$ rpki-client -vvf repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/3230322e3134392e3132382e302f31392d3234203d3e2034383333.roa File: 3230322e3134392e3132382e302f31392d3234203d3e2034383333.roa (raw, json) Hash identifier: 3FQO/GU4KoR2pdteiQTTb2NEDc217LMm+LVE0TfeQnM= Subject key identifier: FB:4A:E4:29:C9:F0:BF:90:99:29:55:D5:8A:7B:9E:79:FB:46:DD:9B Certificate issuer: /CN=CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9 Certificate serial: 1B993E1FDEE442465441C996ED49AFA50D829756 Authority key identifier: CD:68:1E:40:6D:2E:CD:8A:CA:28:E4:F0:7B:9A:FA:9D:F6:48:C4:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/3230322e3134392e3132382e302f31392d3234203d3e2034383333.roa Signing time: Mon 01 Jul 2024 01:04:22 +0000 ROA not before: Mon 01 Jul 2024 00:59:22 +0000 ROA not after: Mon 30 Jun 2025 01:04:22 +0000 asID: 4833 IP address blocks: 202.149.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.crl rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:99:3e:1f:de:e4:42:46:54:41:c9:96:ed:49:af:a5:0d:82:97:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9 Validity Not Before: Jul 1 00:59:22 2024 GMT Not After : Jun 30 01:04:22 2025 GMT Subject: CN=FB4AE429C9F0BF90992955D58A7B9E79FB46DD9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:36:e7:6f:a0:ec:27:7d:2e:34:a6:ce:01:74: 50:ea:60:e2:7d:61:5e:33:13:39:25:08:f4:9e:2a: 02:89:fd:49:50:0b:77:de:5a:28:bb:95:10:e6:de: bc:a7:5e:d4:d8:3d:46:85:3a:5c:ea:30:f3:29:c1: 99:86:ed:e9:69:63:7d:d6:d1:a6:4d:b5:32:3f:e2: 1b:1f:59:5a:ec:df:56:96:40:73:f1:ee:8e:64:1a: 90:80:78:7a:68:73:2c:6c:54:5a:e1:3c:ff:1e:cf: 81:6b:33:06:5d:4a:48:3f:e7:a7:f5:02:94:bc:db: a3:17:d6:86:38:c3:8c:55:5b:ff:e4:9d:12:59:18: fd:5d:19:c4:84:ca:47:68:40:09:85:a7:73:3d:ca: c8:ce:96:fd:48:06:0f:14:26:7e:77:e2:d2:20:67: f6:2d:1b:25:a7:bc:29:c2:83:2f:35:2e:bc:48:40: 9d:76:c9:e3:5e:99:6a:e5:fc:1f:54:4a:22:40:08: e0:6a:be:c2:c8:fd:a3:6b:31:2b:77:4e:1a:58:87: 93:7a:f1:0c:61:13:98:1a:d4:1f:9d:70:5a:12:80: 67:96:a8:6d:45:b1:b6:7b:db:0b:c5:5c:d2:bf:2d: f0:69:c9:d1:a8:9a:5b:2b:f6:62:61:1e:ae:f2:bf: ce:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:4A:E4:29:C9:F0:BF:90:99:29:55:D5:8A:7B:9E:79:FB:46:DD:9B X509v3 Authority Key Identifier: keyid:CD:68:1E:40:6D:2E:CD:8A:CA:28:E4:F0:7B:9A:FA:9D:F6:48:C4:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/3230322e3134392e3132382e302f31392d3234203d3e2034383333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.149.128.0/19 Signature Algorithm: sha256WithRSAEncryption 05:66:0a:05:16:80:88:66:51:db:94:1c:2d:81:37:77:1c:20: 1a:ef:d4:a0:69:75:3b:80:90:ef:0b:96:39:13:cc:78:39:ef: 8e:14:d1:ae:2d:7f:44:91:23:5b:96:de:08:a2:e8:c5:26:62: 6f:6d:4a:6e:84:94:29:2f:97:7a:cc:c7:b9:9a:fe:37:2f:71: d1:18:2e:ab:1d:c0:9f:f3:a7:ae:6a:60:79:1b:25:3c:ff:80: 8f:f5:13:13:ab:0c:8a:6e:63:40:84:45:1b:bf:24:9d:2a:37: 75:5e:93:82:ca:b0:9a:1e:9b:71:22:a5:4a:1f:25:ee:d4:28: e3:96:0e:dd:d7:d4:0d:35:df:22:87:98:21:f1:6a:6f:6b:1c: 60:0f:71:51:50:ab:f0:f9:37:35:ad:89:05:3e:0e:a4:ef:e1: d9:e9:f5:e2:30:6e:fb:99:c5:3b:1c:5c:5b:63:28:0b:51:4a: 23:d3:75:cc:2b:6a:03:19:82:9e:10:8c:95:5b:f6:6a:8a:d2: 2e:25:be:23:e4:1d:e3:0c:a8:03:0f:64:6e:a5:a2:03:a2:e7: ec:f0:1d:b8:8d:56:cb:64:e1:8a:01:5c:31:49:11:cb:bd:0d: 95:ca:3f:f6:70:fa:78:60:f1:ea:dd:67:a9:05:70:d5:98:27: a3:51:19:c3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUG5k+H97kQkZUQcmW7UmvpQ2Cl1YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0Q2ODFFNDA2RDJFQ0Q4QUNBMjhFNEYwN0I5QUZBOURG NjQ4QzRFOTAeFw0yNDA3MDEwMDU5MjJaFw0yNTA2MzAwMTA0MjJaMDMxMTAvBgNV BAMTKEZCNEFFNDI5QzlGMEJGOTA5OTI5NTVENThBN0I5RTc5RkI0NkREOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkNudvoOwnfS40ps4BdFDqYOJ9 YV4zEzklCPSeKgKJ/UlQC3feWii7lRDm3rynXtTYPUaFOlzqMPMpwZmG7elpY33W 0aZNtTI/4hsfWVrs31aWQHPx7o5kGpCAeHpocyxsVFrhPP8ez4FrMwZdSkg/56f1 ApS826MX1oY4w4xVW//knRJZGP1dGcSEykdoQAmFp3M9ysjOlv1IBg8UJn534tIg Z/YtGyWnvCnCgy81LrxIQJ12yeNemWrl/B9USiJACOBqvsLI/aNrMSt3ThpYh5N6 8QxhE5ga1B+dcFoSgGeWqG1FsbZ72wvFXNK/LfBpydGomlsr9mJhHq7yv84ZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+0rkKcnwv5CZKVXVinueeftG3ZswHwYDVR0j BBgwFoAUzWgeQG0uzYrKKOTwe5r6nfZIxOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmMxZjUxYS04NjQ1LTRlYjEtYTJmZi1lMjdjMjRjOGUwYzgvMC9DRDY4MUU0MDZE MkVDRDhBQ0EyOEU0RjA3QjlBRkE5REY2NDhDNEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0Q2ODFFNDA2RDJFQ0Q4QUNBMjhFNEYwN0I5QUZBOURGNjQ4 QzRFOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY2YzFmNTFhLTg2NDUtNGViMS1h MmZmLWUyN2MyNGM4ZTBjOC8wLzMyMzAzMjJlMzEzNDM5MmUzMTMyMzgyZTMwMmYz MTM5MmQzMjM0MjAzZDNlMjAzNDM4MzMzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcqVgDANBgkqhkiG 9w0BAQsFAAOCAQEABWYKBRaAiGZR25QcLYE3dxwgGu/UoGl1O4CQ7wuWORPMeDnv jhTRri1/RJEjW5beCKLoxSZib21KboSUKS+XeszHuZr+Ny9x0Rguqx3An/Onrmpg eRslPP+Aj/UTE6sMim5jQIRFG78knSo3dV6Tgsqwmh6bcSKlSh8l7tQo45YO3dfU DTXfIoeYIfFqb2scYA9xUVCr8Pk3Na2JBT4OpO/h2en14jBu+5nFOxxcW2MoC1FK I9N1zCtqAxmCnhCMlVv2aorSLiW+I+Qd4wyoAw9kbqWiA6Ln7PAduI1Wy2ThigFc MUkRy70Nlco/9nD6eGDx6t1nqQVw1Zgno1EZww== -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:04 2024 by rpki-client on console-ams.rpki-client.org