$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32332d3233203d3e20313430343433.roa File: 3230322e37302e3133322e302f32332d3233203d3e20313430343433.roa (raw, json) Hash identifier: zemQSZcrisUT3ypYGuVnD0HgXPjCIaBTMHzTcVM9um8= Subject key identifier: BC:A8:19:18:2E:FE:52:0C:6F:E2:C5:31:68:EF:83:33:98:A4:B1:19 Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610 Certificate serial: 783EA728A1F690D5BE46518E13AF629C243B9D8A Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32332d3233203d3e20313430343433.roa Signing time: Mon 09 Sep 2024 15:00:01 +0000 ROA not before: Mon 09 Sep 2024 14:55:01 +0000 ROA not after: Mon 08 Sep 2025 15:00:01 +0000 asID: 140443 IP address blocks: 202.70.132.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:3e:a7:28:a1:f6:90:d5:be:46:51:8e:13:af:62:9c:24:3b:9d:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610 Validity Not Before: Sep 9 14:55:01 2024 GMT Not After : Sep 8 15:00:01 2025 GMT Subject: CN=BCA819182EFE520C6FE2C53168EF833398A4B119 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1c:9a:9b:68:ac:39:6a:20:f1:f2:91:d0:ee: 87:aa:cf:dd:a1:af:33:9c:ad:17:1a:16:29:22:c4: 10:37:6c:fe:de:69:7c:1a:62:96:ed:11:c2:3d:b3: 40:ed:25:7b:83:47:31:ca:04:ad:33:4d:c2:5b:4e: 74:e0:e3:5c:c5:30:d8:98:24:32:14:9a:ec:90:2e: c5:f4:ac:e1:8b:23:ec:b7:e2:1e:43:44:04:2c:30: be:40:23:2a:d1:8f:ba:84:74:9f:64:e5:c7:c8:5a: d7:dd:16:d9:8c:06:50:8f:b9:d8:81:89:a5:d8:f6: fc:7a:4f:e6:79:1b:2c:09:c0:24:72:1c:89:c0:d3: b3:d3:03:4c:29:b5:05:79:66:ed:9d:9e:e9:2c:8a: 16:22:a0:0f:b6:3c:d3:c7:74:c7:b4:6d:fc:ed:58: cc:7c:8f:0b:7d:e9:cf:27:88:af:9b:d9:28:5e:62: 1d:2b:6b:e2:34:be:83:49:1b:d8:6c:9a:22:32:ac: b4:64:00:0b:f1:3f:04:cf:f0:bb:3b:38:0e:07:53: bc:de:ca:a4:d7:2e:40:5d:cf:86:86:f1:6b:81:3f: 71:ca:16:5b:5c:8c:52:4e:03:c2:60:26:e5:03:1d: cd:75:da:bb:b8:f6:1d:09:86:e9:db:41:3e:3d:0a: 8a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:A8:19:18:2E:FE:52:0C:6F:E2:C5:31:68:EF:83:33:98:A4:B1:19 X509v3 Authority Key Identifier: keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32332d3233203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.70.132.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:93:04:80:be:b8:e8:4b:e8:d6:52:7e:f7:cf:57:0f:06:f2: be:82:e8:5b:54:8a:59:6d:fa:23:4f:30:b2:00:51:33:ba:94: e8:62:50:ac:cd:81:d0:95:c9:95:c4:20:e4:c7:c8:0a:1c:5a: b1:9b:db:32:89:2e:d4:03:a1:cf:6f:23:70:81:c9:b9:3e:2e: 1e:6d:58:96:d8:8a:7e:2b:7b:6f:e8:6d:9d:0b:db:71:02:0e: 44:02:0e:04:36:7a:69:8f:43:c7:c6:97:a6:71:83:e5:69:fb: 19:3f:6c:15:db:ef:c1:91:22:c8:55:57:e2:46:2a:c5:22:77: da:bb:0f:00:d8:35:94:46:16:af:23:21:e8:11:f6:fd:f3:5d: d7:23:27:9b:68:83:99:9f:18:0a:9f:8e:32:6a:df:22:1b:61: 84:d0:ae:a9:86:ab:6e:e2:1c:cf:ed:dd:bb:b5:2d:a5:8c:69: 05:f1:30:ef:01:96:1c:2d:66:fd:38:94:f4:d9:d1:db:8a:4f: 61:62:37:9b:ac:c4:4b:3e:d9:f9:05:59:24:9c:6f:ca:3e:2b: 25:d2:db:17:15:71:f6:96:b2:89:a3:d8:79:92:aa:a4:70:94: c9:42:07:f7:d3:74:9d:a8:15:f9:9a:73:c7:b0:35:8c:f2:dd: b6:3b:51:22 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeD6nKKH2kNW+RlGOE69inCQ7nYowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYx MkIxNTYxMDAeFw0yNDA5MDkxNDU1MDFaFw0yNTA5MDgxNTAwMDFaMDMxMTAvBgNV BAMTKEJDQTgxOTE4MkVGRTUyMEM2RkUyQzUzMTY4RUY4MzMzOThBNEIxMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHHJqbaKw5aiDx8pHQ7oeqz92h rzOcrRcaFikixBA3bP7eaXwaYpbtEcI9s0DtJXuDRzHKBK0zTcJbTnTg41zFMNiY JDIUmuyQLsX0rOGLI+y34h5DRAQsML5AIyrRj7qEdJ9k5cfIWtfdFtmMBlCPudiB iaXY9vx6T+Z5GywJwCRyHInA07PTA0wptQV5Zu2dnuksihYioA+2PNPHdMe0bfzt WMx8jwt96c8niK+b2SheYh0ra+I0voNJG9hsmiIyrLRkAAvxPwTP8Ls7OA4HU7ze yqTXLkBdz4aG8WuBP3HKFltcjFJOA8JgJuUDHc112ru49h0JhunbQT49Coq3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvKgZGC7+Ugxv4sUxaO+DM5iksRkwHwYDVR0j BBgwFoAUsJKKRdAU2NX61QMU6CgIbxKxVhAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Y2QzMjNiZS04MzdkLTQyNDQtODQ2Yy03ZDIzOTNhOWEwMDkvMC9CMDkyOEE0NUQw MTREOEQ1RkFENTAzMTRFODI4MDg2RjEyQjE1NjEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYxMkIx NTYxMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjZDMyM2JlLTgzN2QtNDI0NC04 NDZjLTdkMjM5M2E5YTAwOS8wLzMyMzAzMjJlMzczMDJlMzEzMzMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBykaEMA0GCSqG SIb3DQEBCwUAA4IBAQAqkwSAvrjoS+jWUn73z1cPBvK+guhbVIpZbfojTzCyAFEz upToYlCszYHQlcmVxCDkx8gKHFqxm9syiS7UA6HPbyNwgcm5Pi4ebViW2Ip+K3tv 6G2dC9txAg5EAg4ENnppj0PHxpemcYPlafsZP2wV2+/BkSLIVVfiRirFInfauw8A 2DWURhavIyHoEfb9813XIyebaIOZnxgKn44yat8iG2GE0K6phqtu4hzP7d27tS2l jGkF8TDvAZYcLWb9OJT02dHbik9hYjebrMRLPtn5BVkknG/KPisl0tsXFXH2lrKJ o9h5kqqkcJTJQgf303SdqBX5mnPHsDWM8t22O1Ei -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:26 2024 by rpki-client on console-fra.rpki-client.org