:40:c6:05:e2:78:9a:a0:bf:dc:d9:b5:48:6d:0b: fc:d1:5e:2f:f2:e9:58:08:df:3f:b9:fa:cb:2f:a0: f6:70:14:c2:c7:d3:57:9e:c4:fa:b1:bc:b7:f4:ec: a4:26:bf:91:90:0d:e7:70:49:65:4d:12:f8:b7:43: 8b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:00:40:86:7B:39:7F:3F:4C:95:CB:FB:5B:0C:8F:85:00:97:EF:D8 X509v3 Authority Key Identifier: keyid:36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e34392e302f32342d3234203d3e203338313435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.180.49.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:3b:84:aa:8f:cf:b1:d4:7b:88:8a:55:27:78:08:c9:c7:c9: 71:60:f3:e9:4b:d8:af:89:8c:e3:33:41:4d:bf:a7:3e:e0:e3: c5:fa:9a:f4:63:6a:48:c2:5e:88:5b:3d:bb:53:f4:81:f4:8a: 76:bf:8e:73:fe:ba:e7:d7:2e:67:b0:82:61:18:54:bc:f9:e7: 77:72:5b:48:f5:1f:cd:63:6e:8c:63:24:4c:99:2b:a5:10:68: aa:50:e4:5a:10:af:d7:bf:5b:dd:01:f1:81:cc:de:1c:bf:6f: 51:53:94:23:b7:e8:0d:3d:30:51:88:5a:91:bf:e5:45:48:84: 78:bf:d0:2f:bb:8a:da:c3:30:34:0b:c6:a8:7c:60:eb:fe:8b: ee:16:10:2e:56:dd:78:60:4f:88:97:8f:d6:b6:b3:e1:24:c7: 16:bc:f0:fd:df:e7:25:36:3f:c9:58:fb:2a:71:1b:8c:66:f6: d3:8f:dd:71:35:90:c1:5a:c4:4f:53:9e:0c:74:66:14:53:ef: 03:eb:84:10:3b:01:91:03:70:11:c3:45:d5:db:51:a9:7f:69: 49:21:91:72:fb:7a:fc:c0:6e:1b:88:21:75:de:e1:c5:83:eb: bf:20:41:39:32:7c:37:b6:48:52:d6:94:a6:d4:b7:3c:e2:ef: 1d:ad:fa:a5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKRz3hVcANzzYIXaz9GdNRTqfFkYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzY1NDU0QUYwMDkwRjlFNjIzODYxQUYyMTIwODU1NDEy Rjc0NDdEMTAeFw0yNDA5MTIwNTU1MDBaFw0yNTA5MTEwNjAwMDBaMDMxMTAvBgNV BAMTKDY0MDA0MDg2N0IzOTdGM0Y0Qzk1Q0JGQjVCMEM4Rjg1MDA5N0VGRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi3SLOfKWCOSSpOqd5duWBkczI 2HwrmLKziUE00yGBRU42HDC1okDRBdIBivcL6Z5AuiupHAXapsS2tlCFggYLsjEf t0zBx+fhMpNHR4jKsYO1tOXYav8SvpdKTxR5xMf40/SOSq69/+/7ZKa0UB5h0kEn AzOkoxh1b4f+brWTXObqFMM8TV8D2aL4uC7WcsAsLbKBpq7tXjpIcWQPU+xoAfnE 97WDCBWE20GIDqb9dP/FrYeldGadhJb5onbACw4uBdBAxgXieJqgv9zZtUhtC/zR Xi/y6VgI3z+5+ssvoPZwFMLH01eexPqxvLf07KQmv5GQDedwSWVNEvi3Q4uNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZABAhns5fz9Mlcv7WwyPhQCX79gwHwYDVR0j BBgwFoAUNlRUrwCQ+eYjhhryEghVQS90R9EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Nzk4NGUzYS00OGY5LTRjZGEtYmU2Yy00MDA2YzA4ZjhmZDIvMC8zNjU0NTRBRjAw OTBGOUU2MjM4NjFBRjIxMjA4NTU0MTJGNzQ0N0QxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzY1NDU0QUYwMDkwRjlFNjIzODYxQUYyMTIwODU1NDEyRjc0 NDdEMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3OTg0ZTNhLTQ4ZjktNGNkYS1i ZTZjLTQwMDZjMDhmOGZkMi8wLzMyMzAzMjJlMzEzODMwMmUzNDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMq0MTANBgkqhkiG 9w0BAQsFAAOCAQEADTuEqo/PsdR7iIpVJ3gIycfJcWDz6UvYr4mM4zNBTb+nPuDj xfqa9GNqSMJeiFs9u1P0gfSKdr+Oc/6659cuZ7CCYRhUvPnnd3JbSPUfzWNujGMk TJkrpRBoqlDkWhCv179b3QHxgczeHL9vUVOUI7foDT0wUYhakb/lRUiEeL/QL7uK 2sMwNAvGqHxg6/6L7hYQLlbdeGBPiJeP1raz4STHFrzw/d/nJTY/yVj7KnEbjGb2 04/dcTWQwVrET1OeDHRmFFPvA+uEEDsBkQNwEcNF1dtRqX9pSSGRcvt6/MBuG4gh dd7hxYPrvyBBOTJ8N7ZIUtaUptS3POLvHa36pQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:37 2024 by rpki-client on console-ams.rpki-client.org