$ rpki-client -vvf repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/3230332e3136302e35362e302f32312d3234203d3e203234353237.roa File: 3230332e3136302e35362e302f32312d3234203d3e203234353237.roa (raw, json) Hash identifier: 02zgKyUTsccL2Q9ZIvopxV1I8Ugx5h8lvOQuN6DckIs= Subject key identifier: 00:1D:9A:24:6D:F0:4A:19:ED:9D:6A:44:68:3E:06:F2:D6:47:72:0E Certificate issuer: /CN=E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61 Certificate serial: 59F5F560F18477425F3B74EF15E0D721DB0AA25C Authority key identifier: E9:F7:A0:AA:6D:CC:A1:FF:7D:3D:61:46:0D:55:34:A0:04:AB:2C:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/3230332e3136302e35362e302f32312d3234203d3e203234353237.roa Signing time: Mon 01 Jul 2024 00:02:14 +0000 ROA not before: Sun 30 Jun 2024 23:57:14 +0000 ROA not after: Mon 30 Jun 2025 00:02:14 +0000 asID: 24527 IP address blocks: 203.160.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.crl rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 23:18:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:f5:f5:60:f1:84:77:42:5f:3b:74:ef:15:e0:d7:21:db:0a:a2:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61 Validity Not Before: Jun 30 23:57:14 2024 GMT Not After : Jun 30 00:02:14 2025 GMT Subject: CN=001D9A246DF04A19ED9D6A44683E06F2D647720E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:58:a0:ef:51:c8:52:a2:10:73:d1:54:4c:04: 20:df:d7:d6:2d:2c:e0:63:47:a6:eb:c6:de:cb:b6: b6:46:6a:ce:8f:82:2b:9c:84:c2:30:50:88:95:0a: cb:37:5e:b7:d7:0a:de:3b:0c:1f:c1:f2:df:94:95: 4c:62:6f:27:07:c5:9a:c7:96:bb:fb:b9:c2:c3:0c: 63:e2:15:e2:f7:42:d8:f7:d9:38:cd:52:4e:34:b5: c6:b6:ba:f2:12:6a:38:4f:f4:c0:bf:26:3b:36:8c: c3:62:b0:0b:ac:62:5f:ed:e1:16:b5:94:63:0b:b4: 8b:d2:bf:40:95:b1:03:17:08:22:96:57:d7:00:47: 5c:94:f2:b6:90:45:3c:8e:d2:4f:21:ea:49:a1:fb: 54:c7:fd:48:aa:14:83:03:3e:e9:e4:d4:7e:5d:71: 90:1f:5d:e3:69:c3:e8:ca:a4:ae:24:dc:d6:4b:06: c4:bc:58:fc:4a:a6:7b:ef:1e:d8:fa:bc:53:ae:54: bf:71:c6:2b:46:93:97:4a:16:db:d2:cb:5f:f6:70: 02:63:ed:36:83:86:84:2c:f8:1d:a1:36:2a:58:62: a7:6b:c3:ec:d3:cd:de:08:ea:84:e4:42:89:7b:38: f1:fa:88:03:96:13:29:6e:d4:ab:d1:14:83:d2:64: 27:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:1D:9A:24:6D:F0:4A:19:ED:9D:6A:44:68:3E:06:F2:D6:47:72:0E X509v3 Authority Key Identifier: keyid:E9:F7:A0:AA:6D:CC:A1:FF:7D:3D:61:46:0D:55:34:A0:04:AB:2C:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/3230332e3136302e35362e302f32312d3234203d3e203234353237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.160.56.0/21 Signature Algorithm: sha256WithRSAEncryption 88:1f:22:b7:33:f3:c2:3a:d8:0b:43:82:ee:3a:9e:a8:d6:e3: 52:4d:3e:7d:95:6a:ff:11:b8:c1:fd:42:4f:cd:7b:fa:d7:33: 6f:83:bd:af:df:ba:ea:64:fb:f4:12:55:52:c2:aa:1f:d0:2f: 59:c9:09:86:ea:87:7d:ed:d3:2b:c5:bf:b6:df:12:8f:c3:f2: 21:1a:e4:35:d5:9d:11:8a:8f:0c:ba:68:bd:a8:23:8e:0b:c7: 00:0d:89:2d:e7:ba:11:df:3f:6a:41:51:4e:67:32:bc:0b:ac: 05:9f:4a:94:06:6b:db:3f:73:24:2f:46:9a:ca:ea:c8:66:6f: 6e:39:10:f4:48:82:08:77:44:83:a3:f4:7c:55:9e:2b:7c:a5: e4:b1:bc:76:06:75:ca:d7:0b:98:37:8b:d3:f8:5f:38:42:21: 6e:cf:56:86:30:5f:8f:00:da:82:29:6d:3c:a4:08:b2:aa:41: 33:66:35:0c:e3:68:b7:be:a3:43:57:0c:4e:13:a5:91:5f:e8: 8c:92:cd:b5:a5:f7:f9:e4:32:ce:6f:6c:23:ec:c2:81:84:a8: c4:cc:4f:41:80:a5:1a:ac:4b:28:b4:9c:d3:0e:8b:05:14:c7: cb:3b:76:58:7d:df:d8:a1:d9:41:19:97:f8:6b:27:cb:cb:e8: 77:a3:ad:aa -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWfX1YPGEd0JfO3TvFeDXIdsKolwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTlGN0EwQUE2RENDQTFGRjdEM0Q2MTQ2MEQ1NTM0QTAw NEFCMkM2MTAeFw0yNDA2MzAyMzU3MTRaFw0yNTA2MzAwMDAyMTRaMDMxMTAvBgNV BAMTKDAwMUQ5QTI0NkRGMDRBMTlFRDlENkE0NDY4M0UwNkYyRDY0NzcyMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMWKDvUchSohBz0VRMBCDf19Yt LOBjR6brxt7LtrZGas6PgiuchMIwUIiVCss3XrfXCt47DB/B8t+UlUxibycHxZrH lrv7ucLDDGPiFeL3Qtj32TjNUk40tca2uvISajhP9MC/Jjs2jMNisAusYl/t4Ra1 lGMLtIvSv0CVsQMXCCKWV9cAR1yU8raQRTyO0k8h6kmh+1TH/UiqFIMDPunk1H5d cZAfXeNpw+jKpK4k3NZLBsS8WPxKpnvvHtj6vFOuVL9xxitGk5dKFtvSy1/2cAJj 7TaDhoQs+B2hNipYYqdrw+zTzd4I6oTkQol7OPH6iAOWEylu1KvRFIPSZCe3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAB2aJG3wShntnWpEaD4G8tZHcg4wHwYDVR0j BBgwFoAU6fegqm3Mof99PWFGDVU0oASrLGEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmI4N2ZlYi0wZmUyLTQxOGEtYTM3YS1iZTNkZDFmMGU2M2MvMC9FOUY3QTBBQTZE Q0NBMUZGN0QzRDYxNDYwRDU1MzRBMDA0QUIyQzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTlGN0EwQUE2RENDQTFGRjdEM0Q2MTQ2MEQ1NTM0QTAwNEFC MkM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY2Yjg3ZmViLTBmZTItNDE4YS1h MzdhLWJlM2RkMWYwZTYzYy8wLzMyMzAzMzJlMzEzNjMwMmUzNTM2MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8ugODANBgkqhkiG 9w0BAQsFAAOCAQEAiB8itzPzwjrYC0OC7jqeqNbjUk0+fZVq/xG4wf1CT817+tcz b4O9r9+66mT79BJVUsKqH9AvWckJhuqHfe3TK8W/tt8Sj8PyIRrkNdWdEYqPDLpo vagjjgvHAA2JLee6Ed8/akFRTmcyvAusBZ9KlAZr2z9zJC9GmsrqyGZvbjkQ9EiC CHdEg6P0fFWeK3yl5LG8dgZ1ytcLmDeL0/hfOEIhbs9WhjBfjwDagiltPKQIsqpB M2Y1DONot76jQ1cMThOlkV/ojJLNtaX3+eQyzm9sI+zCgYSoxMxPQYClGqxLKLSc 0w6LBRTHyzt2WH3f2KHZQRmX+Gsny8vod6Otqg== -----END CERTIFICATE-----Generated at Tue Mar 11 05:00:50 2025 by rpki-client