$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e3132352e38322e302f32332d3233203d3e20313430343433.roa File: 3230322e3132352e38322e302f32332d3233203d3e20313430343433.roa (raw, json) Hash identifier: l/m9K5Wldqd1JftqSGaFv697Z+qwpIZOxhNH3ZkTFlU= Subject key identifier: 3B:97:76:B2:2F:74:8A:00:43:31:6C:82:A1:F7:C6:D8:81:4F:E9:50 Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610 Certificate serial: 156267AA4F005B0BBE087435B4EE1CE6A852F846 Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e3132352e38322e302f32332d3233203d3e20313430343433.roa Signing time: Tue 14 May 2024 06:00:00 +0000 ROA not before: Tue 14 May 2024 05:55:00 +0000 ROA not after: Tue 13 May 2025 06:00:00 +0000 asID: 140443 IP address blocks: 202.125.82.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:62:67:aa:4f:00:5b:0b:be:08:74:35:b4:ee:1c:e6:a8:52:f8:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610 Validity Not Before: May 14 05:55:00 2024 GMT Not After : May 13 06:00:00 2025 GMT Subject: CN=3B9776B22F748A0043316C82A1F7C6D8814FE950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:bf:05:20:73:15:68:12:5f:bb:da:fd:e9:fe: 99:b7:0f:73:54:98:8d:dd:d2:6f:80:fa:35:ce:5f: 1c:3b:a0:87:f0:60:a0:07:8f:23:1b:bb:0f:70:f7: 8e:db:e8:06:2c:b7:dc:25:9e:e5:c5:38:88:d1:38: 40:d5:89:45:36:cd:1f:8d:58:f1:50:0d:bf:be:c1: 45:6e:4e:cb:6a:8d:e4:b5:3a:b9:45:fc:b9:42:74: 4d:54:07:08:f6:bf:c8:4d:8f:fc:52:25:1c:21:30: ec:5c:73:f7:d7:37:3a:bd:b6:c0:2c:e1:2f:a1:a9: d1:2b:99:30:75:5c:cf:77:95:a0:e9:b1:c0:c7:4e: 08:ce:32:a8:16:5a:d1:07:52:bf:f3:a0:6b:5e:f0: ad:f0:1d:bc:b5:5b:7b:70:d4:61:b3:9c:ed:3c:ac: eb:e2:1d:28:22:dd:87:1c:05:94:6d:b7:0b:96:aa: be:4a:ae:8e:0d:99:89:14:b2:83:47:6f:aa:b4:ff: c4:82:0a:d5:38:6a:91:e4:66:5f:0c:b2:d9:12:12: 86:27:e6:94:02:d2:48:7c:e8:a1:ea:e4:f7:21:00: 33:72:fb:81:cc:33:ef:e9:13:7c:41:da:d9:4a:f4: 1b:f5:ae:ed:b0:9c:32:fa:02:46:dc:b2:e0:5b:2f: 5d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:97:76:B2:2F:74:8A:00:43:31:6C:82:A1:F7:C6:D8:81:4F:E9:50 X509v3 Authority Key Identifier: keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e3132352e38322e302f32332d3233203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.125.82.0/23 Signature Algorithm: sha256WithRSAEncryption 51:85:71:20:f2:36:9b:97:b2:9e:be:62:3d:62:c8:be:17:5b: 0a:02:04:41:99:06:3e:2a:35:19:9b:52:5e:d6:6d:9e:c1:95: 40:51:2b:b5:86:29:80:f1:39:7d:db:60:58:8f:56:6a:0b:6c: f5:6b:3e:93:05:66:ad:29:0c:3e:97:2c:9a:4b:db:d4:52:ab: 48:5e:ad:f0:6a:78:5f:d9:de:85:e2:7e:44:89:1a:f2:90:99: 58:c1:27:6d:e7:d6:1d:f4:4b:c2:a1:ad:23:bf:00:96:3a:f4: 96:ed:09:d7:62:3e:99:2b:86:58:a7:87:4e:1b:0f:a5:0b:a5: 21:bd:9b:1d:80:b0:da:28:ea:fc:7a:b7:e7:47:de:db:b7:1f: 0d:3d:76:0e:ca:b8:8f:e8:d8:8c:f6:9c:a9:0f:d1:8e:7e:02: c0:1d:89:af:3e:43:88:85:81:d3:74:c4:11:cd:ae:6f:db:5b: 3e:42:84:71:eb:62:4b:1a:06:a1:a5:d9:78:e8:59:a0:ba:2b: 03:8f:b1:98:92:76:ad:92:f9:d7:1f:d8:5f:9d:da:57:e3:d1: 27:e4:01:68:c7:c2:3a:25:02:e5:fb:a8:52:11:9e:ae:cc:86: 29:22:f3:11:3a:ae:48:7b:14:3b:2d:66:5f:09:86:74:9e:8e: 94:a6:a4:c0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFWJnqk8AWwu+CHQ1tO4c5qhS+EYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYx MkIxNTYxMDAeFw0yNDA1MTQwNTU1MDBaFw0yNTA1MTMwNjAwMDBaMDMxMTAvBgNV BAMTKDNCOTc3NkIyMkY3NDhBMDA0MzMxNkM4MkExRjdDNkQ4ODE0RkU5NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsvwUgcxVoEl+72v3p/pm3D3NU mI3d0m+A+jXOXxw7oIfwYKAHjyMbuw9w947b6AYst9wlnuXFOIjROEDViUU2zR+N WPFQDb++wUVuTstqjeS1OrlF/LlCdE1UBwj2v8hNj/xSJRwhMOxcc/fXNzq9tsAs 4S+hqdErmTB1XM93laDpscDHTgjOMqgWWtEHUr/zoGte8K3wHby1W3tw1GGznO08 rOviHSgi3YccBZRttwuWqr5Kro4NmYkUsoNHb6q0/8SCCtU4apHkZl8MstkSEoYn 5pQC0kh86KHq5PchADNy+4HMM+/pE3xB2tlK9Bv1ru2wnDL6AkbcsuBbL10xAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUO5d2si90igBDMWyCoffG2IFP6VAwHwYDVR0j BBgwFoAUsJKKRdAU2NX61QMU6CgIbxKxVhAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Y2QzMjNiZS04MzdkLTQyNDQtODQ2Yy03ZDIzOTNhOWEwMDkvMC9CMDkyOEE0NUQw MTREOEQ1RkFENTAzMTRFODI4MDg2RjEyQjE1NjEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYxMkIx NTYxMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjZDMyM2JlLTgzN2QtNDI0NC04 NDZjLTdkMjM5M2E5YTAwOS8wLzMyMzAzMjJlMzEzMjM1MmUzODMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQByn1SMA0GCSqG SIb3DQEBCwUAA4IBAQBRhXEg8jabl7KevmI9Ysi+F1sKAgRBmQY+KjUZm1Je1m2e wZVAUSu1himA8Tl922BYj1ZqC2z1az6TBWatKQw+lyyaS9vUUqtIXq3wanhf2d6F 4n5EiRrykJlYwSdt59Yd9EvCoa0jvwCWOvSW7QnXYj6ZK4ZYp4dOGw+lC6UhvZsd gLDaKOr8erfnR97btx8NPXYOyriP6NiM9pypD9GOfgLAHYmvPkOIhYHTdMQRza5v 21s+QoRx62JLGgahpdl46FmguisDj7GYknatkvnXH9hfndpX49En5AFox8I6JQLl +6hSEZ6uzIYpIvMROq5IexQ7LWZfCYZ0no6UpqTA -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org