$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130382e302f32342d3234203d3e203130313337.roa File: 3230332e39392e3130382e302f32342d3234203d3e203130313337.roa (raw, json) Hash identifier: drm5WlPooA+cXHugsdKMGRjH68ZH1tfEYng/uM0+I/k= Subject key identifier: 68:E9:10:A9:02:B6:A8:F8:E6:4C:C3:81:96:56:A7:A2:B5:62:27:FA Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 6C2A4370F98DD6B2DADFE278E1CA3C1971F1A07D Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130382e302f32342d3234203d3e203130313337.roa Signing time: Thu 13 Jun 2024 08:00:01 +0000 ROA not before: Thu 13 Jun 2024 07:55:01 +0000 ROA not after: Thu 12 Jun 2025 08:00:01 +0000 asID: 10137 IP address blocks: 203.99.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 01:03:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:2a:43:70:f9:8d:d6:b2:da:df:e2:78:e1:ca:3c:19:71:f1:a0:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: Jun 13 07:55:01 2024 GMT Not After : Jun 12 08:00:01 2025 GMT Subject: CN=68E910A902B6A8F8E64CC3819656A7A2B56227FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:44:85:49:76:18:0e:6e:df:1c:e0:e8:7f:a2: 7b:e0:8a:38:ba:87:2d:47:1c:95:20:4d:f9:d4:04: 64:ac:0b:4d:92:90:b1:8e:ee:4c:f6:3c:45:05:20: db:82:e5:61:1e:f1:e5:a0:9e:1c:48:81:bd:c3:07: ca:13:51:b8:a4:7b:06:01:ec:4d:07:c5:e8:98:c4: ef:bd:1d:0a:71:29:9f:a5:e1:46:35:c2:44:33:2d: 0a:8f:8d:13:47:f1:c0:f5:24:bb:60:9c:1f:dc:01: 2e:18:f5:72:73:67:e4:f4:ab:b4:b6:b1:fa:74:dc: f7:a7:54:24:25:ce:2a:dc:f2:b4:0c:97:94:e1:18: bf:4c:c1:d2:2a:74:f5:fc:01:f6:c4:10:3f:35:41: 7a:e2:ea:73:c7:18:da:d2:d8:61:bb:26:54:c9:74: 05:5d:84:8c:39:2c:36:27:45:27:59:d2:80:ae:e6: e7:cc:28:93:9d:e6:33:b5:6a:06:23:98:22:dd:57: 7e:60:20:16:78:a7:93:d3:68:f5:5b:ef:f2:1d:0f: 9a:3b:60:ea:ef:04:cc:06:2b:82:13:70:69:5e:47: 8b:1c:ce:a1:59:d2:80:d1:06:b6:c2:b4:5f:e9:62: 24:1c:f6:88:bd:71:88:c6:9e:0f:26:5d:0a:f1:06: 3c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:E9:10:A9:02:B6:A8:F8:E6:4C:C3:81:96:56:A7:A2:B5:62:27:FA X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130382e302f32342d3234203d3e203130313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.108.0/24 Signature Algorithm: sha256WithRSAEncryption 37:51:57:13:3a:e9:60:5e:1d:96:c3:63:ca:a0:dd:ef:de:0c: 01:94:75:79:a1:2e:f5:48:5e:f7:6e:98:34:a3:d6:ca:12:3c: 7d:c1:16:cb:6d:be:63:b4:a3:b8:09:b0:ee:be:f9:bf:7d:b7: 18:4d:77:87:24:18:82:fe:e7:57:33:0d:03:27:0d:c4:6f:bc: c3:e9:f5:a8:ac:68:c2:e3:e2:57:a7:4e:b3:b8:14:c1:08:30: 67:8e:60:b0:dc:14:22:03:bb:03:7c:24:41:3c:53:6f:09:e8: 5c:40:ee:d5:cf:93:90:a5:b2:ee:d9:b1:98:cb:15:1a:7a:57: c7:00:0b:71:2e:a2:a5:91:de:4c:f1:83:7f:cb:82:8e:a7:bf: 91:ec:b6:6c:e9:96:50:76:4e:22:e8:e5:3e:65:50:7a:dc:88: 01:49:1a:d0:a9:89:39:2a:43:fa:24:40:e9:7c:be:12:07:c0: f5:dd:8e:16:66:03:b4:6e:2a:68:ae:9a:c4:5b:47:5f:b0:80: 3e:14:45:ca:ff:95:ae:3c:50:34:09:b7:2d:77:32:8c:8f:d3: fd:a2:e8:b5:4d:71:91:ff:12:1d:5f:7c:1b:82:9e:3b:86:00: 5e:f4:e4:19:68:a0:25:90:93:1b:f7:2b:99:30:cc:bf:a6:f4: 68:01:e6:7a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbCpDcPmN1rLa3+J44co8GXHxoH0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNDA2MTMwNzU1MDFaFw0yNTA2MTIwODAwMDFaMDMxMTAvBgNV BAMTKDY4RTkxMEE5MDJCNkE4RjhFNjRDQzM4MTk2NTZBN0EyQjU2MjI3RkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClRIVJdhgObt8c4Oh/onvgiji6 hy1HHJUgTfnUBGSsC02SkLGO7kz2PEUFINuC5WEe8eWgnhxIgb3DB8oTUbikewYB 7E0HxeiYxO+9HQpxKZ+l4UY1wkQzLQqPjRNH8cD1JLtgnB/cAS4Y9XJzZ+T0q7S2 sfp03PenVCQlzirc8rQMl5ThGL9MwdIqdPX8AfbEED81QXri6nPHGNrS2GG7JlTJ dAVdhIw5LDYnRSdZ0oCu5ufMKJOd5jO1agYjmCLdV35gIBZ4p5PTaPVb7/IdD5o7 YOrvBMwGK4ITcGleR4sczqFZ0oDRBrbCtF/pYiQc9oi9cYjGng8mXQrxBjx7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUaOkQqQK2qPjmTMOBllanorViJ/owHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzEzMDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtjbDANBgkqhkiG 9w0BAQsFAAOCAQEAN1FXEzrpYF4dlsNjyqDd794MAZR1eaEu9Uhe926YNKPWyhI8 fcEWy22+Y7SjuAmw7r75v323GE13hyQYgv7nVzMNAycNxG+8w+n1qKxowuPiV6dO s7gUwQgwZ45gsNwUIgO7A3wkQTxTbwnoXEDu1c+TkKWy7tmxmMsVGnpXxwALcS6i pZHeTPGDf8uCjqe/key2bOmWUHZOIujlPmVQetyIAUka0KmJOSpD+iRA6Xy+EgfA 9d2OFmYDtG4qaK6axFtHX7CAPhRFyv+VrjxQNAm3LXcyjI/T/aLotU1xkf8SHV98 G4KeO4YAXvTkGWigJZCTG/crmTDMv6b0aAHmeg== -----END CERTIFICATE-----Generated at Sat Nov 23 02:29:39 2024 by rpki-client on console-fra.rpki-client.org