$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234362e302f32342d3234203d3e203234323131.roa File: 3230332e3139302e3234362e302f32342d3234203d3e203234323131.roa (raw, json) Hash identifier: Px+0ZRxXqTaYuiAQpr845u2JpmHBGtqVxsdEAa7WjAw= Subject key identifier: 6E:C9:73:6F:56:02:38:85:C7:AD:13:72:DE:7C:5C:75:E9:8C:80:A3 Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 71887CA59FBC22BAEDE787FE2B9FB8E3BA81E598 Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234362e302f32342d3234203d3e203234323131.roa Signing time: Fri 22 Nov 2024 10:00:05 +0000 ROA not before: Fri 22 Nov 2024 09:55:05 +0000 ROA not after: Fri 21 Nov 2025 10:00:05 +0000 asID: 24211 IP address blocks: 203.190.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:88:7c:a5:9f:bc:22:ba:ed:e7:87:fe:2b:9f:b8:e3:ba:81:e5:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Nov 22 09:55:05 2024 GMT Not After : Nov 21 10:00:05 2025 GMT Subject: CN=6EC9736F56023885C7AD1372DE7C5C75E98C80A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6f:bc:c3:ed:f9:6c:89:9f:27:40:2e:03:42: 3b:7f:ab:f0:a3:94:74:61:1a:15:ca:29:65:61:d3: 50:49:74:33:5b:53:a8:6e:d5:12:c6:25:d4:99:bf: 94:36:01:10:c4:f6:e8:d6:d5:ba:06:ba:13:6f:99: b0:e6:ad:46:f2:93:e3:69:e5:f9:2a:87:a9:6b:e2: a3:9a:2c:eb:90:5e:df:be:b2:d1:65:03:b6:74:6c: 1a:2f:ff:00:aa:7f:5b:8b:6c:da:bb:57:53:46:f7: 2a:0b:26:93:63:5b:83:5f:24:0c:ef:38:b8:fb:c2: f1:4c:34:28:2a:0e:23:cb:c2:fc:3c:9a:69:fc:48: d1:3d:d1:2d:a6:f1:82:33:52:1b:de:13:02:74:64: d1:ce:49:ba:e1:0b:99:e5:8a:31:96:04:a1:da:24: a0:f5:e1:bf:09:d4:24:8d:56:05:b5:e6:aa:14:38: 7a:f4:4f:bf:40:b4:76:53:05:09:b9:21:56:ae:28: 36:5e:0a:8a:b0:d1:2d:6f:d6:df:ba:08:78:a3:ed: 33:f8:9e:c6:02:66:38:e2:da:17:85:3b:a3:87:98: 04:c2:c4:a1:b0:5e:1f:55:55:c7:30:45:cb:61:41: 90:b3:32:42:04:83:08:b6:e2:35:f4:a6:36:cd:7d: 2d:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:C9:73:6F:56:02:38:85:C7:AD:13:72:DE:7C:5C:75:E9:8C:80:A3 X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234362e302f32342d3234203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.246.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:d3:b7:70:eb:d8:20:64:81:78:45:c9:fa:c9:3a:a3:cb:90: 8b:31:33:7f:ae:28:86:21:2b:e0:b4:64:2a:ed:3d:97:16:da: 35:27:13:8f:3f:57:c6:a3:f9:1e:b3:55:d0:3c:b9:b3:62:12: 73:53:68:3e:7c:66:1a:0b:84:60:34:af:1c:8b:ef:86:74:ce: 86:a8:70:15:34:44:74:a8:44:e7:81:e7:82:5c:dc:11:5d:f2: 24:f9:a6:c8:3a:12:79:b5:b2:83:58:5a:6c:13:89:b6:8f:fa: 3e:de:75:9d:b2:14:0c:de:8f:dd:ff:ec:c1:3e:ba:ca:aa:72: f3:26:f8:5a:fe:d9:68:99:7e:ad:cc:16:26:c9:db:d3:ba:c7: dd:42:4c:64:09:7c:c9:d6:1a:ad:5a:af:4c:56:01:7f:4b:e4: ad:aa:9e:c2:89:34:dc:7b:9f:43:69:70:83:93:82:2b:ac:32: c8:fa:01:5e:b3:2a:1a:71:b1:27:4a:2a:cf:75:ec:b3:f3:b3: db:30:fd:70:2b:4d:17:26:7b:08:4c:c1:ee:18:c0:4c:75:0b: 61:47:0b:28:8c:25:85:08:83:4e:4f:94:cd:bf:3d:8e:07:70: 86:0c:0d:d7:b9:5b:2d:bd:04:6c:80:3c:73:85:13:b5:4b:6c: b9:78:43:3a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcYh8pZ+8Irrt54f+K5+447qB5ZgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNDExMjIwOTU1MDVaFw0yNTExMjExMDAwMDVaMDMxMTAvBgNV BAMTKDZFQzk3MzZGNTYwMjM4ODVDN0FEMTM3MkRFN0M1Qzc1RTk4QzgwQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8b7zD7flsiZ8nQC4DQjt/q/Cj lHRhGhXKKWVh01BJdDNbU6hu1RLGJdSZv5Q2ARDE9ujW1boGuhNvmbDmrUbyk+Np 5fkqh6lr4qOaLOuQXt++stFlA7Z0bBov/wCqf1uLbNq7V1NG9yoLJpNjW4NfJAzv OLj7wvFMNCgqDiPLwvw8mmn8SNE90S2m8YIzUhveEwJ0ZNHOSbrhC5nlijGWBKHa JKD14b8J1CSNVgW15qoUOHr0T79AtHZTBQm5IVauKDZeCoqw0S1v1t+6CHij7TP4 nsYCZjji2heFO6OHmATCxKGwXh9VVccwRcthQZCzMkIEgwi24jX0pjbNfS1xAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUbslzb1YCOIXHrRNy3nxcdemMgKMwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzAzMzJlMzEzOTMwMmUzMjM0MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy772MA0GCSqG SIb3DQEBCwUAA4IBAQCN07dw69ggZIF4Rcn6yTqjy5CLMTN/riiGISvgtGQq7T2X Fto1JxOPP1fGo/kes1XQPLmzYhJzU2g+fGYaC4RgNK8ci++GdM6GqHAVNER0qETn geeCXNwRXfIk+abIOhJ5tbKDWFpsE4m2j/o+3nWdshQM3o/d/+zBPrrKqnLzJvha /tlomX6tzBYmydvTusfdQkxkCXzJ1hqtWq9MVgF/S+Stqp7CiTTce59DaXCDk4Ir rDLI+gFesyoacbEnSirPdeyz87PbMP1wK00XJnsITMHuGMBMdQthRwsojCWFCINO T5TNvz2OB3CGDA3XuVstvQRsgDxzhRO1S2y5eEM6 -----END CERTIFICATE-----Generated at Sun Nov 24 22:10:12 2024 by rpki-client on console-fra.rpki-client.org