$ rpki-client -vvf repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/3230322e34372e3138342e302f32342d3234203d3e20313532303332.roa File: 3230322e34372e3138342e302f32342d3234203d3e20313532303332.roa (raw, json) Hash identifier: Ev5Zm+aPL92pxSenRQlxJLjnfs8255qKsPZ8oViu6OY= Subject key identifier: 0E:81:C8:9D:2A:EE:F8:8B:FD:07:5E:55:A4:56:49:B2:BA:72:EF:E9 Certificate issuer: /CN=CEC26429DF308615870C1F47E8CDE4F9B4A37CE8 Certificate serial: 48F8CBC6E84A9BD031E7D1064276AD9F17A5D787 Authority key identifier: CE:C2:64:29:DF:30:86:15:87:0C:1F:47:E8:CD:E4:F9:B4:A3:7C:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/3230322e34372e3138342e302f32342d3234203d3e20313532303332.roa Signing time: Fri 01 Nov 2024 03:32:17 +0000 ROA not before: Fri 01 Nov 2024 03:27:17 +0000 ROA not after: Fri 31 Oct 2025 03:32:17 +0000 asID: 152032 IP address blocks: 202.47.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.crl rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 18:32:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:f8:cb:c6:e8:4a:9b:d0:31:e7:d1:06:42:76:ad:9f:17:a5:d7:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEC26429DF308615870C1F47E8CDE4F9B4A37CE8 Validity Not Before: Nov 1 03:27:17 2024 GMT Not After : Oct 31 03:32:17 2025 GMT Subject: CN=0E81C89D2AEEF88BFD075E55A45649B2BA72EFE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:62:1e:d1:95:a1:95:e8:bb:2c:d3:28:d4:ad: 49:60:57:b9:d2:a0:14:de:16:af:2a:ec:c9:8b:3c: ea:b3:0d:55:e4:45:34:bc:a5:5f:11:4a:e2:8b:e6: 7b:9a:0b:56:05:f9:b3:4e:ba:27:d9:04:22:36:6f: ed:4a:1c:f2:08:68:aa:10:e2:11:d5:95:c8:aa:ae: d7:b6:a6:09:18:47:c0:7f:7a:0f:aa:b8:cd:86:4d: 82:2a:74:dc:d5:5d:0b:74:1f:90:bf:96:8b:16:94: 82:7f:cf:78:d5:c2:4f:4e:bb:1e:c3:92:e7:e7:03: b7:f8:44:31:d7:59:df:0b:96:14:b3:5d:45:d9:23: 08:9b:59:d5:23:c3:ec:93:eb:3d:39:2b:ac:3b:39: 2a:8f:30:77:78:04:a5:2b:e4:8c:52:f5:1c:5f:ae: 88:26:8d:ab:94:bc:e3:7d:ec:ce:1d:69:a1:d3:ad: 9b:57:e3:ab:86:10:b3:46:35:f5:5e:71:ac:62:4e: d3:16:9a:e1:ec:79:f2:29:25:b7:4b:f1:ac:8c:9c: 55:07:22:32:9e:fb:6c:7a:01:9a:55:f8:4f:b2:de: e9:27:21:ee:a3:5c:16:42:f2:e6:0a:f2:6d:97:1b: fa:e8:df:66:76:4b:e4:42:51:80:97:41:01:8d:a2: 50:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:81:C8:9D:2A:EE:F8:8B:FD:07:5E:55:A4:56:49:B2:BA:72:EF:E9 X509v3 Authority Key Identifier: keyid:CE:C2:64:29:DF:30:86:15:87:0C:1F:47:E8:CD:E4:F9:B4:A3:7C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/3230322e34372e3138342e302f32342d3234203d3e20313532303332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.184.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:c8:e8:62:d9:22:bd:05:ed:84:b6:99:fa:5c:59:f2:ee:10: 06:6d:30:c1:53:a6:f5:6f:f5:de:77:ad:25:36:10:be:e6:e6: b9:0b:d4:88:f0:4c:7c:15:ae:da:ea:85:a0:88:7e:3e:ca:a4: 1c:9f:c6:6f:2e:b0:de:c7:bc:44:eb:18:28:ea:de:4b:3f:da: 00:1b:5e:f7:82:cc:92:00:0a:99:3a:22:d4:15:e0:c3:09:db: c4:d3:40:76:eb:2a:9e:3c:37:2c:f7:52:29:d5:78:57:80:dd: ca:c6:4d:1c:dd:d7:7f:24:3c:63:94:d8:cb:53:40:3e:36:ae: 89:af:75:48:1c:6c:cc:ec:4d:88:e8:ac:c2:6c:2d:1c:c4:bc: 30:d2:e4:9a:6d:08:6e:11:7b:3e:b0:b2:27:f8:d2:ac:be:3d: 05:56:62:46:29:9d:4c:3b:10:0a:97:2b:d0:28:92:30:43:27: 65:4d:c4:25:a3:1d:54:61:aa:70:eb:ef:ee:cc:17:a0:75:ea: 39:89:b8:4c:be:4c:8a:10:22:ce:72:6b:ab:f9:65:0d:a1:a1: 7f:27:ef:3e:80:45:d0:34:bf:cd:c3:f5:82:7a:63:e0:d5:02: 15:e1:3f:dc:a6:27:93:84:5a:d6:69:9c:d5:be:68:1c:08:04: ff:87:17:26 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSPjLxuhKm9Ax59EGQnatnxel14cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VDMjY0MjlERjMwODYxNTg3MEMxRjQ3RThDREU0RjlC NEEzN0NFODAeFw0yNDExMDEwMzI3MTdaFw0yNTEwMzEwMzMyMTdaMDMxMTAvBgNV BAMTKDBFODFDODlEMkFFRUY4OEJGRDA3NUU1NUE0NTY0OUIyQkE3MkVGRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeYh7RlaGV6Lss0yjUrUlgV7nS oBTeFq8q7MmLPOqzDVXkRTS8pV8RSuKL5nuaC1YF+bNOuifZBCI2b+1KHPIIaKoQ 4hHVlciqrte2pgkYR8B/eg+quM2GTYIqdNzVXQt0H5C/losWlIJ/z3jVwk9Oux7D kufnA7f4RDHXWd8LlhSzXUXZIwibWdUjw+yT6z05K6w7OSqPMHd4BKUr5IxS9Rxf rogmjauUvON97M4daaHTrZtX46uGELNGNfVecaxiTtMWmuHsefIpJbdL8ayMnFUH IjKe+2x6AZpV+E+y3uknIe6jXBZC8uYK8m2XG/ro32Z2S+RCUYCXQQGNolBZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDoHInSru+Iv9B15VpFZJsrpy7+kwHwYDVR0j BBgwFoAUzsJkKd8whhWHDB9H6M3k+bSjfOgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTVmZGY2Yy0wZDAxLTQ5MmItODAwNC1hNDhlZTVhMTI0NzQvMC9DRUMyNjQyOURG MzA4NjE1ODcwQzFGNDdFOENERTRGOUI0QTM3Q0U4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VDMjY0MjlERjMwODYxNTg3MEMxRjQ3RThDREU0RjlCNEEz N0NFOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlNWZkZjZjLTBkMDEtNDkyYi04 MDA0LWE0OGVlNWExMjQ3NC8wLzMyMzAzMjJlMzQzNzJlMzEzODM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyi+4MA0GCSqG SIb3DQEBCwUAA4IBAQBcyOhi2SK9Be2Etpn6XFny7hAGbTDBU6b1b/Xed60lNhC+ 5ua5C9SI8Ex8Fa7a6oWgiH4+yqQcn8ZvLrDex7xE6xgo6t5LP9oAG173gsySAAqZ OiLUFeDDCdvE00B26yqePDcs91Ip1XhXgN3Kxk0c3dd/JDxjlNjLU0A+Nq6Jr3VI HGzM7E2I6KzCbC0cxLww0uSabQhuEXs+sLIn+NKsvj0FVmJGKZ1MOxAKlyvQKJIw QydlTcQlox1UYapw6+/uzBegdeo5ibhMvkyKECLOcmur+WUNoaF/J+8+gEXQNL/N w/WCemPg1QIV4T/cpieThFrWaZzVvmgcCAT/hxcm -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:02 2024 by rpki-client on console-ams.rpki-client.org