$ rpki-client -vvf repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/3230332e39362e3232382e302f32332d3234203d3e20313334363535.roa File: 3230332e39362e3232382e302f32332d3234203d3e20313334363535.roa (raw, json) Hash identifier: IG6t7nYlULhsMgBABVk9BSJ2moXKjUg9u7BBivZ69qI= Subject key identifier: 0F:41:BC:C8:21:55:D4:6A:2B:7D:09:C8:74:B6:14:D6:A5:26:03:6D Certificate issuer: /CN=2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79 Certificate serial: 7160F2BCEAA8729A64A336EBEC8250FD84D55E6F Authority key identifier: 21:46:CD:CD:7A:3C:7A:19:15:B7:8C:5B:2C:9F:CF:BA:8A:3B:6E:79 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/3230332e39362e3232382e302f32332d3234203d3e20313334363535.roa Signing time: Sun 15 Sep 2024 13:06:02 +0000 ROA not before: Sun 15 Sep 2024 13:01:02 +0000 ROA not after: Sun 14 Sep 2025 13:06:02 +0000 asID: 134655 IP address blocks: 203.96.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.crl rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:60:f2:bc:ea:a8:72:9a:64:a3:36:eb:ec:82:50:fd:84:d5:5e:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79 Validity Not Before: Sep 15 13:01:02 2024 GMT Not After : Sep 14 13:06:02 2025 GMT Subject: CN=0F41BCC82155D46A2B7D09C874B614D6A526036D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:41:24:38:0a:28:bb:6b:24:89:4a:9f:8c:ca: 96:59:bd:97:e1:26:0d:bc:10:ef:c1:f9:a7:ed:0c: 41:f5:19:9e:ed:b0:85:57:8b:1c:cf:5a:fb:8f:a2: 87:21:65:89:4a:0f:42:2b:6f:28:53:28:03:e2:6c: a5:38:4c:78:64:63:8d:f7:46:2c:69:5b:65:5f:6a: b0:0a:f7:c6:06:e3:de:f9:b3:16:ac:a3:53:1e:64: 3d:9a:3c:07:bb:e1:92:73:a6:18:65:7e:e4:96:ba: 01:57:5d:09:a2:40:58:5c:3e:92:26:e4:c7:69:19: 19:88:10:7b:22:a3:15:94:65:ae:11:91:72:68:ee: a2:1a:97:93:5c:d4:4d:e1:2f:21:2b:59:c9:ab:13: ea:19:b0:bb:d1:84:c2:09:15:fb:f2:91:8e:8d:da: 51:0d:a5:bd:ae:7a:eb:a9:76:01:46:58:b8:55:39: 57:26:87:43:96:65:ea:65:da:a4:11:a4:19:d7:25: f3:cc:4b:f8:0a:b3:f6:8a:ea:74:23:23:42:ea:77: ff:bb:41:f2:77:86:64:7c:fb:f2:34:27:c3:d4:f4: 31:1a:65:0f:e6:f8:ee:86:bf:7a:f8:1c:0f:15:ce: c4:0a:75:46:36:fd:b4:e6:db:24:14:3f:18:89:ad: 56:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:41:BC:C8:21:55:D4:6A:2B:7D:09:C8:74:B6:14:D6:A5:26:03:6D X509v3 Authority Key Identifier: keyid:21:46:CD:CD:7A:3C:7A:19:15:B7:8C:5B:2C:9F:CF:BA:8A:3B:6E:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/3230332e39362e3232382e302f32332d3234203d3e20313334363535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.96.228.0/23 Signature Algorithm: sha256WithRSAEncryption bf:f8:34:90:86:46:eb:29:ef:41:03:56:0d:c9:34:f8:9b:43: fb:6e:c0:47:a3:89:a2:38:f5:8e:23:a7:ef:23:cc:7e:35:ef: d4:58:8c:e2:db:61:2a:f3:8a:6a:76:50:ac:be:17:07:97:50: c3:3a:4d:50:5a:f2:12:71:63:86:ba:24:ce:28:3c:70:a5:29: fb:48:65:32:8d:ae:c4:1a:d5:94:b2:92:25:22:eb:f0:37:e1: 60:70:38:33:a4:08:98:bc:8b:cd:24:9a:15:5f:5b:98:b1:91: 45:c0:dd:9d:75:6f:4e:13:24:cf:09:a7:88:bf:82:10:a8:2b: b1:38:48:98:f4:d4:32:d7:46:62:e7:78:1f:8a:ff:1f:07:c8: 34:d0:b3:ef:34:63:67:9d:37:e9:b8:31:fc:ad:99:09:9c:8f: 1d:ef:c3:68:61:6a:70:50:3b:5c:8d:f4:7a:c5:f5:05:ca:84: d5:4b:1a:e3:61:29:2a:e4:b8:dd:c4:dc:c3:68:6b:39:11:95: 33:cc:6b:88:22:1c:26:22:01:5c:fe:b1:fd:c7:9c:04:66:e4: 09:e7:2f:59:e9:57:47:12:b8:67:7b:17:6c:84:20:f9:80:0d: 30:2d:59:cb:78:ae:0f:44:46:54:af:89:f5:cd:c2:ee:35:19: 2e:ac:80:e5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcWDyvOqocppkozbr7IJQ/YTVXm8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE0NkNEQ0Q3QTNDN0ExOTE1Qjc4QzVCMkM5RkNGQkE4 QTNCNkU3OTAeFw0yNDA5MTUxMzAxMDJaFw0yNTA5MTQxMzA2MDJaMDMxMTAvBgNV BAMTKDBGNDFCQ0M4MjE1NUQ0NkEyQjdEMDlDODc0QjYxNEQ2QTUyNjAzNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3QSQ4Cii7aySJSp+MypZZvZfh Jg28EO/B+aftDEH1GZ7tsIVXixzPWvuPoochZYlKD0IrbyhTKAPibKU4THhkY433 RixpW2VfarAK98YG4975sxaso1MeZD2aPAe74ZJzphhlfuSWugFXXQmiQFhcPpIm 5MdpGRmIEHsioxWUZa4RkXJo7qIal5Nc1E3hLyErWcmrE+oZsLvRhMIJFfvykY6N 2lENpb2ueuupdgFGWLhVOVcmh0OWZepl2qQRpBnXJfPMS/gKs/aK6nQjI0Lqd/+7 QfJ3hmR8+/I0J8PU9DEaZQ/m+O6Gv3r4HA8VzsQKdUY2/bTm2yQUPxiJrVZfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUD0G8yCFV1GorfQnIdLYU1qUmA20wHwYDVR0j BBgwFoAUIUbNzXo8ehkVt4xbLJ/Puoo7bnkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OTM5ZGJmMS0zMDc1LTQ1MTktYmE5MC1jZWU4ZDM5NzlmY2QvMC8yMTQ2Q0RDRDdB M0M3QTE5MTVCNzhDNUIyQzlGQ0ZCQThBM0I2RTc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjE0NkNEQ0Q3QTNDN0ExOTE1Qjc4QzVCMkM5RkNGQkE4QTNC NkU3OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5MzlkYmYxLTMwNzUtNDUxOS1i YTkwLWNlZThkMzk3OWZjZC8wLzMyMzAzMzJlMzkzNjJlMzIzMjM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM0MzYzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy2DkMA0GCSqG SIb3DQEBCwUAA4IBAQC/+DSQhkbrKe9BA1YNyTT4m0P7bsBHo4miOPWOI6fvI8x+ Ne/UWIzi22Eq84pqdlCsvhcHl1DDOk1QWvIScWOGuiTOKDxwpSn7SGUyja7EGtWU spIlIuvwN+FgcDgzpAiYvIvNJJoVX1uYsZFFwN2ddW9OEyTPCaeIv4IQqCuxOEiY 9NQy10Zi53gfiv8fB8g00LPvNGNnnTfpuDH8rZkJnI8d78NoYWpwUDtcjfR6xfUF yoTVSxrjYSkq5LjdxNzDaGs5EZUzzGuIIhwmIgFc/rH9x5wEZuQJ5y9Z6VdHErhn exdshCD5gA0wLVnLeK4PREZUr4n1zcLuNRkurIDl -----END CERTIFICATE-----Generated at Sun Nov 24 05:18:50 2024 by rpki-client on console-ams.rpki-client.org