$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234302e302f32312d3231203d3e203234323131.roa File: 3230332e3139302e3234302e302f32312d3231203d3e203234323131.roa (raw, json) Hash identifier: einwJ3TMLG60eX8vOb8BP75bS+iG2kasu0kVBXw/aA0= Subject key identifier: 70:F0:5E:47:46:F5:7A:D9:19:59:1C:16:9B:1E:42:0E:94:99:5A:D0 Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 463F2C0A3F6C4F423391675093C0ED0FB148ED28 Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234302e302f32312d3231203d3e203234323131.roa Signing time: Fri 22 Nov 2024 10:00:05 +0000 ROA not before: Fri 22 Nov 2024 09:55:05 +0000 ROA not after: Fri 21 Nov 2025 10:00:05 +0000 asID: 24211 IP address blocks: 203.190.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:3f:2c:0a:3f:6c:4f:42:33:91:67:50:93:c0:ed:0f:b1:48:ed:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Nov 22 09:55:05 2024 GMT Not After : Nov 21 10:00:05 2025 GMT Subject: CN=70F05E4746F57AD919591C169B1E420E94995AD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:96:96:47:11:8c:5c:86:75:e5:52:d6:bf:d0: 3a:d4:13:8b:07:9d:06:8d:a2:a8:00:72:ac:67:5b: 44:23:05:57:c5:25:ba:79:08:7d:3e:14:39:c6:51: ea:10:5e:e0:f9:0c:c8:5b:ff:b1:a7:bd:bd:1f:1c: fe:63:ea:30:c3:99:a9:de:fe:26:a2:09:d6:a0:7a: b4:ca:86:15:c4:c3:f4:1e:77:05:3e:1b:b0:dd:35: df:99:d6:ca:d4:bc:29:37:e4:de:0e:4d:2d:d6:a7: c4:43:41:0f:e4:5f:58:57:99:20:87:ce:f7:b5:ca: b1:50:7e:c2:21:f7:9e:91:03:8e:75:cb:4b:79:24: 4c:f0:b9:a1:0c:30:22:00:06:59:d6:6f:19:81:56: d5:43:06:5d:bf:0d:07:d6:35:15:d0:4b:fa:10:ff: 86:8d:82:57:f1:46:42:94:08:f1:6f:01:7f:89:41: 4a:c8:6a:c0:f0:88:b6:5b:e5:84:1e:19:61:e6:72: ad:c7:a6:6a:0d:1c:30:02:3d:f6:49:1e:fe:94:2c: d2:c2:9d:6e:e3:91:5a:3b:de:1b:af:3d:ee:16:17: eb:fb:d5:b2:87:c8:de:5b:85:f7:66:1c:e0:fc:28: 49:42:f5:24:6b:46:cc:77:ea:05:a0:1d:61:82:cb: ff:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:F0:5E:47:46:F5:7A:D9:19:59:1C:16:9B:1E:42:0E:94:99:5A:D0 X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234302e302f32312d3231203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.240.0/21 Signature Algorithm: sha256WithRSAEncryption 36:17:c9:94:2a:cf:05:53:4e:3b:bc:6d:bd:d7:fa:59:b6:9b: 25:14:9a:ce:b4:2a:e7:53:a8:66:65:8a:21:d2:0e:d2:70:7d: 76:13:8a:da:10:7e:4a:c6:bd:38:06:94:bb:11:ae:3f:0e:3d: 7c:8c:44:ae:be:0c:81:97:30:26:1a:4f:0c:15:b3:66:94:45: 31:57:f2:b3:24:8f:85:e2:f9:b2:b2:f2:ab:5a:a4:24:0e:0c: 81:2b:e9:62:1a:73:87:8c:99:0f:29:6b:33:a8:9e:f6:4e:23: 74:fa:14:bb:0e:6c:71:a8:2d:6a:71:07:db:14:92:2e:5d:c1: 66:2c:e0:b2:ad:35:5b:a9:69:9f:5f:30:55:1e:02:a9:46:d0: 8a:29:68:53:ae:7b:e2:1f:0c:17:b3:c4:2c:ec:16:1e:af:ed: 0d:78:2e:2e:9f:33:f1:a5:c9:25:f8:99:ff:f7:6e:35:fb:6b: b5:62:fa:b4:23:82:8c:49:87:ae:43:dd:d2:aa:57:02:c7:ef: ea:ff:9b:7a:be:79:7e:93:44:16:b0:49:9a:33:96:4b:0b:bc: af:af:34:8a:5b:41:b8:b3:e0:a0:10:8a:e9:5a:ed:a0:40:7f: ca:2c:7d:2b:86:40:b3:a5:47:2a:42:be:78:dd:d6:6a:8d:bb: 07:2d:77:6a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURj8sCj9sT0IzkWdQk8DtD7FI7SgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNDExMjIwOTU1MDVaFw0yNTExMjExMDAwMDVaMDMxMTAvBgNV BAMTKDcwRjA1RTQ3NDZGNTdBRDkxOTU5MUMxNjlCMUU0MjBFOTQ5OTVBRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/lpZHEYxchnXlUta/0DrUE4sH nQaNoqgAcqxnW0QjBVfFJbp5CH0+FDnGUeoQXuD5DMhb/7Gnvb0fHP5j6jDDmane /iaiCdagerTKhhXEw/QedwU+G7DdNd+Z1srUvCk35N4OTS3Wp8RDQQ/kX1hXmSCH zve1yrFQfsIh956RA451y0t5JEzwuaEMMCIABlnWbxmBVtVDBl2/DQfWNRXQS/oQ /4aNglfxRkKUCPFvAX+JQUrIasDwiLZb5YQeGWHmcq3HpmoNHDACPfZJHv6ULNLC nW7jkVo73huvPe4WF+v71bKHyN5bhfdmHOD8KElC9SRrRsx36gWgHWGCy/8dAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcPBeR0b1etkZWRwWmx5CDpSZWtAwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzAzMzJlMzEzOTMwMmUzMjM0MzAyZTMwMmYz MjMxMmQzMjMxMjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDy77wMA0GCSqG SIb3DQEBCwUAA4IBAQA2F8mUKs8FU047vG291/pZtpslFJrOtCrnU6hmZYoh0g7S cH12E4raEH5Kxr04BpS7Ea4/Dj18jESuvgyBlzAmGk8MFbNmlEUxV/KzJI+F4vmy svKrWqQkDgyBK+liGnOHjJkPKWszqJ72TiN0+hS7DmxxqC1qcQfbFJIuXcFmLOCy rTVbqWmfXzBVHgKpRtCKKWhTrnviHwwXs8Qs7BYer+0NeC4unzPxpckl+Jn/9241 +2u1Yvq0I4KMSYeuQ93SqlcCx+/q/5t6vnl+k0QWsEmaM5ZLC7yvrzSKW0G4s+Cg EIrpWu2gQH/KLH0rhkCzpUcqQr543dZqjbsHLXdq -----END CERTIFICATE-----Generated at Sun Nov 24 22:10:12 2024 by rpki-client on console-fra.rpki-client.org