$ rpki-client -vvf repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35302e302f32342d3234203d3e203338313435.roa File: 3230322e3138302e35302e302f32342d3234203d3e203338313435.roa (raw, json) Hash identifier: nUBG6+R8s7Qlqoihd6rfzu85Dq3VPI+YwbrGoZs+QU0= Subject key identifier: 41:72:72:85:F9:96:10:C2:A4:7A:40:32:AC:06:84:0E:9C:A9:5A:2C Certificate issuer: /CN=365454AF0090F9E623861AF2120855412F7447D1 Certificate serial: 551D6476477DC1CFC2780F1517C3250460C007F1 Authority key identifier: 36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35302e302f32342d3234203d3e203338313435.roa Signing time: Thu 12 Sep 2024 05:00:00 +0000 ROA not before: Thu 12 Sep 2024 04:55:00 +0000 ROA not after: Thu 11 Sep 2025 05:00:00 +0000 asID: 38145 IP address blocks: 202.180.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.crl rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:1d:64:76:47:7d:c1:cf:c2:78:0f:15:17:c3:25:04:60:c0:07:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=365454AF0090F9E623861AF2120855412F7447D1 Validity Not Before: Sep 12 04:55:00 2024 GMT Not After : Sep 11 05:00:00 2025 GMT Subject: CN=41727285F99610C2A47A4032AC06840E9CA95A2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:72:d0:9b:e3:f9:a4:66:f9:54:15:05:1f:e0: 36:dc:e3:28:08:77:a0:e7:9f:d7:5e:a2:de:2b:1a: c8:c8:ae:e3:1c:1f:a1:22:f0:e1:e1:d5:17:66:de: a5:04:7e:cc:55:1d:79:99:d0:81:b1:60:75:cc:0a: b4:eb:44:7f:95:21:f1:38:77:b5:00:70:1d:74:42: f0:b3:45:88:1f:f7:c8:61:50:db:83:11:ae:70:21: 32:1b:b3:b0:d9:b4:7e:50:08:a7:c1:40:6c:75:83: e7:60:cf:fb:82:76:9b:a7:9e:b0:44:bf:d5:9e:11: 18:fa:98:a3:cb:ba:35:19:94:fe:f0:a1:c2:17:ff: d2:2e:79:e0:0c:c4:87:4a:90:7f:2f:b1:b2:fa:ca: 0c:b3:e7:39:a1:bf:77:9f:ee:52:55:9d:78:74:69: bf:0d:1f:ea:c6:f6:cd:12:34:d0:74:49:3a:f0:39: 1e:ca:27:bc:a4:54:ee:c0:ab:13:d4:bc:c6:7b:ad: c3:45:f7:2a:ad:c0:60:5b:80:ff:8d:0a:7c:25:21: 1c:25:1d:15:ff:68:60:b4:d7:6c:74:4c:54:38:c6: 11:ef:ad:5a:e4:58:be:9d:49:6c:12:93:1e:b7:da: 57:14:be:42:46:1f:33:15:95:50:59:a5:89:0c:7b: bf:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:72:72:85:F9:96:10:C2:A4:7A:40:32:AC:06:84:0E:9C:A9:5A:2C X509v3 Authority Key Identifier: keyid:36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35302e302f32342d3234203d3e203338313435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.180.50.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:8d:d9:44:d0:54:4d:fb:a3:1c:2f:25:f7:56:ba:69:0f:a8: fe:87:d3:a8:f7:f7:2d:e8:7c:04:f9:41:15:3f:19:37:07:db: 26:a2:17:57:6c:b3:6e:ac:fd:73:87:98:ad:b6:3c:1d:4f:0b: 3a:12:59:9f:da:d4:c6:c6:f5:cb:e6:fc:7e:cf:66:dd:eb:5e: 30:b4:fa:b6:3e:13:bd:9c:e5:1f:56:90:89:5a:87:fc:44:ab: 88:7f:92:c5:74:2a:1f:c6:50:87:81:46:dc:61:5b:2a:7e:61: aa:c0:6a:73:fe:9c:c2:58:00:3f:04:57:7e:f0:bf:e8:ea:eb: 0d:c7:69:5c:cd:a0:7d:e4:fc:03:d4:35:2e:50:15:f1:6c:70: fd:cf:cb:f1:3f:7e:82:de:53:fe:3c:cf:67:91:45:85:4e:17: e5:0f:3b:c2:40:88:0f:75:06:a4:92:08:d8:69:96:10:8f:79: 7b:fb:78:a5:64:59:6e:86:85:39:d1:c7:d5:64:9a:71:83:08: dd:92:13:88:a2:75:a8:b4:1d:71:e6:8e:4b:43:dc:b0:8f:ec: 14:b6:8a:6d:69:f5:35:69:92:2c:4c:2d:f4:d0:67:fc:86:dc: e6:3c:73:9e:20:5a:9d:20:26:1a:c0:f0:78:35:fc:43:e4:8d: 52:a3:e5:5e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVR1kdkd9wc/CeA8VF8MlBGDAB/EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzY1NDU0QUYwMDkwRjlFNjIzODYxQUYyMTIwODU1NDEy Rjc0NDdEMTAeFw0yNDA5MTIwNDU1MDBaFw0yNTA5MTEwNTAwMDBaMDMxMTAvBgNV BAMTKDQxNzI3Mjg1Rjk5NjEwQzJBNDdBNDAzMkFDMDY4NDBFOUNBOTVBMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtctCb4/mkZvlUFQUf4Dbc4ygI d6Dnn9deot4rGsjIruMcH6Ei8OHh1Rdm3qUEfsxVHXmZ0IGxYHXMCrTrRH+VIfE4 d7UAcB10QvCzRYgf98hhUNuDEa5wITIbs7DZtH5QCKfBQGx1g+dgz/uCdpunnrBE v9WeERj6mKPLujUZlP7wocIX/9IueeAMxIdKkH8vsbL6ygyz5zmhv3ef7lJVnXh0 ab8NH+rG9s0SNNB0STrwOR7KJ7ykVO7AqxPUvMZ7rcNF9yqtwGBbgP+NCnwlIRwl HRX/aGC012x0TFQ4xhHvrVrkWL6dSWwSkx632lcUvkJGHzMVlVBZpYkMe78RAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQXJyhfmWEMKkekAyrAaEDpypWiwwHwYDVR0j BBgwFoAUNlRUrwCQ+eYjhhryEghVQS90R9EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Nzk4NGUzYS00OGY5LTRjZGEtYmU2Yy00MDA2YzA4ZjhmZDIvMC8zNjU0NTRBRjAw OTBGOUU2MjM4NjFBRjIxMjA4NTU0MTJGNzQ0N0QxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzY1NDU0QUYwMDkwRjlFNjIzODYxQUYyMTIwODU1NDEyRjc0 NDdEMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3OTg0ZTNhLTQ4ZjktNGNkYS1i ZTZjLTQwMDZjMDhmOGZkMi8wLzMyMzAzMjJlMzEzODMwMmUzNTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMq0MjANBgkqhkiG 9w0BAQsFAAOCAQEASo3ZRNBUTfujHC8l91a6aQ+o/ofTqPf3Leh8BPlBFT8ZNwfb JqIXV2yzbqz9c4eYrbY8HU8LOhJZn9rUxsb1y+b8fs9m3eteMLT6tj4TvZzlH1aQ iVqH/ESriH+SxXQqH8ZQh4FG3GFbKn5hqsBqc/6cwlgAPwRXfvC/6OrrDcdpXM2g feT8A9Q1LlAV8Wxw/c/L8T9+gt5T/jzPZ5FFhU4X5Q87wkCID3UGpJII2GmWEI95 e/t4pWRZboaFOdHH1WSacYMI3ZITiKJ1qLQdceaOS0PcsI/sFLaKbWn1NWmSLEwt 9NBn/Ibc5jxzniBanSAmGsDweDX8Q+SNUqPlXg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:12 2024 by rpki-client on console-fra.rpki-client.org