$ rpki-client -vvf repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234322e302f32342d3234203d3e203234313938.roa File: 3230322e39332e3234322e302f32342d3234203d3e203234313938.roa (raw, json) Hash identifier: XP3ySyrao4HUHe9UBVfjiEOfq3wXLWj1fW0u9drI3Y4= Subject key identifier: 6C:66:A1:9C:35:CE:03:E0:97:7E:0F:5E:EB:9F:D2:57:57:71:64:A9 Certificate issuer: /CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Certificate serial: 7FFBBA47F59D6D309FBAD0E71CD5B9C4928A704D Authority key identifier: F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234322e302f32342d3234203d3e203234313938.roa Signing time: Mon 01 Jul 2024 01:03:38 +0000 ROA not before: Mon 01 Jul 2024 00:58:38 +0000 ROA not after: Mon 30 Jun 2025 01:03:38 +0000 asID: 24198 IP address blocks: 202.93.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:37:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:fb:ba:47:f5:9d:6d:30:9f:ba:d0:e7:1c:d5:b9:c4:92:8a:70:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Validity Not Before: Jul 1 00:58:38 2024 GMT Not After : Jun 30 01:03:38 2025 GMT Subject: CN=6C66A19C35CE03E0977E0F5EEB9FD257577164A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7f:03:43:30:6a:df:05:c1:e2:99:04:47:8d: 4f:d1:13:89:6d:c3:a2:dd:80:ac:1a:c3:99:c7:f3: 31:cc:a0:ad:65:90:9e:28:37:3f:3c:6b:9e:42:5a: aa:03:2e:d4:91:a7:b2:8c:00:f3:fc:7e:dd:5a:fa: 2c:91:bf:08:cf:09:06:4a:23:ab:02:d6:cf:31:3b: 9e:6f:33:cb:ee:4a:f7:58:38:b4:0b:b4:07:8d:d8: 99:92:37:5d:08:4c:d7:f3:8b:37:90:eb:79:8d:80: 87:b5:a0:86:9f:8f:bf:a9:88:ed:57:bb:4d:57:d8: 94:5b:cc:1c:00:af:f1:10:bb:c8:11:d0:b1:d0:dd: a1:02:25:c1:d7:55:04:87:68:25:2d:77:df:48:d7: e9:80:2a:99:9f:5d:b1:ab:2c:73:e3:30:00:c0:54: 15:56:4d:82:73:1b:b6:b6:f7:a3:f9:5c:6d:92:28: c9:1c:dd:7e:9c:56:b7:7d:84:fa:e9:62:d2:ae:50: 49:df:3f:12:91:65:2a:c4:d9:51:ba:d6:94:58:1e: e2:44:21:9e:ef:82:dd:d1:43:50:3c:50:a4:59:ee: c2:91:a6:2f:94:8c:f1:f9:f2:b7:47:24:1a:43:41: 0e:d2:af:92:44:bf:09:84:4b:ac:06:15:e7:87:fd: 3d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:66:A1:9C:35:CE:03:E0:97:7E:0F:5E:EB:9F:D2:57:57:71:64:A9 X509v3 Authority Key Identifier: keyid:F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234322e302f32342d3234203d3e203234313938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.242.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:ae:34:50:c6:d7:b8:57:58:87:87:b9:2b:f2:eb:7e:e5:cf: 31:ca:c5:6f:64:20:65:e7:7d:f9:5e:6d:74:f4:66:a1:e9:b9: 28:9f:54:45:95:d6:38:14:c7:de:ef:9e:36:2c:ae:22:6b:d7: db:d3:9b:f8:30:dd:64:ea:71:a1:78:0d:12:90:b2:cb:9c:46: 7c:c9:0f:64:a6:dd:3e:8c:39:43:38:d3:6c:ed:39:05:3a:68: e5:80:25:f3:d9:0c:0f:2d:60:d0:bd:67:d8:dd:74:95:51:9c: 13:72:44:1a:43:5b:ee:68:43:85:dd:5f:94:83:32:b4:4e:38: b7:a5:a6:09:93:06:f7:af:da:48:9a:7f:97:11:58:98:9a:25: 50:5a:85:cc:51:1b:bf:a9:67:f2:79:82:94:f2:89:6e:5f:cc: 98:ec:9c:95:83:3a:df:7f:b5:ca:ee:a4:23:f1:53:0a:8f:d4: c6:d2:02:a6:0f:15:ff:2a:c9:48:d4:10:8e:ab:9f:3e:76:5d: 00:d3:67:80:0a:d5:c6:24:39:79:ee:09:21:00:51:92:6e:0c: 44:cb:7b:a4:90:68:41:77:52:b2:f2:b1:93:e7:49:d4:5a:9c: bb:35:3c:1b:d3:22:d7:4c:45:40:e7:18:91:89:d3:84:7b:9d: 4a:e0:5a:d9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUf/u6R/WdbTCfutDnHNW5xJKKcE0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3 NzgwOUQwMjAeFw0yNDA3MDEwMDU4MzhaFw0yNTA2MzAwMTAzMzhaMDMxMTAvBgNV BAMTKDZDNjZBMTlDMzVDRTAzRTA5NzdFMEY1RUVCOUZEMjU3NTc3MTY0QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUfwNDMGrfBcHimQRHjU/RE4lt w6LdgKwaw5nH8zHMoK1lkJ4oNz88a55CWqoDLtSRp7KMAPP8ft1a+iyRvwjPCQZK I6sC1s8xO55vM8vuSvdYOLQLtAeN2JmSN10ITNfzizeQ63mNgIe1oIafj7+piO1X u01X2JRbzBwAr/EQu8gR0LHQ3aECJcHXVQSHaCUtd99I1+mAKpmfXbGrLHPjMADA VBVWTYJzG7a296P5XG2SKMkc3X6cVrd9hPrpYtKuUEnfPxKRZSrE2VG61pRYHuJE IZ7vgt3RQ1A8UKRZ7sKRpi+UjPH58rdHJBpDQQ7Sr5JEvwmES6wGFeeH/T1NAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbGahnDXOA+CXfg9e65/SV1dxZKkwHwYDVR0j BBgwFoAU843/CU4WhDhU6sFAPGn9f3eAnQIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWQ2ZGNjOS0xNzAwLTQ4ZWItOTA5OS02Njc4ZjkxYmY0NGUvMC9GMzhERkYwOTRF MTY4NDM4NTRFQUMxNDAzQzY5RkQ3Rjc3ODA5RDAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3Nzgw OUQwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhZDZkY2M5LTE3MDAtNDhlYi05 MDk5LTY2NzhmOTFiZjQ0ZS8wLzMyMzAzMjJlMzkzMzJlMzIzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDMxMzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpd8jANBgkqhkiG 9w0BAQsFAAOCAQEAHK40UMbXuFdYh4e5K/LrfuXPMcrFb2QgZed9+V5tdPRmoem5 KJ9URZXWOBTH3u+eNiyuImvX29Ob+DDdZOpxoXgNEpCyy5xGfMkPZKbdPow5QzjT bO05BTpo5YAl89kMDy1g0L1n2N10lVGcE3JEGkNb7mhDhd1flIMytE44t6WmCZMG 96/aSJp/lxFYmJolUFqFzFEbv6ln8nmClPKJbl/MmOyclYM633+1yu6kI/FTCo/U xtICpg8V/yrJSNQQjqufPnZdANNngArVxiQ5ee4JIQBRkm4MRMt7pJBoQXdSsvKx k+dJ1FqcuzU8G9Mi10xFQOcYkYnThHudSuBa2Q== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:38 2024 by rpki-client on console-ams.rpki-client.org