$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234302e302f32332d3233203d3e203234323131.roa File: 3230332e3139302e3234302e302f32332d3233203d3e203234323131.roa (raw, json) Hash identifier: XuClycGrR46sx6e0k5i1gqFyr8XtkjJjo7XVCOwHej8= Subject key identifier: 4A:8C:F9:2C:B3:ED:57:3C:E5:4E:6A:EF:44:37:FE:25:CF:50:C6:0E Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 15F390A0DFCE3AEB94EEE4D315E62F23EA4A3E6C Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234302e302f32332d3233203d3e203234323131.roa Signing time: Mon 01 Jul 2024 01:03:24 +0000 ROA not before: Mon 01 Jul 2024 00:58:24 +0000 ROA not after: Mon 30 Jun 2025 01:03:24 +0000 asID: 24211 IP address blocks: 203.190.240.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:f3:90:a0:df:ce:3a:eb:94:ee:e4:d3:15:e6:2f:23:ea:4a:3e:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Jul 1 00:58:24 2024 GMT Not After : Jun 30 01:03:24 2025 GMT Subject: CN=4A8CF92CB3ED573CE54E6AEF4437FE25CF50C60E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:01:a4:d8:83:5b:54:ba:d4:c3:9b:1e:fd:cb: 1f:73:69:ac:c8:df:67:15:fc:e8:9f:df:fb:7b:2d: 1c:b4:7c:19:d4:4a:8d:d8:09:f6:33:51:a8:b5:e5: 76:0d:a2:13:74:93:f1:8d:ce:09:5b:fc:62:88:06: 5a:2e:6f:4d:39:c6:17:73:30:ee:93:35:14:9b:21: d0:4d:4c:f3:66:2c:b7:ca:74:bc:21:30:97:e0:07: 7a:91:de:ed:00:45:d5:13:5f:83:c4:37:92:48:9e: aa:4f:6b:4c:c5:88:a3:af:01:c0:2b:68:f9:62:6f: ba:3d:7b:dc:41:a7:79:4a:6e:37:3e:e8:fe:1c:b1: 51:38:4c:7e:e9:d2:d7:38:e3:20:b4:b5:30:da:22: ea:8c:21:bc:af:8d:d6:8e:55:b8:bb:e9:b5:b6:2d: ed:7d:7a:25:c8:b9:45:0b:5c:22:a5:5e:d9:b9:e8: 9b:ff:62:83:b8:c9:40:ae:9f:dd:df:1d:ce:a0:4c: 54:a1:31:5b:30:96:39:62:b7:e6:1d:15:bf:9d:f1: 3c:b2:9a:e9:20:4f:c9:66:5d:85:1c:fe:bd:90:c6: ec:c2:54:de:65:a1:9e:4f:26:9e:d8:67:61:04:b5: e6:a1:77:0b:f6:e9:24:85:de:c7:45:36:f9:44:62: d6:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:8C:F9:2C:B3:ED:57:3C:E5:4E:6A:EF:44:37:FE:25:CF:50:C6:0E X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234302e302f32332d3233203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.240.0/23 Signature Algorithm: sha256WithRSAEncryption a1:7b:1a:1f:15:ae:f6:fd:3b:96:92:65:83:e2:6d:e4:5e:0f: 96:78:6a:5e:6c:54:17:16:46:49:7b:46:96:3f:36:8a:f8:db: 5c:f0:8e:34:f9:29:d8:01:89:a4:6d:63:eb:5a:fb:70:8f:db: ae:b7:a9:31:80:50:e2:f1:29:90:25:ce:b8:eb:c5:0a:8d:1a: 92:de:03:e5:86:60:0a:7e:6e:64:21:44:bd:ac:bf:17:cb:29: 20:31:2d:e7:df:40:0b:c7:21:50:42:7f:bd:47:c9:79:2d:01: 4f:d7:8c:e4:94:dc:4f:1f:51:b3:f5:ea:d3:67:7e:e4:73:79: 0b:05:e3:1c:1c:c0:ae:20:8e:84:4a:0b:49:e8:6a:de:10:39: 66:21:5b:2c:b4:38:24:08:f9:b2:97:32:30:e8:50:a8:22:22: 4f:38:2f:05:07:63:88:10:d4:77:53:39:8b:85:e3:ed:da:49: fb:c3:ba:23:35:a7:a1:f1:82:aa:a9:5a:15:a7:c7:26:a9:03: 97:50:db:e5:b4:7f:2d:e3:aa:14:a7:5b:36:e1:30:b0:20:f8: 22:ab:a4:e1:70:3e:b2:d5:c0:96:53:f6:65:f7:4a:ae:92:cf: ed:13:69:ec:71:b9:4c:ca:b4:4e:60:f9:e7:36:04:2c:ee:5f: 94:38:88:fc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFfOQoN/OOuuU7uTTFeYvI+pKPmwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNDA3MDEwMDU4MjRaFw0yNTA2MzAwMTAzMjRaMDMxMTAvBgNV BAMTKDRBOENGOTJDQjNFRDU3M0NFNTRFNkFFRjQ0MzdGRTI1Q0Y1MEM2MEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIAaTYg1tUutTDmx79yx9zaazI 32cV/Oif3/t7LRy0fBnUSo3YCfYzUai15XYNohN0k/GNzglb/GKIBloub005xhdz MO6TNRSbIdBNTPNmLLfKdLwhMJfgB3qR3u0ARdUTX4PEN5JInqpPa0zFiKOvAcAr aPlib7o9e9xBp3lKbjc+6P4csVE4TH7p0tc44yC0tTDaIuqMIbyvjdaOVbi76bW2 Le19eiXIuUULXCKlXtm56Jv/YoO4yUCun93fHc6gTFShMVswljlit+YdFb+d8Tyy mukgT8lmXYUc/r2QxuzCVN5loZ5PJp7YZ2EEteahdwv26SSF3sdFNvlEYtZRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSoz5LLPtVzzlTmrvRDf+Jc9Qxg4wHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzAzMzJlMzEzOTMwMmUzMjM0MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy77wMA0GCSqG SIb3DQEBCwUAA4IBAQChexofFa72/TuWkmWD4m3kXg+WeGpebFQXFkZJe0aWPzaK +Ntc8I40+SnYAYmkbWPrWvtwj9uut6kxgFDi8SmQJc6468UKjRqS3gPlhmAKfm5k IUS9rL8XyykgMS3n30ALxyFQQn+9R8l5LQFP14zklNxPH1Gz9erTZ37kc3kLBeMc HMCuII6ESgtJ6GreEDlmIVsstDgkCPmylzIw6FCoIiJPOC8FB2OIENR3UzmLhePt 2kn7w7ojNaeh8YKqqVoVp8cmqQOXUNvltH8t46oUp1s24TCwIPgiq6ThcD6y1cCW U/Zl90quks/tE2nscblMyrROYPnnNgQs7l+UOIj8 -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:37 2024 by rpki-client on console-ams.rpki-client.org