$ rpki-client -vvf repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/3230322e34372e3138352e302f32342d3234203d3e20313532303332.roa File: 3230322e34372e3138352e302f32342d3234203d3e20313532303332.roa (raw, json) Hash identifier: Ffr7HSxRfBzoFYefTz5XE3Cvp6ZJFdX7ThQTqqqgwdo= Subject key identifier: 47:DA:31:D8:04:26:11:B1:3C:1D:FD:5A:27:83:A7:7F:65:A8:D1:C9 Certificate issuer: /CN=CEC26429DF308615870C1F47E8CDE4F9B4A37CE8 Certificate serial: 1F21728F46C8C73814293C6538430864D2CA9BF8 Authority key identifier: CE:C2:64:29:DF:30:86:15:87:0C:1F:47:E8:CD:E4:F9:B4:A3:7C:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/3230322e34372e3138352e302f32342d3234203d3e20313532303332.roa Signing time: Fri 01 Nov 2024 03:32:45 +0000 ROA not before: Fri 01 Nov 2024 03:27:45 +0000 ROA not after: Fri 31 Oct 2025 03:32:45 +0000 asID: 152032 IP address blocks: 202.47.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.crl rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 18:32:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:21:72:8f:46:c8:c7:38:14:29:3c:65:38:43:08:64:d2:ca:9b:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEC26429DF308615870C1F47E8CDE4F9B4A37CE8 Validity Not Before: Nov 1 03:27:45 2024 GMT Not After : Oct 31 03:32:45 2025 GMT Subject: CN=47DA31D8042611B13C1DFD5A2783A77F65A8D1C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:7d:65:f3:4f:1e:58:dd:2f:fe:22:d7:92:50: c7:3e:3a:26:5a:68:a5:22:68:0b:f5:4a:b6:17:8e: 13:11:a9:f9:5e:8e:b9:c6:97:05:47:ad:98:de:e0: 80:40:d2:b0:a7:cc:f4:0a:49:87:e7:46:07:38:c7: 92:cc:92:06:41:e1:7d:76:dc:0b:3c:f9:02:82:b5: d5:a8:96:8b:11:80:94:26:b3:6d:79:89:cf:0a:2f: 8e:f8:db:26:86:4d:d5:84:56:68:ff:06:1b:7f:02: bd:ff:01:57:18:da:9c:6a:5b:51:16:92:97:1a:e5: 3c:a9:98:c6:6c:c9:cc:54:cb:b3:81:3f:ec:7b:b9: 0e:cc:c9:00:a7:8a:d4:9b:bf:ae:4d:62:88:ad:e0: 19:45:86:8e:a2:63:6f:70:09:64:9f:e0:44:b2:b5: b5:70:70:1d:9d:c0:63:be:d7:08:f3:38:46:1e:fd: 72:23:49:1b:02:86:5a:9c:37:a7:b7:fc:dd:78:61: 81:23:88:00:ab:f6:ef:fa:e4:46:7a:79:e5:aa:3d: 45:42:8d:ef:ce:bb:6f:f5:fa:ba:41:95:f8:b7:c2: df:be:bb:f3:49:70:22:ac:5c:e1:d7:d7:2f:80:6e: 2c:56:b2:9f:d8:55:d3:21:24:9a:d9:ba:a6:5a:6f: 3d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:DA:31:D8:04:26:11:B1:3C:1D:FD:5A:27:83:A7:7F:65:A8:D1:C9 X509v3 Authority Key Identifier: keyid:CE:C2:64:29:DF:30:86:15:87:0C:1F:47:E8:CD:E4:F9:B4:A3:7C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/3230322e34372e3138352e302f32342d3234203d3e20313532303332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.185.0/24 Signature Algorithm: sha256WithRSAEncryption 06:8e:c1:91:52:39:02:ed:5e:56:6f:62:79:65:19:91:79:40: ab:e1:c2:ef:92:8c:01:45:02:af:82:7d:3a:86:35:88:42:aa: f4:a2:65:12:1d:7f:c8:4a:9d:87:35:d8:d4:ff:83:c0:36:a2: ba:03:b4:48:fe:21:73:64:1f:b2:c5:e7:eb:48:6d:2f:bd:17: 79:1b:b0:62:05:3c:de:1c:46:63:41:00:9c:c6:3b:5c:fc:e1: d0:86:a4:6c:8d:1c:3e:3b:21:f0:74:41:06:76:37:a9:b1:b5: ca:c8:0e:9a:20:ec:46:74:0f:37:a0:82:96:e4:48:2a:4c:2a: 40:00:e8:2e:bc:e1:4d:7f:5a:2d:0e:77:96:36:7d:62:f3:84: 59:95:ff:e9:5b:db:78:a6:07:3e:90:80:f7:ed:e6:65:73:07: 55:23:69:38:76:10:81:25:ba:92:30:5f:3b:70:c0:20:62:66: aa:35:59:cf:68:29:7e:16:cc:46:92:3c:f7:39:f1:30:ee:69: f0:cf:63:d5:e0:e8:8b:3d:85:70:8a:2d:8b:09:e9:00:31:68: 0d:44:46:2c:42:98:c6:4a:3f:93:78:18:6c:0b:99:9f:09:ce: b0:61:f5:58:a9:1b:96:01:ee:1b:07:21:bc:98:29:36:60:81: 64:cc:19:4a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHyFyj0bIxzgUKTxlOEMIZNLKm/gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VDMjY0MjlERjMwODYxNTg3MEMxRjQ3RThDREU0RjlC NEEzN0NFODAeFw0yNDExMDEwMzI3NDVaFw0yNTEwMzEwMzMyNDVaMDMxMTAvBgNV BAMTKDQ3REEzMUQ4MDQyNjExQjEzQzFERkQ1QTI3ODNBNzdGNjVBOEQxQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1fWXzTx5Y3S/+IteSUMc+OiZa aKUiaAv1SrYXjhMRqflejrnGlwVHrZje4IBA0rCnzPQKSYfnRgc4x5LMkgZB4X12 3As8+QKCtdWolosRgJQms215ic8KL4742yaGTdWEVmj/Bht/Ar3/AVcY2pxqW1EW kpca5TypmMZsycxUy7OBP+x7uQ7MyQCnitSbv65NYoit4BlFho6iY29wCWSf4ESy tbVwcB2dwGO+1wjzOEYe/XIjSRsChlqcN6e3/N14YYEjiACr9u/65EZ6eeWqPUVC je/Ou2/1+rpBlfi3wt++u/NJcCKsXOHX1y+AbixWsp/YVdMhJJrZuqZabz0bAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUR9ox2AQmEbE8Hf1aJ4Onf2Wo0ckwHwYDVR0j BBgwFoAUzsJkKd8whhWHDB9H6M3k+bSjfOgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTVmZGY2Yy0wZDAxLTQ5MmItODAwNC1hNDhlZTVhMTI0NzQvMC9DRUMyNjQyOURG MzA4NjE1ODcwQzFGNDdFOENERTRGOUI0QTM3Q0U4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VDMjY0MjlERjMwODYxNTg3MEMxRjQ3RThDREU0RjlCNEEz N0NFOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlNWZkZjZjLTBkMDEtNDkyYi04 MDA0LWE0OGVlNWExMjQ3NC8wLzMyMzAzMjJlMzQzNzJlMzEzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyi+5MA0GCSqG SIb3DQEBCwUAA4IBAQAGjsGRUjkC7V5Wb2J5ZRmReUCr4cLvkowBRQKvgn06hjWI Qqr0omUSHX/ISp2HNdjU/4PANqK6A7RI/iFzZB+yxefrSG0vvRd5G7BiBTzeHEZj QQCcxjtc/OHQhqRsjRw+OyHwdEEGdjepsbXKyA6aIOxGdA83oIKW5EgqTCpAAOgu vOFNf1otDneWNn1i84RZlf/pW9t4pgc+kID37eZlcwdVI2k4dhCBJbqSMF87cMAg YmaqNVnPaCl+FsxGkjz3OfEw7mnwz2PV4OiLPYVwii2LCekAMWgNREYsQpjGSj+T eBhsC5mfCc6wYfVYqRuWAe4bByG8mCk2YIFkzBlK -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:02 2024 by rpki-client on console-ams.rpki-client.org