$ rpki-client -vvf repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35332e302f32342d3234203d3e203338313435.roa File: 3230322e3138302e35332e302f32342d3234203d3e203338313435.roa (raw, json) Hash identifier: prt3af0W9LDYfmxlTB9KC67kSbtgNUrFTGVHWlW2dAs= Subject key identifier: 22:F5:48:D0:FD:61:C6:14:AB:78:9D:35:58:30:D1:AB:07:13:A7:A5 Certificate issuer: /CN=365454AF0090F9E623861AF2120855412F7447D1 Certificate serial: 28EA9152DEE2793C48AC6904F5CE0C58062F95FA Authority key identifier: 36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35332e302f32342d3234203d3e203338313435.roa Signing time: Thu 12 Sep 2024 06:00:00 +0000 ROA not before: Thu 12 Sep 2024 05:55:00 +0000 ROA not after: Thu 11 Sep 2025 06:00:00 +0000 asID: 38145 IP address blocks: 202.180.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.crl rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:ea:91:52:de:e2:79:3c:48:ac:69:04:f5:ce:0c:58:06:2f:95:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=365454AF0090F9E623861AF2120855412F7447D1 Validity Not Before: Sep 12 05:55:00 2024 GMT Not After : Sep 11 06:00:00 2025 GMT Subject: CN=22F548D0FD61C614AB789D355830D1AB0713A7A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f9:b1:17:30:51:be:63:96:39:9f:48:0e:33: 06:58:d2:d6:e7:ce:db:27:30:44:b6:4b:ff:ab:1a: 79:65:b6:8b:94:f0:d9:60:ee:b0:ac:2b:5c:be:b9: 2c:e1:1a:86:17:66:00:b7:19:29:ff:72:bf:8b:78: 9f:d4:08:9c:c3:49:7c:de:05:79:59:8f:66:90:58: 07:e7:b3:f3:42:6f:46:11:ff:1c:5b:c5:e7:8d:a7: dc:d5:5c:82:f1:30:5e:7c:af:72:91:36:35:65:f3: 7a:1f:b8:5f:83:f2:7f:42:99:4e:c3:0f:e8:2b:c5: 1b:54:1f:29:24:a9:f0:76:4a:8e:70:5d:34:8c:d0: e0:1f:f5:8a:72:65:5a:8f:99:25:c2:ce:cf:b8:50: f4:df:b3:0b:eb:7c:fe:6d:19:8d:ec:30:2a:d8:74: bc:22:59:28:2e:25:91:85:1a:ea:15:b4:e7:39:2e: 0b:d4:99:7b:ec:fd:a2:cf:e1:89:45:c0:1f:91:b4: 17:0b:26:a9:6c:39:b4:1c:f4:69:d0:b0:98:74:94: d3:be:16:fe:0c:07:7e:cb:cd:12:00:c4:6b:54:e6: aa:66:da:d5:62:fa:9b:b8:9b:e1:a6:5a:c4:07:de: 75:14:c0:68:40:a0:e3:34:6e:96:89:5b:d9:bd:2f: 3a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:F5:48:D0:FD:61:C6:14:AB:78:9D:35:58:30:D1:AB:07:13:A7:A5 X509v3 Authority Key Identifier: keyid:36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35332e302f32342d3234203d3e203338313435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.180.53.0/24 Signature Algorithm: sha256WithRSAEncryption 61:5a:8b:9a:69:20:d3:08:1a:80:72:e7:3c:a3:99:13:24:b3: 83:70:6b:ae:9c:89:dc:db:ee:11:4b:d9:59:ab:1b:6c:c9:d6: e4:84:0b:4a:fe:b3:c3:95:0b:91:96:70:42:e3:86:6e:a2:d6: 03:0e:a4:d7:b5:1b:b0:ec:67:4b:cc:08:5d:7f:22:5e:64:b8: 0c:5d:c2:7f:62:f1:34:0f:d0:02:15:e7:f7:48:62:fb:68:06: d3:3c:0d:3d:03:66:12:de:87:a9:b4:b1:45:15:a4:78:b6:c2: e5:41:13:51:69:45:b8:3d:e3:79:15:d3:f2:44:0c:10:d4:5f: 69:a0:f8:91:d4:83:fb:76:1d:00:42:31:c4:38:6d:29:0a:20: 0a:2f:ac:b6:74:0a:6e:1a:c3:53:2d:d7:96:2e:78:d7:b5:94: f7:d2:20:df:8a:3d:9c:75:28:c9:9a:d3:31:b0:73:52:a3:ad: ff:a0:11:99:51:6c:dc:37:74:3c:66:07:b6:c0:ca:5c:00:36: 37:a7:31:c2:f5:a8:a0:52:e0:f6:54:d1:3e:b7:fa:50:ca:43: b0:6b:f0:47:c6:19:3e:31:ec:ae:0c:16:7b:23:34:1b:13:c6: 4c:2e:74:2d:18:eb:08:97:12:c0:be:59:be:ab:57:7c:de:62: d3:fb:ec:9c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKOqRUt7ieTxIrGkE9c4MWAYvlfowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzY1NDU0QUYwMDkwRjlFNjIzODYxQUYyMTIwODU1NDEy Rjc0NDdEMTAeFw0yNDA5MTIwNTU1MDBaFw0yNTA5MTEwNjAwMDBaMDMxMTAvBgNV BAMTKDIyRjU0OEQwRkQ2MUM2MTRBQjc4OUQzNTU4MzBEMUFCMDcxM0E3QTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh+bEXMFG+Y5Y5n0gOMwZY0tbn ztsnMES2S/+rGnlltouU8Nlg7rCsK1y+uSzhGoYXZgC3GSn/cr+LeJ/UCJzDSXze BXlZj2aQWAfns/NCb0YR/xxbxeeNp9zVXILxMF58r3KRNjVl83ofuF+D8n9CmU7D D+grxRtUHykkqfB2So5wXTSM0OAf9YpyZVqPmSXCzs+4UPTfswvrfP5tGY3sMCrY dLwiWSguJZGFGuoVtOc5LgvUmXvs/aLP4YlFwB+RtBcLJqlsObQc9GnQsJh0lNO+ Fv4MB37LzRIAxGtU5qpm2tVi+pu4m+GmWsQH3nUUwGhAoOM0bpaJW9m9LzpVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIvVI0P1hxhSreJ01WDDRqwcTp6UwHwYDVR0j BBgwFoAUNlRUrwCQ+eYjhhryEghVQS90R9EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Nzk4NGUzYS00OGY5LTRjZGEtYmU2Yy00MDA2YzA4ZjhmZDIvMC8zNjU0NTRBRjAw OTBGOUU2MjM4NjFBRjIxMjA4NTU0MTJGNzQ0N0QxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzY1NDU0QUYwMDkwRjlFNjIzODYxQUYyMTIwODU1NDEyRjc0 NDdEMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3OTg0ZTNhLTQ4ZjktNGNkYS1i ZTZjLTQwMDZjMDhmOGZkMi8wLzMyMzAzMjJlMzEzODMwMmUzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMq0NTANBgkqhkiG 9w0BAQsFAAOCAQEAYVqLmmkg0wgagHLnPKOZEySzg3BrrpyJ3NvuEUvZWasbbMnW 5IQLSv6zw5ULkZZwQuOGbqLWAw6k17UbsOxnS8wIXX8iXmS4DF3Cf2LxNA/QAhXn 90hi+2gG0zwNPQNmEt6HqbSxRRWkeLbC5UETUWlFuD3jeRXT8kQMENRfaaD4kdSD +3YdAEIxxDhtKQogCi+stnQKbhrDUy3Xli5417WU99Ig34o9nHUoyZrTMbBzUqOt /6ARmVFs3Dd0PGYHtsDKXAA2N6cxwvWooFLg9lTRPrf6UMpDsGvwR8YZPjHsrgwW eyM0GxPGTC50LRjrCJcSwL5ZvqtXfN5i0/vsnA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:12 2024 by rpki-client on console-fra.rpki-client.org