$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138362e302f32342d3234203d3e203338373530.roa File: 3230322e3137392e3138362e302f32342d3234203d3e203338373530.roa (raw, json) Hash identifier: yZ3S3VlEg8XhUnYFrYIEtsQAe3osggFJf6UwQXimraQ= Subject key identifier: 7F:9B:8B:FE:F7:D8:45:FA:E2:7B:99:EF:9B:03:3F:57:E0:C9:77:34 Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 0E0C8432C5A602333B65AAB1EE745F8D84781AC2 Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138362e302f32342d3234203d3e203338373530.roa Signing time: Mon 11 Nov 2024 08:00:00 +0000 ROA not before: Mon 11 Nov 2024 07:55:00 +0000 ROA not after: Mon 10 Nov 2025 08:00:00 +0000 asID: 38750 IP address blocks: 202.179.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:0c:84:32:c5:a6:02:33:3b:65:aa:b1:ee:74:5f:8d:84:78:1a:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: Nov 11 07:55:00 2024 GMT Not After : Nov 10 08:00:00 2025 GMT Subject: CN=7F9B8BFEF7D845FAE27B99EF9B033F57E0C97734 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:18:a3:19:3c:39:40:16:a7:a8:7c:5d:18:e7: 86:6c:a0:d0:3d:2c:47:d8:c3:4c:ff:44:da:6c:c1: c9:e8:a2:fb:f3:d2:3f:e4:ea:79:04:4b:93:25:d9: c3:1a:aa:ac:e9:28:f2:ff:34:b9:8d:60:92:ed:b7: f9:f4:c1:05:f3:37:ca:3e:a0:e5:54:e9:7c:6b:66: d7:5d:e2:69:47:aa:b3:b4:53:5b:fc:9e:f9:e4:6e: 25:be:a5:a8:45:f2:72:4f:ee:7a:31:bc:f1:13:a6: 26:b1:f5:b3:67:61:0f:7a:93:41:a6:38:b3:8b:96: 80:0b:4e:39:70:a9:7a:ac:85:9c:eb:ab:76:44:27: 42:46:69:3c:67:b2:f5:8f:27:c0:82:87:ae:dc:ce: d0:98:9b:b6:95:26:56:19:fd:81:bd:4c:57:6d:7a: b5:2e:1f:70:24:27:d0:3e:92:33:11:7e:f0:37:51: e6:45:cf:70:c6:9b:90:e8:90:dd:e6:05:5c:59:97: fe:06:70:e5:de:ea:79:72:2f:2c:0c:cf:5c:7d:b5: df:46:87:92:19:47:52:41:b9:9f:f0:b0:ff:d6:c3: b6:c8:cf:a3:ca:1a:ab:5a:8f:44:d5:7d:6c:2b:77: 8a:44:d0:dc:ca:c2:9d:22:2b:25:3d:ec:c4:3a:3b: 95:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:9B:8B:FE:F7:D8:45:FA:E2:7B:99:EF:9B:03:3F:57:E0:C9:77:34 X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138362e302f32342d3234203d3e203338373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.179.186.0/24 Signature Algorithm: sha256WithRSAEncryption 54:21:4c:21:6f:db:40:58:66:ee:e1:05:2f:2d:d2:41:e8:cb: 42:dd:7f:40:7b:de:3c:ec:e5:23:29:cd:67:d4:cd:a3:90:43: 23:e6:6b:c7:17:78:49:b8:c0:0e:f5:a0:ab:7e:6a:a6:eb:3b: b3:92:d8:f8:2f:46:ae:8a:14:86:3e:41:bc:fe:03:d5:ae:dd: 07:47:e3:a2:5b:05:15:c3:ba:73:67:03:19:ce:d6:bc:02:a6: 11:45:36:30:bd:fc:6a:29:25:22:bf:d0:dc:e2:77:c2:68:28: f6:d1:cf:ed:4c:78:d1:78:8f:56:c9:ab:48:49:d7:3b:54:b6: 5f:d9:63:ee:2a:ce:eb:ea:f0:eb:46:35:7e:8c:8d:09:34:25: cb:7c:58:ff:8a:51:50:eb:68:5f:9c:b8:55:f4:50:b6:e9:81: f1:8b:b8:08:d3:3c:bc:fc:84:f7:7b:56:df:9f:81:68:d4:16: 25:5b:ee:17:99:9f:d6:5a:d9:e1:72:7b:d8:e1:83:45:b2:4f: 74:06:2a:f8:57:73:0e:b8:84:3c:0a:9e:e5:bd:7b:cb:1e:fd: 19:65:32:8e:e8:27:68:79:15:44:bb:fa:96:9d:99:a1:4c:a4: 18:5c:75:4c:a6:8c:a7:c1:9d:73:9f:1a:b1:98:2d:0d:af:89: f5:81:a1:ff -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDgyEMsWmAjM7Zaqx7nRfjYR4GsIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yNDExMTEwNzU1MDBaFw0yNTExMTAwODAwMDBaMDMxMTAvBgNV BAMTKDdGOUI4QkZFRjdEODQ1RkFFMjdCOTlFRjlCMDMzRjU3RTBDOTc3MzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXGKMZPDlAFqeofF0Y54ZsoNA9 LEfYw0z/RNpswcnoovvz0j/k6nkES5Ml2cMaqqzpKPL/NLmNYJLtt/n0wQXzN8o+ oOVU6XxrZtdd4mlHqrO0U1v8nvnkbiW+pahF8nJP7noxvPETpiax9bNnYQ96k0Gm OLOLloALTjlwqXqshZzrq3ZEJ0JGaTxnsvWPJ8CCh67cztCYm7aVJlYZ/YG9TFdt erUuH3AkJ9A+kjMRfvA3UeZFz3DGm5DokN3mBVxZl/4GcOXe6nlyLywMz1x9td9G h5IZR1JBuZ/wsP/Ww7bIz6PKGqtaj0TVfWwrd4pE0NzKwp0iKyU97MQ6O5UFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUf5uL/vfYRfrie5nvmwM/V+DJdzQwHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwZjVjZmRiLTc5ODctNDM1MS1i YzJlLTY2YzI0ZjQ5ZjQ0MC8wLzMyMzAzMjJlMzEzNzM5MmUzMTM4MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyrO6MA0GCSqG SIb3DQEBCwUAA4IBAQBUIUwhb9tAWGbu4QUvLdJB6MtC3X9Ae9487OUjKc1n1M2j kEMj5mvHF3hJuMAO9aCrfmqm6zuzktj4L0auihSGPkG8/gPVrt0HR+OiWwUVw7pz ZwMZzta8AqYRRTYwvfxqKSUiv9Dc4nfCaCj20c/tTHjReI9WyatISdc7VLZf2WPu Ks7r6vDrRjV+jI0JNCXLfFj/ilFQ62hfnLhV9FC26YHxi7gI0zy8/IT3e1bfn4Fo 1BYlW+4XmZ/WWtnhcnvY4YNFsk90Bir4V3MOuIQ8Cp7lvXvLHv0ZZTKO6CdoeRVE u/qWnZmhTKQYXHVMpoynwZ1znxqxmC0Nr4n1gaH/ -----END CERTIFICATE-----Generated at Sun Nov 24 18:20:18 2024 by rpki-client on console-ams.rpki-client.org