$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32342d3234203d3e20313430343433.roa File: 3230322e37302e3133322e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: t5xXiyHWAYUMNFYe6N3ZJ/nwbkXPClS4KSSDztJ55tw= Subject key identifier: 25:79:B9:58:F1:90:DE:61:45:BF:D2:0C:08:50:BD:60:E5:42:ED:75 Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610 Certificate serial: 49C0402A5E5FB68571035B27D0B0916493B1DC36 Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32342d3234203d3e20313430343433.roa Signing time: Mon 09 Sep 2024 15:00:00 +0000 ROA not before: Mon 09 Sep 2024 14:55:00 +0000 ROA not after: Mon 08 Sep 2025 15:00:00 +0000 asID: 140443 IP address blocks: 202.70.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:c0:40:2a:5e:5f:b6:85:71:03:5b:27:d0:b0:91:64:93:b1:dc:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610 Validity Not Before: Sep 9 14:55:00 2024 GMT Not After : Sep 8 15:00:00 2025 GMT Subject: CN=2579B958F190DE6145BFD20C0850BD60E542ED75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:62:7b:dd:32:2b:cb:f3:af:61:45:cb:85:34: 42:57:61:06:09:a9:10:78:cb:bc:e6:3c:0c:0a:ac: ae:ac:e7:da:76:3a:4f:c5:21:d9:1e:31:84:90:39: 5a:53:53:10:fa:9b:3b:d3:93:ad:8c:51:14:3c:ea: 7f:c6:31:58:b1:ff:ba:a6:34:21:b0:93:07:95:98: 11:14:a1:e1:fb:6e:f2:20:74:30:a6:a3:e1:b1:fa: c5:db:98:b9:50:98:d4:45:22:4d:82:a3:20:4c:74: 9b:98:c5:51:75:b1:c6:d2:4d:b7:31:dd:5b:ea:b0: 3d:12:5c:52:e2:2e:98:d8:5e:9b:c0:7e:c6:a5:ed: 8e:26:62:e4:b3:f6:52:f3:cc:97:d2:29:74:6b:5b: a0:55:ad:03:9c:39:b0:7f:0b:f3:e2:c9:38:86:c1: 7d:e7:27:5f:e9:23:87:da:28:c2:a0:22:f1:0c:ce: 74:64:41:03:72:ba:84:38:2a:84:97:53:29:e6:f2: af:93:fe:8b:7b:9a:34:89:4e:f7:33:d6:79:67:8b: 62:fb:9d:85:32:55:59:33:2c:7c:ba:00:be:9b:83: a5:06:6a:0a:bc:be:de:27:9d:1f:bb:59:ae:02:08: 76:4d:63:fc:85:11:04:13:2a:56:02:07:92:08:a2: a6:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:79:B9:58:F1:90:DE:61:45:BF:D2:0C:08:50:BD:60:E5:42:ED:75 X509v3 Authority Key Identifier: keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.70.132.0/24 Signature Algorithm: sha256WithRSAEncryption 97:f6:df:e2:cf:00:6c:68:1d:8c:61:8c:ce:5d:28:3f:7e:80: de:50:cc:9d:d8:ea:43:3a:91:42:95:b5:35:00:34:7b:d8:12: 32:cd:3b:03:9e:a4:e3:14:f5:56:9f:85:79:2d:f5:b4:85:0f: c5:57:e8:62:c2:9e:1d:75:3b:dc:83:c3:36:ec:45:3b:77:3e: 0b:52:e6:06:0a:f6:1c:2b:2a:4f:b0:2a:21:d4:88:16:bb:b4: 5e:fa:50:5c:af:8e:96:19:b1:f6:5c:ca:67:21:db:2e:36:ee: 14:bd:3a:28:06:3c:df:87:f9:d1:fc:3b:77:fc:ba:3b:fe:68: ec:58:f1:41:33:ce:ee:f1:fe:c1:68:0d:64:6e:cc:09:d0:1f: 86:5a:62:e4:85:87:d3:53:73:20:66:9e:f8:97:46:2a:67:63: fb:16:bb:d2:db:c8:ec:2d:47:37:2d:aa:82:16:8f:63:07:c0: 7c:c0:e6:62:15:58:de:7c:b1:d9:39:5a:8e:83:8a:05:8c:77: 8e:d7:30:0d:7e:1f:f1:cc:51:f6:64:a0:05:b3:88:ce:31:51: 11:67:9c:a3:21:11:ea:2c:4c:b8:b0:fb:7f:77:d3:60:2b:4a: 55:16:f5:3d:be:39:6f:af:42:c6:42:d6:b7:11:cc:38:06:0d: 3c:73:45:91 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUScBAKl5ftoVxA1sn0LCRZJOx3DYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYx MkIxNTYxMDAeFw0yNDA5MDkxNDU1MDBaFw0yNTA5MDgxNTAwMDBaMDMxMTAvBgNV BAMTKDI1NzlCOTU4RjE5MERFNjE0NUJGRDIwQzA4NTBCRDYwRTU0MkVENzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlYnvdMivL869hRcuFNEJXYQYJ qRB4y7zmPAwKrK6s59p2Ok/FIdkeMYSQOVpTUxD6mzvTk62MURQ86n/GMVix/7qm NCGwkweVmBEUoeH7bvIgdDCmo+Gx+sXbmLlQmNRFIk2CoyBMdJuYxVF1scbSTbcx 3VvqsD0SXFLiLpjYXpvAfsal7Y4mYuSz9lLzzJfSKXRrW6BVrQOcObB/C/PiyTiG wX3nJ1/pI4faKMKgIvEMznRkQQNyuoQ4KoSXUynm8q+T/ot7mjSJTvcz1nlni2L7 nYUyVVkzLHy6AL6bg6UGagq8vt4nnR+7Wa4CCHZNY/yFEQQTKlYCB5IIoqYxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJXm5WPGQ3mFFv9IMCFC9YOVC7XUwHwYDVR0j BBgwFoAUsJKKRdAU2NX61QMU6CgIbxKxVhAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Y2QzMjNiZS04MzdkLTQyNDQtODQ2Yy03ZDIzOTNhOWEwMDkvMC9CMDkyOEE0NUQw MTREOEQ1RkFENTAzMTRFODI4MDg2RjEyQjE1NjEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYxMkIx NTYxMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjZDMyM2JlLTgzN2QtNDI0NC04 NDZjLTdkMjM5M2E5YTAwOS8wLzMyMzAzMjJlMzczMDJlMzEzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAykaEMA0GCSqG SIb3DQEBCwUAA4IBAQCX9t/izwBsaB2MYYzOXSg/foDeUMyd2OpDOpFClbU1ADR7 2BIyzTsDnqTjFPVWn4V5LfW0hQ/FV+hiwp4ddTvcg8M27EU7dz4LUuYGCvYcKypP sCoh1IgWu7Re+lBcr46WGbH2XMpnIdsuNu4UvTooBjzfh/nR/Dt3/Lo7/mjsWPFB M87u8f7BaA1kbswJ0B+GWmLkhYfTU3MgZp74l0YqZ2P7FrvS28jsLUc3LaqCFo9j B8B8wOZiFVjefLHZOVqOg4oFjHeO1zANfh/xzFH2ZKAFs4jOMVERZ5yjIRHqLEy4 sPt/d9NgK0pVFvU9vjlvr0LGQta3Ecw4Bg08c0WR -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:26 2024 by rpki-client on console-fra.rpki-client.org