$ rpki-client -vvf repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35322e302f32342d3234203d3e203338313435.roa File: 3230322e3138302e35322e302f32342d3234203d3e203338313435.roa (raw, json) Hash identifier: Sw5JEBU711GgxREPxgZi1krYuan/MFrIrIJ0LtULqXk= Subject key identifier: 07:58:91:11:28:C7:A6:99:9A:FA:81:45:C2:CB:1C:87:07:0B:B0:F6 Certificate issuer: /CN=365454AF0090F9E623861AF2120855412F7447D1 Certificate serial: 4EA9487AF58A156A4191510D017F370DC33ECF9C Authority key identifier: 36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35322e302f32342d3234203d3e203338313435.roa Signing time: Fri 16 Feb 2024 10:00:00 +0000 ROA not before: Fri 16 Feb 2024 09:55:00 +0000 ROA not after: Fri 14 Feb 2025 10:00:00 +0000 asID: 38145 IP address blocks: 202.180.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.crl rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:a9:48:7a:f5:8a:15:6a:41:91:51:0d:01:7f:37:0d:c3:3e:cf:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=365454AF0090F9E623861AF2120855412F7447D1 Validity Not Before: Feb 16 09:55:00 2024 GMT Not After : Feb 14 10:00:00 2025 GMT Subject: CN=0758911128C7A6999AFA8145C2CB1C87070BB0F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a2:e4:50:34:07:4b:90:21:e0:f2:83:f6:90: a3:56:7f:18:17:d4:e7:73:eb:67:a4:d9:4b:37:ac: fe:57:8f:cd:da:76:2e:9a:71:70:79:9a:9b:e1:7d: 2e:0c:58:28:fc:26:e4:1e:50:c4:da:43:ef:1b:58: 4a:68:5a:14:84:75:ef:69:0e:47:e4:49:eb:53:fd: 83:74:de:a6:d8:c1:f5:dc:3c:e7:8f:b4:81:9d:b8: 5c:b5:71:e3:63:dc:82:ad:37:38:1d:d6:31:87:a4: b8:76:88:8a:d0:99:aa:34:0b:7d:f8:76:f2:3a:8a: 66:27:8b:c2:f8:f2:e6:c6:c2:35:7c:fb:48:32:78: bf:c7:3b:94:c5:68:46:9b:73:ac:7e:e2:39:6a:ad: 77:32:e4:bd:91:4d:e9:2c:1e:50:42:7b:75:29:fc: bb:4e:d8:ce:ad:08:77:35:f4:a4:33:4a:89:70:30: dc:3c:0d:d5:33:e9:e6:08:ae:56:b9:13:ea:21:b8: 30:9a:b6:23:81:e5:f9:63:3a:93:68:01:c9:7c:cf: 3d:14:0f:a0:96:1f:ea:33:18:2a:d2:98:29:59:5d: f4:93:c2:6e:54:ca:01:4f:4c:b8:64:89:3a:e8:44: f5:67:c4:61:07:bd:b5:8d:22:63:fa:fd:a9:67:9b: 44:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:58:91:11:28:C7:A6:99:9A:FA:81:45:C2:CB:1C:87:07:0B:B0:F6 X509v3 Authority Key Identifier: keyid:36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35322e302f32342d3234203d3e203338313435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.180.52.0/24 Signature Algorithm: sha256WithRSAEncryption b4:58:c9:44:b0:5f:1e:38:bc:6e:ee:0d:fa:1f:67:fc:7d:6b: e6:42:8d:0e:ef:11:9b:22:23:6f:bd:f6:7a:2f:9d:ef:04:5e: 97:de:96:a2:85:63:2b:df:fb:8e:2f:88:e6:62:91:41:5e:75: 6c:6c:4d:c3:f3:38:6a:b2:d1:4b:09:30:1f:c7:13:47:d9:1d: 71:01:8d:ac:f4:9a:79:c0:52:8a:d1:ac:b2:8f:d2:58:7d:03: a9:7f:02:f2:41:b4:39:a1:72:b7:5c:14:24:b0:50:84:17:79: 55:83:ab:71:b3:84:68:09:3d:f1:23:aa:e5:91:3e:30:06:3e: 91:28:c6:7b:4c:7c:5a:05:4e:57:c9:72:c3:91:68:50:d1:9b: 00:fa:a7:73:4d:35:77:92:4f:71:64:06:50:72:cd:d8:cc:f6: 0e:39:78:74:80:d5:d8:31:61:9b:07:e0:41:61:e1:24:97:ac: 71:b5:46:b1:50:8a:96:7e:ce:6b:74:73:8f:5a:71:e3:23:b9: e6:21:6c:40:07:9e:9d:38:a9:9e:2d:cd:68:6a:41:55:81:08: e6:98:52:b8:00:ca:7a:d0:65:d0:ba:c4:d0:ca:bc:95:f4:51: e6:63:f4:c1:42:fd:5b:f4:80:c0:0a:53:0a:b7:25:d4:c1:79: ac:97:17:e3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTqlIevWKFWpBkVENAX83DcM+z5wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzY1NDU0QUYwMDkwRjlFNjIzODYxQUYyMTIwODU1NDEy Rjc0NDdEMTAeFw0yNDAyMTYwOTU1MDBaFw0yNTAyMTQxMDAwMDBaMDMxMTAvBgNV BAMTKDA3NTg5MTExMjhDN0E2OTk5QUZBODE0NUMyQ0IxQzg3MDcwQkIwRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDouRQNAdLkCHg8oP2kKNWfxgX 1Odz62ek2Us3rP5Xj83adi6acXB5mpvhfS4MWCj8JuQeUMTaQ+8bWEpoWhSEde9p DkfkSetT/YN03qbYwfXcPOePtIGduFy1ceNj3IKtNzgd1jGHpLh2iIrQmao0C334 dvI6imYni8L48ubGwjV8+0gyeL/HO5TFaEabc6x+4jlqrXcy5L2RTeksHlBCe3Up /LtO2M6tCHc19KQzSolwMNw8DdUz6eYIrla5E+ohuDCatiOB5fljOpNoAcl8zz0U D6CWH+ozGCrSmClZXfSTwm5UygFPTLhkiTroRPVnxGEHvbWNImP6/alnm0RxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUB1iRESjHppma+oFFwsschwcLsPYwHwYDVR0j BBgwFoAUNlRUrwCQ+eYjhhryEghVQS90R9EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Nzk4NGUzYS00OGY5LTRjZGEtYmU2Yy00MDA2YzA4ZjhmZDIvMC8zNjU0NTRBRjAw OTBGOUU2MjM4NjFBRjIxMjA4NTU0MTJGNzQ0N0QxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzY1NDU0QUYwMDkwRjlFNjIzODYxQUYyMTIwODU1NDEyRjc0 NDdEMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3OTg0ZTNhLTQ4ZjktNGNkYS1i ZTZjLTQwMDZjMDhmOGZkMi8wLzMyMzAzMjJlMzEzODMwMmUzNTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMq0NDANBgkqhkiG 9w0BAQsFAAOCAQEAtFjJRLBfHji8bu4N+h9n/H1r5kKNDu8RmyIjb732ei+d7wRe l96WooVjK9/7ji+I5mKRQV51bGxNw/M4arLRSwkwH8cTR9kdcQGNrPSaecBSitGs so/SWH0DqX8C8kG0OaFyt1wUJLBQhBd5VYOrcbOEaAk98SOq5ZE+MAY+kSjGe0x8 WgVOV8lyw5FoUNGbAPqnc001d5JPcWQGUHLN2Mz2Djl4dIDV2DFhmwfgQWHhJJes cbVGsVCKln7Oa3Rzj1px4yO55iFsQAeenTipni3NaGpBVYEI5phSuADKetBl0LrE 0Mq8lfRR5mP0wUL9W/SAwApTCrcl1MF5rJcX4w== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:12 2024 by rpki-client on console-fra.rpki-client.org