$ rpki-client -vvf repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/3230322e3134372e3139322e302f32302d3234203d3e203137363730.roa File: 3230322e3134372e3139322e302f32302d3234203d3e203137363730.roa (raw, json) Hash identifier: DO7ogbI2UpcST5Do0xfAryknKNzHKoFL4YPFX4NOgG8= Subject key identifier: 12:C1:0C:D6:6F:87:12:24:14:B2:74:13:6C:37:98:79:15:21:8B:84 Certificate issuer: /CN=89402655017312B8CFCB367BA82966AA21E11F90 Certificate serial: 0E97265BDCAEF633A8562B682F7EDEFAC698E256 Authority key identifier: 89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/3230322e3134372e3139322e302f32302d3234203d3e203137363730.roa Signing time: Sun 04 Aug 2024 19:00:00 +0000 ROA not before: Sun 04 Aug 2024 18:55:00 +0000 ROA not after: Sun 03 Aug 2025 19:00:00 +0000 asID: 17670 IP address blocks: 202.147.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.crl rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:97:26:5b:dc:ae:f6:33:a8:56:2b:68:2f:7e:de:fa:c6:98:e2:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89402655017312B8CFCB367BA82966AA21E11F90 Validity Not Before: Aug 4 18:55:00 2024 GMT Not After : Aug 3 19:00:00 2025 GMT Subject: CN=12C10CD66F87122414B274136C37987915218B84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:71:a4:e4:35:ff:85:da:52:25:bc:dd:08:b8: 14:44:26:d4:58:2d:ea:73:96:2a:47:e0:f8:d3:51: 4a:2a:13:4e:95:35:b8:aa:b0:bb:5f:99:57:af:98: ad:c1:dc:8b:94:f6:c5:59:ec:4e:26:96:15:6a:3f: 1d:c1:93:4e:c3:f6:57:3f:fe:75:10:34:80:15:00: c0:8d:34:5c:4c:4e:a4:8e:70:ea:5d:ee:db:15:e3: 61:e0:20:6f:68:b6:a2:9b:7d:d0:84:bd:f0:de:82: 84:cb:b7:fa:7d:dc:5b:b4:a9:e4:1a:5a:6d:55:b2: e0:4d:4e:00:31:2b:eb:16:a9:f6:62:77:71:db:0c: 13:66:d8:e0:1d:12:c5:35:15:56:99:70:29:2a:d9: 87:68:c5:b5:73:91:3a:c0:b6:4e:62:74:fd:2b:b8: 4b:84:ef:25:ee:33:dd:3e:81:52:4c:4d:4f:cd:e6: f1:98:23:69:25:a9:2b:a2:5f:bf:2f:d9:ce:f6:9f: db:f2:a8:28:31:a9:6b:5d:e3:af:31:59:d0:90:34: 83:a0:4c:a0:43:b8:94:0e:81:22:97:fd:58:a1:39: 51:cb:b4:78:f7:c5:11:f2:48:a8:53:a4:15:46:28: f5:e2:ae:07:23:9b:e7:70:0a:fc:3b:a3:8b:71:cd: ae:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:C1:0C:D6:6F:87:12:24:14:B2:74:13:6C:37:98:79:15:21:8B:84 X509v3 Authority Key Identifier: keyid:89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/3230322e3134372e3139322e302f32302d3234203d3e203137363730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.147.192.0/20 Signature Algorithm: sha256WithRSAEncryption 16:22:25:b3:30:2a:6a:fd:a9:e0:86:67:c0:bc:3b:ae:4d:68: a8:59:2e:d3:8a:9f:48:6b:10:1c:af:de:06:2a:ba:af:88:3d: 2c:25:4c:71:6f:2e:77:90:ef:90:01:e9:eb:fa:b4:47:bc:49: ad:04:09:e5:4e:0e:4f:88:4e:92:15:fd:6b:ad:ea:b3:f3:9b: 81:56:13:7c:43:7b:83:9e:27:23:35:4b:b4:bb:f1:1a:cb:92: c9:11:fa:8e:d9:09:57:c8:99:24:af:77:6e:d2:88:4d:fb:a1: 40:20:4b:f6:5f:7c:6a:ff:3e:e7:aa:10:92:07:09:27:89:5f: 91:8d:d8:bc:97:39:d0:a7:f0:41:80:b2:c3:02:3d:11:5f:33: ea:b0:89:44:ed:8b:44:32:a0:d2:0b:9f:3d:4d:4b:15:7f:a1: 7f:dd:63:87:c7:b3:bd:58:b9:01:f8:66:3b:06:88:ea:4f:83: ae:3c:08:93:34:3e:36:52:57:4c:82:81:1a:b7:e8:98:e3:df: f6:c1:2e:2a:2f:1d:fd:9c:6f:87:1c:12:89:61:ac:2e:df:cc: 1c:01:f1:10:8d:97:5c:68:fe:8a:19:eb:f3:f5:18:90:1a:56: e7:44:8e:49:4b:ea:86:b7:b5:6a:25:80:49:1c:c7:d7:da:31: b1:1c:29:30 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDpcmW9yu9jOoVitoL37e+saY4lYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk0MDI2NTUwMTczMTJCOENGQ0IzNjdCQTgyOTY2QUEy MUUxMUY5MDAeFw0yNDA4MDQxODU1MDBaFw0yNTA4MDMxOTAwMDBaMDMxMTAvBgNV BAMTKDEyQzEwQ0Q2NkY4NzEyMjQxNEIyNzQxMzZDMzc5ODc5MTUyMThCODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3caTkNf+F2lIlvN0IuBREJtRY LepzlipH4PjTUUoqE06VNbiqsLtfmVevmK3B3IuU9sVZ7E4mlhVqPx3Bk07D9lc/ /nUQNIAVAMCNNFxMTqSOcOpd7tsV42HgIG9otqKbfdCEvfDegoTLt/p93Fu0qeQa Wm1VsuBNTgAxK+sWqfZid3HbDBNm2OAdEsU1FVaZcCkq2YdoxbVzkTrAtk5idP0r uEuE7yXuM90+gVJMTU/N5vGYI2klqSuiX78v2c72n9vyqCgxqWtd468xWdCQNIOg TKBDuJQOgSKX/VihOVHLtHj3xRHySKhTpBVGKPXirgcjm+dwCvw7o4txza6ZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEsEM1m+HEiQUsnQTbDeYeRUhi4QwHwYDVR0j BBgwFoAUiUAmVQFzErjPyzZ7qClmqiHhH5AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZmIxYzgwYy00ZDZjLTQ0MDgtODk0Ny1mYmE2ZTdjNGJlN2MvMC84OTQwMjY1NTAx NzMxMkI4Q0ZDQjM2N0JBODI5NjZBQTIxRTExRjkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODk0MDI2NTUwMTczMTJCOENGQ0IzNjdCQTgyOTY2QUEyMUUx MUY5MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmYjFjODBjLTRkNmMtNDQwOC04 OTQ3LWZiYTZlN2M0YmU3Yy8wLzMyMzAzMjJlMzEzNDM3MmUzMTM5MzIyZTMwMmYz MjMwMmQzMjM0MjAzZDNlMjAzMTM3MzYzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEypPAMA0GCSqG SIb3DQEBCwUAA4IBAQAWIiWzMCpq/anghmfAvDuuTWioWS7Tip9IaxAcr94GKrqv iD0sJUxxby53kO+QAenr+rRHvEmtBAnlTg5PiE6SFf1rreqz85uBVhN8Q3uDnicj NUu0u/Eay5LJEfqO2QlXyJkkr3du0ohN+6FAIEv2X3xq/z7nqhCSBwkniV+Rjdi8 lznQp/BBgLLDAj0RXzPqsIlE7YtEMqDSC589TUsVf6F/3WOHx7O9WLkB+GY7Bojq T4OuPAiTND42UldMgoEat+iY49/2wS4qLx39nG+HHBKJYawu38wcAfEQjZdcaP6K Gevz9RiQGlbnRI5JS+qGt7VqJYBJHMfX2jGxHCkw -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:41 2024 by rpki-client on console-fra.rpki-client.org