$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234372e302f32342d3234203d3e203234323131.roa File: 3230332e3139302e3234372e302f32342d3234203d3e203234323131.roa (raw, json) Hash identifier: fbwTq+MNHXCM846ONnkdFzthRjFibT/sGY17CU4maLM= Subject key identifier: 19:EF:80:D8:74:95:A7:FF:77:1D:4A:CB:39:DD:5D:26:98:16:AC:1D Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 2A58F3B6823B5F17A52F74CC5A05CC2183FF85D2 Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234372e302f32342d3234203d3e203234323131.roa Signing time: Fri 22 Nov 2024 10:00:06 +0000 ROA not before: Fri 22 Nov 2024 09:55:06 +0000 ROA not after: Fri 21 Nov 2025 10:00:06 +0000 asID: 24211 IP address blocks: 203.190.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:58:f3:b6:82:3b:5f:17:a5:2f:74:cc:5a:05:cc:21:83:ff:85:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Nov 22 09:55:06 2024 GMT Not After : Nov 21 10:00:06 2025 GMT Subject: CN=19EF80D87495A7FF771D4ACB39DD5D269816AC1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6c:24:ad:fe:58:0d:27:a5:fc:e3:a3:84:8b: b4:a6:72:0d:8d:97:92:5b:cc:49:08:a6:9a:aa:9d: 45:64:80:67:52:05:cf:92:df:f0:8e:9d:f4:a5:97: bb:0d:6f:a9:09:b6:27:8e:d0:64:91:31:34:94:9a: c7:cc:59:e3:a6:67:73:be:1a:de:55:b9:e1:e8:73: 37:a0:9d:3a:9d:a4:1b:eb:33:e4:a1:59:97:4c:ba: 4c:ec:42:d7:90:1d:6c:c9:94:b7:54:f7:6f:ec:aa: 7f:bd:aa:fd:27:52:c5:75:fe:69:68:7a:0f:d9:d4: cf:ee:ab:29:6a:9a:a4:e1:61:8d:74:06:87:2b:60: 12:cd:30:90:4a:4f:03:c0:da:6d:33:23:3e:05:f8: cd:61:ec:68:b8:5a:1a:76:79:3f:f8:79:06:1b:89: bb:4d:56:f3:46:73:ed:df:e9:54:80:75:bc:f4:80: 62:18:be:b7:a0:81:6e:b2:15:6f:3e:16:01:f9:68: 81:bb:c4:41:dd:de:77:7d:45:7b:83:34:ca:13:5c: 33:a7:e9:c7:d8:66:15:22:ef:f5:e0:bb:57:6a:ad: 85:62:19:18:cb:3f:2a:90:25:85:a9:d5:60:92:be: 13:0e:6c:4e:a3:13:8b:e2:f8:01:cf:43:34:94:72: 18:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:EF:80:D8:74:95:A7:FF:77:1D:4A:CB:39:DD:5D:26:98:16:AC:1D X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234372e302f32342d3234203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.247.0/24 Signature Algorithm: sha256WithRSAEncryption 35:76:44:47:bf:a8:81:93:19:43:d0:b6:56:4e:25:b3:40:46: ad:8e:6e:e6:7b:23:9b:1f:4d:9b:9b:f9:33:32:33:62:4a:9a: f1:e1:8e:e9:ba:b1:6f:c9:5d:8e:3a:38:f5:72:27:5a:f8:cc: 93:f3:94:7d:a2:6b:0a:6b:63:a8:5e:8c:5f:16:c6:3f:1f:48: d6:ed:fc:3f:d5:5e:56:b9:ac:97:fa:95:ab:11:84:44:c4:35: a6:1e:d4:47:61:27:39:3a:1b:97:a7:7b:6d:63:fa:ea:e7:59: 6c:3f:5a:7d:8c:db:4b:45:21:ff:9f:41:0f:05:28:f7:15:b7: 2d:1a:ee:30:79:95:fb:e5:6d:dc:15:80:a2:01:2f:06:86:84: e4:6e:0f:f1:e6:86:8f:07:75:b3:52:bc:74:07:7d:28:c0:69: 09:77:a9:25:bd:12:59:92:71:02:ee:2e:a5:1f:80:3c:d8:bd: c7:4b:a2:37:9a:50:56:76:fd:9a:24:04:cc:47:88:0b:fe:7e: 11:3a:a2:d0:e6:ce:7b:a6:f3:73:18:4a:85:6c:33:1d:73:eb: ef:a7:a8:e2:12:36:53:9f:60:da:78:33:64:18:f3:1f:99:b9: f4:1f:b8:1a:d5:20:0d:06:6d:ac:f3:5d:51:bd:91:9d:6e:e9: 3f:14:47:e7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKljztoI7XxelL3TMWgXMIYP/hdIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNDExMjIwOTU1MDZaFw0yNTExMjExMDAwMDZaMDMxMTAvBgNV BAMTKDE5RUY4MEQ4NzQ5NUE3RkY3NzFENEFDQjM5REQ1RDI2OTgxNkFDMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6bCSt/lgNJ6X846OEi7Smcg2N l5JbzEkIppqqnUVkgGdSBc+S3/COnfSll7sNb6kJtieO0GSRMTSUmsfMWeOmZ3O+ Gt5VueHoczegnTqdpBvrM+ShWZdMukzsQteQHWzJlLdU92/sqn+9qv0nUsV1/mlo eg/Z1M/uqylqmqThYY10BocrYBLNMJBKTwPA2m0zIz4F+M1h7Gi4Whp2eT/4eQYb ibtNVvNGc+3f6VSAdbz0gGIYvreggW6yFW8+FgH5aIG7xEHd3nd9RXuDNMoTXDOn 6cfYZhUi7/Xgu1dqrYViGRjLPyqQJYWp1WCSvhMObE6jE4vi+AHPQzSUchhzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGe+A2HSVp/93HUrLOd1dJpgWrB0wHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzAzMzJlMzEzOTMwMmUzMjM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy773MA0GCSqG SIb3DQEBCwUAA4IBAQA1dkRHv6iBkxlD0LZWTiWzQEatjm7meyObH02bm/kzMjNi Sprx4Y7purFvyV2OOjj1cida+MyT85R9omsKa2OoXoxfFsY/H0jW7fw/1V5WuayX +pWrEYRExDWmHtRHYSc5OhuXp3ttY/rq51lsP1p9jNtLRSH/n0EPBSj3FbctGu4w eZX75W3cFYCiAS8GhoTkbg/x5oaPB3WzUrx0B30owGkJd6klvRJZknEC7i6lH4A8 2L3HS6I3mlBWdv2aJATMR4gL/n4ROqLQ5s57pvNzGEqFbDMdc+vvp6jiEjZTn2Da eDNkGPMfmbn0H7ga1SANBm2s811RvZGdbuk/FEfn -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:12 2024 by rpki-client on console-fra.rpki-client.org