$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e3132352e38322e302f32342d3234203d3e20313430343433.roa File: 3230322e3132352e38322e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: +nLhKhZA3S8RIYOg9V7BkwCqgm5Ro2JjkUro3zt7BVo= Subject key identifier: AC:9D:BD:DF:E9:F4:16:55:ED:2A:0D:D7:A8:51:23:A6:07:68:02:14 Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610 Certificate serial: 167172AD12494BBE4F5FCAE5BF3CA26BF03DAA2A Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e3132352e38322e302f32342d3234203d3e20313430343433.roa Signing time: Tue 14 May 2024 05:00:00 +0000 ROA not before: Tue 14 May 2024 04:55:00 +0000 ROA not after: Tue 13 May 2025 05:00:00 +0000 asID: 140443 IP address blocks: 202.125.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:71:72:ad:12:49:4b:be:4f:5f:ca:e5:bf:3c:a2:6b:f0:3d:aa:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610 Validity Not Before: May 14 04:55:00 2024 GMT Not After : May 13 05:00:00 2025 GMT Subject: CN=AC9DBDDFE9F41655ED2A0DD7A85123A607680214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:11:d2:45:eb:f2:a7:98:c1:2b:b0:ba:01:1a: f7:a0:12:5f:8e:f3:63:16:6c:d1:30:f7:87:a8:a5: c1:30:1b:e8:64:6a:35:bc:3d:c3:e0:56:9c:d1:cb: e7:e0:97:80:48:ea:58:cf:bc:ea:9b:6b:10:9b:04: 7b:65:fd:ee:01:4b:a1:dc:69:d8:06:6d:ac:5a:60: 2c:6a:7b:41:9e:db:fe:28:80:04:f7:f9:1d:e2:e2: 90:ad:74:a6:6a:93:07:62:31:45:eb:59:97:b9:aa: c9:f0:07:a4:98:84:ee:fd:bd:a2:4a:af:68:26:4b: d1:fb:76:99:69:b6:99:2c:90:f7:d6:7e:0b:b0:14: a9:10:5f:7a:e0:fb:aa:b8:dd:e5:9e:aa:4a:80:5b: eb:af:c4:6f:ba:7d:e5:f1:ed:54:94:a2:c0:53:69: b4:52:b6:eb:ca:10:44:f0:db:f2:cf:54:88:49:51: 6d:75:43:e5:91:d5:12:3f:0b:23:5b:bd:7e:fa:a0: 81:65:e9:bb:7c:85:6b:ef:40:e8:eb:8b:81:5e:6e: 7d:3d:52:de:88:e8:a5:a4:fe:29:0d:c0:64:c4:6f: 93:2e:e4:af:e1:7c:52:fd:39:51:8b:69:73:89:c4: e2:ae:f2:1a:2e:cf:73:fe:04:2d:21:32:ca:1f:5a: ca:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:9D:BD:DF:E9:F4:16:55:ED:2A:0D:D7:A8:51:23:A6:07:68:02:14 X509v3 Authority Key Identifier: keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e3132352e38322e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.125.82.0/24 Signature Algorithm: sha256WithRSAEncryption 06:d6:de:4d:be:29:ba:c5:1c:7c:dc:b6:13:da:14:0e:7e:b4: cb:de:e8:e6:86:20:08:bc:53:99:09:55:a7:15:4f:e9:5c:ec: c0:64:49:ed:37:d5:00:84:0e:7d:74:5e:58:a1:8f:24:ed:83: 1f:bb:bf:60:c7:80:1f:1d:53:08:8b:3a:df:ca:38:f7:51:ff: f5:5a:af:0d:a3:62:f5:93:15:4e:77:c6:86:3d:f9:4b:47:ea: 0d:a8:e8:d4:3f:74:80:54:a1:b2:16:3d:df:0d:d4:7b:59:7a: cb:23:ac:a4:b7:5f:c3:28:17:5b:32:74:c8:8a:9c:a9:58:3d: 91:29:25:c8:7f:3f:8f:68:3f:fb:46:fe:94:2b:f3:95:6a:e2: 85:ce:12:6c:7e:b2:5d:b4:51:f0:6f:9d:d1:95:06:c9:d3:e9: fa:2a:1e:0e:dd:9b:f7:0a:e7:8a:88:0b:0a:23:88:27:22:94: c5:57:94:bd:df:15:12:16:94:df:4e:4e:53:33:07:e5:af:b4: 04:65:df:df:aa:89:89:4b:ea:e8:60:97:08:73:47:c3:cf:c0: 8d:19:bd:37:03:cc:17:4e:d5:8f:74:f1:6b:b0:4f:ea:14:ab: 56:f0:a3:80:84:dc:15:a3:ab:5d:6a:aa:c4:18:84:1d:22:6d: 39:30:74:06 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFnFyrRJJS75PX8rlvzyia/A9qiowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYx MkIxNTYxMDAeFw0yNDA1MTQwNDU1MDBaFw0yNTA1MTMwNTAwMDBaMDMxMTAvBgNV BAMTKEFDOURCRERGRTlGNDE2NTVFRDJBMEREN0E4NTEyM0E2MDc2ODAyMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+EdJF6/KnmMErsLoBGvegEl+O 82MWbNEw94eopcEwG+hkajW8PcPgVpzRy+fgl4BI6ljPvOqbaxCbBHtl/e4BS6Hc adgGbaxaYCxqe0Ge2/4ogAT3+R3i4pCtdKZqkwdiMUXrWZe5qsnwB6SYhO79vaJK r2gmS9H7dplptpkskPfWfguwFKkQX3rg+6q43eWeqkqAW+uvxG+6feXx7VSUosBT abRStuvKEETw2/LPVIhJUW11Q+WR1RI/CyNbvX76oIFl6bt8hWvvQOjri4Febn09 Ut6I6KWk/ikNwGTEb5Mu5K/hfFL9OVGLaXOJxOKu8houz3P+BC0hMsofWspVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrJ293+n0FlXtKg3XqFEjpgdoAhQwHwYDVR0j BBgwFoAUsJKKRdAU2NX61QMU6CgIbxKxVhAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Y2QzMjNiZS04MzdkLTQyNDQtODQ2Yy03ZDIzOTNhOWEwMDkvMC9CMDkyOEE0NUQw MTREOEQ1RkFENTAzMTRFODI4MDg2RjEyQjE1NjEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYxMkIx NTYxMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjZDMyM2JlLTgzN2QtNDI0NC04 NDZjLTdkMjM5M2E5YTAwOS8wLzMyMzAzMjJlMzEzMjM1MmUzODMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyn1SMA0GCSqG SIb3DQEBCwUAA4IBAQAG1t5Nvim6xRx83LYT2hQOfrTL3ujmhiAIvFOZCVWnFU/p XOzAZEntN9UAhA59dF5YoY8k7YMfu79gx4AfHVMIizrfyjj3Uf/1Wq8No2L1kxVO d8aGPflLR+oNqOjUP3SAVKGyFj3fDdR7WXrLI6ykt1/DKBdbMnTIipypWD2RKSXI fz+PaD/7Rv6UK/OVauKFzhJsfrJdtFHwb53RlQbJ0+n6Kh4O3Zv3CueKiAsKI4gn IpTFV5S93xUSFpTfTk5TMwflr7QEZd/fqomJS+roYJcIc0fDz8CNGb03A8wXTtWP dPFrsE/qFKtW8KOAhNwVo6tdaqrEGIQdIm05MHQG -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org