$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138392e302f32342d3234203d3e203338373530.roa File: 3230322e3137392e3138392e302f32342d3234203d3e203338373530.roa (raw, json) Hash identifier: /N5+2aMU3EMAmEX99W6RjuRb23GuWa2brckaj7T7NN4= Subject key identifier: 67:E4:58:65:2B:42:32:A0:90:D8:BB:47:A3:4C:22:D3:46:56:45:5E Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 12524F39DAAF78EBB2B718BBE7F82B2A3616EC82 Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138392e302f32342d3234203d3e203338373530.roa Signing time: Mon 11 Nov 2024 08:00:01 +0000 ROA not before: Mon 11 Nov 2024 07:55:01 +0000 ROA not after: Mon 10 Nov 2025 08:00:01 +0000 asID: 38750 IP address blocks: 202.179.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:52:4f:39:da:af:78:eb:b2:b7:18:bb:e7:f8:2b:2a:36:16:ec:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: Nov 11 07:55:01 2024 GMT Not After : Nov 10 08:00:01 2025 GMT Subject: CN=67E458652B4232A090D8BB47A34C22D34656455E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c8:81:60:1c:90:e2:95:53:0e:ed:e1:71:58: 44:53:bf:9f:6c:32:bf:3f:5f:d8:4d:6c:96:c5:e9: a7:21:e8:55:78:e0:e0:25:3b:ba:f6:cd:bd:d8:06: 33:2c:c4:7e:a7:79:b7:a6:98:25:82:0e:d2:58:1c: 0c:5b:f3:31:56:e8:50:4b:70:8d:0c:c1:f0:33:a4: 7c:c6:12:6c:3f:47:b8:29:72:65:08:3d:25:94:bc: e7:d2:bb:11:e0:31:0a:8a:61:ec:a9:22:74:e9:d9: 68:9b:b3:8d:2e:92:46:28:cc:8b:cb:a3:0c:1d:84: 74:13:df:c6:cb:96:e7:b0:94:97:59:7a:b8:7c:ca: 6d:5a:a0:50:f1:53:56:3e:66:aa:47:b8:d6:fc:8b: ed:a8:85:47:f7:af:24:0e:40:d7:10:65:94:0c:ee: 40:5a:14:42:0d:36:70:be:a6:d7:2b:be:60:65:c0: 39:74:da:24:c3:a5:fe:2f:34:18:cc:a0:96:84:93: 53:a4:16:ce:f6:65:22:9d:ce:07:f0:16:15:98:52: b7:67:6f:06:a6:8e:f1:93:ce:33:96:50:2e:90:28: 5c:62:8d:3c:cd:d1:c9:eb:f9:a2:62:22:9c:b4:23: b1:6b:f2:f2:36:39:9b:d9:ed:0c:2f:7f:b5:b4:b2: 22:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:E4:58:65:2B:42:32:A0:90:D8:BB:47:A3:4C:22:D3:46:56:45:5E X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138392e302f32342d3234203d3e203338373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.179.189.0/24 Signature Algorithm: sha256WithRSAEncryption 26:ea:c7:fc:0a:72:c3:f3:87:80:5a:f9:ae:dd:e6:35:27:56: c3:49:e7:02:6d:8e:3c:24:2c:95:ee:f0:0f:90:17:2e:4e:71: 13:48:46:63:d7:59:33:7d:50:25:ee:fd:a0:64:99:3a:97:de: 73:95:a3:02:85:54:ba:d1:07:47:6c:ae:80:ea:87:44:5f:5a: 1a:15:6e:ff:e8:92:64:3c:af:71:8d:ff:3b:28:ee:1b:7a:8b: a2:e3:ba:0b:1d:08:20:92:04:ad:48:85:0f:09:1c:17:aa:8f: a9:65:41:33:7b:af:cb:2c:c7:96:ed:24:fd:f9:1a:64:3f:ed: 1e:90:21:d6:85:48:f0:cb:73:03:3e:8e:b7:24:7d:bc:f9:01: 02:4c:43:7c:09:89:6a:c4:96:a3:df:53:0e:d8:4b:d1:7b:2c: 27:3f:bc:a6:d9:ee:e1:f7:9a:af:53:07:54:cb:7c:55:f8:76: e1:09:64:05:4e:a9:a2:f2:de:8c:fc:c3:00:1d:a0:c2:21:3d: c2:db:9e:5a:de:21:a2:c0:8c:bc:ae:17:ce:6d:08:e2:9b:17: 0b:3a:2c:b9:38:fc:9b:23:70:67:7d:89:20:8e:c7:38:c4:1b: 56:07:92:cd:87:25:b7:c9:d4:cb:13:d2:f1:94:8d:e5:65:62: 92:e9:4b:34 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUElJPOdqveOuytxi75/grKjYW7IIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yNDExMTEwNzU1MDFaFw0yNTExMTAwODAwMDFaMDMxMTAvBgNV BAMTKDY3RTQ1ODY1MkI0MjMyQTA5MEQ4QkI0N0EzNEMyMkQzNDY1NjQ1NUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmyIFgHJDilVMO7eFxWERTv59s Mr8/X9hNbJbF6ach6FV44OAlO7r2zb3YBjMsxH6nebemmCWCDtJYHAxb8zFW6FBL cI0MwfAzpHzGEmw/R7gpcmUIPSWUvOfSuxHgMQqKYeypInTp2Wibs40ukkYozIvL owwdhHQT38bLluewlJdZerh8ym1aoFDxU1Y+ZqpHuNb8i+2ohUf3ryQOQNcQZZQM 7kBaFEINNnC+ptcrvmBlwDl02iTDpf4vNBjMoJaEk1OkFs72ZSKdzgfwFhWYUrdn bwamjvGTzjOWUC6QKFxijTzN0cnr+aJiIpy0I7Fr8vI2OZvZ7Qwvf7W0siLjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZ+RYZStCMqCQ2LtHo0wi00ZWRV4wHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwZjVjZmRiLTc5ODctNDM1MS1i YzJlLTY2YzI0ZjQ5ZjQ0MC8wLzMyMzAzMjJlMzEzNzM5MmUzMTM4MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyrO9MA0GCSqG SIb3DQEBCwUAA4IBAQAm6sf8CnLD84eAWvmu3eY1J1bDSecCbY48JCyV7vAPkBcu TnETSEZj11kzfVAl7v2gZJk6l95zlaMChVS60QdHbK6A6odEX1oaFW7/6JJkPK9x jf87KO4beoui47oLHQggkgStSIUPCRwXqo+pZUEze6/LLMeW7ST9+RpkP+0ekCHW hUjwy3MDPo63JH28+QECTEN8CYlqxJaj31MO2EvReywnP7ym2e7h95qvUwdUy3xV +HbhCWQFTqmi8t6M/MMAHaDCIT3C255a3iGiwIy8rhfObQjimxcLOiy5OPybI3Bn fYkgjsc4xBtWB5LNhyW3ydTLE9LxlI3lZWKS6Us0 -----END CERTIFICATE-----Generated at Sun Nov 24 18:20:18 2024 by rpki-client on console-ams.rpki-client.org