$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3139302e302f32342d3234203d3e203338373530.roa File: 3230322e3137392e3139302e302f32342d3234203d3e203338373530.roa (raw, json) Hash identifier: nxP8W10E3LZDtZxP90veGMWm2rYEk3wENcKTTfAcq3U= Subject key identifier: D7:09:90:A8:6C:7C:D2:8B:F3:E4:3C:E6:6E:F9:AD:9B:EC:7B:F4:F2 Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 5E7C1178999190D2DE80C073B954B37E160DEBAC Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3139302e302f32342d3234203d3e203338373530.roa Signing time: Mon 11 Nov 2024 08:00:01 +0000 ROA not before: Mon 11 Nov 2024 07:55:01 +0000 ROA not after: Mon 10 Nov 2025 08:00:01 +0000 asID: 38750 IP address blocks: 202.179.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:7c:11:78:99:91:90:d2:de:80:c0:73:b9:54:b3:7e:16:0d:eb:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: Nov 11 07:55:01 2024 GMT Not After : Nov 10 08:00:01 2025 GMT Subject: CN=D70990A86C7CD28BF3E43CE66EF9AD9BEC7BF4F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a8:79:8a:bf:fc:2d:1d:0d:df:57:34:8f:31: 31:62:ff:2d:02:11:4c:21:b4:20:20:e7:6a:6f:a8: a7:03:8f:25:52:5b:1c:fe:f5:be:87:df:fb:0f:55: 3d:ee:cd:5a:1f:1d:43:98:bf:4e:99:41:68:ea:73: 9d:22:23:f5:49:8b:97:29:46:f3:2f:cf:29:25:2e: 23:22:6e:5c:78:f4:82:44:5f:c2:38:cd:ef:fc:25: f5:1b:6b:22:d2:83:98:f5:cc:91:51:fd:f6:3d:e7: f5:71:d8:f9:4a:58:94:9e:dd:5c:46:40:15:66:8e: cf:74:9b:c1:c7:f6:6c:e1:bd:c7:63:7f:36:3f:88: c0:53:26:08:ea:75:44:66:42:64:c3:63:15:0c:88: 73:08:f2:10:2f:b4:a0:5d:01:1d:c1:07:b1:99:0f: 2c:5f:a1:8e:43:d0:af:8f:cf:88:4d:96:52:d5:39: fc:6b:77:e9:36:0d:ac:55:bb:93:3e:1a:b2:1b:da: 7a:f6:82:c3:2e:5f:91:4d:04:8f:6a:3d:96:01:04: 02:f3:a2:78:6c:08:d0:e1:29:25:8d:dd:ce:9e:50: 29:c4:96:dd:e9:34:68:62:cc:fa:39:19:b0:0d:2f: 04:c0:33:eb:20:e8:30:dd:55:59:f7:38:9d:1b:32: ac:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:09:90:A8:6C:7C:D2:8B:F3:E4:3C:E6:6E:F9:AD:9B:EC:7B:F4:F2 X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3139302e302f32342d3234203d3e203338373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.179.190.0/24 Signature Algorithm: sha256WithRSAEncryption 11:bc:08:c3:c7:7d:ca:b2:6e:fb:34:43:e8:ba:1f:3e:bf:56: ac:6a:1f:fd:80:4b:b1:4f:bf:5e:38:00:3c:b9:49:c2:13:72: 4a:ba:bc:5c:25:94:e6:fd:34:11:f2:53:46:06:79:01:72:6f: 87:73:c7:ae:05:be:7f:4a:a6:6d:16:d7:bf:b0:7a:18:b2:a7: 09:d0:2e:e1:39:47:c7:de:ea:27:87:de:43:c0:84:50:4d:2b: d1:82:ae:dc:cf:50:05:67:2e:af:59:19:3c:df:ac:fc:5b:68: b9:52:f0:6e:a3:d0:7a:c6:34:f2:e8:38:91:85:bb:78:23:73: f9:eb:02:48:83:c2:39:a6:67:33:63:10:45:bb:48:76:15:df: 6b:bf:63:b1:c2:c5:4e:88:43:3b:69:44:a8:06:3c:da:64:b5: ff:5b:b8:f7:6d:6a:50:b9:09:1a:fc:69:67:b3:c5:a6:73:91: 66:7b:b2:fb:44:7c:cb:fb:1c:d5:dc:a7:e9:67:05:a6:f0:8e: db:28:2f:7c:e9:63:58:8c:37:38:57:a9:51:34:10:ea:38:ab: ee:20:db:f9:7d:3d:04:b4:4c:07:6e:c6:8f:44:75:25:2c:5d: 89:e3:80:65:d4:0e:c8:9b:47:ff:1e:93:01:26:0b:0d:1d:9f: ba:f3:0d:8b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXnwReJmRkNLegMBzuVSzfhYN66wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yNDExMTEwNzU1MDFaFw0yNTExMTAwODAwMDFaMDMxMTAvBgNV BAMTKEQ3MDk5MEE4NkM3Q0QyOEJGM0U0M0NFNjZFRjlBRDlCRUM3QkY0RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRqHmKv/wtHQ3fVzSPMTFi/y0C EUwhtCAg52pvqKcDjyVSWxz+9b6H3/sPVT3uzVofHUOYv06ZQWjqc50iI/VJi5cp RvMvzyklLiMiblx49IJEX8I4ze/8JfUbayLSg5j1zJFR/fY95/Vx2PlKWJSe3VxG QBVmjs90m8HH9mzhvcdjfzY/iMBTJgjqdURmQmTDYxUMiHMI8hAvtKBdAR3BB7GZ DyxfoY5D0K+Pz4hNllLVOfxrd+k2DaxVu5M+GrIb2nr2gsMuX5FNBI9qPZYBBALz onhsCNDhKSWN3c6eUCnElt3pNGhizPo5GbANLwTAM+sg6DDdVVn3OJ0bMqw7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1wmQqGx80ovz5Dzmbvmtm+x79PIwHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwZjVjZmRiLTc5ODctNDM1MS1i YzJlLTY2YzI0ZjQ5ZjQ0MC8wLzMyMzAzMjJlMzEzNzM5MmUzMTM5MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyrO+MA0GCSqG SIb3DQEBCwUAA4IBAQARvAjDx33Ksm77NEPouh8+v1asah/9gEuxT79eOAA8uUnC E3JKurxcJZTm/TQR8lNGBnkBcm+Hc8euBb5/SqZtFte/sHoYsqcJ0C7hOUfH3uon h95DwIRQTSvRgq7cz1AFZy6vWRk836z8W2i5UvBuo9B6xjTy6DiRhbt4I3P56wJI g8I5pmczYxBFu0h2Fd9rv2OxwsVOiEM7aUSoBjzaZLX/W7j3bWpQuQka/Glns8Wm c5Fme7L7RHzL+xzV3KfpZwWm8I7bKC986WNYjDc4V6lRNBDqOKvuINv5fT0EtEwH bsaPRHUlLF2J44Bl1A7Im0f/HpMBJgsNHZ+68w2L -----END CERTIFICATE-----Generated at Sun Nov 24 17:17:41 2024 by rpki-client on console-fra.rpki-client.org