$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234342e302f32332d3233203d3e203234323131.roa File: 3230332e3139302e3234342e302f32332d3233203d3e203234323131.roa (raw, json) Hash identifier: rUMnL5o4jfF8Xk23x+nY13Og9gVdfKtim/VgsCTFYWA= Subject key identifier: 73:4F:BB:E1:EB:96:4C:37:96:B1:79:F6:5E:47:E9:73:5E:8A:62:C4 Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 40C20C34EB67A2C114BF6EACC8C5B732EA4BE99B Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234342e302f32332d3233203d3e203234323131.roa Signing time: Fri 22 Nov 2024 10:00:05 +0000 ROA not before: Fri 22 Nov 2024 09:55:05 +0000 ROA not after: Fri 21 Nov 2025 10:00:05 +0000 asID: 24211 IP address blocks: 203.190.244.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:c2:0c:34:eb:67:a2:c1:14:bf:6e:ac:c8:c5:b7:32:ea:4b:e9:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Nov 22 09:55:05 2024 GMT Not After : Nov 21 10:00:05 2025 GMT Subject: CN=734FBBE1EB964C3796B179F65E47E9735E8A62C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:08:fa:56:97:75:c9:6f:b7:ec:06:58:5e:63: af:6f:03:17:73:25:3f:c1:35:ff:ca:55:e8:7a:59: 73:cf:12:ad:9a:9a:23:26:f9:91:9e:06:68:81:d7: 5b:57:89:31:46:e0:a8:61:79:b8:99:de:83:b4:6c: 53:19:99:19:6f:f4:68:75:a6:6a:f4:5a:68:87:96: 3c:a8:98:f0:4e:ab:58:05:9c:75:44:d9:57:a3:35: 1c:a3:29:fb:50:8c:e2:0f:8f:05:a2:f7:65:68:8d: 0b:d8:82:1f:f2:e0:7e:7d:23:09:7a:ab:67:cc:29: 25:c7:8f:dd:aa:53:af:64:d9:72:b3:f7:a0:c8:b0: 3b:61:a1:bd:55:69:9f:e4:11:d9:7f:31:1a:db:83: c9:07:78:74:85:e3:65:ca:38:cd:04:f5:cf:5c:e9: fc:2c:ab:e5:73:61:2f:f4:f7:16:f0:ac:26:a8:9c: 30:67:63:6d:03:9c:ba:8d:c4:52:9b:3e:2f:6b:2e: 65:dc:f9:16:52:f4:6e:24:c0:85:95:39:c6:12:8d: 6c:a6:f1:8b:08:4d:53:54:5b:02:fa:6f:ca:3b:80: 92:b7:1d:56:01:c5:18:eb:d3:84:3f:01:7c:a2:d1: 6b:91:b7:a4:1e:f3:db:8d:20:9e:07:c3:9c:5f:de: 0f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:4F:BB:E1:EB:96:4C:37:96:B1:79:F6:5E:47:E9:73:5E:8A:62:C4 X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234342e302f32332d3233203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.244.0/23 Signature Algorithm: sha256WithRSAEncryption 67:5b:1d:2b:88:cb:4d:63:1d:20:a8:22:42:ca:c9:a5:09:b3: 70:33:b9:00:f3:d4:46:7f:61:e5:9c:de:eb:42:e8:28:e5:93: 2f:1d:8b:4a:4e:54:c8:55:28:ff:88:c0:d8:6d:c8:6a:3b:5b: 24:84:e9:ac:fa:82:b6:5a:06:52:e6:0f:5b:4e:4d:3c:85:b4: 71:a7:23:2f:fc:33:6a:87:80:89:2b:f9:9f:67:bd:7d:54:26: 19:81:af:29:06:5a:40:58:27:0a:2f:c3:92:55:f7:a8:ab:15: 40:eb:56:e4:41:6d:64:47:4c:81:d5:d3:b7:42:da:6b:b9:80: 5a:07:eb:d8:9d:a3:bf:96:2e:58:18:48:b8:07:38:48:89:ed: 9d:94:50:67:a5:85:3b:68:58:2d:bb:71:c2:bc:b8:62:a4:fd: c5:7d:fe:33:0f:ab:21:e1:10:94:bc:d7:d3:a1:15:ba:93:02: cc:5c:9b:f1:03:4d:ed:01:71:99:4f:3c:44:40:ea:d5:26:85: a4:ed:54:39:ca:03:7c:0a:d3:a0:a4:2d:52:fa:89:5b:26:b6: f6:06:88:c5:e1:3f:c9:51:9f:b9:5c:f2:7b:c9:68:9e:b8:84: 11:40:0d:7f:05:f3:bb:83:ef:12:c6:c4:48:f6:4c:7e:70:20: 6d:2c:a1:76 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQMIMNOtnosEUv26syMW3MupL6ZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNDExMjIwOTU1MDVaFw0yNTExMjExMDAwMDVaMDMxMTAvBgNV BAMTKDczNEZCQkUxRUI5NjRDMzc5NkIxNzlGNjVFNDdFOTczNUU4QTYyQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqCPpWl3XJb7fsBlheY69vAxdz JT/BNf/KVeh6WXPPEq2amiMm+ZGeBmiB11tXiTFG4KhhebiZ3oO0bFMZmRlv9Gh1 pmr0WmiHljyomPBOq1gFnHVE2VejNRyjKftQjOIPjwWi92VojQvYgh/y4H59Iwl6 q2fMKSXHj92qU69k2XKz96DIsDthob1VaZ/kEdl/MRrbg8kHeHSF42XKOM0E9c9c 6fwsq+VzYS/09xbwrCaonDBnY20DnLqNxFKbPi9rLmXc+RZS9G4kwIWVOcYSjWym 8YsITVNUWwL6b8o7gJK3HVYBxRjr04Q/AXyi0WuRt6Qe89uNIJ4Hw5xf3g/9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUc0+74euWTDeWsXn2Xkfpc16KYsQwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzAzMzJlMzEzOTMwMmUzMjM0MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy770MA0GCSqG SIb3DQEBCwUAA4IBAQBnWx0riMtNYx0gqCJCysmlCbNwM7kA89RGf2HlnN7rQugo 5ZMvHYtKTlTIVSj/iMDYbchqO1skhOms+oK2WgZS5g9bTk08hbRxpyMv/DNqh4CJ K/mfZ719VCYZga8pBlpAWCcKL8OSVfeoqxVA61bkQW1kR0yB1dO3QtpruYBaB+vY naO/li5YGEi4BzhIie2dlFBnpYU7aFgtu3HCvLhipP3Fff4zD6sh4RCUvNfToRW6 kwLMXJvxA03tAXGZTzxEQOrVJoWk7VQ5ygN8CtOgpC1S+olbJrb2BojF4T/JUZ+5 XPJ7yWieuIQRQA1/BfO7g+8SxsRI9kx+cCBtLKF2 -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:37 2024 by rpki-client on console-ams.rpki-client.org