$ rpki-client -vvf repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234302e302f32342d3234203d3e203338373738.roa File: 3230322e39332e3234302e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: XrFMOSg/d33kmKXB/MC5Fm/eTuvUhnKDFAu5ejF1jA0= Subject key identifier: E4:73:D5:13:67:DF:C7:EE:20:3F:55:4B:26:E7:A9:CC:8A:B0:F0:8F Certificate issuer: /CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Certificate serial: 34E08021F0947ED4C2D35110BD5BF6446AF1431C Authority key identifier: F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234302e302f32342d3234203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:03:38 +0000 ROA not before: Mon 01 Jul 2024 00:58:38 +0000 ROA not after: Mon 30 Jun 2025 01:03:38 +0000 asID: 38778 IP address blocks: 202.93.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:37:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:e0:80:21:f0:94:7e:d4:c2:d3:51:10:bd:5b:f6:44:6a:f1:43:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Validity Not Before: Jul 1 00:58:38 2024 GMT Not After : Jun 30 01:03:38 2025 GMT Subject: CN=E473D51367DFC7EE203F554B26E7A9CC8AB0F08F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2e:56:f6:77:e2:bb:92:69:12:e3:a2:00:03: 48:29:9a:32:68:ab:cd:f1:c8:ec:ab:72:e6:b7:52: 20:d2:bb:eb:22:fe:aa:2f:af:d6:75:60:78:0a:05: 6b:ec:ed:db:94:54:ad:8e:fd:c6:b3:94:ae:66:96: a8:75:ba:c4:87:26:20:78:f4:21:32:d8:2c:32:d7: e2:4e:54:83:4e:bd:c2:88:57:e5:b2:75:2d:ee:32: fd:68:db:94:e1:95:4f:19:38:b4:e9:95:51:de:bf: 1d:57:1f:e7:ca:ca:a1:37:dc:82:64:7f:2f:87:11: ca:6b:3d:3d:6c:78:dd:ee:23:dd:7e:9d:7e:a7:d0: 14:ca:67:32:b9:eb:df:9f:e2:46:e7:e4:0f:03:2e: 8d:9d:9f:c5:02:d2:9f:ad:14:4f:48:93:dd:89:ec: 5b:f8:3c:d7:8f:eb:4e:bb:e5:1f:17:a0:34:9a:43: db:65:f3:ce:2c:bb:ba:44:32:dc:5c:38:5f:e5:a5: b1:72:43:df:54:bf:45:51:2f:4e:98:bf:c9:2c:c6: 57:3f:9d:22:58:aa:5d:4f:be:02:8f:9f:22:3a:aa: dd:2d:11:92:2b:55:af:7f:d2:53:8b:4b:aa:62:d0: 48:b9:38:31:f4:52:a4:fb:ca:57:4e:38:91:64:53: aa:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:73:D5:13:67:DF:C7:EE:20:3F:55:4B:26:E7:A9:CC:8A:B0:F0:8F X509v3 Authority Key Identifier: keyid:F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234302e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.240.0/24 Signature Algorithm: sha256WithRSAEncryption 80:6d:4f:35:fc:ab:73:6d:37:8a:c2:22:db:dd:e2:3e:ba:a0: 87:90:77:ab:17:03:f1:3f:f8:1a:b7:03:97:06:ff:02:2c:e5: 04:e8:d5:44:a8:47:dc:fa:0a:6c:60:9f:ce:61:69:fa:d9:07: 23:66:d6:19:35:a3:b6:16:ad:36:a3:86:cc:46:16:c2:18:ad: 26:8e:7a:00:c3:ac:54:8b:5d:d7:cc:fb:55:92:0f:4f:0a:c6: 6e:b9:a0:39:73:fc:97:a9:13:04:13:9c:41:55:b7:b6:60:2a: 2d:ba:a2:0a:ec:bc:51:c0:ce:f7:17:34:d1:97:cb:91:22:76: 77:5e:22:9f:4c:91:22:06:63:47:75:6d:09:d6:82:5b:9e:19: 6b:52:dc:da:48:0f:eb:b5:7d:fa:a4:62:62:a1:6f:59:0c:f7: be:12:6c:98:f4:ce:54:27:e6:bd:fb:44:d9:7d:9b:b9:c1:60: db:d4:77:fc:9e:76:08:39:02:81:39:4b:0f:90:3e:98:f7:6a: 7d:76:e0:18:af:ba:f6:e8:d7:2b:28:70:ce:0e:21:29:16:b3: 85:ba:2e:c5:02:d0:13:ac:2a:22:a0:23:98:01:a6:00:f2:ec: ae:16:1e:26:ab:b9:57:7b:89:36:c8:3b:f1:49:35:16:6d:aa: bd:44:09:b9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNOCAIfCUftTC01EQvVv2RGrxQxwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3 NzgwOUQwMjAeFw0yNDA3MDEwMDU4MzhaFw0yNTA2MzAwMTAzMzhaMDMxMTAvBgNV BAMTKEU0NzNENTEzNjdERkM3RUUyMDNGNTU0QjI2RTdBOUNDOEFCMEYwOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNLlb2d+K7kmkS46IAA0gpmjJo q83xyOyrcua3UiDSu+si/qovr9Z1YHgKBWvs7duUVK2O/cazlK5mlqh1usSHJiB4 9CEy2Cwy1+JOVINOvcKIV+WydS3uMv1o25ThlU8ZOLTplVHevx1XH+fKyqE33IJk fy+HEcprPT1seN3uI91+nX6n0BTKZzK569+f4kbn5A8DLo2dn8UC0p+tFE9Ik92J 7Fv4PNeP60675R8XoDSaQ9tl884su7pEMtxcOF/lpbFyQ99Uv0VRL06Yv8ksxlc/ nSJYql1PvgKPnyI6qt0tEZIrVa9/0lOLS6pi0Ei5ODH0UqT7yldOOJFkU6pvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU5HPVE2ffx+4gP1VLJuepzIqw8I8wHwYDVR0j BBgwFoAU843/CU4WhDhU6sFAPGn9f3eAnQIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWQ2ZGNjOS0xNzAwLTQ4ZWItOTA5OS02Njc4ZjkxYmY0NGUvMC9GMzhERkYwOTRF MTY4NDM4NTRFQUMxNDAzQzY5RkQ3Rjc3ODA5RDAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3Nzgw OUQwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhZDZkY2M5LTE3MDAtNDhlYi05 MDk5LTY2NzhmOTFiZjQ0ZS8wLzMyMzAzMjJlMzkzMzJlMzIzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpd8DANBgkqhkiG 9w0BAQsFAAOCAQEAgG1PNfyrc203isIi293iPrqgh5B3qxcD8T/4GrcDlwb/Aizl BOjVRKhH3PoKbGCfzmFp+tkHI2bWGTWjthatNqOGzEYWwhitJo56AMOsVItd18z7 VZIPTwrGbrmgOXP8l6kTBBOcQVW3tmAqLbqiCuy8UcDO9xc00ZfLkSJ2d14in0yR IgZjR3VtCdaCW54Za1Lc2kgP67V9+qRiYqFvWQz3vhJsmPTOVCfmvftE2X2bucFg 29R3/J52CDkCgTlLD5A+mPdqfXbgGK+69ujXKyhwzg4hKRazhbouxQLQE6wqIqAj mAGmAPLsrhYeJqu5V3uJNsg78Uk1Fm2qvUQJuQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:38 2024 by rpki-client on console-ams.rpki-client.org