$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3131302e302f32342d3234203d3e203130313337.roa File: 3230332e39392e3131302e302f32342d3234203d3e203130313337.roa (raw, json) Hash identifier: CYQSWkTaaZ6K9+7+9YJK43BT2Fo5yakPcT5MU6uL7zE= Subject key identifier: FA:CD:42:4C:D8:3F:DB:46:5A:DE:E4:4D:C7:A7:20:43:9A:FE:AE:96 Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 0FDC7E06F29BB9B7A5BDA4566499F9A1DD06A3E1 Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3131302e302f32342d3234203d3e203130313337.roa Signing time: Thu 13 Jun 2024 08:00:02 +0000 ROA not before: Thu 13 Jun 2024 07:55:02 +0000 ROA not after: Thu 12 Jun 2025 08:00:02 +0000 asID: 10137 IP address blocks: 203.99.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 01:03:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:dc:7e:06:f2:9b:b9:b7:a5:bd:a4:56:64:99:f9:a1:dd:06:a3:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: Jun 13 07:55:02 2024 GMT Not After : Jun 12 08:00:02 2025 GMT Subject: CN=FACD424CD83FDB465ADEE44DC7A720439AFEAE96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:46:18:b3:72:16:32:55:da:f4:d5:98:27:82: cb:aa:81:46:d3:7c:11:55:bb:be:d2:5c:6e:9a:d0: 88:aa:e2:14:38:47:fc:99:80:40:bd:b4:f6:47:2e: 1b:fe:c9:81:8c:4c:cf:96:6e:91:85:79:f3:84:e9: 26:9d:41:f0:64:89:e8:13:89:5d:d6:d0:eb:17:f4: a7:70:92:37:5c:84:56:41:bb:4e:95:6f:f4:f8:4c: b8:2d:d4:0c:2a:14:dc:83:7a:49:23:f9:2d:7e:b4: 4e:f5:57:e5:29:b7:31:49:cc:2a:72:9e:8d:3e:13: 16:f6:43:38:61:ac:a6:9f:b6:0d:43:d6:ab:fe:0e: 42:76:dd:ae:82:83:dd:3b:a6:69:8a:fa:c4:74:61: ea:f9:b2:5e:0f:ca:b5:2a:61:b5:55:16:c5:28:bf: 73:d6:a7:64:b0:3d:0d:28:2b:37:69:5d:48:4b:82: 8c:23:2f:70:f6:b3:03:4d:6a:f1:0d:07:22:bb:43: fc:07:b0:df:1e:47:83:a1:24:2e:84:94:32:9e:2e: 10:44:f3:df:c6:4d:af:be:93:67:eb:71:a7:a2:0a: f9:3c:bb:b4:ef:34:1c:32:b2:4c:91:4c:87:7a:0f: 38:5e:a0:78:c0:40:f7:80:7d:dd:d3:dd:e9:31:64: a7:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:CD:42:4C:D8:3F:DB:46:5A:DE:E4:4D:C7:A7:20:43:9A:FE:AE:96 X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3131302e302f32342d3234203d3e203130313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.110.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:d6:4c:c6:2b:91:c7:8f:59:91:a0:56:a3:76:7f:79:12:68: b4:3a:21:95:7a:3a:e1:10:af:e6:7f:2b:c2:12:ec:f1:51:17: a4:aa:23:d2:0b:7b:e3:d4:b1:00:8d:7c:0f:37:d3:50:c3:70: 53:88:5f:5c:64:5d:c7:99:d6:65:fe:fb:cd:3d:9d:30:67:58: ba:69:ce:ba:b6:ec:fb:3f:54:e5:95:18:90:de:55:83:b8:a6: 8d:1e:84:44:5b:79:5d:a3:72:93:b9:55:f6:3b:91:a5:e4:95: 90:10:32:bb:73:d8:cd:69:6e:50:d8:21:df:f5:07:65:06:e8: 92:7c:05:ff:09:96:aa:8a:f0:d5:21:03:15:d1:ab:0d:ba:ca: 52:5f:e1:df:ba:55:20:db:84:4d:45:aa:1a:e4:79:20:07:63: f0:49:c4:d6:69:0a:07:b6:67:79:5e:22:93:44:30:3d:69:8a: cb:68:a5:65:a6:79:a4:27:ed:d4:2e:9c:20:43:b9:ca:75:f6: 2e:64:a1:67:83:6b:a4:ae:e3:49:97:f8:ad:26:39:a8:9a:43: 3a:f5:e3:cf:18:72:c8:5c:17:38:9e:40:5f:78:3e:2c:7f:c4: 59:be:24:bb:f1:f9:1c:8e:32:0d:5e:d1:2f:85:26:14:63:8b: 9b:d3:5b:f3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUD9x+BvKbubelvaRWZJn5od0Go+EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNDA2MTMwNzU1MDJaFw0yNTA2MTIwODAwMDJaMDMxMTAvBgNV BAMTKEZBQ0Q0MjRDRDgzRkRCNDY1QURFRTQ0REM3QTcyMDQzOUFGRUFFOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpRhizchYyVdr01ZgngsuqgUbT fBFVu77SXG6a0Iiq4hQ4R/yZgEC9tPZHLhv+yYGMTM+WbpGFefOE6SadQfBkiegT iV3W0OsX9KdwkjdchFZBu06Vb/T4TLgt1AwqFNyDekkj+S1+tE71V+UptzFJzCpy no0+Exb2QzhhrKaftg1D1qv+DkJ23a6Cg907pmmK+sR0Yer5sl4PyrUqYbVVFsUo v3PWp2SwPQ0oKzdpXUhLgowjL3D2swNNavENByK7Q/wHsN8eR4OhJC6ElDKeLhBE 89/GTa++k2frcaeiCvk8u7TvNBwyskyRTId6DzheoHjAQPeAfd3T3ekxZKexAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+s1CTNg/20Za3uRNx6cgQ5r+rpYwHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzEzMTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtjbjANBgkqhkiG 9w0BAQsFAAOCAQEAe9ZMxiuRx49ZkaBWo3Z/eRJotDohlXo64RCv5n8rwhLs8VEX pKoj0gt749SxAI18DzfTUMNwU4hfXGRdx5nWZf77zT2dMGdYumnOurbs+z9U5ZUY kN5Vg7imjR6ERFt5XaNyk7lV9juRpeSVkBAyu3PYzWluUNgh3/UHZQboknwF/wmW qorw1SEDFdGrDbrKUl/h37pVINuETUWqGuR5IAdj8EnE1mkKB7ZneV4ik0QwPWmK y2ilZaZ5pCft1C6cIEO5ynX2LmShZ4NrpK7jSZf4rSY5qJpDOvXjzxhyyFwXOJ5A X3g+LH/EWb4ku/H5HI4yDV7RL4UmFGOLm9Nb8w== -----END CERTIFICATE-----Generated at Sat Nov 23 03:54:06 2024 by rpki-client on console-ams.rpki-client.org