$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130322e302f32342d3234203d3e203130313337.roa File: 3230332e39392e3130322e302f32342d3234203d3e203130313337.roa (raw, json) Hash identifier: UM5Dr5xVDHboWnjTqZiCkih1iC9EYKdetdnfEfnMBxE= Subject key identifier: 0E:D4:D6:B5:58:53:21:CE:74:24:15:BD:C5:07:49:20:14:BA:A9:EC Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 5194400B3800A59C7AE5C1EC68A5B59E0747BCCC Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130322e302f32342d3234203d3e203130313337.roa Signing time: Thu 13 Jun 2024 08:00:00 +0000 ROA not before: Thu 13 Jun 2024 07:55:00 +0000 ROA not after: Thu 12 Jun 2025 08:00:00 +0000 asID: 10137 IP address blocks: 203.99.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 01:03:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:94:40:0b:38:00:a5:9c:7a:e5:c1:ec:68:a5:b5:9e:07:47:bc:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: Jun 13 07:55:00 2024 GMT Not After : Jun 12 08:00:00 2025 GMT Subject: CN=0ED4D6B5585321CE742415BDC507492014BAA9EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:01:41:18:e0:fb:41:3f:04:b9:5a:89:cf:a4: 47:e2:46:e4:55:80:d5:77:0b:d9:b5:7e:44:c0:06: 18:f6:42:d4:07:11:a0:5e:cc:06:42:97:44:27:8e: a8:4c:24:a8:b2:e8:31:7f:9e:39:5d:96:24:92:41: 84:09:97:41:ee:22:f7:1b:1a:25:8a:3d:06:34:51: 02:f5:0e:03:45:84:c6:29:f6:20:bd:90:29:a7:d6: 96:7b:f2:bc:ab:b5:55:5d:95:3c:6f:11:cb:84:db: 7a:06:c2:0d:83:c1:50:f4:0e:bd:bb:ce:28:63:80: 58:e4:93:c0:62:a4:e9:f6:04:5f:35:49:1e:0a:f8: 14:29:30:43:34:0d:c5:e3:9b:32:58:23:71:3c:fe: c8:56:38:6d:48:62:aa:9f:68:2d:cb:27:20:b7:94: f1:22:51:74:32:89:70:01:09:7b:ca:96:2d:cc:b1: 27:4f:c1:39:f4:8a:bc:a8:ce:6f:ce:d3:0c:88:aa: c2:b3:ad:38:6a:ea:5b:57:c0:26:04:ea:55:b1:10: 07:0e:8c:ee:81:55:ef:4d:ae:f2:a6:cd:cd:21:1d: f9:4b:c5:65:e3:67:ed:d1:0e:bb:88:d9:92:76:47: 08:da:20:0b:d8:e2:96:7b:af:85:50:a2:a5:91:60: 7d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:D4:D6:B5:58:53:21:CE:74:24:15:BD:C5:07:49:20:14:BA:A9:EC X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130322e302f32342d3234203d3e203130313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.102.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:af:e4:11:56:03:25:c9:cf:7e:17:87:dc:ea:2c:ca:55:16: b3:04:79:d1:56:64:ba:7f:d3:b6:85:96:a8:a6:2c:db:11:c1: 2d:e7:1c:1a:a2:ae:a3:5f:12:a0:6b:a7:0a:88:9a:c6:df:0e: 96:07:ad:9d:a6:54:43:15:7e:a6:00:9c:47:81:b2:3a:6f:72: 53:64:c8:c5:dd:c4:7a:2e:33:5f:ac:c7:97:0f:a3:c4:01:a4: 11:a9:17:db:ce:5c:cb:53:de:76:ac:cc:03:47:8f:80:29:e0: 97:e0:b2:43:bf:ef:da:d9:9a:f1:c0:17:8f:c8:ff:57:59:70: 19:89:3f:0f:06:01:15:b1:fe:f0:23:d4:2e:aa:1f:af:08:13: 06:f2:90:66:9f:a2:01:03:cc:8c:e3:86:2c:de:e3:af:58:a2: 00:9c:de:83:c2:04:1e:ef:cd:b7:f9:c4:b2:27:8d:44:8d:e1: 62:8e:23:9d:97:6e:bd:ff:76:44:a1:2b:26:b1:d9:2e:66:c9: 13:a7:f6:66:df:6f:30:8e:0b:db:c6:c7:c9:4d:33:e0:0b:d9: c6:bd:4b:b4:da:cb:c2:b4:37:7a:03:c8:ee:91:ab:21:2c:0b: db:16:d7:f6:7e:12:3f:43:e0:39:f3:48:1f:33:4d:85:0a:20: ed:3d:34:d9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUZRACzgApZx65cHsaKW1ngdHvMwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNDA2MTMwNzU1MDBaFw0yNTA2MTIwODAwMDBaMDMxMTAvBgNV BAMTKDBFRDRENkI1NTg1MzIxQ0U3NDI0MTVCREM1MDc0OTIwMTRCQUE5RUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqAUEY4PtBPwS5WonPpEfiRuRV gNV3C9m1fkTABhj2QtQHEaBezAZCl0QnjqhMJKiy6DF/njldliSSQYQJl0HuIvcb GiWKPQY0UQL1DgNFhMYp9iC9kCmn1pZ78ryrtVVdlTxvEcuE23oGwg2DwVD0Dr27 zihjgFjkk8BipOn2BF81SR4K+BQpMEM0DcXjmzJYI3E8/shWOG1IYqqfaC3LJyC3 lPEiUXQyiXABCXvKli3MsSdPwTn0iryozm/O0wyIqsKzrThq6ltXwCYE6lWxEAcO jO6BVe9NrvKmzc0hHflLxWXjZ+3RDruI2ZJ2RwjaIAvY4pZ7r4VQoqWRYH1VAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDtTWtVhTIc50JBW9xQdJIBS6qewwHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzEzMDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtjZjANBgkqhkiG 9w0BAQsFAAOCAQEAPa/kEVYDJcnPfheH3OosylUWswR50VZkun/TtoWWqKYs2xHB LeccGqKuo18SoGunCoiaxt8OlgetnaZUQxV+pgCcR4GyOm9yU2TIxd3Eei4zX6zH lw+jxAGkEakX285cy1PedqzMA0ePgCngl+CyQ7/v2tma8cAXj8j/V1lwGYk/DwYB FbH+8CPULqofrwgTBvKQZp+iAQPMjOOGLN7jr1iiAJzeg8IEHu/Nt/nEsieNRI3h Yo4jnZduvf92RKErJrHZLmbJE6f2Zt9vMI4L28bHyU0z4AvZxr1LtNrLwrQ3egPI 7pGrISwL2xbX9n4SP0PgOfNIHzNNhQog7T002Q== -----END CERTIFICATE-----Generated at Sat Nov 23 03:54:06 2024 by rpki-client on console-ams.rpki-client.org