$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130302e302f32342d3234203d3e203130313337.roa File: 3230332e39392e3130302e302f32342d3234203d3e203130313337.roa (raw, json) Hash identifier: N0uAcX8uZo5tOJEaTL943Qy+8/w2XD0bZnW15V+4qhE= Subject key identifier: 07:51:14:B4:8A:AB:02:38:DE:26:09:31:3B:88:B4:48:D0:C4:E0:DD Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 03D6D5EB8F7465593AEF2AA3F9C7E82967369C0A Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130302e302f32342d3234203d3e203130313337.roa Signing time: Thu 13 Jun 2024 08:00:01 +0000 ROA not before: Thu 13 Jun 2024 07:55:01 +0000 ROA not after: Thu 12 Jun 2025 08:00:01 +0000 asID: 10137 IP address blocks: 203.99.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 01:03:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:d6:d5:eb:8f:74:65:59:3a:ef:2a:a3:f9:c7:e8:29:67:36:9c:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: Jun 13 07:55:01 2024 GMT Not After : Jun 12 08:00:01 2025 GMT Subject: CN=075114B48AAB0238DE2609313B88B448D0C4E0DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:1c:ad:5b:44:be:9d:d7:ff:bf:a8:c5:42:bd: cf:56:99:96:43:48:17:41:e9:67:a4:5d:62:67:da: 45:e1:4c:62:a3:14:9f:2b:97:46:c7:2b:cc:98:fc: 29:55:5c:52:be:fc:b0:72:e8:ec:fa:5a:8a:5a:2c: ad:7a:a4:3c:86:aa:a1:5c:d9:76:8c:e0:93:5c:51: ae:04:1b:b2:1b:a3:b9:02:4e:1d:82:bf:92:5b:a5: fa:fb:63:93:7d:c2:0d:2d:86:cc:2f:3f:4a:ce:02: 22:5b:c6:36:e2:ed:62:23:ce:68:c3:08:3f:cb:aa: 4a:95:b8:dc:fa:42:52:0f:94:73:8e:b2:99:94:83: 42:44:ab:0b:5b:87:2b:b4:e3:5c:dc:20:b9:03:f7: 45:d7:93:2f:18:34:66:ca:89:4b:39:2c:f9:7b:08: 8e:d5:f8:ff:95:a9:14:c7:79:f6:93:ec:86:8b:58: ff:a1:e3:89:16:a3:67:a2:3f:c4:f2:55:4e:90:60: c8:84:02:88:8d:9c:4c:1a:36:d3:d3:93:db:de:36: e5:98:30:e9:1b:d2:a5:74:a9:90:a6:6c:44:69:82: 25:c4:75:85:f2:de:d2:56:6f:a3:ea:30:86:8f:a6: 2e:e0:a6:f0:d5:6a:c2:e1:85:88:7c:11:29:2b:2d: e7:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:51:14:B4:8A:AB:02:38:DE:26:09:31:3B:88:B4:48:D0:C4:E0:DD X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130302e302f32342d3234203d3e203130313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.100.0/24 Signature Algorithm: sha256WithRSAEncryption 80:34:9e:7d:b0:ce:39:14:18:2d:32:2b:2d:cc:53:85:75:fb: a5:5a:5b:51:da:69:50:46:28:5a:0a:3d:d9:0d:86:5b:41:ae: 28:19:0e:e7:2f:58:08:d3:9d:72:51:ff:dd:2e:41:3c:6f:fc: 83:bf:dd:b9:d1:19:cc:2f:51:09:95:e4:b9:ae:54:23:d4:5f: 0e:1d:31:59:fe:19:e9:3f:a2:35:dd:3a:5d:73:94:4e:29:74: 77:a3:d5:13:b3:8e:d2:3b:79:50:9e:04:69:d9:d8:37:90:d4: 89:a0:22:cb:e8:b1:a5:85:75:c2:b6:15:28:a7:f6:42:31:3a: 14:7f:90:89:e6:c1:88:a8:61:9e:e4:77:9c:f9:9f:65:21:0a: 2f:31:39:ee:d3:17:8f:29:1d:8b:89:2f:2b:b1:9f:64:f6:e1: 1a:60:04:1f:55:5b:50:84:a6:2c:4a:90:98:1c:6f:87:2b:07: 85:f0:f4:32:7f:76:8f:3e:19:35:aa:04:8f:3f:75:71:5e:4c: 9e:d5:40:2f:e0:66:e4:5a:25:bb:ac:5b:bb:4b:e6:05:b8:f6: 0c:0a:27:f2:73:0f:d7:de:5c:15:7e:58:f8:9c:a3:6c:ef:47: c2:3e:89:f0:7e:23:e7:5f:ea:25:c3:0d:37:f0:2f:59:1e:0a: 92:a3:96:38 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUA9bV6490ZVk67yqj+cfoKWc2nAowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNDA2MTMwNzU1MDFaFw0yNTA2MTIwODAwMDFaMDMxMTAvBgNV BAMTKDA3NTExNEI0OEFBQjAyMzhERTI2MDkzMTNCODhCNDQ4RDBDNEUwREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfHK1bRL6d1/+/qMVCvc9WmZZD SBdB6WekXWJn2kXhTGKjFJ8rl0bHK8yY/ClVXFK+/LBy6Oz6WopaLK16pDyGqqFc 2XaM4JNcUa4EG7Ibo7kCTh2Cv5Jbpfr7Y5N9wg0thswvP0rOAiJbxjbi7WIjzmjD CD/LqkqVuNz6QlIPlHOOspmUg0JEqwtbhyu041zcILkD90XXky8YNGbKiUs5LPl7 CI7V+P+VqRTHefaT7IaLWP+h44kWo2eiP8TyVU6QYMiEAoiNnEwaNtPTk9veNuWY MOkb0qV0qZCmbERpgiXEdYXy3tJWb6PqMIaPpi7gpvDVasLhhYh8ESkrLeebAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUB1EUtIqrAjjeJgkxO4i0SNDE4N0wHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzEzMDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtjZDANBgkqhkiG 9w0BAQsFAAOCAQEAgDSefbDOORQYLTIrLcxThXX7pVpbUdppUEYoWgo92Q2GW0Gu KBkO5y9YCNOdclH/3S5BPG/8g7/dudEZzC9RCZXkua5UI9RfDh0xWf4Z6T+iNd06 XXOUTil0d6PVE7OO0jt5UJ4EadnYN5DUiaAiy+ixpYV1wrYVKKf2QjE6FH+QiebB iKhhnuR3nPmfZSEKLzE57tMXjykdi4kvK7GfZPbhGmAEH1VbUISmLEqQmBxvhysH hfD0Mn92jz4ZNaoEjz91cV5MntVAL+Bm5Folu6xbu0vmBbj2DAon8nMP195cFX5Y +JyjbO9Hwj6J8H4j51/qJcMNN/AvWR4KkqOWOA== -----END CERTIFICATE-----Generated at Sat Nov 23 03:54:06 2024 by rpki-client on console-ams.rpki-client.org