$ rpki-client -vvf repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35342e302f32342d3234203d3e203338313435.roa File: 3230322e3138302e35342e302f32342d3234203d3e203338313435.roa (raw, json) Hash identifier: ZwQEyzr0qU/uG/9S8Tb3R56McpPXpsgC7o/jCqvdCug= Subject key identifier: 18:9F:8B:EE:90:31:92:ED:BD:9D:7D:A7:F3:3A:E6:BF:1E:15:4C:1C Certificate issuer: /CN=365454AF0090F9E623861AF2120855412F7447D1 Certificate serial: 3B0D2E2822855112751DA9125B1F2E68D534260F Authority key identifier: 36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35342e302f32342d3234203d3e203338313435.roa Signing time: Thu 12 Sep 2024 07:01:59 +0000 ROA not before: Thu 12 Sep 2024 06:56:59 +0000 ROA not after: Thu 11 Sep 2025 07:01:59 +0000 asID: 38145 IP address blocks: 202.180.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.crl rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:0d:2e:28:22:85:51:12:75:1d:a9:12:5b:1f:2e:68:d5:34:26:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=365454AF0090F9E623861AF2120855412F7447D1 Validity Not Before: Sep 12 06:56:59 2024 GMT Not After : Sep 11 07:01:59 2025 GMT Subject: CN=189F8BEE903192EDBD9D7DA7F33AE6BF1E154C1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:4a:43:ae:4e:41:f8:8e:86:ad:6d:cc:27:cc: 29:9c:e5:a3:cd:a7:db:e0:49:1c:98:48:6f:7d:de: ad:af:df:28:c2:78:e7:e0:e0:e1:84:49:0d:1b:4b: 1c:c2:b7:6c:fe:df:b7:26:81:50:8c:f0:ad:93:bc: b3:e4:3c:b9:56:1e:06:62:fa:21:0a:f9:d0:66:e6: 46:88:6e:1a:11:e4:2e:76:0a:49:0d:91:d6:74:05: 4a:1d:69:5e:ed:5e:2f:28:70:dd:57:e1:c0:62:91: ed:bc:eb:08:c6:cd:08:cf:b6:2c:bd:35:a3:f9:53: 12:a8:11:78:67:cb:12:8c:15:bc:23:a4:e2:3c:4e: 3b:69:57:31:6f:5e:40:5c:33:a2:6c:6d:ee:1b:55: 15:05:d0:55:1c:31:2b:ec:db:c5:2e:31:5e:d0:47: 53:b6:85:b1:e9:c3:cc:c3:d6:74:4d:54:ca:81:25: 19:d3:ba:c9:be:97:f9:82:57:62:13:d5:77:67:bb: d6:8a:55:a6:cd:61:c8:ec:93:e7:d6:22:f9:8e:b8: 8d:ec:6e:55:cd:bd:53:e8:ce:e2:4a:d1:4a:de:b3: 9e:3f:14:a6:fa:43:1c:66:fb:5b:5f:a1:14:1f:2d: 90:e6:40:39:5b:77:7a:f5:ed:5c:ac:f1:52:9e:bc: 06:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:9F:8B:EE:90:31:92:ED:BD:9D:7D:A7:F3:3A:E6:BF:1E:15:4C:1C X509v3 Authority Key Identifier: keyid:36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35342e302f32342d3234203d3e203338313435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.180.54.0/24 Signature Algorithm: sha256WithRSAEncryption aa:8f:d5:c5:17:9b:03:bc:fe:a1:08:76:9a:e8:05:ef:1e:9f: d7:54:76:15:31:63:75:9c:83:60:72:c2:09:e7:7e:f7:bf:ad: 72:6c:43:85:dc:8d:0a:20:3a:57:21:ce:b6:76:84:c3:4f:d5: 39:84:3a:bc:12:6e:d6:88:3a:db:22:6f:86:27:20:71:ce:4c: cd:55:3c:4e:1a:db:a5:11:8d:63:d5:6a:bf:37:37:4f:a9:4d: 2b:14:1f:fd:1a:fe:33:dd:fe:05:7d:35:63:57:39:7c:21:26: 40:25:b0:94:5a:16:c8:9e:9a:ea:d4:dd:38:ab:8a:1e:c8:57: a1:94:3c:27:61:7e:43:df:ed:1a:1c:ae:ce:62:8c:78:0d:41: 5a:66:2e:5d:2c:c6:17:04:cb:eb:76:fe:8f:3e:a6:b9:71:f1: 57:99:47:d5:c8:e1:41:52:8b:23:c9:39:20:63:60:7f:80:fa: 0f:63:98:bf:a3:25:cb:64:b4:21:aa:28:23:ad:e1:b0:fa:34: 51:f9:51:fd:86:56:ac:d7:f5:21:93:2a:52:22:e7:2f:62:df: 5b:ed:88:16:32:97:99:30:d2:4c:f8:59:70:9d:25:ef:ab:fb: 38:ff:42:61:66:59:d6:c7:08:72:31:91:32:b9:75:4b:d0:09: 7e:98:54:f8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOw0uKCKFURJ1HakSWx8uaNU0Jg8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzY1NDU0QUYwMDkwRjlFNjIzODYxQUYyMTIwODU1NDEy Rjc0NDdEMTAeFw0yNDA5MTIwNjU2NTlaFw0yNTA5MTEwNzAxNTlaMDMxMTAvBgNV BAMTKDE4OUY4QkVFOTAzMTkyRURCRDlEN0RBN0YzM0FFNkJGMUUxNTRDMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjSkOuTkH4joatbcwnzCmc5aPN p9vgSRyYSG993q2v3yjCeOfg4OGESQ0bSxzCt2z+37cmgVCM8K2TvLPkPLlWHgZi +iEK+dBm5kaIbhoR5C52CkkNkdZ0BUodaV7tXi8ocN1X4cBike286wjGzQjPtiy9 NaP5UxKoEXhnyxKMFbwjpOI8TjtpVzFvXkBcM6Jsbe4bVRUF0FUcMSvs28UuMV7Q R1O2hbHpw8zD1nRNVMqBJRnTusm+l/mCV2IT1Xdnu9aKVabNYcjsk+fWIvmOuI3s blXNvVPozuJK0Ures54/FKb6Qxxm+1tfoRQfLZDmQDlbd3r17Vys8VKevAZlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUGJ+L7pAxku29nX2n8zrmvx4VTBwwHwYDVR0j BBgwFoAUNlRUrwCQ+eYjhhryEghVQS90R9EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Nzk4NGUzYS00OGY5LTRjZGEtYmU2Yy00MDA2YzA4ZjhmZDIvMC8zNjU0NTRBRjAw OTBGOUU2MjM4NjFBRjIxMjA4NTU0MTJGNzQ0N0QxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzY1NDU0QUYwMDkwRjlFNjIzODYxQUYyMTIwODU1NDEyRjc0 NDdEMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3OTg0ZTNhLTQ4ZjktNGNkYS1i ZTZjLTQwMDZjMDhmOGZkMi8wLzMyMzAzMjJlMzEzODMwMmUzNTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMq0NjANBgkqhkiG 9w0BAQsFAAOCAQEAqo/VxRebA7z+oQh2mugF7x6f11R2FTFjdZyDYHLCCed+97+t cmxDhdyNCiA6VyHOtnaEw0/VOYQ6vBJu1og62yJvhicgcc5MzVU8ThrbpRGNY9Vq vzc3T6lNKxQf/Rr+M93+BX01Y1c5fCEmQCWwlFoWyJ6a6tTdOKuKHshXoZQ8J2F+ Q9/tGhyuzmKMeA1BWmYuXSzGFwTL63b+jz6muXHxV5lH1cjhQVKLI8k5IGNgf4D6 D2OYv6Mly2S0IaooI63hsPo0UflR/YZWrNf1IZMqUiLnL2LfW+2IFjKXmTDSTPhZ cJ0l76v7OP9CYWZZ1scIcjGRMrl1S9AJfphU+A== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:12 2024 by rpki-client on console-fra.rpki-client.org