$ rpki-client -vvf repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234372e302f32342d3234203d3e203338373738.roa File: 3230322e39332e3234372e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: ejl6RfD2bPpB+qMs8B5DMcsfZnxKCdOMYxEhVUIfjBY= Subject key identifier: CF:41:7D:1F:54:60:2C:5E:FC:39:22:A9:ED:F2:F8:C7:52:BE:2C:7F Certificate issuer: /CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Certificate serial: 656FE3B6D98A175131E77C20CB3EE74153585CCC Authority key identifier: F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234372e302f32342d3234203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:03:37 +0000 ROA not before: Mon 01 Jul 2024 00:58:37 +0000 ROA not after: Mon 30 Jun 2025 01:03:37 +0000 asID: 38778 IP address blocks: 202.93.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:37:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:6f:e3:b6:d9:8a:17:51:31:e7:7c:20:cb:3e:e7:41:53:58:5c:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Validity Not Before: Jul 1 00:58:37 2024 GMT Not After : Jun 30 01:03:37 2025 GMT Subject: CN=CF417D1F54602C5EFC3922A9EDF2F8C752BE2C7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e4:86:68:15:f8:a6:a0:5c:0f:13:dc:5c:14: 9b:6d:77:15:4c:b9:6b:29:00:20:f1:18:0c:7e:5e: a7:5e:e0:61:7f:f0:e3:8f:9f:b5:04:4d:0b:71:e7: 1a:48:4a:8e:65:2d:5c:9e:4d:a4:d3:97:ad:19:84: e2:bc:88:7a:12:1c:f8:5d:58:9e:81:de:aa:2c:b3: ae:f2:ca:88:8a:ee:27:12:a8:d7:56:a2:d7:10:40: fb:b7:09:33:3c:7b:6c:34:90:c0:a0:22:61:24:76: b6:ef:98:d5:24:2a:87:da:cb:5d:f5:c1:00:0d:26: d6:27:3b:89:53:61:7e:82:75:59:7e:76:f3:6b:82: 3f:99:d2:72:4c:4f:31:91:16:87:05:fb:65:75:f2: 2a:b3:8f:79:ce:a7:b9:9f:cb:dc:51:e4:d3:fb:d3: ca:ea:8e:2f:ff:5e:0a:ee:00:3f:8a:f7:81:51:b1: 4b:39:15:8c:ce:04:90:d3:7e:26:26:fd:ef:3e:68: 71:6f:92:87:fa:6a:3c:c1:3e:a6:16:ff:d7:c0:0b: 2e:c7:ee:65:57:a6:84:b7:f5:f6:42:91:12:4e:7e: 00:56:bf:75:26:35:4d:15:9d:f1:02:2c:19:6c:a0: ad:3c:4e:7a:d5:2f:c4:b3:fc:7e:36:83:0b:16:94: ae:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:41:7D:1F:54:60:2C:5E:FC:39:22:A9:ED:F2:F8:C7:52:BE:2C:7F X509v3 Authority Key Identifier: keyid:F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234372e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.247.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:96:2f:d4:1d:94:11:fb:7e:0b:ab:b1:c9:1a:bd:8a:ff:e2: 5c:82:68:a3:3b:51:27:5f:d6:4e:83:11:05:02:0d:d1:70:21: 9b:f5:34:fe:ef:c4:49:4b:fc:ff:4f:d7:0d:e3:d9:5c:50:2e: 8b:1f:0b:01:d7:b3:df:c4:f9:03:44:56:83:62:26:a2:a0:be: a0:c2:82:d1:54:5c:75:52:cf:03:f1:db:ac:4c:7f:52:2b:c0: 91:32:33:5b:2a:b9:4c:09:a0:1a:f3:ad:5d:49:d9:87:29:c1: 59:11:c1:32:d5:e4:1b:0e:22:21:a9:3e:5a:b1:19:10:df:bb: 35:2e:19:10:95:b1:79:2d:fc:2f:ea:7e:b3:df:0d:15:f2:34: a0:52:41:79:ae:c3:98:6a:39:95:79:05:65:69:92:31:c1:f4: 42:33:0f:8a:8e:7d:4c:7c:17:4e:be:8e:b4:b8:ce:2d:f1:c6: 00:27:3b:dd:26:4c:c8:1e:44:cd:c5:cc:37:c9:50:a6:db:e4: fa:0e:57:b8:9b:38:dd:d4:c2:a0:86:f2:06:bf:2e:06:2e:7f: f1:81:00:8a:df:cb:c1:c4:ab:96:33:aa:25:96:47:d5:7f:53: 37:64:45:2b:f1:e0:e7:c7:44:6f:37:aa:37:99:8f:da:01:a4: 86:42:8f:28 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZW/jttmKF1Ex53wgyz7nQVNYXMwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3 NzgwOUQwMjAeFw0yNDA3MDEwMDU4MzdaFw0yNTA2MzAwMTAzMzdaMDMxMTAvBgNV BAMTKENGNDE3RDFGNTQ2MDJDNUVGQzM5MjJBOUVERjJGOEM3NTJCRTJDN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL5IZoFfimoFwPE9xcFJttdxVM uWspACDxGAx+Xqde4GF/8OOPn7UETQtx5xpISo5lLVyeTaTTl60ZhOK8iHoSHPhd WJ6B3qoss67yyoiK7icSqNdWotcQQPu3CTM8e2w0kMCgImEkdrbvmNUkKofay131 wQANJtYnO4lTYX6CdVl+dvNrgj+Z0nJMTzGRFocF+2V18iqzj3nOp7mfy9xR5NP7 08rqji//XgruAD+K94FRsUs5FYzOBJDTfiYm/e8+aHFvkof6ajzBPqYW/9fACy7H 7mVXpoS39fZCkRJOfgBWv3UmNU0VnfECLBlsoK08TnrVL8Sz/H42gwsWlK5VAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUz0F9H1RgLF78OSKp7fL4x1K+LH8wHwYDVR0j BBgwFoAU843/CU4WhDhU6sFAPGn9f3eAnQIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWQ2ZGNjOS0xNzAwLTQ4ZWItOTA5OS02Njc4ZjkxYmY0NGUvMC9GMzhERkYwOTRF MTY4NDM4NTRFQUMxNDAzQzY5RkQ3Rjc3ODA5RDAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3Nzgw OUQwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhZDZkY2M5LTE3MDAtNDhlYi05 MDk5LTY2NzhmOTFiZjQ0ZS8wLzMyMzAzMjJlMzkzMzJlMzIzNDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpd9zANBgkqhkiG 9w0BAQsFAAOCAQEATZYv1B2UEft+C6uxyRq9iv/iXIJooztRJ1/WToMRBQIN0XAh m/U0/u/ESUv8/0/XDePZXFAuix8LAdez38T5A0RWg2ImoqC+oMKC0VRcdVLPA/Hb rEx/UivAkTIzWyq5TAmgGvOtXUnZhynBWRHBMtXkGw4iIak+WrEZEN+7NS4ZEJWx eS38L+p+s98NFfI0oFJBea7DmGo5lXkFZWmSMcH0QjMPio59THwXTr6OtLjOLfHG ACc73SZMyB5EzcXMN8lQptvk+g5XuJs43dTCoIbyBr8uBi5/8YEAit/LwcSrljOq JZZH1X9TN2RFK/Hg58dEbzeqN5mP2gGkhkKPKA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:12 2024 by rpki-client on console-fra.rpki-client.org