$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234322e302f32332d3233203d3e203234323131.roa File: 3230332e3139302e3234322e302f32332d3233203d3e203234323131.roa (raw, json) Hash identifier: KORoMdmEFellsQ4EIixNWtMn2mdrwHcMnMt2u7bRdgA= Subject key identifier: B8:CC:DD:6F:E7:F1:68:30:E2:2F:7F:D1:94:59:9E:A1:90:81:06:AD Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 233999E0D90ECD83EA1C3C3A1BB95C2F4EFA1BFC Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234322e302f32332d3233203d3e203234323131.roa Signing time: Mon 01 Jul 2024 01:03:24 +0000 ROA not before: Mon 01 Jul 2024 00:58:24 +0000 ROA not after: Mon 30 Jun 2025 01:03:24 +0000 asID: 24211 IP address blocks: 203.190.242.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:39:99:e0:d9:0e:cd:83:ea:1c:3c:3a:1b:b9:5c:2f:4e:fa:1b:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Jul 1 00:58:24 2024 GMT Not After : Jun 30 01:03:24 2025 GMT Subject: CN=B8CCDD6FE7F16830E22F7FD194599EA1908106AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:4b:a9:8d:fb:7c:a2:ac:cf:7a:4c:41:e6:93: 60:7f:87:41:54:d1:0a:d1:bf:0c:f8:0d:b4:de:d5: cd:28:48:fa:90:c8:29:ba:76:cd:33:93:69:5c:ba: c6:1e:52:20:b6:ca:d2:e8:02:5b:d4:63:f7:eb:82: 3b:52:d8:7c:c7:3c:a7:88:32:a2:b7:7d:22:bd:b7: f9:0b:67:cc:44:ae:23:66:e1:6f:c3:b1:70:4f:7d: 9f:04:7a:b0:ab:d7:32:6f:8a:e0:cc:b4:6c:3d:05: 43:8f:4f:d4:f1:8d:5c:0a:c5:89:d0:a2:5e:79:c0: c0:62:b3:c3:06:bd:26:73:27:75:fb:e3:c2:76:c4: 4e:b8:cd:03:c7:55:d7:0b:9a:78:6e:46:30:5e:30: b4:2f:da:9b:a3:b3:b6:8c:5e:6c:dc:55:3c:5d:1b: 7b:b6:98:8e:85:9f:56:60:d2:c7:a7:c3:46:be:af: 8e:f2:e2:b2:1c:2d:21:f8:2e:14:b2:cc:ee:fa:cd: 11:51:7c:e6:ff:da:70:b8:8a:d9:ab:41:b3:24:6d: a7:27:27:ad:97:4b:f7:11:f7:af:eb:c3:7d:a7:53: 57:c8:e8:35:d8:e6:5b:40:1b:58:34:9d:c2:62:3e: 00:97:a6:58:6a:05:36:9f:60:97:ea:5f:25:f3:14: a8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:CC:DD:6F:E7:F1:68:30:E2:2F:7F:D1:94:59:9E:A1:90:81:06:AD X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234322e302f32332d3233203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.242.0/23 Signature Algorithm: sha256WithRSAEncryption 34:0c:d5:e1:e3:9d:41:c7:31:de:2e:ba:16:e8:22:3a:d1:a8: e0:5d:cb:f3:b5:52:b6:2b:cf:ab:24:7a:3b:9e:be:66:54:b8: 3b:e2:34:a9:41:aa:68:0a:52:f8:76:69:e7:84:67:a2:fa:dd: 1f:98:69:ac:5e:2c:da:59:b6:14:c4:fb:34:ca:b5:5d:39:a7: e2:fc:ad:46:7e:04:35:85:c3:4f:33:79:42:1d:c9:f0:7c:6f: a7:87:dc:a6:15:8c:e7:10:19:5b:57:9b:a7:c1:32:fe:af:56: 18:f3:27:a0:54:43:92:45:c2:7e:89:ea:b0:d5:99:94:42:17: c9:10:0a:97:88:fe:9f:9a:5b:2a:22:c8:78:b9:2c:d9:b1:2a: 6c:3d:37:59:dc:1a:ff:8a:4a:07:83:3d:83:fc:d9:73:88:a4: 0d:3c:c7:2d:ee:88:8a:06:f4:fd:4f:ca:1e:9c:b3:90:26:68: f1:77:e6:5d:fe:b5:cc:6d:07:8b:5a:6c:3b:7e:55:8b:b4:0d: fa:51:65:cc:43:24:dd:ba:60:8b:5f:fa:5d:d6:46:0e:cc:5b: ac:03:e2:2d:c3:2f:6a:dc:34:88:ee:33:e0:27:bd:ea:1e:fa: fe:ff:16:27:cf:13:85:01:5d:06:3a:e2:0b:df:e6:aa:27:94: c0:9a:47:b3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIzmZ4NkOzYPqHDw6G7lcL076G/wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNDA3MDEwMDU4MjRaFw0yNTA2MzAwMTAzMjRaMDMxMTAvBgNV BAMTKEI4Q0NERDZGRTdGMTY4MzBFMjJGN0ZEMTk0NTk5RUExOTA4MTA2QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZS6mN+3yirM96TEHmk2B/h0FU 0QrRvwz4DbTe1c0oSPqQyCm6ds0zk2lcusYeUiC2ytLoAlvUY/frgjtS2HzHPKeI MqK3fSK9t/kLZ8xEriNm4W/DsXBPfZ8EerCr1zJviuDMtGw9BUOPT9TxjVwKxYnQ ol55wMBis8MGvSZzJ3X748J2xE64zQPHVdcLmnhuRjBeMLQv2pujs7aMXmzcVTxd G3u2mI6Fn1Zg0senw0a+r47y4rIcLSH4LhSyzO76zRFRfOb/2nC4itmrQbMkbacn J62XS/cR96/rw32nU1fI6DXY5ltAG1g0ncJiPgCXplhqBTafYJfqXyXzFKiJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuMzdb+fxaDDiL3/RlFmeoZCBBq0wHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzAzMzJlMzEzOTMwMmUzMjM0MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy77yMA0GCSqG SIb3DQEBCwUAA4IBAQA0DNXh451BxzHeLroW6CI60ajgXcvztVK2K8+rJHo7nr5m VLg74jSpQapoClL4dmnnhGei+t0fmGmsXizaWbYUxPs0yrVdOafi/K1GfgQ1hcNP M3lCHcnwfG+nh9ymFYznEBlbV5unwTL+r1YY8yegVEOSRcJ+ieqw1ZmUQhfJEAqX iP6fmlsqIsh4uSzZsSpsPTdZ3Br/ikoHgz2D/NlziKQNPMct7oiKBvT9T8oenLOQ Jmjxd+Zd/rXMbQeLWmw7flWLtA36UWXMQyTdumCLX/pd1kYOzFusA+Itwy9q3DSI 7jPgJ73qHvr+/xYnzxOFAV0GOuIL3+aqJ5TAmkez -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:37 2024 by rpki-client on console-ams.rpki-client.org