$ rpki-client -vvf repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230372e302f32342d3234203d3e203538353532.roa File: 3230322e37322e3230372e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: Cc808Lrm8NF6mVavT8ZAe4/yAgDE2y1l1Iy2+05Vees= Subject key identifier: F9:3D:63:3D:B7:96:89:60:F3:85:A6:71:A2:09:F7:DB:5D:16:F0:FE Certificate issuer: /CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Certificate serial: 76ED90CD62719515AB8009C9500229B9BF6A8F3C Authority key identifier: 9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230372e302f32342d3234203d3e203538353532.roa Signing time: Mon 22 Jul 2024 09:00:01 +0000 ROA not before: Mon 22 Jul 2024 08:55:01 +0000 ROA not after: Mon 21 Jul 2025 09:00:01 +0000 asID: 58552 IP address blocks: 202.72.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:ed:90:cd:62:71:95:15:ab:80:09:c9:50:02:29:b9:bf:6a:8f:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Validity Not Before: Jul 22 08:55:01 2024 GMT Not After : Jul 21 09:00:01 2025 GMT Subject: CN=F93D633DB7968960F385A671A209F7DB5D16F0FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:68:8f:93:9c:0d:d2:64:29:78:9b:8d:cf:36: 6f:da:28:07:17:80:80:d7:9f:4e:e0:bd:49:f8:93: 45:e9:0d:42:51:7a:53:7e:ca:34:d9:92:4a:fb:96: f9:5e:31:a9:47:4b:44:55:61:3e:28:5e:4d:78:2a: df:e8:ad:f3:90:35:fa:8e:5b:ce:35:dc:ab:db:68: 7d:60:bc:69:ec:b9:94:46:09:84:f8:76:d4:ab:98: 8e:40:8f:f4:b7:e9:62:94:1f:18:36:73:bf:73:78: 97:be:43:eb:7a:f1:0e:11:d0:71:03:4d:8f:00:fe: 5a:19:38:dc:b2:25:15:84:79:81:7d:18:8f:14:22: 0b:a7:d5:55:a0:1f:f6:ff:53:dc:d3:15:3b:e8:08: 33:23:04:f6:17:6b:24:1d:35:64:6e:56:b8:ea:22: 85:37:8a:e1:a3:96:8f:14:00:b9:05:58:57:22:8e: 28:c5:d9:39:20:0a:df:ba:32:ee:4f:37:89:bd:ac: 64:54:1b:c1:ac:00:03:ff:38:58:9c:7a:7a:a5:73: ac:fb:17:24:61:35:92:3f:9c:18:c7:ae:ff:ef:7d: e7:6b:d6:23:dc:52:f0:d6:13:e4:f7:d9:1e:bc:06: 5e:6a:db:92:87:51:3b:bc:13:db:d3:42:8a:79:42: a7:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:3D:63:3D:B7:96:89:60:F3:85:A6:71:A2:09:F7:DB:5D:16:F0:FE X509v3 Authority Key Identifier: keyid:9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230372e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.72.207.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:63:8e:a4:89:11:79:68:36:c4:77:61:79:94:91:f5:ef:8c: 07:d4:ff:7a:0f:ec:11:a9:82:ff:78:c3:6a:c3:78:bf:50:1c: 8b:ac:8a:4c:48:62:be:b0:69:00:9e:ff:9a:62:63:50:13:ba: 93:9d:90:32:d7:46:9a:86:99:7c:48:5c:40:65:1b:41:12:50: 44:44:89:63:fb:83:49:a4:9f:3c:57:63:2b:2f:f5:6d:89:c7: 98:d8:7c:0f:ab:6c:e9:ff:f6:87:88:d2:d6:ca:12:3f:b6:82: 87:7e:d5:89:8a:ad:2b:da:64:e4:b7:d0:3e:8a:cf:1e:5e:2d: 47:e2:0a:22:f5:ed:c9:78:39:d0:19:10:99:7f:71:ac:a1:a3: b4:ae:64:29:ba:e3:06:5e:62:d7:0b:5f:48:76:34:64:4f:c0: 33:4f:da:59:c4:0e:3f:ac:22:54:f3:e8:4c:2d:dd:9b:eb:33: 04:f8:bd:92:29:d4:40:7f:a3:a7:45:41:cf:c1:0f:b6:8d:61: d5:88:40:7b:23:66:9a:32:2b:5d:1e:a3:4b:13:2b:e8:02:bd: df:49:a0:3b:a2:35:12:36:c8:de:cb:c8:ea:bd:24:98:26:f1: 2e:50:64:e5:75:7f:c5:f3:63:23:bd:fe:64:9e:99:7e:bd:e9: 7f:1b:89:69 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdu2QzWJxlRWrgAnJUAIpub9qjzwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4 Rjc4ODFFRTAeFw0yNDA3MjIwODU1MDFaFw0yNTA3MjEwOTAwMDFaMDMxMTAvBgNV BAMTKEY5M0Q2MzNEQjc5Njg5NjBGMzg1QTY3MUEyMDlGN0RCNUQxNkYwRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjaI+TnA3SZCl4m43PNm/aKAcX gIDXn07gvUn4k0XpDUJRelN+yjTZkkr7lvleMalHS0RVYT4oXk14Kt/orfOQNfqO W8413KvbaH1gvGnsuZRGCYT4dtSrmI5Aj/S36WKUHxg2c79zeJe+Q+t68Q4R0HED TY8A/loZONyyJRWEeYF9GI8UIgun1VWgH/b/U9zTFTvoCDMjBPYXayQdNWRuVrjq IoU3iuGjlo8UALkFWFcijijF2TkgCt+6Mu5PN4m9rGRUG8GsAAP/OFicenqlc6z7 FyRhNZI/nBjHrv/vfedr1iPcUvDWE+T32R68Bl5q25KHUTu8E9vTQop5QqcLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+T1jPbeWiWDzhaZxogn3210W8P4wHwYDVR0j BBgwFoAUnt5k28QJiIHxG3ASPfUU0494ge4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWFjYjRhOC03ODA0LTQ1MjYtODRkMi04NjliOTFhNjcxOWQvMC85RURFNjREQkM0 MDk4ODgxRjExQjcwMTIzREY1MTREMzhGNzg4MUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4Rjc4 ODFFRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5YWNiNGE4LTc4MDQtNDUyNi04 NGQyLTg2OWI5MWE2NzE5ZC8wLzMyMzAzMjJlMzczMjJlMzIzMDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpIzzANBgkqhkiG 9w0BAQsFAAOCAQEAnWOOpIkReWg2xHdheZSR9e+MB9T/eg/sEamC/3jDasN4v1Ac i6yKTEhivrBpAJ7/mmJjUBO6k52QMtdGmoaZfEhcQGUbQRJQRESJY/uDSaSfPFdj Ky/1bYnHmNh8D6ts6f/2h4jS1soSP7aCh37ViYqtK9pk5LfQPorPHl4tR+IKIvXt yXg50BkQmX9xrKGjtK5kKbrjBl5i1wtfSHY0ZE/AM0/aWcQOP6wiVPPoTC3dm+sz BPi9kinUQH+jp0VBz8EPto1h1YhAeyNmmjIrXR6jSxMr6AK930mgO6I1EjbI3svI 6r0kmCbxLlBk5XV/xfNjI73+ZJ6Zfr3pfxuJaQ== -----END CERTIFICATE-----Generated at Thu Nov 21 01:24:17 2024 by rpki-client on console-ams.rpki-client.org