$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138382e302f32342d3234203d3e203338373530.roa File: 3230322e3137392e3138382e302f32342d3234203d3e203338373530.roa (raw, json) Hash identifier: YKogFc3LCv2smSbI9VS3VlSDt3/kbrsDgP8adJABQHE= Subject key identifier: 75:ED:4B:06:07:D5:A2:95:F4:30:A6:06:30:09:B1:1B:A9:F5:2F:A7 Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 55D553B7CED52D449E760B9721A07E8E779325F9 Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138382e302f32342d3234203d3e203338373530.roa Signing time: Mon 11 Nov 2024 08:00:00 +0000 ROA not before: Mon 11 Nov 2024 07:55:00 +0000 ROA not after: Mon 10 Nov 2025 08:00:00 +0000 asID: 38750 IP address blocks: 202.179.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:d5:53:b7:ce:d5:2d:44:9e:76:0b:97:21:a0:7e:8e:77:93:25:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: Nov 11 07:55:00 2024 GMT Not After : Nov 10 08:00:00 2025 GMT Subject: CN=75ED4B0607D5A295F430A6063009B11BA9F52FA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:0b:17:fb:27:0a:2d:14:64:6a:20:74:25:7c: 28:46:07:fb:0e:95:96:93:cd:a0:08:c9:43:4d:c4: c3:cc:a2:30:f3:eb:15:47:c7:81:4e:8f:51:1a:64: ac:a0:17:8e:67:84:ab:15:64:c5:d2:c5:5c:b8:f2: 4f:ff:8d:ee:e2:9d:00:84:5f:42:93:6b:a3:4f:02: c9:a4:dc:72:3c:a0:d9:3b:2c:18:af:35:60:f6:a6: 96:e0:f7:24:29:32:1d:89:02:c2:b1:5c:78:b9:01: 90:f2:57:0c:d1:a8:2c:21:f8:c9:8b:a7:9d:a7:55: 0c:b3:5b:47:df:7e:27:dc:fa:c0:e7:b9:25:d9:e9: 3a:fa:c7:3b:7d:36:6a:8e:d2:27:10:69:cf:b1:48: 66:84:87:cd:8e:1a:fd:10:56:80:b5:ab:ea:08:76: c5:c5:61:bb:2c:7e:d9:43:47:6d:c7:4d:d2:4e:62: bc:7f:33:e8:3a:84:c2:ef:82:1d:05:fb:f8:74:14: 91:5a:02:2a:64:a1:48:e4:22:19:13:36:ea:84:5c: e0:20:55:6c:c6:a3:68:ff:cc:71:ef:18:04:d4:1f: 57:02:e9:11:f5:29:6f:cd:68:74:fa:6e:f8:c1:a3: 5a:42:51:72:d1:80:88:91:67:45:9e:72:8e:2b:31: 6c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:ED:4B:06:07:D5:A2:95:F4:30:A6:06:30:09:B1:1B:A9:F5:2F:A7 X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138382e302f32342d3234203d3e203338373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.179.188.0/24 Signature Algorithm: sha256WithRSAEncryption 48:1b:c8:b1:ed:28:e9:b9:78:28:82:d7:89:37:bd:ad:41:a4: 2c:d3:cd:c4:39:0e:5c:42:a9:bf:5e:bf:70:36:f6:45:f9:5a: 5e:1d:b1:68:44:24:d2:fa:0b:96:43:20:62:bc:81:e9:3d:92: b2:56:b7:af:e5:ad:1f:d5:aa:6f:38:c9:00:fd:90:ee:62:1a: f6:d1:50:66:54:b3:a8:ed:c3:a7:ff:35:98:92:bd:a7:ac:5b: b3:14:1a:75:7e:0d:93:7e:52:f2:42:26:b8:ec:20:79:49:35: 61:5a:d0:fa:7d:69:d5:31:2b:4f:8b:ab:b4:ea:6b:9d:cd:cb: 18:b3:02:44:80:70:c0:48:cc:c6:bf:3d:df:b9:8e:81:5d:3f: 41:3f:60:33:4a:04:65:8d:86:15:94:13:f3:8a:44:c9:50:e2: 67:5a:64:30:5d:a0:42:68:08:42:45:ca:39:c1:53:4c:e9:26: bc:dc:3c:16:f0:5c:04:8a:0e:d9:f3:4f:3d:20:16:7f:2e:8c: 1b:ec:83:00:f8:fa:a1:af:b0:7f:7e:10:7e:0c:b8:06:ce:68: 34:cc:ec:ab:a4:8f:bc:2b:73:5f:7d:f7:b1:69:d4:a3:0e:5e: f4:02:b2:8b:e5:2b:f3:32:02:0d:4f:f7:96:94:0b:65:70:d5: f6:b3:9b:cc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVdVTt87VLUSedguXIaB+jneTJfkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yNDExMTEwNzU1MDBaFw0yNTExMTAwODAwMDBaMDMxMTAvBgNV BAMTKDc1RUQ0QjA2MDdENUEyOTVGNDMwQTYwNjMwMDlCMTFCQTlGNTJGQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD5Cxf7JwotFGRqIHQlfChGB/sO lZaTzaAIyUNNxMPMojDz6xVHx4FOj1EaZKygF45nhKsVZMXSxVy48k//je7inQCE X0KTa6NPAsmk3HI8oNk7LBivNWD2ppbg9yQpMh2JAsKxXHi5AZDyVwzRqCwh+MmL p52nVQyzW0fffifc+sDnuSXZ6Tr6xzt9NmqO0icQac+xSGaEh82OGv0QVoC1q+oI dsXFYbssftlDR23HTdJOYrx/M+g6hMLvgh0F+/h0FJFaAipkoUjkIhkTNuqEXOAg VWzGo2j/zHHvGATUH1cC6RH1KW/NaHT6bvjBo1pCUXLRgIiRZ0Weco4rMWyRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUde1LBgfVopX0MKYGMAmxG6n1L6cwHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwZjVjZmRiLTc5ODctNDM1MS1i YzJlLTY2YzI0ZjQ5ZjQ0MC8wLzMyMzAzMjJlMzEzNzM5MmUzMTM4MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyrO8MA0GCSqG SIb3DQEBCwUAA4IBAQBIG8ix7SjpuXgogteJN72tQaQs083EOQ5cQqm/Xr9wNvZF +VpeHbFoRCTS+guWQyBivIHpPZKyVrev5a0f1apvOMkA/ZDuYhr20VBmVLOo7cOn /zWYkr2nrFuzFBp1fg2TflLyQia47CB5STVhWtD6fWnVMStPi6u06mudzcsYswJE gHDASMzGvz3fuY6BXT9BP2AzSgRljYYVlBPzikTJUOJnWmQwXaBCaAhCRco5wVNM 6Sa83DwW8FwEig7Z8089IBZ/Lowb7IMA+Pqhr7B/fhB+DLgGzmg0zOyrpI+8K3Nf ffexadSjDl70ArKL5SvzMgINT/eWlAtlcNX2s5vM -----END CERTIFICATE-----Generated at Sun Nov 24 17:17:41 2024 by rpki-client on console-fra.rpki-client.org