$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3131322e302f32342d3234203d3e203536323431.roa File: 3230332e39392e3131322e302f32342d3234203d3e203536323431.roa (raw, json) Hash identifier: ZqSTpukEEv9K3H+WS14a2YN7W1ErkKRWN2pN8lNqj0A= Subject key identifier: 97:16:B3:46:A0:E8:9D:80:DA:93:06:C9:EB:42:A5:57:80:A8:94:B3 Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 61B6D564028CED3087F40FDB35DDEC65087FD8DA Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3131322e302f32342d3234203d3e203536323431.roa Signing time: Thu 13 Jun 2024 08:00:00 +0000 ROA not before: Thu 13 Jun 2024 07:55:00 +0000 ROA not after: Thu 12 Jun 2025 08:00:00 +0000 asID: 56241 IP address blocks: 203.99.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 01:03:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:b6:d5:64:02:8c:ed:30:87:f4:0f:db:35:dd:ec:65:08:7f:d8:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: Jun 13 07:55:00 2024 GMT Not After : Jun 12 08:00:00 2025 GMT Subject: CN=9716B346A0E89D80DA9306C9EB42A55780A894B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:be:46:ef:f2:ec:0f:24:10:85:b8:bb:17:1d: ae:14:4e:5d:20:44:bf:77:2b:10:7c:66:db:32:08: 24:8e:13:72:0c:2e:1b:5a:96:aa:03:4b:c9:2c:61: fd:12:5e:c2:fb:a3:89:b9:2a:b2:45:f2:2b:58:e2: 81:f7:49:fe:e1:f9:dd:3e:97:ed:88:8b:da:27:8c: 3d:68:5a:b8:f6:52:65:8b:8f:48:e0:d2:13:33:32: 81:77:92:db:d9:7a:b2:c0:91:c4:8c:10:f4:b2:7a: 7d:2b:42:cb:db:03:0c:f7:08:6f:8d:ed:4c:b6:4e: ba:94:03:94:28:d0:96:6f:15:57:67:d0:5d:21:34: 56:a4:27:94:83:9b:42:fb:c0:b0:a2:3a:f0:aa:15: 61:b3:c7:a8:35:6d:11:f2:b0:26:d3:da:ee:e4:e1: 7d:47:ea:37:fe:fd:c3:1b:6f:15:07:23:dc:48:9b: 44:c6:4a:b7:c5:61:c4:e9:47:18:a8:88:c8:35:7d: d1:ca:ae:46:36:1e:96:dc:aa:8f:43:1a:a3:75:a5: f7:eb:e4:fb:0a:c5:92:dc:38:30:6f:31:87:13:cc: 25:56:0c:05:2f:20:4a:61:49:91:69:03:f4:ac:28: fb:b7:bb:37:92:9d:94:d0:87:2c:53:7e:ae:79:ca: e7:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:16:B3:46:A0:E8:9D:80:DA:93:06:C9:EB:42:A5:57:80:A8:94:B3 X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3131322e302f32342d3234203d3e203536323431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.112.0/24 Signature Algorithm: sha256WithRSAEncryption 45:34:77:5e:84:30:5e:40:3d:9a:a4:eb:d6:5a:e8:b6:49:85: 94:b4:f6:63:77:ab:2e:8c:79:8f:5e:7e:ba:30:59:e3:3c:7f: 69:8a:37:b8:78:d4:2f:34:c7:1f:a4:67:bb:68:6b:a6:ff:cc: 06:87:b0:fb:c2:06:fb:52:ad:ad:12:36:0f:e1:34:77:7c:44: 37:1a:0c:27:45:78:4e:2c:ed:2d:23:4d:ce:b0:3c:3b:f9:af: ef:3e:12:be:cf:af:18:8a:52:ef:51:87:b8:11:3c:4f:17:74: a5:ad:d6:6e:13:01:dc:e5:92:3e:dc:cc:dc:a9:ce:fc:93:99: b9:00:12:42:b6:8e:f0:59:44:1a:1c:ff:ef:82:b8:27:58:fe: a5:ad:d7:22:f4:b3:54:9c:ab:66:68:0c:95:72:4f:59:fd:0c: 62:53:33:42:c3:5b:60:c8:41:7b:be:ec:fd:51:4c:4e:6e:19: 0e:19:a9:e6:bb:52:e6:8f:d8:e6:0d:13:6d:5d:ae:4c:e9:2b: 51:f6:05:cc:28:86:c2:87:94:d3:b8:d8:82:9b:36:7e:c9:82: 8b:e2:b8:a4:5c:a6:dd:97:99:33:95:8e:95:d1:d7:17:07:4d: b6:3c:ed:08:ed:43:40:77:9a:70:19:2c:bd:31:d1:de:a8:04: 67:c7:2e:a4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYbbVZAKM7TCH9A/bNd3sZQh/2NowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNDA2MTMwNzU1MDBaFw0yNTA2MTIwODAwMDBaMDMxMTAvBgNV BAMTKDk3MTZCMzQ2QTBFODlEODBEQTkzMDZDOUVCNDJBNTU3ODBBODk0QjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnvkbv8uwPJBCFuLsXHa4UTl0g RL93KxB8ZtsyCCSOE3IMLhtalqoDS8ksYf0SXsL7o4m5KrJF8itY4oH3Sf7h+d0+ l+2Ii9onjD1oWrj2UmWLj0jg0hMzMoF3ktvZerLAkcSMEPSyen0rQsvbAwz3CG+N 7Uy2TrqUA5Qo0JZvFVdn0F0hNFakJ5SDm0L7wLCiOvCqFWGzx6g1bRHysCbT2u7k 4X1H6jf+/cMbbxUHI9xIm0TGSrfFYcTpRxioiMg1fdHKrkY2Hpbcqo9DGqN1pffr 5PsKxZLcODBvMYcTzCVWDAUvIEphSZFpA/SsKPu3uzeSnZTQhyxTfq55yucJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlxazRqDonYDakwbJ60KlV4ColLMwHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzEzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtjcDANBgkqhkiG 9w0BAQsFAAOCAQEARTR3XoQwXkA9mqTr1lrotkmFlLT2Y3erLox5j15+ujBZ4zx/ aYo3uHjULzTHH6Rnu2hrpv/MBoew+8IG+1KtrRI2D+E0d3xENxoMJ0V4TiztLSNN zrA8O/mv7z4Svs+vGIpS71GHuBE8Txd0pa3WbhMB3OWSPtzM3KnO/JOZuQASQraO 8FlEGhz/74K4J1j+pa3XIvSzVJyrZmgMlXJPWf0MYlMzQsNbYMhBe77s/VFMTm4Z Dhmp5rtS5o/Y5g0TbV2uTOkrUfYFzCiGwoeU07jYgps2fsmCi+K4pFym3ZeZM5WO ldHXFwdNtjztCO1DQHeacBksvTHR3qgEZ8cupA== -----END CERTIFICATE-----Generated at Sat Nov 23 03:54:06 2024 by rpki-client on console-ams.rpki-client.org