$ rpki-client -vvf repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139362e302f32342d3234203d3e203138313533.roa File: 3230322e37322e3139362e302f32342d3234203d3e203138313533.roa (raw, json) Hash identifier: dhbQVwIPrzMJZo0Z8qXmW4C8csE4RdguXDDvUzny8YY= Subject key identifier: E0:7C:3E:7F:7F:F9:D0:16:60:74:B2:EE:7E:A2:E5:59:62:33:B6:8E Certificate issuer: /CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Certificate serial: 099DBD7BA98675483D30BF78CA9A38B25E1A861F Authority key identifier: 9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139362e302f32342d3234203d3e203138313533.roa Signing time: Mon 01 Jul 2024 01:03:54 +0000 ROA not before: Mon 01 Jul 2024 00:58:54 +0000 ROA not after: Mon 30 Jun 2025 01:03:54 +0000 asID: 18153 IP address blocks: 202.72.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:9d:bd:7b:a9:86:75:48:3d:30:bf:78:ca:9a:38:b2:5e:1a:86:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Validity Not Before: Jul 1 00:58:54 2024 GMT Not After : Jun 30 01:03:54 2025 GMT Subject: CN=E07C3E7F7FF9D0166074B2EE7EA2E5596233B68E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:1f:72:45:ef:b3:30:dc:99:27:7a:c9:e6:73: f7:93:4c:0b:a4:73:02:fc:fe:ff:6d:5f:0a:e0:ee: fc:d1:7c:06:b5:cd:9a:cc:1d:5b:07:54:a3:96:ce: a4:d3:96:a9:f4:a8:f6:4f:10:b1:d3:c7:70:34:22: c4:ca:6f:55:a5:f2:58:84:4f:75:99:e7:ca:15:03: 5f:94:3a:33:ff:50:3a:b3:c4:79:61:08:0f:50:fe: 5e:d6:2d:43:5a:67:6c:5e:7a:28:cf:dc:40:7d:55: 0e:f9:81:bb:ea:7d:80:2e:cd:dd:95:32:96:97:07: a1:cd:56:3a:94:e1:b8:fb:59:89:0b:36:cb:43:9c: d3:19:4f:7d:a2:d4:a7:3f:3f:6c:e5:80:f5:8f:9a: ab:63:43:99:10:0a:8e:8f:c6:35:7d:52:bf:62:be: 70:bd:93:23:04:44:62:4a:c1:66:50:bd:b5:b8:86: 26:be:1d:ef:5d:d5:31:06:95:7c:ef:cb:37:3c:87: dc:a0:af:cc:84:b0:6c:77:6e:08:f1:77:d1:aa:82: cf:16:ab:47:1a:96:2a:12:8d:1b:78:bc:7e:96:a9: 03:b0:48:60:47:e5:ad:50:55:b1:df:3e:a1:5b:ee: 80:a9:87:f0:5c:bd:25:83:12:29:55:95:df:e6:7b: 0a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:7C:3E:7F:7F:F9:D0:16:60:74:B2:EE:7E:A2:E5:59:62:33:B6:8E X509v3 Authority Key Identifier: keyid:9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139362e302f32342d3234203d3e203138313533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.72.196.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:8d:7f:6a:79:a6:64:a8:19:13:4c:7d:d4:42:0e:3d:6e:f4: e6:10:64:7c:87:77:62:13:2d:47:52:78:b4:f5:bc:0c:62:37: 8e:ee:a5:ca:e9:5f:3f:9f:59:c2:cb:df:01:8f:f3:97:b6:84: d6:43:a6:26:be:7d:19:3c:7d:17:5b:d4:6d:c5:d2:92:85:be: 9b:94:a0:c0:14:dc:11:8f:af:3b:60:dc:47:f3:e8:4d:39:04: f9:02:55:68:8a:4d:95:a0:30:6b:20:4a:cf:da:3a:3c:ff:0e: 47:cf:f4:f0:31:53:8d:5d:a4:13:95:da:79:35:ec:1d:ec:ee: c9:56:42:04:87:19:17:95:b0:9e:25:c0:cc:c6:34:e2:f5:19: f7:55:8f:8c:d9:9c:69:89:60:c4:0d:4f:7b:80:8f:bd:4d:91: 29:fd:32:b6:69:a2:b5:f5:0e:b1:20:6d:9f:08:1c:a7:01:5f: 90:f9:52:8c:8e:01:55:9d:4c:8b:cb:01:7a:55:d7:8e:7a:22: e1:a4:08:1b:af:5c:18:65:ba:51:97:53:ae:7b:62:c6:d6:22: 0f:0e:03:87:f3:e1:41:fe:52:f3:47:1a:df:4c:c8:42:72:5c: 69:ff:44:52:95:8c:bd:84:2e:4f:aa:22:30:4a:c5:9c:c5:a4: 93:47:d3:c5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCZ29e6mGdUg9ML94ypo4sl4ahh8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4 Rjc4ODFFRTAeFw0yNDA3MDEwMDU4NTRaFw0yNTA2MzAwMTAzNTRaMDMxMTAvBgNV BAMTKEUwN0MzRTdGN0ZGOUQwMTY2MDc0QjJFRTdFQTJFNTU5NjIzM0I2OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdH3JF77Mw3Jknesnmc/eTTAuk cwL8/v9tXwrg7vzRfAa1zZrMHVsHVKOWzqTTlqn0qPZPELHTx3A0IsTKb1Wl8liE T3WZ58oVA1+UOjP/UDqzxHlhCA9Q/l7WLUNaZ2xeeijP3EB9VQ75gbvqfYAuzd2V MpaXB6HNVjqU4bj7WYkLNstDnNMZT32i1Kc/P2zlgPWPmqtjQ5kQCo6PxjV9Ur9i vnC9kyMERGJKwWZQvbW4hia+He9d1TEGlXzvyzc8h9ygr8yEsGx3bgjxd9Gqgs8W q0calioSjRt4vH6WqQOwSGBH5a1QVbHfPqFb7oCph/BcvSWDEilVld/mewoxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4Hw+f3/50BZgdLLufqLlWWIzto4wHwYDVR0j BBgwFoAUnt5k28QJiIHxG3ASPfUU0494ge4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWFjYjRhOC03ODA0LTQ1MjYtODRkMi04NjliOTFhNjcxOWQvMC85RURFNjREQkM0 MDk4ODgxRjExQjcwMTIzREY1MTREMzhGNzg4MUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4Rjc4 ODFFRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5YWNiNGE4LTc4MDQtNDUyNi04 NGQyLTg2OWI5MWE2NzE5ZC8wLzMyMzAzMjJlMzczMjJlMzEzOTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMxMzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpIxDANBgkqhkiG 9w0BAQsFAAOCAQEAbY1/anmmZKgZE0x91EIOPW705hBkfId3YhMtR1J4tPW8DGI3 ju6lyulfP59ZwsvfAY/zl7aE1kOmJr59GTx9F1vUbcXSkoW+m5SgwBTcEY+vO2Dc R/PoTTkE+QJVaIpNlaAwayBKz9o6PP8OR8/08DFTjV2kE5XaeTXsHezuyVZCBIcZ F5WwniXAzMY04vUZ91WPjNmcaYlgxA1Pe4CPvU2RKf0ytmmitfUOsSBtnwgcpwFf kPlSjI4BVZ1Mi8sBelXXjnoi4aQIG69cGGW6UZdTrntixtYiDw4Dh/PhQf5S80ca 30zIQnJcaf9EUpWMvYQuT6oiMErFnMWkk0fTxQ== -----END CERTIFICATE-----Generated at Thu Nov 21 01:29:57 2024 by rpki-client on console-fra.rpki-client.org