$ rpki-client -vvf repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234352e302f32342d3234203d3e203338373738.roa File: 3230322e39332e3234352e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: H9VRQ91DMFjFZEtnAx0gt0Ex0lE6j6wSUe9h+9SXaFo= Subject key identifier: 5B:46:DB:82:5F:5A:E6:6B:B1:4B:3B:82:54:E5:64:B0:F2:3B:CC:48 Certificate issuer: /CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Certificate serial: 2A8F78AE93D794858511B74076D23470565FC4F2 Authority key identifier: F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234352e302f32342d3234203d3e203338373738.roa Signing time: Tue 23 Jan 2024 10:00:00 +0000 ROA not before: Tue 23 Jan 2024 09:55:00 +0000 ROA not after: Tue 21 Jan 2025 10:00:00 +0000 asID: 38778 IP address blocks: 202.93.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:37:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:8f:78:ae:93:d7:94:85:85:11:b7:40:76:d2:34:70:56:5f:c4:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Validity Not Before: Jan 23 09:55:00 2024 GMT Not After : Jan 21 10:00:00 2025 GMT Subject: CN=5B46DB825F5AE66BB14B3B8254E564B0F23BCC48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3b:d8:98:e5:fb:f0:dc:d4:91:e8:7a:de:74: 06:7c:2d:89:82:7a:15:26:78:5f:55:17:21:fa:c4: ca:dd:ac:85:3c:8d:78:29:49:3f:da:73:70:19:7f: 27:28:5e:46:17:5a:e8:c0:1d:a4:b0:2d:fa:23:6d: 88:48:bf:ed:3d:f4:ea:d4:3f:70:4b:62:cb:fc:01: 79:4e:31:4b:ee:d5:c7:36:0a:27:da:74:78:40:48: aa:05:f5:97:3d:da:7f:cb:b2:5e:ed:cb:56:b7:78: 83:ed:b4:ae:64:f3:2a:5a:c0:a9:c7:56:39:62:b2: 5d:6b:87:99:d1:ce:ff:3c:d7:90:1d:14:31:70:e3: 50:39:b2:7d:38:80:65:41:1d:fc:b9:db:69:40:84: fc:1c:54:fb:fa:86:cf:b5:13:52:41:a7:a1:00:3c: 8c:ec:49:e3:0a:22:cc:11:09:8a:26:e7:9d:c6:72: a9:f1:5a:0b:36:33:be:94:07:54:87:82:cc:c1:f3: 78:e0:c1:b5:30:ff:df:57:c2:09:0b:8e:29:92:f8: d1:8b:28:c5:f7:56:8b:e6:51:45:e2:d6:e0:c4:4b: da:53:62:b9:32:91:46:8a:b3:72:5b:67:72:07:47: 8d:46:dd:ce:7c:0e:c3:9d:35:54:ea:76:88:26:94: 38:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:46:DB:82:5F:5A:E6:6B:B1:4B:3B:82:54:E5:64:B0:F2:3B:CC:48 X509v3 Authority Key Identifier: keyid:F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234352e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.245.0/24 Signature Algorithm: sha256WithRSAEncryption 39:da:ff:d4:83:ed:8a:a0:9d:d9:3e:b2:94:54:76:48:25:c3: 84:6a:3e:d0:81:4a:e3:ac:a2:b8:7f:b5:b9:42:56:7e:4d:ff: bd:4c:85:c5:01:6c:1d:f8:9e:c8:63:89:35:33:3e:67:5d:d1: 2b:b7:14:04:db:a5:bd:2e:76:45:72:d9:a1:3d:d8:bf:a7:e8: bb:d2:89:d3:1c:e3:3f:ec:9e:0f:b7:92:9e:a4:2f:40:09:87: 0c:ce:61:ac:4e:1e:e5:80:e2:b2:c0:14:7a:1a:64:a9:fe:ac: a1:d4:b8:73:93:ec:67:a6:2e:3f:97:4e:bd:e5:85:8a:e4:51: 6c:1d:33:07:3e:92:fe:35:3c:ca:3b:63:0a:27:3f:60:b2:a0: 99:5d:8e:f3:5b:7d:b2:8e:da:e1:f9:f5:a0:69:b5:83:47:5f: 5b:25:14:02:83:91:0b:86:cf:32:13:5d:21:0d:f8:43:54:98: 05:fd:ee:82:10:03:a1:b5:79:45:1d:8d:84:0f:45:71:9b:61: 1a:28:c3:25:62:30:ce:39:76:cb:c0:6d:1d:93:18:86:3a:18: f2:53:ed:4e:de:a9:3a:c6:6d:58:ad:fa:dc:c1:ad:ac:cf:8a: c8:0f:b6:14:4b:a5:37:a0:5a:64:52:e7:04:e3:fb:52:9b:de: ed:4f:20:37 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKo94rpPXlIWFEbdAdtI0cFZfxPIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3 NzgwOUQwMjAeFw0yNDAxMjMwOTU1MDBaFw0yNTAxMjExMDAwMDBaMDMxMTAvBgNV BAMTKDVCNDZEQjgyNUY1QUU2NkJCMTRCM0I4MjU0RTU2NEIwRjIzQkNDNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3O9iY5fvw3NSR6HredAZ8LYmC ehUmeF9VFyH6xMrdrIU8jXgpST/ac3AZfycoXkYXWujAHaSwLfojbYhIv+099OrU P3BLYsv8AXlOMUvu1cc2CifadHhASKoF9Zc92n/Lsl7ty1a3eIPttK5k8ypawKnH Vjlisl1rh5nRzv8815AdFDFw41A5sn04gGVBHfy522lAhPwcVPv6hs+1E1JBp6EA PIzsSeMKIswRCYom553GcqnxWgs2M76UB1SHgszB83jgwbUw/99XwgkLjimS+NGL KMX3VovmUUXi1uDES9pTYrkykUaKs3JbZ3IHR41G3c58DsOdNVTqdogmlDhJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUW0bbgl9a5muxSzuCVOVksPI7zEgwHwYDVR0j BBgwFoAU843/CU4WhDhU6sFAPGn9f3eAnQIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWQ2ZGNjOS0xNzAwLTQ4ZWItOTA5OS02Njc4ZjkxYmY0NGUvMC9GMzhERkYwOTRF MTY4NDM4NTRFQUMxNDAzQzY5RkQ3Rjc3ODA5RDAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3Nzgw OUQwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhZDZkY2M5LTE3MDAtNDhlYi05 MDk5LTY2NzhmOTFiZjQ0ZS8wLzMyMzAzMjJlMzkzMzJlMzIzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpd9TANBgkqhkiG 9w0BAQsFAAOCAQEAOdr/1IPtiqCd2T6ylFR2SCXDhGo+0IFK46yiuH+1uUJWfk3/ vUyFxQFsHfieyGOJNTM+Z13RK7cUBNulvS52RXLZoT3Yv6fou9KJ0xzjP+yeD7eS nqQvQAmHDM5hrE4e5YDissAUehpkqf6sodS4c5PsZ6YuP5dOveWFiuRRbB0zBz6S /jU8yjtjCic/YLKgmV2O81t9so7a4fn1oGm1g0dfWyUUAoORC4bPMhNdIQ34Q1SY Bf3ughADobV5RR2NhA9FcZthGijDJWIwzjl2y8BtHZMYhjoY8lPtTt6pOsZtWK36 3MGtrM+KyA+2FEulN6BaZFLnBOP7Upve7U8gNw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:12 2024 by rpki-client on console-fra.rpki-client.org