$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3132332e302f32342d3234203d3e203130313337.roa File: 3230332e39392e3132332e302f32342d3234203d3e203130313337.roa (raw, json) Hash identifier: qoD1LCcgQcrGscaCKsDBZxnNC5k+7tlPjQmxqDS5VvE= Subject key identifier: C9:90:11:39:B6:94:CA:E4:BC:13:59:30:6D:9A:A6:EB:B2:21:1D:82 Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 12B04671AAC899C0948848141F9F5498C7448618 Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3132332e302f32342d3234203d3e203130313337.roa Signing time: Thu 13 Jun 2024 08:00:01 +0000 ROA not before: Thu 13 Jun 2024 07:55:01 +0000 ROA not after: Thu 12 Jun 2025 08:00:01 +0000 asID: 10137 IP address blocks: 203.99.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 01:03:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:b0:46:71:aa:c8:99:c0:94:88:48:14:1f:9f:54:98:c7:44:86:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: Jun 13 07:55:01 2024 GMT Not After : Jun 12 08:00:01 2025 GMT Subject: CN=C9901139B694CAE4BC1359306D9AA6EBB2211D82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2b:82:ef:87:cc:07:cd:a2:33:42:10:3c:5c: 99:e6:b4:60:55:0c:b9:e7:24:9b:e1:ff:90:df:83: 15:a3:49:39:44:53:bf:a7:f3:7f:35:f0:36:15:04: 6c:d4:a6:5e:b1:92:66:cf:bc:73:a6:30:50:cc:2c: a2:c1:8e:07:b3:65:11:29:b8:e4:25:26:ef:af:90: c6:f9:c6:df:a7:6b:53:7d:64:4f:fb:91:b0:dd:a2: 20:86:63:ce:2a:a2:89:81:cd:be:23:95:6e:70:d2: 3b:5f:a3:02:79:40:f0:72:8d:ca:c4:99:fd:66:61: 9f:64:bb:e0:28:1d:83:a8:c6:01:d8:dd:37:a4:8d: dd:11:d4:e1:e5:2f:f1:28:83:11:4c:e8:2d:b7:dd: 59:9a:3b:d2:cc:58:9a:0e:13:17:68:36:23:a2:1a: fb:ff:46:c6:39:1d:6d:64:4a:d6:b3:25:01:5e:5b: 06:38:e2:11:e7:e8:87:53:a1:ab:8b:8c:8a:a2:6b: ea:f7:4b:5c:4e:1a:da:f3:04:9d:13:e3:a6:a5:a9: 50:09:7d:14:38:1c:26:1d:32:5c:5d:3d:f9:67:0e: a5:d9:08:2a:13:74:78:ea:96:4e:ea:69:e2:f2:a8: 79:27:18:48:25:91:78:e9:fb:c5:0a:ee:cc:be:2e: a0:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:90:11:39:B6:94:CA:E4:BC:13:59:30:6D:9A:A6:EB:B2:21:1D:82 X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3132332e302f32342d3234203d3e203130313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.123.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:50:e0:e9:3c:dc:b5:fa:dc:8a:a6:25:e6:ad:e5:0e:a4:02: 43:30:bd:b1:59:45:f9:b3:20:2b:b7:1f:4d:39:6a:1d:6a:70: c5:94:c3:f8:18:8e:7e:b4:b0:85:d8:b1:4e:57:b9:54:9e:0e: 91:b0:ee:31:e6:af:44:53:b9:f7:e6:be:06:59:9a:ce:7d:1e: 72:60:0d:f5:df:ff:25:a8:9f:9d:54:ca:f2:2b:4c:58:5d:f4: 2c:9d:7c:fa:28:3f:32:b0:25:71:27:13:3a:3c:58:cf:d2:88: bb:27:f0:72:db:fc:fb:62:71:39:d8:0e:61:61:98:91:f5:31: 5e:ba:a5:5f:0d:89:7a:f4:96:11:50:74:2d:24:2a:cc:d5:db: 9c:5e:06:2d:2e:e9:6d:51:dc:d3:b3:8a:88:2b:38:82:4b:79: 13:bf:35:29:9d:a8:6b:ce:11:94:ce:38:47:c4:31:f9:e9:cf: c1:03:b1:32:48:15:ca:20:24:36:31:8b:56:a0:9e:ec:bf:bb: bd:12:e5:52:03:95:e8:d5:47:6e:a6:35:a6:09:d6:09:66:d3: 2a:58:d0:38:86:59:86:de:9a:50:e2:11:ed:34:8b:99:59:ff: a8:8b:ae:42:3c:60:3e:0a:66:2f:4c:be:37:08:76:bc:f6:3e: b3:bb:c2:3f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUErBGcarImcCUiEgUH59UmMdEhhgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNDA2MTMwNzU1MDFaFw0yNTA2MTIwODAwMDFaMDMxMTAvBgNV BAMTKEM5OTAxMTM5QjY5NENBRTRCQzEzNTkzMDZEOUFBNkVCQjIyMTFEODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNK4Lvh8wHzaIzQhA8XJnmtGBV DLnnJJvh/5DfgxWjSTlEU7+n83818DYVBGzUpl6xkmbPvHOmMFDMLKLBjgezZREp uOQlJu+vkMb5xt+na1N9ZE/7kbDdoiCGY84qoomBzb4jlW5w0jtfowJ5QPByjcrE mf1mYZ9ku+AoHYOoxgHY3Tekjd0R1OHlL/EogxFM6C233VmaO9LMWJoOExdoNiOi Gvv/RsY5HW1kStazJQFeWwY44hHn6IdToauLjIqia+r3S1xOGtrzBJ0T46alqVAJ fRQ4HCYdMlxdPflnDqXZCCoTdHjqlk7qaeLyqHknGEglkXjp+8UK7sy+LqArAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyZARObaUyuS8E1kwbZqm67IhHYIwHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzEzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtjezANBgkqhkiG 9w0BAQsFAAOCAQEALlDg6TzctfrciqYl5q3lDqQCQzC9sVlF+bMgK7cfTTlqHWpw xZTD+BiOfrSwhdixTle5VJ4OkbDuMeavRFO59+a+Blmazn0ecmAN9d//JaifnVTK 8itMWF30LJ18+ig/MrAlcScTOjxYz9KIuyfwctv8+2JxOdgOYWGYkfUxXrqlXw2J evSWEVB0LSQqzNXbnF4GLS7pbVHc07OKiCs4gkt5E781KZ2oa84RlM44R8Qx+enP wQOxMkgVyiAkNjGLVqCe7L+7vRLlUgOV6NVHbqY1pgnWCWbTKljQOIZZht6aUOIR 7TSLmVn/qIuuQjxgPgpmL0y+Nwh2vPY+s7vCPw== -----END CERTIFICATE-----Generated at Sat Nov 23 02:29:39 2024 by rpki-client on console-fra.rpki-client.org