$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138342e302f32342d3234203d3e203338373530.roa File: 3230322e3137392e3138342e302f32342d3234203d3e203338373530.roa (raw, json) Hash identifier: Yij8hR3THKb1LJQK8YbFbQB/18X0FAtAoVyRKdcSfao= Subject key identifier: 21:17:45:11:16:88:2A:0C:53:47:27:E0:55:17:C2:66:36:40:7D:B7 Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 4CCF5FDCB081CFD381660542C10F03E11F57FCB3 Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138342e302f32342d3234203d3e203338373530.roa Signing time: Mon 11 Nov 2024 08:00:00 +0000 ROA not before: Mon 11 Nov 2024 07:55:00 +0000 ROA not after: Mon 10 Nov 2025 08:00:00 +0000 asID: 38750 IP address blocks: 202.179.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:cf:5f:dc:b0:81:cf:d3:81:66:05:42:c1:0f:03:e1:1f:57:fc:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: Nov 11 07:55:00 2024 GMT Not After : Nov 10 08:00:00 2025 GMT Subject: CN=2117451116882A0C534727E05517C26636407DB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e8:52:a8:42:51:44:af:fc:ed:47:83:aa:3f: 80:f8:c1:d6:60:bf:fa:d9:63:79:01:7b:bd:e8:80: ec:25:d9:07:21:b4:92:2a:45:f3:44:39:2d:96:22: 35:7f:cb:7a:59:3c:dd:55:fa:c1:30:9c:5b:03:79: 52:fc:0f:73:7c:05:9c:46:10:2d:00:14:89:ca:f5: ea:34:9b:67:c8:b8:5d:d2:dc:5f:7d:25:c4:74:9b: 1b:6a:fe:2a:ac:36:02:d8:59:3b:ce:47:e4:b5:02: 7a:7e:e1:0f:db:02:44:96:6d:8c:0f:73:77:dc:7b: ff:00:17:62:b3:e9:68:2d:8e:d6:e8:b5:6a:68:df: 00:9f:64:1b:1a:7b:b2:b2:50:a3:d8:26:7b:c9:39: ae:5d:63:7e:f2:cc:a5:f4:6a:a3:6a:37:e3:dc:0c: 62:1d:fc:6b:4f:4c:6f:dd:19:65:b0:5e:3d:d8:86: dd:ed:53:2c:5d:39:7b:0e:1f:26:1f:1e:9c:a8:aa: 43:4d:3b:ed:d4:57:48:7c:5a:0f:11:09:a7:30:5b: ff:e3:a1:09:80:1a:2c:11:37:83:f5:61:1a:63:53: 65:7c:c4:01:3a:c7:71:b1:a7:ca:9f:81:de:19:3d: d5:cb:30:9f:fc:91:a8:6f:10:4b:0b:29:90:70:f7: 07:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:17:45:11:16:88:2A:0C:53:47:27:E0:55:17:C2:66:36:40:7D:B7 X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138342e302f32342d3234203d3e203338373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.179.184.0/24 Signature Algorithm: sha256WithRSAEncryption 15:49:7e:b4:6c:59:54:c5:3d:6d:26:88:38:ac:98:c8:57:f1: b2:e6:f5:76:ea:b6:fc:dc:69:13:2a:64:b1:1a:ee:10:9e:f3: 58:c7:2d:61:3c:2c:39:a3:2e:fc:e8:65:06:74:f8:40:04:9a: 5d:36:5b:f0:a8:7a:f7:17:53:32:01:9f:c5:06:87:fd:11:90: 47:b3:87:d7:ea:43:9f:a1:c1:c4:79:53:d9:6f:57:9b:a1:9a: c4:91:40:62:87:4a:6a:df:34:ea:f2:28:33:93:b9:27:f0:5c: eb:c2:01:d2:b3:e2:62:b7:45:1f:4b:88:ae:5f:38:e0:46:9f: 28:f3:78:9d:b2:df:54:1a:6e:35:ae:55:c5:96:e5:e6:65:15: 70:94:fb:6a:a9:eb:a9:91:15:ee:c1:a2:76:84:2a:51:65:c3: 9f:58:b0:06:2d:81:14:9f:7f:6a:ac:4a:1f:aa:c7:49:be:33: b6:1b:52:19:03:c3:1b:d2:9f:e2:07:fb:e3:c2:ca:6d:ad:e3: a3:e3:63:60:31:71:85:2e:4b:13:4a:ac:51:26:e1:41:e7:d3: 19:98:a1:1b:47:86:54:61:fe:91:ac:1d:11:2d:08:69:c5:0e: d8:6b:b2:5a:7b:1d:6d:ed:61:d9:f0:7a:18:40:bc:37:47:01: 14:29:fe:cc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTM9f3LCBz9OBZgVCwQ8D4R9X/LMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yNDExMTEwNzU1MDBaFw0yNTExMTAwODAwMDBaMDMxMTAvBgNV BAMTKDIxMTc0NTExMTY4ODJBMEM1MzQ3MjdFMDU1MTdDMjY2MzY0MDdEQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE6FKoQlFEr/ztR4OqP4D4wdZg v/rZY3kBe73ogOwl2QchtJIqRfNEOS2WIjV/y3pZPN1V+sEwnFsDeVL8D3N8BZxG EC0AFInK9eo0m2fIuF3S3F99JcR0mxtq/iqsNgLYWTvOR+S1Anp+4Q/bAkSWbYwP c3fce/8AF2Kz6WgtjtbotWpo3wCfZBsae7KyUKPYJnvJOa5dY37yzKX0aqNqN+Pc DGId/GtPTG/dGWWwXj3Yht3tUyxdOXsOHyYfHpyoqkNNO+3UV0h8Wg8RCacwW//j oQmAGiwRN4P1YRpjU2V8xAE6x3Gxp8qfgd4ZPdXLMJ/8kahvEEsLKZBw9wdbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIRdFERaIKgxTRyfgVRfCZjZAfbcwHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwZjVjZmRiLTc5ODctNDM1MS1i YzJlLTY2YzI0ZjQ5ZjQ0MC8wLzMyMzAzMjJlMzEzNzM5MmUzMTM4MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyrO4MA0GCSqG SIb3DQEBCwUAA4IBAQAVSX60bFlUxT1tJog4rJjIV/Gy5vV26rb83GkTKmSxGu4Q nvNYxy1hPCw5oy786GUGdPhABJpdNlvwqHr3F1MyAZ/FBof9EZBHs4fX6kOfocHE eVPZb1eboZrEkUBih0pq3zTq8igzk7kn8FzrwgHSs+Jit0UfS4iuXzjgRp8o83id st9UGm41rlXFluXmZRVwlPtqqeupkRXuwaJ2hCpRZcOfWLAGLYEUn39qrEofqsdJ vjO2G1IZA8Mb0p/iB/vjwsptreOj42NgMXGFLksTSqxRJuFB59MZmKEbR4ZUYf6R rB0RLQhpxQ7Ya7Jaex1t7WHZ8HoYQLw3RwEUKf7M -----END CERTIFICATE-----Generated at Sun Nov 24 18:20:18 2024 by rpki-client on console-ams.rpki-client.org