$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234362e302f32332d3233203d3e203234323131.roa File: 3230332e3139302e3234362e302f32332d3233203d3e203234323131.roa (raw, json) Hash identifier: D73qWtixS2k2vo+e7xc07gepRtYm2z1PcaFmujji1Q8= Subject key identifier: 5C:7E:DB:1A:2C:F4:93:60:77:29:FA:02:98:22:8C:34:B2:63:56:63 Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 3F7145A61C9284D796399E48DE72B8D63A9C5DDC Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234362e302f32332d3233203d3e203234323131.roa Signing time: Fri 22 Nov 2024 10:00:05 +0000 ROA not before: Fri 22 Nov 2024 09:55:05 +0000 ROA not after: Fri 21 Nov 2025 10:00:05 +0000 asID: 24211 IP address blocks: 203.190.246.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:71:45:a6:1c:92:84:d7:96:39:9e:48:de:72:b8:d6:3a:9c:5d:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Nov 22 09:55:05 2024 GMT Not After : Nov 21 10:00:05 2025 GMT Subject: CN=5C7EDB1A2CF493607729FA0298228C34B2635663 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:92:12:a6:2e:c7:4d:2f:2d:4f:f6:31:69:68: b5:aa:49:9b:f4:61:a7:0f:54:ce:30:d5:69:b2:98: 2d:df:c3:fd:5d:38:a8:0f:00:a8:1d:67:a5:39:af: 12:bd:c2:e8:e3:6a:20:00:6b:fe:97:4b:93:b2:0a: e0:6f:2a:1b:d7:63:19:b2:4d:05:49:79:be:19:de: 99:e8:6d:cc:0c:df:20:d2:27:84:63:c5:52:69:0c: 78:d6:f6:1f:23:15:75:bc:74:bd:87:87:ba:3a:24: 9c:e4:f6:bb:fb:73:7a:c3:68:6e:f2:fb:5f:e3:79: db:cc:37:d5:3a:83:31:7e:65:f7:68:1c:07:24:b9: 14:79:6c:8b:e4:ac:39:db:7b:9c:02:28:8f:8c:0f: f6:ab:19:de:7f:9d:e2:94:6f:a6:78:58:91:0b:17: 57:44:3b:dd:44:27:08:98:03:7f:98:61:8c:8b:7c: 8c:ec:fe:d1:3a:b1:9f:1b:3f:ea:65:d9:4a:38:af: 78:9a:a4:b2:ce:24:a1:f2:19:e8:9a:05:5c:46:ce: a0:89:5c:57:45:1b:c7:38:d7:48:2b:2f:9f:1d:c2: 86:73:11:a6:4e:68:24:b5:a6:12:37:32:59:bb:03: 62:ac:48:3f:15:7d:5f:5a:f7:e6:66:2c:92:71:90: 48:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:7E:DB:1A:2C:F4:93:60:77:29:FA:02:98:22:8C:34:B2:63:56:63 X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234362e302f32332d3233203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.246.0/23 Signature Algorithm: sha256WithRSAEncryption 19:f5:50:0f:56:4b:c7:24:3e:8f:af:ae:9f:37:c3:8a:97:e8: fa:6a:1b:cf:ba:61:f0:26:ca:bd:b5:ea:ef:6f:d6:40:8a:6b: 0f:ba:ee:98:89:8b:dd:21:78:e1:38:7f:15:68:b9:9d:d1:d7: 79:78:58:fd:ec:8e:fe:35:5e:1f:8d:ca:6b:ec:43:9b:5e:00: cd:52:4b:f0:bf:bd:31:fd:51:cd:20:88:b4:9d:6f:57:1e:17: de:5a:52:ff:44:8a:66:5a:e5:dc:77:2c:39:28:b8:48:58:6b: 3b:cd:bc:cb:13:d9:40:62:12:e4:9e:fc:30:1c:fe:7c:5c:fb: 70:f0:a0:e5:30:2f:12:49:fa:bd:d8:60:f1:d1:e5:b6:80:1a: 98:91:98:65:c3:9f:b4:22:6e:92:8f:53:e5:ce:69:20:76:6c: ce:d8:a7:9c:e0:8e:cd:d8:51:78:e4:3d:15:64:7b:db:ea:05: 6b:4b:b2:b4:2c:5f:e1:93:96:d2:03:7b:57:57:ba:1f:d6:ff: 27:2b:8c:e0:9c:31:cd:c1:4b:8c:f3:18:a6:80:75:bd:56:10: c9:82:7e:0d:74:39:06:df:c2:91:bd:59:23:54:cf:dc:cb:71: 83:01:9c:9e:78:f9:39:5f:f8:38:5f:05:63:1d:ab:d5:12:27: e2:13:5c:3c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUP3FFphyShNeWOZ5I3nK41jqcXdwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNDExMjIwOTU1MDVaFw0yNTExMjExMDAwMDVaMDMxMTAvBgNV BAMTKDVDN0VEQjFBMkNGNDkzNjA3NzI5RkEwMjk4MjI4QzM0QjI2MzU2NjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBkhKmLsdNLy1P9jFpaLWqSZv0 YacPVM4w1WmymC3fw/1dOKgPAKgdZ6U5rxK9wujjaiAAa/6XS5OyCuBvKhvXYxmy TQVJeb4Z3pnobcwM3yDSJ4RjxVJpDHjW9h8jFXW8dL2Hh7o6JJzk9rv7c3rDaG7y +1/jedvMN9U6gzF+ZfdoHAckuRR5bIvkrDnbe5wCKI+MD/arGd5/neKUb6Z4WJEL F1dEO91EJwiYA3+YYYyLfIzs/tE6sZ8bP+pl2Uo4r3iapLLOJKHyGeiaBVxGzqCJ XFdFG8c410grL58dwoZzEaZOaCS1phI3Mlm7A2KsSD8VfV9a9+ZmLJJxkEhJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXH7bGiz0k2B3KfoCmCKMNLJjVmMwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzAzMzJlMzEzOTMwMmUzMjM0MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy772MA0GCSqG SIb3DQEBCwUAA4IBAQAZ9VAPVkvHJD6Pr66fN8OKl+j6ahvPumHwJsq9tervb9ZA imsPuu6YiYvdIXjhOH8VaLmd0dd5eFj97I7+NV4fjcpr7EObXgDNUkvwv70x/VHN IIi0nW9XHhfeWlL/RIpmWuXcdyw5KLhIWGs7zbzLE9lAYhLknvwwHP58XPtw8KDl MC8SSfq92GDx0eW2gBqYkZhlw5+0Im6Sj1PlzmkgdmzO2Kec4I7N2FF45D0VZHvb 6gVrS7K0LF/hk5bSA3tXV7of1v8nK4zgnDHNwUuM8ximgHW9VhDJgn4NdDkG38KR vVkjVM/cy3GDAZyeePk5X/g4XwVjHavVEifiE1w8 -----END CERTIFICATE-----Generated at Sun Nov 24 22:10:12 2024 by rpki-client on console-fra.rpki-client.org